ocsp.pki.goog/gts1c3
472 B IP
Hash 72c6da94ee45fc2dd0f2b2fd8c51b649
e1f2b78c9d5d6c0da8f927dd9efbe4536fcf1eea
ea45a568cf670048ec1944643f14654716430bdc797c3aec2a89b2aeb7575817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 11:47:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash 72c6da94ee45fc2dd0f2b2fd8c51b649
e1f2b78c9d5d6c0da8f927dd9efbe4536fcf1eea
ea45a568cf670048ec1944643f14654716430bdc797c3aec2a89b2aeb7575817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 11:47:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash 72c6da94ee45fc2dd0f2b2fd8c51b649
e1f2b78c9d5d6c0da8f927dd9efbe4536fcf1eea
ea45a568cf670048ec1944643f14654716430bdc797c3aec2a89b2aeb7575817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 11:47:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash 72c6da94ee45fc2dd0f2b2fd8c51b649
e1f2b78c9d5d6c0da8f927dd9efbe4536fcf1eea
ea45a568cf670048ec1944643f14654716430bdc797c3aec2a89b2aeb7575817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 11:47:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jsdelivr.net/npm/hls.js@latest
200 OK 115 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/hls.js@latest
IP
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F
ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 115 kB (114675 bytes)
Hash c7e1db7692329a3512a340f3738dee02
14e615f7eff2643f15fe8cf83d82550dc4eddf5a
e41b7b3a4661b4ac16ece851ceb5af53cbad99071969e132254dca97dad2a318
GET /npm/hls.js@latest HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.4.2
x-jsd-version-type: version
etag: W/"5b316-FOYV9+/yZD8V/oz4PYJVDcTt31o"
content-encoding: br
accept-ranges: bytes
date: Wed, 10 May 2023 11:47:36 GMT
age: 33207
x-served-by: cache-fra-eddf8230136-FRA, cache-bma1662-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 114675
X-Firefox-Spdy: h2
promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
200 OK 30 kB URL User Request GET HTTP/2 promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerCloudflare, Inc.
Subjectvbet.ua
Fingerprint59:F8:17:DD:24:47:37:AB:8A:17:09:7C:32:88:00:AA:62:DA:04:54
ValidityTue, 25 Apr 2023 00:00:00 GMT - Wed, 24 Apr 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (8423), with CRLF, LF line terminators
Hash fd83ff43ebc5fb4cfd1aaabd44dca8e6
9f6de1d719f897ec7f8c9ccb53c1238abeb3c3e2
4101c125575caaab25c5bdf04ee2a8151dadeaad01c50442def107807269ca2f
GET /vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01 HTTP/1.1
Host: promo.vbet.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:35 GMT
content-type: text/html; charset=utf-8
x-dns-prefetch-control: off
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
country: NO
set-cookie: country=NO; Max-Age=900; Path=/; Expires=Wed, 10 May 2023 12:02:35 GMT
vary: Accept-Encoding
x-frame-options: ALLOWALL
sb: 1
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7c51f2c48d2eb512-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 72c6da94ee45fc2dd0f2b2fd8c51b649
e1f2b78c9d5d6c0da8f927dd9efbe4536fcf1eea
ea45a568cf670048ec1944643f14654716430bdc797c3aec2a89b2aeb7575817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 11:47:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
1.5 kB URL ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP
Hash 1dde8e262100fa46aea027bb41bf8dfd
fc75b7dab1ea97d0f61a5d938a092ce8121e0102
bdb6412d265ce2088f6aa7d1a7df7840697d3f909fa308061178fb1495f2016a
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 10 May 2023 11:47:37 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "14E76A3FC4BEE3F9A1CA4E6A1B6929157A29B9CA"
Expires: Wed, 10 May 2023 22:00:00 GMT
Last-Modified: Wed, 10 May 2023 10:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2119
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7c51f2cd980f067b-OSL
static.springbuilder.site/fs/userFiles-v2/promoua/media/texture.png?1654157725678
200 OK 20 kB URL GET HTTP/2 static.springbuilder.site/fs/userFiles-v2/promoua/media/texture.png?1654157725678
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type PNG image data, 200 x 104, 8-bit gray+alpha, non-interlaced\012- data
Hash 83b314a7c09d1e3679861bb0a6aea873
9a9823477f41bcf83d19670ceca38c783175eabb
5e7aecb0dde27a0a232fb733532e982e30404bf33b3d7f3a43754d109f022c61
GET /fs/userFiles-v2/promoua/media/texture.png?1654157725678 HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:37 GMT
content-type: image/png
content-length: 20086
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=26029, status=vary_header_present
etag: "6298719c-65ad"
expires: Thu, 09 May 2024 11:47:37 GMT
last-modified: Thu, 02 Jun 2022 08:15:24 GMT
pragma: public
sb: 1
strict-transport-security: max-age=15724800; includeSubDomains
vary: User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 7c51f2ce1886b524-OSL
X-Firefox-Spdy: h2
static.springbuilder.site/fs/userFiles-v2/promoua/media/003-1-1.jpg?1654669658209
200 OK 218 kB URL GET HTTP/2 static.springbuilder.site/fs/userFiles-v2/promoua/media/003-1-1.jpg?1654669658209
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data
Size 218 kB (218539 bytes)
Hash 0ea4a964c861f455b7aed97d71a9c86b
8f298b8d3dfd4faec3334858b3bf0d7aa754aa0b
4c8d58884ff3594df93957c10767a2078c18f7473e3ec3aad7064c6116095371
GET /fs/userFiles-v2/promoua/media/003-1-1.jpg?1654669658209 HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:37 GMT
content-type: image/jpeg
content-length: 218539
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=218547, status=vary_header_present
etag: "62a04157-355b3"
expires: Thu, 09 May 2024 11:47:37 GMT
last-modified: Wed, 08 Jun 2022 06:27:35 GMT
pragma: public
sb: 1
strict-transport-security: max-age=15724800; includeSubDomains
vary: User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 7c51f2ce288eb524-OSL
X-Firefox-Spdy: h2
static.springbuilder.site/assets/addonFonts/icomoon.css?v=1683557017
200 OK 8.2 kB URL GET HTTP/2 static.springbuilder.site/assets/addonFonts/icomoon.css?v=1683557017
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (42281), with no line terminators
Hash 10ebdfd9163f3a6a00ed8396f0f77843
be739b9c185f59eef9dd77dd9f4e98d5b6cbc768
fc8b1d0df344b68f93c41a912da6d13f12a31aacc2ea97f52c6e49e1c4fd6bf3
GET /assets/addonFonts/icomoon.css?v=1683557017 HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:37 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=42465
etag: W/"63f489e7-a5e1"
expires: Thu, 09 May 2024 11:47:37 GMT
last-modified: Tue, 21 Feb 2023 09:07:51 GMT
pragma: public
sb: 1
strict-transport-security: max-age=15724800; includeSubDomains
vary: Accept-Encoding, User-Agent
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 159447
server: cloudflare
cf-ray: 7c51f2cdf863b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash a6da0b8ec487c9ffd7bc4988e01ee646
f68270a827e68414eafb5ea37009e41de0890591
fe9d96f872b486de995156459e3005532ad6c6140975266bd43023286a6aa76e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 11:47:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-NDC8B28
200 OK 54 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-NDC8B28
IP
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintCA:2C:8E:2F:14:74:84:57:8C:39:86:59:92:AC:A1:7C:C8:FA:99:CA
ValidityMon, 17 Apr 2023 08:16:32 GMT - Mon, 10 Jul 2023 08:16:31 GMT
File type ASCII text, with very long lines (14443)
Hash d35f19026819074569898f5f7534ec75
f351e45fb342d561e20e83f809cb690e8ff1c208
8fc7eabd8e0c69a93bd156cc73192eb790c5a556c62cc91b58e36f901cc1ece2
GET /gtm.js?id=GTM-NDC8B28 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 10 May 2023 11:47:37 GMT
expires: Wed, 10 May 2023 11:47:37 GMT
cache-control: private, max-age=900
last-modified: Wed, 10 May 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 54495
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash a6da0b8ec487c9ffd7bc4988e01ee646
f68270a827e68414eafb5ea37009e41de0890591
