| 1win.run/panel/img/icons/android-chrome-192x192.png | 190.115.19.210 | | 2.4 kB |
URL 1win.run/panel/img/icons/android-chrome-192x192.png IP190.115.19.210:0
File typegzip compressed data, from Unix Hash7b4f6d5607b008b0a9b45b573767733c 57e0cd31f2d4dc45a4cbdaeaee4f29ccf0c35caa ae908bbedb0aed20ecaae633f36b75d8733dc225077a82815861808fa59ee742
GET /panel/img/icons/android-chrome-192x192.png HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:23 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache, no-cache
etag: W/"66190546-1af6"
expires: Thu, 18 Apr 2024 12:49:16 GMT
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/polyfills-BAnlvHOs.js | 190.115.19.210 | | 76 kB |
URL 1win.run/panel/assets/js/polyfills-BAnlvHOs.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hasha7ddfe85a1fa31c72d1f6b3badb1d088 cd4d91ec0d374320e62580be86ce45ecb817c854 7faae4b74b3b4a60c16a42c218c8f4f0f977a074db5594207f44aa1bcbe5a9b1
GET /panel/assets/js/polyfills-BAnlvHOs.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-192x192.png
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:23 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-6c50"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/css/index-DRUd4wTy.css | 190.115.19.210 | | 75 kB |
URL 1win.run/panel/assets/css/index-DRUd4wTy.css IP190.115.19.210:0
File typegzip compressed data, from Unix Hash560bdf028be097c989352e3fa3ccac42 a693c87828815f763f61e948d5fb16ad444d58ff 5595e17821c316fa5e4cac30458dd9a3245d6bd1472aa98b93a708ad7d98daf3
GET /panel/assets/css/index-DRUd4wTy.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-192x192.png
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:23 GMT
content-type: text/css
etag: W/"66190546-9623"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/useI18n-Bi7csTvq.js | 190.115.19.210 | | 88 B |
URL 1win.run/panel/assets/js/useI18n-Bi7csTvq.js IP190.115.19.210:0
Hash3a8ce1a247fc48523e2d31d470a0b3a0 1d8096164adcb0f918ae96440c5fa566fb31e427 7b9da847261516ba5b1c6d2507bcb23c1803661dcf5c2136b45bc7b5492ac3cb
GET /panel/assets/js/useI18n-Bi7csTvq.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1win.run/panel/img/icons/android-chrome-192x192.png
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:23 GMT
content-type: application/javascript; charset=utf-8
content-length: 88
accept-ranges: bytes
etag: "66190546-58"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/Chat-DkJWJcao.js | 190.115.19.210 | | 105 kB |
URL 1win.run/panel/assets/js/Chat-DkJWJcao.js IP190.115.19.210:0
File typegzip compressed data, from Unix Size105 kB (104552 bytes) Hash46b2dc1d52c390e97917a9a651a5f9fd 69ded2ca39dcbbdfa906c1afdfc3014aab234269 ebb12d2956385e3483c078337c2aba9c6cb8bb3ad0f0aaddcf58845e584130d0
GET /panel/assets/js/Chat-DkJWJcao.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1win.run/panel/img/icons/android-chrome-192x192.png
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:23 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-28f2"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/useI18n-Bi7csTvq.js | 190.115.19.210 | | 88 B |
URL 1win.run/panel/assets/js/useI18n-Bi7csTvq.js IP190.115.19.210:0
Hash3a8ce1a247fc48523e2d31d470a0b3a0 1d8096164adcb0f918ae96440c5fa566fb31e427 7b9da847261516ba5b1c6d2507bcb23c1803661dcf5c2136b45bc7b5492ac3cb
GET /panel/assets/js/useI18n-Bi7csTvq.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/js/index-B-TUTQ1z.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:23 GMT
content-type: application/javascript; charset=utf-8
content-length: 88
accept-ranges: bytes
etag: "66190546-58"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/vue-router-Dwjeftx9.js | 190.115.19.210 | | 28 kB |
URL 1win.run/panel/assets/js/vue-router-Dwjeftx9.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hashbc7e00eae380c72b0371f447a35214dd 3348d367872527dcf5788bd1c16dff0dff278423 493e11fa6b7a0acd657d6c05429535f1538d4a49817a6abf8c838bc36bdbe2c3
GET /panel/assets/js/vue-router-Dwjeftx9.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1win.run/panel/img/icons/android-chrome-192x192.png