fe9d96f872b486de995156459e3005532ad6c6140975266bd43023286a6aa76e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 11:47:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash a6da0b8ec487c9ffd7bc4988e01ee646
f68270a827e68414eafb5ea37009e41de0890591
fe9d96f872b486de995156459e3005532ad6c6140975266bd43023286a6aa76e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 11:47:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/897-text-1.webp
200 OK 46 kB URL GET HTTP/2 static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/897-text-1.webp
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 30b92f064337d3bc3a418d5248ce19b3
56868a272f2331787f55ce4fc299c7a682a729fc
958f28357d1f792267a8aa8777fad9f63802c1a2f0a00d14992ce68fd1d02eda
GET /fs/userFiles-v2/promo-vbet-ua-1877549/images/897-text-1.webp HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:37 GMT
content-type: image/webp
content-length: 46092
last-modified: Tue, 14 Feb 2023 08:22:45 GMT
etag: "63eb44d5-b40c"
springbuilder: 1
strict-transport-security: max-age=15724800; includeSubDomains
sb: 1
cf-cache-status: REVALIDATED
expires: Wed, 10 May 2023 11:49:37 GMT
cache-control: public, max-age=120
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c51f2cea942b524-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash a6da0b8ec487c9ffd7bc4988e01ee646
f68270a827e68414eafb5ea37009e41de0890591
fe9d96f872b486de995156459e3005532ad6c6140975266bd43023286a6aa76e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 11:47:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash a6da0b8ec487c9ffd7bc4988e01ee646
f68270a827e68414eafb5ea37009e41de0890591
fe9d96f872b486de995156459e3005532ad6c6140975266bd43023286a6aa76e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 11:47:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/889-1-16546748129972.webp
200 OK 260 kB URL GET HTTP/2 static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/889-1-16546748129972.webp
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Size 260 kB (259468 bytes)
Hash bf364786ef536e42c5b271be829f398e
6a7110cf08d98334f28039bb231a44b3cbf82f0e
89c2fcd1a1d3a05d3380d211617e97155220b4271038d15fc69985dc11e8fb42
GET /fs/userFiles-v2/promo-vbet-ua-1877549/images/889-1-16546748129972.webp HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:37 GMT
content-type: image/webp
content-length: 259468
last-modified: Tue, 14 Feb 2023 08:22:25 GMT
etag: "63eb44c1-3f58c"
springbuilder: 1
strict-transport-security: max-age=15724800; includeSubDomains
sb: 1
cf-cache-status: REVALIDATED
expires: Wed, 10 May 2023 11:49:37 GMT
cache-control: public, max-age=120
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c51f2ceb953b524-OSL
X-Firefox-Spdy: h2
static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/895-6-16552086671452.webp
200 OK 21 kB URL GET HTTP/2 static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/895-6-16552086671452.webp
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash bae138da27678ce10f245b905b90ead1
f26cf5460c5c3d5f6250289e89e16d6ab66c1a2b
70646691b55f6a944ba68578fa2afae82498ad1fd43ac9aff8f3857bf475d68a
GET /fs/userFiles-v2/promo-vbet-ua-1877549/images/895-6-16552086671452.webp HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:37 GMT
content-type: image/webp
content-length: 20638
last-modified: Tue, 14 Feb 2023 08:22:26 GMT
etag: "63eb44c2-509e"
springbuilder: 1
strict-transport-security: max-age=15724800; includeSubDomains
sb: 1
cf-cache-status: REVALIDATED
expires: Wed, 10 May 2023 11:49:37 GMT
cache-control: public, max-age=120
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c51f2cee9a6b524-OSL
X-Firefox-Spdy: h2
static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/1286-logo-16832794861408.webp
200 OK 4.2 kB URL GET HTTP/2 static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/1286-logo-16832794861408.webp
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 31973ffc306c1e73197490ca3c52296b
2d0ada905d2582c0a4c6af9fb11c9ef076fa7242
d742217763772b359997aa28ec1fbdb46cd090137d5d8cf3fca9959418e642b9
GET /fs/userFiles-v2/promo-vbet-ua-1877549/images/1286-logo-16832794861408.webp HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:37 GMT
content-type: image/webp
content-length: 4186
last-modified: Fri, 05 May 2023 11:44:45 GMT
etag: "6454ec2d-105a"
springbuilder: 1
strict-transport-security: max-age=15724800; includeSubDomains
sb: 1
cf-cache-status: REVALIDATED
expires: Wed, 10 May 2023 11:49:37 GMT
cache-control: public, max-age=120
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c51f2ce992db524-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://promo.vbet.ua
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 04 May 2023 11:49:35 GMT
expires: Fri, 03 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
age: 518282
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.springbuilder.site/assets/css/public.css?v=1683557017
200 OK 69 kB URL GET HTTP/2 static.springbuilder.site/assets/css/public.css?v=1683557017
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (31038)
Hash 25a02067dd698e0d0a5002573e961377
b6fcaa04af571041ef494b6b366f3a7d01dc04ad
35e9ae45e02cd7627dd114f1052040dfdd9d1f22ee805a1f0924d57ef50b8004
GET /assets/css/public.css?v=1683557017 HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:36 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=679717
etag: W/"64590da5-a5f25"
expires: Thu, 09 May 2024 11:47:36 GMT
last-modified: Mon, 08 May 2023 14:56:37 GMT
pragma: public
sb: 1
strict-transport-security: max-age=15724800; includeSubDomains
vary: Accept-Encoding, User-Agent
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 161129
server: cloudflare
cf-ray: 7c51f2c94a7bb524-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://promo.vbet.ua
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 04 May 2023 05:00:02 GMT
expires: Fri, 03 May 2024 05:00:02 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
age: 542855
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/css/sport-colors.css?v=1683557926
200 OK 58 kB URL GET HTTP/2 static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/css/sport-colors.css?v=1683557926
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0bd6a080cce616f20ece24b5f6f5bb5c
e9ad394077f720f404831792162119678f75265f
e778bbb19f908097fee31760742a9995c2d363e998fe28a51d37f6154fc4f41f
GET /fs/userFiles-v2/promo-vbet-ua-1877549/css/sport-colors.css?v=1683557926 HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:36 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=333070
etag: W/"64590e26-5150e"
expires: Thu, 09 May 2024 11:47:36 GMT
last-modified: Mon, 08 May 2023 14:58:46 GMT
pragma: public
sb: 1
strict-transport-security: max-age=15724800; includeSubDomains
vary: Accept-Encoding, User-Agent
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
server: cloudflare
cf-ray: 7c51f2c8d9efb524-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/892-4-16546748361199.webp
200 OK 31 kB URL GET HTTP/2 static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/892-4-16546748361199.webp
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 070885f890c2bad203ada9c02e7556a4
15e8a227f4c3c470006972c6ceb41abbda5885e6
bc1fcf864f604d43f2be151fab484f522bdff7a4423b06fe220ed0cde44c41c6
GET /fs/userFiles-v2/promo-vbet-ua-1877549/images/892-4-16546748361199.webp HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:37 GMT
content-type: image/webp
content-length: 30926
last-modified: Tue, 14 Feb 2023 08:22:26 GMT
etag: "63eb44c2-78ce"
springbuilder: 1
strict-transport-security: max-age=15724800; includeSubDomains
sb: 1
cf-cache-status: REVALIDATED
expires: Wed, 10 May 2023 11:49:37 GMT
cache-control: public, max-age=120
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c51f2cec966b524-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://promo.vbet.ua
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 06 May 2023 03:11:48 GMT
expires: Sun, 05 May 2024 03:11:48 GMT
cache-control: public, max-age=31536000
age: 376549
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash f31bb3c04de31d1672e384c3eb0e2569
b44b18082ac8fcaaf4226302e53be0ecac041fb2
e0c137d6dd7f17fa0cde4e94ce7b7bfc28a0955d7508a777a90ecd6af20df069
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 11:47:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/891-3-16546748296918.webp
200 OK 108 kB URL GET HTTP/2 static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/891-3-16546748296918.webp
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Size 108 kB (108442 bytes)
Hash b1de7737c1abf775012c2d4e01517f30
bb3dde854c9cb8e8cff9fb2467ab384202c394e5
b6c44aa6aa102a3036e20c25f8cce9be7330ac4c3f2e3d09289f8d8444384297
GET /fs/userFiles-v2/promo-vbet-ua-1877549/images/891-3-16546748296918.webp HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:37 GMT
content-type: image/webp
content-length: 108442
last-modified: Tue, 14 Feb 2023 08:22:26 GMT
etag: "63eb44c2-1a79a"
springbuilder: 1
strict-transport-security: max-age=15724800; includeSubDomains
sb: 1
cf-cache-status: REVALIDATED
expires: Wed, 10 May 2023 11:49:37 GMT
cache-control: public, max-age=120
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c51f2ceb958b524-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2
200 OK 9.6 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2
IP
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type Web Open Font Format (Version 2), TrueType, length 9644, version 1.0\012- data
Hash 6f112ec2b932ee12379442c42853244e
b2e73c8c70d6261e1d187f41693c43ac4fe0809d
6a84eeee6a25e7c9a8a03191007a6720566b5a2aa2384d36168fb07f49e97e9e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://promo.vbet.ua
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9644
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 08 May 2023 07:56:28 GMT
expires: Tue, 07 May 2024 07:56:28 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
age: 186669
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/894-7-16546748623914.webp
200 OK 7.5 kB URL GET HTTP/2 static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/894-7-16546748623914.webp
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 47049716ef9daa127ffeeea594cc2488
c278a36bfc4f62c67b41a6ef8b8399b680ecb85b
dc1adbe13388a115ff2e46b50f0a2b04acd766762b96877156da6e723130b73c
GET /fs/userFiles-v2/promo-vbet-ua-1877549/images/894-7-16546748623914.webp HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:37 GMT
content-type: image/webp
content-length: 7516
last-modified: Tue, 14 Feb 2023 08:22:26 GMT
etag: "63eb44c2-1d5c"
springbuilder: 1
strict-transport-security: max-age=15724800; includeSubDomains
sb: 1
cf-cache-status: REVALIDATED
expires: Wed, 10 May 2023 11:49:37 GMT
cache-control: public, max-age=120
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c51f2cee9a2b524-OSL
X-Firefox-Spdy: h2
static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/893-5-1654674846244.webp
200 OK 26 kB URL GET HTTP/2 static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/893-5-1654674846244.webp
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 78ece220387a14528fc3ca7d2d474e66
5644bad8bd8276b3c43d9e397a275f2e0163379f
08319d4e8ae2e04656e9daa585ec4276e032d184f3e08cbcdf9c41a344733bb9
GET /fs/userFiles-v2/promo-vbet-ua-1877549/images/893-5-1654674846244.webp HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:37 GMT
content-type: image/webp
content-length: 25622
last-modified: Tue, 14 Feb 2023 08:22:26 GMT
etag: "63eb44c2-6416"
springbuilder: 1
strict-transport-security: max-age=15724800; includeSubDomains
sb: 1
cf-cache-status: MISS
expires: Wed, 10 May 2023 11:49:37 GMT
cache-control: public, max-age=120
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c51f2cee998b524-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash a6da0b8ec487c9ffd7bc4988e01ee646
f68270a827e68414eafb5ea37009e41de0890591
fe9d96f872b486de995156459e3005532ad6c6140975266bd43023286a6aa76e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 11:47:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/favicon.png?v=1635850532
200 OK 3.6 kB URL GET HTTP/2 static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/favicon.png?v=1635850532
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type PNG image data, 61 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash c34ff2f6a2e3ff26f292d5caf2d87c39
9f96a648b4c5b529081f962de4a78dd89a009651
b5249ffb4354adf42d8c439a2b601ae3b5c027ee91bbd7256b4fa2638e6ac55e
GET /fs/userFiles-v2/promo-vbet-ua-1877549/images/favicon.png?v=1635850532 HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:38 GMT
content-type: image/png
content-length: 3603
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=4833, status=vary_header_present
etag: "61811924-12e1"
expires: Thu, 09 May 2024 11:47:38 GMT
last-modified: Tue, 02 Nov 2021 10:55:32 GMT
pragma: public
sb: 1
strict-transport-security: max-age=15724800; includeSubDomains
vary: User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 7c51f2d2ef8eb524-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-C9QL4F22L7&l=dataLayer&cx=c
200 OK 82 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-C9QL4F22L7&l=dataLayer&cx=c
IP
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintCA:2C:8E:2F:14:74:84:57:8C:39:86:59:92:AC:A1:7C:C8:FA:99:CA
ValidityMon, 17 Apr 2023 08:16:32 GMT - Mon, 10 Jul 2023 08:16:31 GMT
File type ASCII text, with very long lines (5650)
Hash dc7e36762fbfa41320cbf0fe92029c32
4b4967cfceba0070ed5f23733d5d0d28b873f42c
03d99553787a67704433ff553505076ff75ebb10e9d808fb671a9e639a60e339
GET /gtag/js?id=G-C9QL4F22L7&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 10 May 2023 11:47:38 GMT
expires: Wed, 10 May 2023 11:47:38 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 82382
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
eu-swarm-springre.betconstruct.com/
200 OK 0 B URL POST HTTP/2 eu-swarm-springre.betconstruct.com/
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectbetconstruct.com
Fingerprint4F:1F:45:19:5E:76:92:51:53:52:E6:E1:16:F1:6F:36:53:0D:98:63
ValidityWed, 26 Apr 2023 00:00:00 GMT - Wed, 24 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: eu-swarm-springre.betconstruct.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://promo.vbet.ua
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: J9SBtq8OrFJRduHcYFuqAw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Wed, 10 May 2023 11:47:38 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AN81uUYSpndolPk36WFUH6ersVU=
Sec-Websocket-Extensions: permessage-deflate; server_no_context_takeover; client_no_context_takeover
Via: 1.1 google
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7c51f2d7ac9bb509-OSL
zerossl.ocsp.sectigo.com/
727 B URL zerossl.ocsp.sectigo.com/
IP
Hash 18901c1cf18c34203ad9ea5ff1854a2a
b0d5bbb36fa9f41ca1d5f9ee7d839fa6163eea43
ab51d113479e30132571d0e5aead40cac61bf350510956da4b4c084dfa3eb7f2
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 10 May 2023 11:47:39 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Wed, 10 May 2023 07:22:45 GMT
Expires: Wed, 17 May 2023 07:22:44 GMT
Etag: "b0d5bbb36fa9f41ca1d5f9ee7d839fa6163eea43"
Cache-Control: max-age=588564,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7c51f2d5993cb4ed-OSL
track.vbet.ua/uniclick.js?attribution=lastpaid&cookiedomain=vbet.ua&cookieduration=90&defaultcampaignid=631992b56828b6000110aec7®viewonce=false
200 OK 5.1 kB URL GET HTTP/1.1 track.vbet.ua/uniclick.js?attribution=lastpaid&cookiedomain=vbet.ua&cookieduration=90&defaultcampaignid=631992b56828b6000110aec7®viewonce=false
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerZeroSSL
Subjecttrack.vbet.ua