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:23 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-5a29"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/vue-router-Dwjeftx9.js | 190.115.19.210 | | 10 kB |
URL 1win.run/panel/assets/js/vue-router-Dwjeftx9.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hashb7f826a5b9a9a841f7fd0af3f2a39513 3869034f93d81bc3425bf475111f5237ac4b6ea6 5e9ddaa629429ef3632289c7790f49532005ce6d13ad1d10fb0bbdaaaf99af1c
GET /panel/assets/js/vue-router-Dwjeftx9.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/js/index-B-TUTQ1z.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:23 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-5a29"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/api/v2/user/info | 190.115.19.210 | | 73 B |
URL 1win.run/api/v2/user/info IP190.115.19.210:0
Hashd7e7b930ac12a073bc41fe9120350639 460e12b3ba04bbf222e9d35e85bcc99f3b47e219 95691a476dd7dca124c697c2447c12a4cc464ebd2e06397fdd9b42f0f94d3f3a
GET /api/v2/user/info HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Language: en
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-192x192.png
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 401 Unauthorized
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:23 GMT
content-type: application/json; charset=utf-8
content-length: 73
access-control-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/index-B-TUTQ1z.js | 190.115.19.210 | | 6.1 kB |
URL 1win.run/panel/assets/js/index-B-TUTQ1z.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hashf90ca7fa6fa2b445e8d10d8a1070e157 0f2a8055dec1c6259f3f43a5b3950c85fd04dea3 d87ef4bcc42552edcadb829bf9641a8df8d5a8330b152d9ac46cf4e94e5382c2
GET /panel/assets/js/index-B-TUTQ1z.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/js/index-Bo8vKEJS.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:23 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-29e1"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/api/v2/app-config/on-technical-works | 190.115.19.210 | | 29 B |
URL 1win.run/api/v2/app-config/on-technical-works IP190.115.19.210:0
Hash3f64ad68fff666e46be1e6a29b42c1b2 8a81d1ec31de5cc53fc85ba4ea828f01a0d39f14 1a8f1e4a7ea6cca8c2f75a55d47ddc88f23a0e94b653753f545103843ee7a4fa
GET /api/v2/app-config/on-technical-works HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Language: en
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-192x192.png
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:23 GMT
content-type: application/json; charset=utf-8
content-length: 29
access-control-allow-origin: *
vary: Origin
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/fonts/ProximaNova-Regular-DtAL0MTj.woff2 | 190.115.19.210 | | 64 kB |
URL 1win.run/panel/assets/fonts/ProximaNova-Regular-DtAL0MTj.woff2 IP190.115.19.210:0
File typeWeb Open Font Format (Version 2), TrueType, length 64200, version 3.786 Hash1c6d7cd6aac72f4b4177ab42729d2019 88c115adeb21277900d5fc7f204e7af616a51f24 1ad151f1bd25d86f257c75c6abfa3b8481dd6fd5829714db6464b4d8c5027b3a
GET /panel/assets/fonts/ProximaNova-Regular-DtAL0MTj.woff2 HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/css/index-DRUd4wTy.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:24 GMT
content-type: application/octet-stream
content-length: 64200
accept-ranges: bytes
etag: "66190546-fac8"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/index-dEoOIX9p.js | 190.115.19.210 | | 28 kB |
URL 1win.run/panel/assets/js/index-dEoOIX9p.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hash1e32aff12b6743ab41884fb6700c5ea9 843f6e3338415631b8d02c4a8fe65a52aa54a8ca 6122cabf696c2de484db8b4291b35db993230291c2b585d17e91f876b50acbf4
GET /panel/assets/js/index-dEoOIX9p.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/js/index-B-TUTQ1z.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:23 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-dec7"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/fp.esm-ORUbb108.js | 190.115.19.210 | | 21 kB |
URL 1win.run/panel/assets/js/fp.esm-ORUbb108.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hash71751741ab3d5205d546858edd42f50c cf321178de78ef1295db80d527830c77bfb586d4 25e75eec0e691ba72000b9350615d826be6d4d43d67710058d8954fd833d5d96