Fingerprint6B:F3:BB:C3:07:DF:7D:19:5D:01:A8:8C:0C:57:F8:63:64:B6:40:A9
ValidityWed, 01 Mar 2023 00:00:00 GMT - Tue, 30 May 2023 23:59:59 GMT
Hash 759ab334413a1bb02fdfb6e6acab28aa
2fdde4ecac5269d3a31c070dbe39ab963d9d4636
a07c6402b3c4800e191437b933843f2382f1b6461008dac5f4a8ffcc893174b9
GET /uniclick.js?attribution=lastpaid&cookiedomain=vbet.ua&cookieduration=90&defaultcampaignid=631992b56828b6000110aec7®viewonce=false HTTP/1.1
Host: track.vbet.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Cookie: _gcl_au=1.1.1613304732.1683719258; sc_utm_campaign=x; sc_utm_source=Clickunder_adult_id2; sc_utm_medium=Clickunder
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Wed, 10 May 2023 11:47:39 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/data/translations/en-us_override.json?v=1683717151
404 Not Found 7.0 kB URL GET HTTP/2 static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/data/translations/en-us_override.json?v=1683717151
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type little endian ispell hash file (?),\012- data
Hash 77c8b708134bfe253c7ebba10e256d54
6bd1c58ccd6964c53e5acbaf140d35f43f8e0ba5
4f52e9dee25a5807ec5907775e04758ed9722155324f003cf8c4920a1a63e738
GET /fs/userFiles-v2/promo-vbet-ua-1877549/data/translations/en-us_override.json?v=1683717151 HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promo.vbet.ua
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Wed, 10 May 2023 11:47:39 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-robots-tag: noindex, nofollow
cache-control: no-cache, private
strict-transport-security: max-age=15724800; includeSubDomains
sb: 1
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7c51f2d8bff6b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
track.vbet.ua/view?clickid=645b8447b43f360001012af4&referrer=
204 No Content 0 B URL GET HTTP/1.1 track.vbet.ua/view?clickid=645b8447b43f360001012af4&referrer=
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerZeroSSL
Subjecttrack.vbet.ua
Fingerprint6B:F3:BB:C3:07:DF:7D:19:5D:01:A8:8C:0C:57:F8:63:64:B6:40:A9
ValidityWed, 01 Mar 2023 00:00:00 GMT - Tue, 30 May 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /view?clickid=645b8447b43f360001012af4&referrer= HTTP/1.1
Host: track.vbet.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promo.vbet.ua
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.20.2
Date: Wed, 10 May 2023 11:47:39 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
promo.vbet.ua/assets/addon/noconnection.png
200 OK 44 kB URL GET HTTP/2 promo.vbet.ua/assets/addon/noconnection.png
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectvbet.ua
Fingerprint59:F8:17:DD:24:47:37:AB:8A:17:09:7C:32:88:00:AA:62:DA:04:54
ValidityTue, 25 Apr 2023 00:00:00 GMT - Wed, 24 Apr 2024 23:59:59 GMT
File type PNG image data, 930 x 634, 8-bit/color RGBA, non-interlaced\012- data
Hash fc770445189f1f8f0d2acd9d35980769
d0d8a14fe8aa580588bc68b11d9e04d5eece519c
c5118b1555128adcf905bf3b0ad858d604d4c2ba4113eba1a0de18d970614b20
GET /assets/addon/noconnection.png HTTP/1.1
Host: promo.vbet.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Cookie: country=NO; _gcl_au=1.1.1613304732.1683719258; sc_utm_campaign=x; sc_utm_source=Clickunder_adult_id2; sc_utm_medium=Clickunder; ucraftExternalUrlQueryParams=?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01; sc_btag=1093706_l171154; _ga_C9QL4F22L7=GS1.1.1683719258.1.0.1683719258.60.0.0; _ga=GA1.1.1503528088.1683719259; rtkclickid-store=645b8447b43f360001012af4; promocode=1093706_l171154_extName645b8447b43f360001012af4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:39 GMT
content-type: image/png
content-length: 44412
x-dns-prefetch-control: off
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
country: KZ
last-modified: Mon, 24 Oct 2022 15:14:36 GMT
etag: "6356abdc-ad7c"
expires: Thu, 09 May 2024 11:47:39 GMT
cache-control: public, max-age=31536000
vary: User-Agent, Accept-Encoding
pragma: public
x-frame-options: ALLOWALL
sb: 1
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 7c51f2dc4c6fb512-OSL
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-C9QL4F22L7>m=45je3580&_p=1307156872&cid=1503528088.1683719259&ul=en-us&sr=1280x1024&ir=1&_eu=EEA&_s=2&sid=1683719258&sct=1&seg=0&dl=https%3A%2F%2Fpromo.vbet.ua%2Fvip-wheel%3Futm_campaign%3Dx%26utm_source%3DClickunder_adult_id2%26utm_medium%3DClickunder%26utm_content%3DWheel%26utm_term%3DMatch_2023%26btag%3D1093706_l171154%26rtkcid%3D645b8447b43f360001012af4%26clickid%3D645b8447b43f360001012af4%26cmpid%3D641468ef9b9ca60001c6be01&dt=Vip%20Wheel&en=scroll&_c=1&ep.sc_utm_source=Clickunder_adult_id2&ep.sc_utm_medium=Clickunder&ep.sc_utm_campaign=x&epn.percent_scrolled=90
204 No Content 0 B URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-C9QL4F22L7>m=45je3580&_p=1307156872&cid=1503528088.1683719259&ul=en-us&sr=1280x1024&ir=1&_eu=EEA&_s=2&sid=1683719258&sct=1&seg=0&dl=https%3A%2F%2Fpromo.vbet.ua%2Fvip-wheel%3Futm_campaign%3Dx%26utm_source%3DClickunder_adult_id2%26utm_medium%3DClickunder%26utm_content%3DWheel%26utm_term%3DMatch_2023%26btag%3D1093706_l171154%26rtkcid%3D645b8447b43f360001012af4%26clickid%3D645b8447b43f360001012af4%26cmpid%3D641468ef9b9ca60001c6be01&dt=Vip%20Wheel&en=scroll&_c=1&ep.sc_utm_source=Clickunder_adult_id2&ep.sc_utm_medium=Clickunder&ep.sc_utm_campaign=x&epn.percent_scrolled=90
IP
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintCA:2C:8E:2F:14:74:84:57:8C:39:86:59:92:AC:A1:7C:C8:FA:99:CA
ValidityMon, 17 Apr 2023 08:16:32 GMT - Mon, 10 Jul 2023 08:16:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-C9QL4F22L7>m=45je3580&_p=1307156872&cid=1503528088.1683719259&ul=en-us&sr=1280x1024&ir=1&_eu=EEA&_s=2&sid=1683719258&sct=1&seg=0&dl=https%3A%2F%2Fpromo.vbet.ua%2Fvip-wheel%3Futm_campaign%3Dx%26utm_source%3DClickunder_adult_id2%26utm_medium%3DClickunder%26utm_content%3DWheel%26utm_term%3DMatch_2023%26btag%3D1093706_l171154%26rtkcid%3D645b8447b43f360001012af4%26clickid%3D645b8447b43f360001012af4%26cmpid%3D641468ef9b9ca60001c6be01&dt=Vip%20Wheel&en=scroll&_c=1&ep.sc_utm_source=Clickunder_adult_id2&ep.sc_utm_medium=Clickunder&ep.sc_utm_campaign=x&epn.percent_scrolled=90 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promo.vbet.ua
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://promo.vbet.ua
date: Wed, 10 May 2023 11:47:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-C9QL4F22L7>m=45je3580&_p=1307156872&_gaz=1&cid=1503528088.1683719259&ul=en-us&sr=1280x1024&ir=1&_eu=EA&_s=1&sid=1683719258&sct=1&seg=0&dl=https%3A%2F%2Fpromo.vbet.ua%2Fvip-wheel%3Futm_campaign%3Dx%26utm_source%3DClickunder_adult_id2%26utm_medium%3DClickunder%26utm_content%3DWheel%26utm_term%3DMatch_2023%26btag%3D1093706_l171154%26rtkcid%3D645b8447b43f360001012af4%26clickid%3D645b8447b43f360001012af4%26cmpid%3D641468ef9b9ca60001c6be01&dt=Vip%20Wheel&en=page_view&_fv=2&_nsi=1&_ss=2&_c=1&ep.sc_utm_source=Clickunder_adult_id2&ep.sc_utm_medium=Clickunder&ep.sc_utm_campaign=x
204 No Content 0 B URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-C9QL4F22L7>m=45je3580&_p=1307156872&_gaz=1&cid=1503528088.1683719259&ul=en-us&sr=1280x1024&ir=1&_eu=EA&_s=1&sid=1683719258&sct=1&seg=0&dl=https%3A%2F%2Fpromo.vbet.ua%2Fvip-wheel%3Futm_campaign%3Dx%26utm_source%3DClickunder_adult_id2%26utm_medium%3DClickunder%26utm_content%3DWheel%26utm_term%3DMatch_2023%26btag%3D1093706_l171154%26rtkcid%3D645b8447b43f360001012af4%26clickid%3D645b8447b43f360001012af4%26cmpid%3D641468ef9b9ca60001c6be01&dt=Vip%20Wheel&en=page_view&_fv=2&_nsi=1&_ss=2&_c=1&ep.sc_utm_source=Clickunder_adult_id2&ep.sc_utm_medium=Clickunder&ep.sc_utm_campaign=x
IP
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintCA:2C:8E:2F:14:74:84:57:8C:39:86:59:92:AC:A1:7C:C8:FA:99:CA