GET /panel/assets/js/fp.esm-ORUbb108.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1win.run/panel/img/icons/android-chrome-192x192.png
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:23 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-968c"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020z89132822158za200&_p=1713444563302&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=1030573795.1713444564&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713444563&sct=1&seg=0&dl=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-192x192.png&dt=1win&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=842 | 216.239.32.36 | | 0 B |
URL region1.analytics.google.com/g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020z89132822158za200&_p=1713444563302&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=1030573795.1713444564&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713444563&sct=1&seg=0&dl=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-192x192.png&dt=1win&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=842 IP216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020z89132822158za200&_p=1713444563302&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=1030573795.1713444564&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713444563&sct=1&seg=0&dl=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-192x192.png&dt=1win&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=842 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://1win.run
date: Thu, 18 Apr 2024 12:49:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/fp.esm.min-CkGqPNId.js | 190.115.19.210 | | 2.8 kB |
URL 1win.run/panel/assets/js/fp.esm.min-CkGqPNId.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hash12bdf315cff91ffabc5710d705405102 930df2ff72e72f058af27afee7a9bcb259fcc5c3 ff4e71c94183ef81f814b149cc148bfd8aa4517fcf53e31556ce81e1b15bb1ce
GET /panel/assets/js/fp.esm.min-CkGqPNId.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1win.run/panel/img/icons/android-chrome-192x192.png
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:23 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-17fc"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/fonts/ProximaNova-Regular-DtAL0MTj.woff2 | 190.115.19.210 | | 64 kB |
URL 1win.run/panel/assets/fonts/ProximaNova-Regular-DtAL0MTj.woff2 IP190.115.19.210:0
File typeWeb Open Font Format (Version 2), TrueType, length 64200, version 3.786 Hash1c6d7cd6aac72f4b4177ab42729d2019 88c115adeb21277900d5fc7f204e7af616a51f24 1ad151f1bd25d86f257c75c6abfa3b8481dd6fd5829714db6464b4d8c5027b3a
GET /panel/assets/fonts/ProximaNova-Regular-DtAL0MTj.woff2 HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/css/index-DRUd4wTy.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:24 GMT
content-type: application/octet-stream
content-length: 64200
accept-ranges: bytes
etag: "66190546-fac8"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| api.fpjs.io/?ci=js/3.9.3&q=dexBvYvoWDszTouzpRYc | 76.223.60.10 | 200 OK | 988 B |
URL POST HTTP/2api.fpjs.io/?ci=js/3.9.3&q=dexBvYvoWDszTouzpRYc IP76.223.60.10:443
CertificateIssuerAmazon Subjectapi.fpjs.io Fingerprint3A:A1:7F:82:48:97:10:BA:48:C8:D9:C9:DE:56:D3:C6:F1:FE:A7:26 ValidityWed, 15 Nov 2023 00:00:00 GMT - Sat, 14 Dec 2024 23:59:59 GMT
Hash0979ba3121862a461d6a44a6d055f9ec 423cf0eb84611b3ad7543cc59dd64937f9d82c31 ca2f91c066d68b8a92fcd4c770b2f4700036ca3c3492d6bb7f8b6fa4f1e5ff8c
POST /?ci=js/3.9.3&q=dexBvYvoWDszTouzpRYc HTTP/1.1
Host: api.fpjs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 10981
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 12:49:26 GMT
content-type: text/plain
content-length: 988
access-control-allow-credentials: true
access-control-allow-origin: https://1win.run
access-control-expose-headers: Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'
referrer-policy: no-referrer
set-cookie: _iidt=BB/CX/uSx8bujzTNAMKRWg4n7pcMZjUWbH+riGYtESHZY3L+W3zQX58UA1HiiUC1wa4s3H9Wgdp4MG4oE8yZQaYoBnYo2jk+ZQ==; Path=/; Domain=fpjs.io; Expires=Fri, 18 Apr 2025 12:49:26 GMT; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