ValidityMon, 17 Apr 2023 08:16:32 GMT - Mon, 10 Jul 2023 08:16:31 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-C9QL4F22L7>m=45je3580&_p=1307156872&_gaz=1&cid=1503528088.1683719259&ul=en-us&sr=1280x1024&ir=1&_eu=EA&_s=1&sid=1683719258&sct=1&seg=0&dl=https%3A%2F%2Fpromo.vbet.ua%2Fvip-wheel%3Futm_campaign%3Dx%26utm_source%3DClickunder_adult_id2%26utm_medium%3DClickunder%26utm_content%3DWheel%26utm_term%3DMatch_2023%26btag%3D1093706_l171154%26rtkcid%3D645b8447b43f360001012af4%26clickid%3D645b8447b43f360001012af4%26cmpid%3D641468ef9b9ca60001c6be01&dt=Vip%20Wheel&en=page_view&_fv=2&_nsi=1&_ss=2&_c=1&ep.sc_utm_source=Clickunder_adult_id2&ep.sc_utm_medium=Clickunder&ep.sc_utm_campaign=x HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promo.vbet.ua
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://promo.vbet.ua
date: Wed, 10 May 2023 11:47:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 8abaa303a38066e18122bf0b6d0f59ae
85529c98710174a352acff771ff4237fec8a122e
97794eca91a942b81c7019d60dba053c93200a583e0692dfc345cb0f801be822
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 11:47:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-C9QL4F22L7&cid=1503528088.1683719259>m=45je3580&aip=1&z=1363617600
200 OK 42 B URL GET HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-C9QL4F22L7&cid=1503528088.1683719259>m=45je3580&aip=1&z=1363617600
IP
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint35:22:B2:CA:0E:B6:FA:E4:E9:43:4C:27:D0:9E:59:25:78:B2:98:40
ValidityMon, 17 Apr 2023 08:28:20 GMT - Mon, 10 Jul 2023 08:28:19 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-C9QL4F22L7&cid=1503528088.1683719259>m=45je3580&aip=1&z=1363617600 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 10 May 2023 11:47:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 8abaa303a38066e18122bf0b6d0f59ae
85529c98710174a352acff771ff4237fec8a122e
97794eca91a942b81c7019d60dba053c93200a583e0692dfc345cb0f801be822
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 10 May 2023 11:47:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Noto+Sans+Arabic:wght@100;200;300;400;500;600;700;800;900&display=swap
200 OK 5.8 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Noto+Sans+Arabic:wght@100;200;300;400;500;600;700;800;900&display=swap
IP
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:3F:7F:CC:E7:90:DA:64:23:AC:13:1E:55:7A:62:1E:2B:E4:30:5C
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type ASCII text, with very long lines (5841), with no line terminators
Hash 470998b101356c04c5baf81a4b1b7091
4318622ca8e301725fc9a71a87e8f676af9dd992
99fdeaf7657c9970687b2e42f2b11027e816d198602968f7f365ed8f4d1b45e7
GET /css2?family=Noto+Sans+Arabic:wght@100;200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 10 May 2023 11:47:36 GMT
date: Wed, 10 May 2023 11:47:36 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap
200 OK 28 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap
IP
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:3F:7F:CC:E7:90:DA:64:23:AC:13:1E:55:7A:62:1E:2B:E4:30:5C
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
Hash 2eeac174b6d409aebf79ff2223f3b380
d079b34ae6e2a4d46e6b09cee33dd4da4a895e9b
5ff9e1789aa671352c261693750b28f50cda54b2c1a2e50372434c26d9589e55
GET /css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 10 May 2023 11:47:36 GMT
date: Wed, 10 May 2023 11:47:36 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.springbuilder.site/assets/js/publicAssets.js?v=1683557017
200 OK 179 kB URL GET HTTP/2 static.springbuilder.site/assets/js/publicAssets.js?v=1683557017
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (2456)
Size 179 kB (179148 bytes)
Hash 094b3ea5d69475c3fe525711a5878155
5edd691a11a19f3b7a411e7aa95d67387bd8998b
f9458944fbdb0caa60c4697d856dfbd688357798161788bb3a000e05229a9567
GET /assets/js/publicAssets.js?v=1683557017 HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:36 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=179186
etag: W/"64590da8-2bbf2"
expires: Thu, 09 May 2024 11:47:36 GMT
last-modified: Mon, 08 May 2023 14:56:40 GMT
pragma: public
sb: 1
strict-transport-security: max-age=15724800; includeSubDomains
vary: Accept-Encoding, User-Agent
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 161129
server: cloudflare
cf-ray: 7c51f2c8d9f2b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
promo.vbet.ua/public-locales/en/translation.json?v=1683557017
200 OK 177 kB URL GET HTTP/2 promo.vbet.ua/public-locales/en/translation.json?v=1683557017
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectvbet.ua
Fingerprint59:F8:17:DD:24:47:37:AB:8A:17:09:7C:32:88:00:AA:62:DA:04:54
ValidityTue, 25 Apr 2023 00:00:00 GMT - Wed, 24 Apr 2024 23:59:59 GMT
Size 177 kB (176599 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /public-locales/en/translation.json?v=1683557017 HTTP/1.1
Host: promo.vbet.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Cookie: country=NO; _gcl_au=1.1.1613304732.1683719258; sc_utm_campaign=x; sc_utm_source=Clickunder_adult_id2; sc_utm_medium=Clickunder
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:38 GMT
content-type: application/json
x-dns-prefetch-control: off
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
country: NO
set-cookie: country=NO; Max-Age=900; Path=/; Expires=Wed, 10 May 2023 12:02:38 GMT
last-modified: Wed, 03 May 2023 11:46:51 GMT
etag: "645249ab-2b1d7"
expires: Thu, 09 May 2024 11:47:38 GMT
cache-control: max-age=31536000, public
vary: User-Agent, Accept-Encoding
pragma: public
accept-ranges: bytes
content-encoding: gzip
x-frame-options: ALLOWALL
sb: 1
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7c51f2d6cd1ab512-OSL
X-Firefox-Spdy: h2
promo.vbet.ua/frontend-addon/spring-builder-public/assets/spring-builder-public.css?v=1683557017
200 OK 16 kB URL GET HTTP/2 promo.vbet.ua/frontend-addon/spring-builder-public/assets/spring-builder-public.css?v=1683557017
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectvbet.ua
Fingerprint59:F8:17:DD:24:47:37:AB:8A:17:09:7C:32:88:00:AA:62:DA:04:54
ValidityTue, 25 Apr 2023 00:00:00 GMT - Wed, 24 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (16049), with no line terminators
Hash df5feb6d9961dae0a1f2e814bddd0c14
25c228e049b8b6b24676c015cc657eca7b38a974
746139d45c333098fe7293f63a3c4c951d2a7c8a9395e44dc8863937a589124a
GET /frontend-addon/spring-builder-public/assets/spring-builder-public.css?v=1683557017 HTTP/1.1
Host: promo.vbet.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Cookie: country=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:36 GMT
content-type: text/css
x-dns-prefetch-control: off
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
country: UA
last-modified: Mon, 08 May 2023 14:55:00 GMT
vary: Accept-Encoding, User-Agent
etag: W/"64590d44-3eb1"
expires: Thu, 09 May 2024 11:47:36 GMT
cache-control: public, max-age=31536000
pragma: public
content-encoding: gzip
x-frame-options: ALLOWALL
sb: 1
cf-cache-status: HIT
server: cloudflare
cf-ray: 7c51f2c7a9c7b512-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Noto+Sans+Armenian:wght@100;200;300;400;500;600;700;800;900&display=swap
200 OK 12 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Noto+Sans+Armenian:wght@100;200;300;400;500;600;700;800;900&display=swap
IP
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:3F:7F:CC:E7:90:DA:64:23:AC:13:1E:55:7A:62:1E:2B:E4:30:5C
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
Hash a2c70656794b01ed4777c1ec152b44ac
c8360450b322c9cbbb14955baa0f12d92500173a
2a6a20f4c07147ff89e44fcec823b97bf86f116f0e43f3836c9ad6739ace63ce
GET /css2?family=Noto+Sans+Armenian:wght@100;200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 10 May 2023 11:47:36 GMT
date: Wed, 10 May 2023 11:47:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
belote.vbet.am/promoApi.php?request=beloteRestartFinal&type=big
200 OK 0 B URL GET HTTP/2 belote.vbet.am/promoApi.php?request=beloteRestartFinal&type=big