X-Firefox-Spdy: h2
|
|
| 1win.run/api/v2/user/refresh-token | 190.115.19.210 | | 73 B |
URL 1win.run/api/v2/user/refresh-token IP190.115.19.210:0
Hashd7e7b930ac12a073bc41fe9120350639 460e12b3ba04bbf222e9d35e85bcc99f3b47e219 95691a476dd7dca124c697c2447c12a4cc464ebd2e06397fdd9b42f0f94d3f3a
POST /api/v2/user/refresh-token HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Language: en
Content-Length: 38
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-192x192.png
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 401 Unauthorized
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:26 GMT
content-type: application/json; charset=utf-8
content-length: 73
access-control-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2
|
|
| 1win.run/api/v2/user/logout | 190.115.19.210 | | 73 B |
URL 1win.run/api/v2/user/logout IP190.115.19.210:0
Hashd7e7b930ac12a073bc41fe9120350639 460e12b3ba04bbf222e9d35e85bcc99f3b47e219 95691a476dd7dca124c697c2447c12a4cc464ebd2e06397fdd9b42f0f94d3f3a
POST /api/v2/user/logout HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Language: en
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-192x192.png
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers
HTTP/2 401 Unauthorized
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:26 GMT
content-type: application/json; charset=utf-8
content-length: 73
access-control-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/fonts/ProximaNova-Bold-D2yrO9R2.woff2 | 190.115.19.210 | | 64 kB |
URL 1win.run/panel/assets/fonts/ProximaNova-Bold-D2yrO9R2.woff2 IP190.115.19.210:0
File typeWeb Open Font Format (Version 2), TrueType, length 64096, version 3.786 Hash5a816525aea1c9d0a8742e480c051290 acaca9eff7d44bb5542dae4a88f60eb9c6c99112 7bd5250e0b6072e36d85ed6bee0b506c37371af866f9d06a46ce6f8cc7640906
GET /panel/assets/fonts/ProximaNova-Bold-D2yrO9R2.woff2 HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/css/index-DRUd4wTy.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:26 GMT
content-type: application/octet-stream
content-length: 64096
accept-ranges: bytes
etag: "66190546-fa60"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/socket.io/?Language=en&EIO=4&transport=websocket | 190.115.19.210 | | 0 B |
URL 1win.run/socket.io/?Language=en&EIO=4&transport=websocket IP190.115.19.210:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?Language=en&EIO=4&transport=websocket HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://1win.run
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: WNuBlx/yd9aFYpk8bbMt2Q==
DNT: 1
Connection: keep-alive, Upgrade
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx/1.22.0
Date: Thu, 18 Apr 2024 12:49:26 GMT
Connection: upgrade
Sec-Websocket-Accept: gyGLrGfzXc0KxsGwb3xKy6278oY=
Upgrade: websocket
|
|
| 1win.run/_nuxt/phone.f034de8d.avif | 190.115.19.210 | 200 OK | 21 kB |
URL GET HTTP/21win.run/_nuxt/phone.f034de8d.avif IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
Hashc269023bce498d4a6d4e3230bf7031ff 1f74c2a77291a0e78808fecf26c2d1bf8078be71 f034de8dd61b831ad493266e668a146905276a416fd60c6011ec23e4449313c1
GET /_nuxt/phone.f034de8d.avif HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: image/avif
content-length: 21263
cache-control: public, max-age=31536000, immutable
etag: "530f-H3TCp3KRoOeICP7PJsLRv4B4vnE"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 | 142.250.74.99 | 200 OK | 30 kB |
URL GET HTTP/2fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 IP142.250.74.99:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 30096, version 1.0 Hash5e3a4044ee4a46b65e2289f76ea1ecda 1cd261cc685e2d003cbbbf6af1ffde0959934dce 7f0f781820c8de56bd6699ac9570ff90634de4eb5cca7ef4b573bb90619e5a5d
GET /s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 17:55:12 GMT
expires: Tue, 15 Apr 2025 17:55:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:18:56 GMT
content-type: font/woff2
age: 240855
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/_locale_.4c218f9a.css | 190.115.19.210 | 200 OK | 17 kB |