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectvbet.am
FingerprintB9:90:D8:00:9B:96:17:25:6D:AA:17:61:DC:78:D8:90:0A:B4:4C:6F
ValidityTue, 18 Apr 2023 00:00:00 GMT - Wed, 17 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /promoApi.php?request=beloteRestartFinal&type=big HTTP/1.1
Host: belote.vbet.am
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promo.vbet.ua
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:37 GMT
content-type: text/html
x-powered-by: PHP/5.4.16
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7c51f2d04f2ab515-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/media/en-gb.svg?v=1635850885
200 OK 837 B URL GET HTTP/2 static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/media/en-gb.svg?v=1635850885
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (886), with no line terminators
Hash 26da30e33a11a9a9120607a0a04c12bd
2868ee3b35a4a7d0b5a3fba67fd5f2aa86097e12
dddca43ae36a5303ca29d0a2405506dc56b9c0178aee83d911c8a6cca3f7bd8d
GET /fs/userFiles-v2/promo-vbet-ua-1877549/media/en-gb.svg?v=1635850885 HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:37 GMT
content-type: image/svg+xml
last-modified: Tue, 02 Nov 2021 11:01:25 GMT
vary: Accept-Encoding
etag: W/"61811a85-345"
springbuilder: 1
strict-transport-security: max-age=15724800; includeSubDomains
sb: 1
cf-cache-status: REVALIDATED
expires: Wed, 10 May 2023 11:49:37 GMT
cache-control: public, max-age=120
server: cloudflare
cf-ray: 7c51f2cea933b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/890-2-16546748193518.webp
200 OK 29 kB URL GET HTTP/2 static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/890-2-16546748193518.webp
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 170c9c054c20c911466e89349f8b97c2
3575d587a092692e7f22f798b5bd20b818f4d159
ff8b4b401a8bb1d56663b367beb52de161374a5271c5f14ec2141fcdd1cc8eaf
GET /fs/userFiles-v2/promo-vbet-ua-1877549/images/890-2-16546748193518.webp HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:37 GMT
content-type: image/webp
content-length: 28710
last-modified: Tue, 14 Feb 2023 08:22:26 GMT
etag: "63eb44c2-7026"
springbuilder: 1
strict-transport-security: max-age=15724800; includeSubDomains
sb: 1
cf-cache-status: REVALIDATED
expires: Wed, 10 May 2023 11:49:37 GMT
cache-control: public, max-age=120
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c51f2ceb956b524-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Abril+Fatface:400,600,700,800|Lato:400,300,300italic,700,700italic,400italic:400,600,700,800|Lora:400,700,700italic,400italic:400,600,700,800|Montserrat:400,700,400italic:400,600,700,800|Open+Sans:400,600,600italic,700,800,400italic:400,600,700,800|Oswald:400,700:400,600,700,800|Playfair+Display:400,700italic,700,400italic:400,600,700,800|Raleway:400,700:400,600,700,800|Roboto:400,700,700italic,400italic:400,600,700,800|Ubuntu:400,700,700italic,400italic
200 OK 75 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Abril+Fatface:400,600,700,800|Lato:400,300,300italic,700,700italic,400italic:400,600,700,800|Lora:400,700,700italic,400italic:400,600,700,800|Montserrat:400,700,400italic:400,600,700,800|Open+Sans:400,600,600italic,700,800,400italic:400,600,700,800|Oswald:400,700:400,600,700,800|Playfair+Display:400,700italic,700,400italic:400,600,700,800|Raleway:400,700:400,600,700,800|Roboto:400,700,700italic,400italic:400,600,700,800|Ubuntu:400,700,700italic,400italic
IP
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:3F:7F:CC:E7:90:DA:64:23:AC:13:1E:55:7A:62:1E:2B:E4:30:5C
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
Hash b1cb3486ee403acb653389b57c903709
ac72e53ebac6847b2c94c056b97e48f6e52c05ab
247052d9a40172e9809e8eacaf2fc8b6093cd38fc88288e439c24e31491b4bd1
GET /css?family=Abril+Fatface:400,600,700,800|Lato:400,300,300italic,700,700italic,400italic:400,600,700,800|Lora:400,700,700italic,400italic:400,600,700,800|Montserrat:400,700,400italic:400,600,700,800|Open+Sans:400,600,600italic,700,800,400italic:400,600,700,800|Oswald:400,700:400,600,700,800|Playfair+Display:400,700italic,700,400italic:400,600,700,800|Raleway:400,700:400,600,700,800|Roboto:400,700,700italic,400italic:400,600,700,800|Ubuntu:400,700,700italic,400italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 10 May 2023 11:47:36 GMT
date: Wed, 10 May 2023 11:47:36 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
promo.vbet.ua/frontend-addon/spring-builder-public/assets/spring-builder-public.js?v=1683557017
200 OK 552 kB URL GET HTTP/2 promo.vbet.ua/frontend-addon/spring-builder-public/assets/spring-builder-public.js?v=1683557017
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectvbet.ua
Fingerprint59:F8:17:DD:24:47:37:AB:8A:17:09:7C:32:88:00:AA:62:DA:04:54
ValidityTue, 25 Apr 2023 00:00:00 GMT - Wed, 24 Apr 2024 23:59:59 GMT
Size 552 kB (551612 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /frontend-addon/spring-builder-public/assets/spring-builder-public.js?v=1683557017 HTTP/1.1
Host: promo.vbet.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Cookie: country=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:36 GMT
content-type: application/javascript; charset=utf-8
x-dns-prefetch-control: off
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
country: UA
last-modified: Mon, 08 May 2023 14:55:00 GMT
vary: Accept-Encoding, User-Agent
etag: W/"64590d44-86abc"
expires: Thu, 09 May 2024 11:47:36 GMT
cache-control: public, max-age=31536000
pragma: public
content-encoding: gzip
x-frame-options: ALLOWALL
sb: 1
cf-cache-status: HIT
server: cloudflare
cf-ray: 7c51f2c7ea13b512-OSL
X-Firefox-Spdy: h2
promo.vbet.ua/frontend-addon/spring-builder-public/engines-dist/generic-components/assets/engine-vendor.js?v=1683557017
200 OK 59 kB URL GET HTTP/2 promo.vbet.ua/frontend-addon/spring-builder-public/engines-dist/generic-components/assets/engine-vendor.js?v=1683557017
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectvbet.ua
Fingerprint59:F8:17:DD:24:47:37:AB:8A:17:09:7C:32:88:00:AA:62:DA:04:54
ValidityTue, 25 Apr 2023 00:00:00 GMT - Wed, 24 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (2634)
Hash 19eb1c17d037f026feaa29f955dfa8c2
2bf9e9b864226a75281c98fca66f97063256df45
e21976ce6eedca8315c1005f2fb434b3d5c8adb00745919991096ec843a2fec9
GET /frontend-addon/spring-builder-public/engines-dist/generic-components/assets/engine-vendor.js?v=1683557017 HTTP/1.1
Host: promo.vbet.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Cookie: country=NO; _gcl_au=1.1.1613304732.1683719258; sc_utm_campaign=x; sc_utm_source=Clickunder_adult_id2; sc_utm_medium=Clickunder
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:38 GMT
content-type: application/javascript; charset=utf-8
x-dns-prefetch-control: off
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
country: UA
last-modified: Mon, 08 May 2023 14:55:00 GMT
vary: Accept-Encoding, User-Agent
etag: W/"64590d44-e78c"
expires: Thu, 09 May 2024 11:47:38 GMT
cache-control: public, max-age=31536000
pragma: public
content-encoding: gzip
x-frame-options: ALLOWALL
sb: 1
cf-cache-status: HIT
server: cloudflare
cf-ray: 7c51f2d68cafb512-OSL
X-Firefox-Spdy: h2
promo.vbet.ua/frontend-addon/spring-builder-public/assets/vendor.css?v=1683557017
200 OK 24 kB URL GET HTTP/2 promo.vbet.ua/frontend-addon/spring-builder-public/assets/vendor.css?v=1683557017
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectvbet.ua
Fingerprint59:F8:17:DD:24:47:37:AB:8A:17:09:7C:32:88:00:AA:62:DA:04:54
ValidityTue, 25 Apr 2023 00:00:00 GMT - Wed, 24 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (24349), with no line terminators
Hash 8c669c0b80a9391db74b8641076fce9a
bb03591667c0649c65854f31eb97a2b99fa672ea
2bb7f50add8057431b2aa24313ce0d56173ab4d3a7a946ed1ee7cdef92f40a07
GET /frontend-addon/spring-builder-public/assets/vendor.css?v=1683557017 HTTP/1.1