URL GET HTTP/21win.run/_nuxt/_locale_.4c218f9a.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Hasha9492ad070e4a7c0fe145b57929b4201 d056e93c1280c459b1b95d4ef8392bcfd2de0343 a87cba33134ad4c624a032f23cca1ea52a13216f1953420aba25f21db0651d4f
GET /_nuxt/_locale_.4c218f9a.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"c23c-YeFcaf0xknPJ+1XJVEJFxw2FzAk"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/icons/512x512.maskable.708b580c.png | 190.115.19.210 | 200 OK | 124 kB |
URL GET HTTP/21win.run/_nuxt/icons/512x512.maskable.708b580c.png IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typePNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced Size124 kB (123529 bytes) Hash8861ea68e979f98002d972996bd97030 be5fa93dad7acdc83a1dd7130c5014b8ec2e3154 80a28328628ebb0727154b8f25b85f304088764a3bc66b2bba97d5c47d3cbd75
GET /_nuxt/icons/512x512.maskable.708b580c.png HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: image/png
content-length: 123529
cache-control: public, max-age=31536000, immutable
etag: "1e289-vl+pPa16zcg6HdcTDFAUuOwuMVQ"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/socials.523c3f64.js | 190.115.19.210 | 200 OK | 761 B |
URL GET HTTP/21win.run/_nuxt/socials.523c3f64.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeJava source, ASCII text, with very long lines (1226) Hash028bf1ac06e85b1d51d5f5cfe62ecfc4 c330159523b5b8f44617257c7bf9d22a944ade54 23a05b16f8cf708687af23da99e94988b4ccf6a038ec5b32cb70d108deef65fa
GET /_nuxt/socials.523c3f64.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"4cb-wzAVlSO1uPRGFyV8e/nSKpRK3lQ"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-KRTK33G | 142.250.74.168 | 200 OK | 68 kB |
URL GET HTTP/3www.googletagmanager.com/gtm.js?id=GTM-KRTK33G IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (2202) Hash459723b5df1720ec013dda9b2b1a6433 d6f425fc747b555e87489833832ccb83baaf2226 599abd655052f4ba4522e474bad2695444994dcaab328dc1145ecc60f115e9b3
GET /gtm.js?id=GTM-KRTK33G HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 18 Apr 2024 12:49:27 GMT
expires: Thu, 18 Apr 2024 12:49:27 GMT
cache-control: private, max-age=900
last-modified: Thu, 18 Apr 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 67744
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/entry.91b902a6.css | 190.115.19.210 | 200 OK | 74 kB |
URL GET HTTP/21win.run/_nuxt/entry.91b902a6.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Hashb54dfac890a175f0a6fa6872582c1478 c3ef0c48b62e5b3a7342d1b555856e90c2f90793 1575dd5545e19eea95e8b057064053ca7059472a66127d0827323357aa9f43b9
GET /_nuxt/entry.91b902a6.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"859-jj6nPwfQ4ofBRtCmiNVBZBXol7E"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-XXB14W5Y91&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 100 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-XXB14W5Y91&l=dataLayer&cx=c IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size100 kB (100542 bytes) Hash30ce90445d40e844d47b100afd2a6a47 322cb29d2777bbb808c8ff1c9699ed14b47598b0 599b701b5ddcb4fab72e776450a2cab76f424f83359cb372c867fa8763fe96bd
GET /gtag/js?id=G-XXB14W5Y91&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 18 Apr 2024 12:49:27 GMT
expires: Thu, 18 Apr 2024 12:49:27 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100542
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/useVuelidateForm.01d66fe9.css | 190.115.19.210 | 200 OK | 31 kB |
URL GET HTTP/21win.run/_nuxt/useVuelidateForm.01d66fe9.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Hash47b70335e4cbf6000ec15ef69436f9cb 7db3bef7a11d3e057a4f2abea9a1899343ca9870 c653ecfdef983881a36a6db69dac54ebb61b7945e093d481a8c3c6b072c2948f
GET /_nuxt/useVuelidateForm.01d66fe9.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"49f-gAoabq/RDTeBUg3ADpNXpt2dToE"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 | 142.250.74.99 | 200 OK | 30 kB |
URL GET HTTP/2fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 IP142.250.74.99:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 30096, version 1.0 Hash5e3a4044ee4a46b65e2289f76ea1ecda 1cd261cc685e2d003cbbbf6af1ffde0959934dce 7f0f781820c8de56bd6699ac9570ff90634de4eb5cca7ef4b573bb90619e5a5d