Host: promo.vbet.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Cookie: country=NO
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:36 GMT
content-type: text/css
x-dns-prefetch-control: off
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
country: UA
last-modified: Mon, 08 May 2023 14:55:00 GMT
vary: Accept-Encoding, User-Agent
etag: W/"64590d44-5f1d"
expires: Thu, 09 May 2024 11:47:36 GMT
cache-control: public, max-age=31536000
pragma: public
content-encoding: gzip
x-frame-options: ALLOWALL
sb: 1
cf-cache-status: HIT
server: cloudflare
cf-ray: 7c51f2c799c0b512-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Noto+Sans+Georgian:wght@100;200;300;400;500;600;700;800;900&display=swap
200 OK 12 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Noto+Sans+Georgian:wght@100;200;300;400;500;600;700;800;900&display=swap
IP
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint78:3F:7F:CC:E7:90:DA:64:23:AC:13:1E:55:7A:62:1E:2B:E4:30:5C
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
Hash b167477384516939e747a9ae817ab101
b4ef29ee16d05c9e105f226cb8337566b798c3ed
6312be3372af14ef98b0e4a2ceb2eea3aedb7edeb21bde8c8a335c29388c6b0b
GET /css2?family=Noto+Sans+Georgian:wght@100;200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 10 May 2023 11:47:36 GMT
date: Wed, 10 May 2023 11:47:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/css/sp.css?v=1683557926
200 OK 147 kB URL GET HTTP/2 static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/css/sp.css?v=1683557926
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 147 kB (147250 bytes)
Hash a0ebe5b41a6aa99a682967037e787f91
9a0ba7531f1f6209fe77a77f69234987830d94bd
0fed24d3ac6148a9c78717760df51d0d0d09edd0ee2bfdafa3321a47fdf9108c
GET /fs/userFiles-v2/promo-vbet-ua-1877549/css/sp.css?v=1683557926 HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:36 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=147847
etag: W/"64590e26-24187"
expires: Thu, 09 May 2024 11:47:36 GMT
last-modified: Mon, 08 May 2023 14:58:46 GMT
pragma: public
sb: 1
strict-transport-security: max-age=15724800; includeSubDomains
vary: Accept-Encoding, User-Agent
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
server: cloudflare
cf-ray: 7c51f2c93a67b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.springbuilder.site/assets/jQuery/jquery-3.6.0.min.js?v=1683557017
200 OK 90 kB URL GET HTTP/2 static.springbuilder.site/assets/jQuery/jquery-3.6.0.min.js?v=1683557017
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /assets/jQuery/jquery-3.6.0.min.js?v=1683557017 HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:36 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 24 Oct 2022 14:00:50 GMT
vary: Accept-Encoding, User-Agent
etag: W/"63569a92-15d9d"
expires: Thu, 09 May 2024 11:47:36 GMT
cache-control: public, max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-origin: *
pragma: public
strict-transport-security: max-age=15724800; includeSubDomains
sb: 1
cf-cache-status: HIT
age: 161129
server: cloudflare
cf-ray: 7c51f2c8d9f1b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
promo.vbet.ua/frontend-addon/spring-builder-public/assets/vendor.js?v=1683557017
200 OK 6.3 MB URL GET HTTP/2 promo.vbet.ua/frontend-addon/spring-builder-public/assets/vendor.js?v=1683557017
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectvbet.ua
Fingerprint59:F8:17:DD:24:47:37:AB:8A:17:09:7C:32:88:00:AA:62:DA:04:54
ValidityTue, 25 Apr 2023 00:00:00 GMT - Wed, 24 Apr 2024 23:59:59 GMT
Size 6.3 MB (6307665 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /frontend-addon/spring-builder-public/assets/vendor.js?v=1683557017 HTTP/1.1
Host: promo.vbet.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Cookie: country=NO
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:36 GMT
content-type: application/javascript; charset=utf-8
x-dns-prefetch-control: off
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
country: UA
last-modified: Mon, 08 May 2023 14:55:00 GMT
vary: Accept-Encoding, User-Agent
etag: W/"64590d44-603f51"
expires: Thu, 09 May 2024 11:47:36 GMT
cache-control: public, max-age=31536000
pragma: public
content-encoding: gzip
x-frame-options: ALLOWALL
sb: 1
cf-cache-status: HIT
server: cloudflare
cf-ray: 7c51f2c7da01b512-OSL
X-Firefox-Spdy: h2
static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/901-4318-logoukr-1.svg?v=1676362970
200 OK 26 kB URL GET HTTP/2 static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/images/901-4318-logoukr-1.svg?v=1676362970
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (20747)
Hash 6cffea8a5dbe8f66fa5a3f364896225a
ca4b0d961463793ee683da999634d6fc473d3323
45eab81c12ce3f9a970259a2c15a043a2c9f6c2fa2fe6913b08b353fdf213167
GET /fs/userFiles-v2/promo-vbet-ua-1877549/images/901-4318-logoukr-1.svg?v=1676362970 HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:37 GMT
content-type: image/svg+xml
last-modified: Tue, 14 Feb 2023 08:22:50 GMT
vary: Accept-Encoding
etag: W/"63eb44da-6570"
springbuilder: 1
strict-transport-security: max-age=15724800; includeSubDomains
sb: 1
cf-cache-status: REVALIDATED
expires: Wed, 10 May 2023 11:49:37 GMT
cache-control: public, max-age=120
server: cloudflare
cf-ray: 7c51f2cea937b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
promo.vbet.ua/frontend-addon/spring-builder-public/engines-dist/generic-components/assets/engine.js?v=1683557017
200 OK 172 kB URL GET HTTP/2 promo.vbet.ua/frontend-addon/spring-builder-public/engines-dist/generic-components/assets/engine.js?v=1683557017
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectvbet.ua
Fingerprint59:F8:17:DD:24:47:37:AB:8A:17:09:7C:32:88:00:AA:62:DA:04:54
ValidityTue, 25 Apr 2023 00:00:00 GMT - Wed, 24 Apr 2024 23:59:59 GMT
Size 172 kB (171610 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /frontend-addon/spring-builder-public/engines-dist/generic-components/assets/engine.js?v=1683557017 HTTP/1.1
Host: promo.vbet.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Cookie: country=NO; _gcl_au=1.1.1613304732.1683719258; sc_utm_campaign=x; sc_utm_source=Clickunder_adult_id2; sc_utm_medium=Clickunder
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:38 GMT
content-type: application/javascript; charset=utf-8
x-dns-prefetch-control: off
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
country: UA
last-modified: Mon, 08 May 2023 14:55:00 GMT
vary: Accept-Encoding, User-Agent
etag: W/"64590d44-29e5a"
expires: Thu, 09 May 2024 11:47:38 GMT
cache-control: public, max-age=31536000
pragma: public
content-encoding: gzip
x-frame-options: ALLOWALL
sb: 1
cf-cache-status: HIT
server: cloudflare
cf-ray: 7c51f2d68cb1b512-OSL
X-Firefox-Spdy: h2
belote.vbet.am/promoApi.php?request=beloteRestartFinal&type=small
200 OK 0 B URL GET HTTP/2 belote.vbet.am/promoApi.php?request=beloteRestartFinal&type=small
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectvbet.am
FingerprintB9:90:D8:00:9B:96:17:25:6D:AA:17:61:DC:78:D8:90:0A:B4:4C:6F
ValidityTue, 18 Apr 2023 00:00:00 GMT - Wed, 17 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /promoApi.php?request=beloteRestartFinal&type=small HTTP/1.1
Host: belote.vbet.am
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promo.vbet.ua
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:37 GMT
content-type: text/html
x-powered-by: PHP/5.4.16
access-control-allow-origin: *
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7c51f2d04f2fb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
geoapi.bcapps.net/?type=json
200 OK 201 B URL GET HTTP/2 geoapi.bcapps.net/?type=json
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintD9:35:7F:83:E3:82:2C:0B:38:6C:A3:33:A0:5E:58:EC:56:D2:BA:17
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 33ab780c37545a9fb5f66f9d56fd49ec
60179392fe3c96e23c6bca244cb1a235d3ad6724
03402243a72875d37cf23c8ce77dbb4c5b4e0ad7cc198fb8b74c8075a1dbbd84
GET /?type=json HTTP/1.1
Host: geoapi.bcapps.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promo.vbet.ua/
Origin: https://promo.vbet.ua
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:39 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.3.33
access-control-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7c51f2d95c121c02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/css/public-en-us.css?v=1683717051
200 OK 21 kB URL GET HTTP/2 static.springbuilder.site/fs/userFiles-v2/promo-vbet-ua-1877549/css/public-en-us.css?v=1683717051
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (20830), with no line terminators
Hash b6e1013b84241ac41caf20b91839fe01
62fbcf7ac21feace8a21fe22532196bb2b7c548a
18015af2026529755f376699df828eb4d6f2e87c4ee0b4362f4c40ce3c0c709f
GET /fs/userFiles-v2/promo-vbet-ua-1877549/css/public-en-us.css?v=1683717051 HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:36 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: minify
etag: W/"645b7bbb-515e"
expires: Thu, 09 May 2024 11:47:36 GMT
last-modified: Wed, 10 May 2023 11:10:51 GMT
pragma: public
sb: 1
strict-transport-security: max-age=15724800; includeSubDomains
vary: Accept-Encoding, User-Agent
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
server: cloudflare
cf-ray: 7c51f2c90a22b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.springbuilder.site/assets/js/public.js?v=1683557017
200 OK 105 kB URL GET HTTP/2 static.springbuilder.site/assets/js/public.js?v=1683557017
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
Size 105 kB (104878 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/js/public.js?v=1683557017 HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:36 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=104989
etag: W/"64590da8-19a1d"
expires: Thu, 09 May 2024 11:47:36 GMT
last-modified: Mon, 08 May 2023 14:56:40 GMT
pragma: public
sb: 1
strict-transport-security: max-age=15724800; includeSubDomains
vary: Accept-Encoding, User-Agent
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 161129
server: cloudflare
cf-ray: 7c51f2c8e9f4b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.springbuilder.site/assets/fonts/icomoon.css?v=1683557017
200 OK 22 kB URL GET HTTP/2 static.springbuilder.site/assets/fonts/icomoon.css?v=1683557017
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (21659), with no line terminators
Hash cbf5badb0d9b45b4e71ca3d26c06b043
90ab1018ebbf13a5d6a9b0e74327d1854eb67be8
9b246aed32d327b23f31bd89837c1539472cc7cc9ebcb2c0516fdc39dad24ba9
GET /assets/fonts/icomoon.css?v=1683557017 HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:36 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=23463
etag: W/"6356abdd-5ba7"
expires: Thu, 09 May 2024 11:47:36 GMT
last-modified: Mon, 24 Oct 2022 15:14:37 GMT
pragma: public
sb: 1
strict-transport-security: max-age=15724800; includeSubDomains
vary: Accept-Encoding, User-Agent
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 159447
server: cloudflare
cf-ray: 7c51f2c92a46b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.springbuilder.site/assets/css/public-addon.css?v=1683557017
200 OK 1.2 MB URL GET HTTP/2 static.springbuilder.site/assets/css/public-addon.css?v=1683557017
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectspringbuilder.site
Fingerprint14:A8:B0:D2:E2:0A:3C:7C:7E:5F:C7:88:4F:4D:6A:BC:14:42:E0:73
ValiditySun, 10 Jul 2022 00:00:00 GMT - Mon, 10 Jul 2023 23:59:59 GMT
Size 1.2 MB (1207486 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/css/public-addon.css?v=1683557017 HTTP/1.1
Host: static.springbuilder.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:36 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=1215521
etag: W/"64590da7-128c21"
expires: Thu, 09 May 2024 11:47:36 GMT
last-modified: Mon, 08 May 2023 14:56:39 GMT
pragma: public
sb: 1
strict-transport-security: max-age=15724800; includeSubDomains
vary: Accept-Encoding, User-Agent
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 159447
server: cloudflare
cf-ray: 7c51f2c8fa0db524-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fABc4EsA.woff2
200 OK 9.6 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fABc4EsA.woff2
IP
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintD2:67:59:66:D0:D5:C9:19:F4:2D:E4:65:4B:EA:E1:50:8D:D2:3E:1D
ValidityMon, 17 Apr 2023 08:25:28 GMT - Mon, 10 Jul 2023 08:25:27 GMT
File type Web Open Font Format (Version 2), TrueType, length 9576, version 1.0\012- data
Hash 9b9ec29522d1bf8924ccc2d917e1807b
1df345651c653bba476ab6b8546351ec7f4f018a
47aa3bfad6cb9e2d63abdd58f4e6ce4f7b9fd2704b2b15193c71874035fe025d
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fABc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://promo.vbet.ua
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9576
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 08 May 2023 07:56:28 GMT
expires: Tue, 07 May 2024 07:56:28 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:58 GMT
content-type: font/woff2
age: 186669
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
promo.vbet.ua/papi/default/Popup/getPopups?data=%7B%22pageId%22%3A21%2C%22currentUrl%22%3A%22%2Fvip-wheel%22%7D&_token=
200 OK 269 kB URL GET HTTP/2 promo.vbet.ua/papi/default/Popup/getPopups?data=%7B%22pageId%22%3A21%2C%22currentUrl%22%3A%22%2Fvip-wheel%22%7D&_token=
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectvbet.ua
Fingerprint59:F8:17:DD:24:47:37:AB:8A:17:09:7C:32:88:00:AA:62:DA:04:54
ValidityTue, 25 Apr 2023 00:00:00 GMT - Wed, 24 Apr 2024 23:59:59 GMT
File type JSON data\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Size 269 kB (268989 bytes)
Hash 643d090530ad2837e280162504d2855e
e1d47db1388db48c9b9adcce910cec9002874ac0
23056b693b675fd59680586c3690eb8a5516ec87f8b49e544928c40f75d2d2f3
GET /papi/default/Popup/getPopups?data=%7B%22pageId%22%3A21%2C%22currentUrl%22%3A%22%2Fvip-wheel%22%7D&_token= HTTP/1.1
Host: promo.vbet.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Cookie: country=NO
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 10 May 2023 11:47:38 GMT
content-type: application/json
x-dns-prefetch-control: off
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
country: NO
set-cookie: country=NO; Max-Age=900; Path=/; Expires=Wed, 10 May 2023 12:02:37 GMT
cache-control: no-cache, private
vary: User-Agent, Accept-Encoding
content-encoding: gzip
x-frame-options: ALLOWALL
sb: 1
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7c51f2d1ae96b512-OSL
X-Firefox-Spdy: h2
eu-swarm-springre.betconstruct.com/
101 Switching Protocols 0 B URL GET HTTP/1.1 eu-swarm-springre.betconstruct.com/
IP
ASN #209242 Cloudflare London, LLC
Requested by https://promo.vbet.ua/vip-wheel?utm_campaign=x&utm_source=Clickunder_adult_id2&utm_medium=Clickunder&utm_content=Wheel&utm_term=Match_2023&btag=1093706_l171154&rtkcid=645b8447b43f360001012af4&clickid=645b8447b43f360001012af4&cmpid=641468ef9b9ca60001c6be01
Certificate IssuerCloudflare, Inc.
Subjectbetconstruct.com
Fingerprint4F:1F:45:19:5E:76:92:51:53:52:E6:E1:16:F1:6F:36:53:0D:98:63
ValidityWed, 26 Apr 2023 00:00:00 GMT - Wed, 24 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: eu-swarm-springre.betconstruct.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://promo.vbet.ua
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: J9SBtq8OrFJRduHcYFuqAw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Wed, 10 May 2023 11:47:38 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AN81uUYSpndolPk36WFUH6ersVU=
Sec-Websocket-Extensions: permessage-deflate; server_no_context_takeover; client_no_context_takeover
Via: 1.1 google
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7c51f2d7ac9bb509-OSL
185.162.228.2
216.239.34.36
104.18.21.226
37.48.87.182