GET /s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 17:55:12 GMT
expires: Tue, 15 Apr 2025 17:55:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:18:56 GMT
content-type: font/woff2
age: 240856
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 | 142.250.74.99 | 200 OK | 30 kB |
URL GET HTTP/2fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 IP142.250.74.99:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 30096, version 1.0 Hash5e3a4044ee4a46b65e2289f76ea1ecda 1cd261cc685e2d003cbbbf6af1ffde0959934dce 7f0f781820c8de56bd6699ac9570ff90634de4eb5cca7ef4b573bb90619e5a5d
GET /s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 17:55:12 GMT
expires: Tue, 15 Apr 2025 17:55:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:18:56 GMT
content-type: font/woff2
age: 240856
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk2wotcqA.woff2 | 142.250.74.99 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk2wotcqA.woff2 IP142.250.74.99:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15840, version 1.0 Hash1f0187afc748a458d0951bc370c0a8d2 9a07290922c93eb7f85ee8583d2eedad96a042fb 85cc62cf3b13c6166fea632307afcf5688c0a7239cb79db6582736fb5413ffe4
GET /s/mulish/v13/1Ptvg83HX_SGhgqk2wotcqA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:39:37 GMT
expires: Fri, 18 Apr 2025 02:39:37 GMT
cache-control: public, max-age=31536000
age: 36591
last-modified: Thu, 14 Sep 2023 00:51:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/Registration.f7bbad2c.css | 190.115.19.210 | 200 OK | 42 kB |
URL GET HTTP/21win.run/_nuxt/Registration.f7bbad2c.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Hashaf8e394aada2f15c23643c98ccfe7092 3e177f54a1150fcf83d504131f40dd19fb7fa49b 21c6e521e8444bb98e3d02c1201ef90946d58b9c0e9aa4b86bdefd37a7fa042f
GET /_nuxt/Registration.f7bbad2c.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"162c-93PArW7Cb9DcNfGjIGvciekE3zk"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/Button.437b53e3.css | 190.115.19.210 | 200 OK | 7.5 kB |
URL GET HTTP/21win.run/_nuxt/Button.437b53e3.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Hashe42afa182a82155f153b01493d46fad3 f05b980b19ba6e35786a481f61b689de1e473206 3e0392f0983b0506b4ce8d19d3bf8039f57330fa91b381a35069a48fa4555386
GET /_nuxt/Button.437b53e3.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"2fb-SxGjHHzIBiKgTgtWqTRccPPX7uc"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/arrowRight.ac4d9640.js | 190.115.19.210 | 200 OK | 130 kB |
URL GET HTTP/21win.run/_nuxt/arrowRight.ac4d9640.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Size130 kB (130394 bytes) Hash1cdc72493ed50c092f2caa81b50d88cd a6e5f1743fca0330831d1c288443952b8f8aae3f 33c5bafcf7000a14c3d35d92bfa5ed7f1488d777ead6f609555402990c744b99
GET /_nuxt/arrowRight.ac4d9640.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"1c4-banY43+/tcBUHtE3sh3EIjrdpyU"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/product-image.931b1f66.avif | 190.115.19.210 | 200 OK | 14 kB |
URL GET HTTP/21win.run/_nuxt/product-image.931b1f66.avif IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
Hashde4d804a6a51cb2cb8c76ac101fd811b 9413fcab3e345c13e642a44aa87a40696568b2ba 931b1f66ce72a22323cff5264a7da7cf1e0a673b124b1600839db0c8f4109ab4
GET /_nuxt/product-image.931b1f66.avif HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.1.1713444567.56.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: image/avif
content-length: 14178
cache-control: public, max-age=31536000, immutable
etag: "3762-lBP8qz40XBPmQqRKqHpAaWVosro"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Mulish:wght@400;500;600;700&display=swap | 216.58.207.234 | 200 OK | 207 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Mulish:wght@400;500;600;700&display=swap IP216.58.207.234:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (6352) Size207 kB (207328 bytes) Hash05f8a25d090aa246e70775f86c037d43 578a1463e522283728a8ad13b76bc1a38f004e3c d9e8ca62315306feaae92c01a474876fa3f7e27cf243f361c8fa3c09741163dc
GET /css2?family=Mulish:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 12:49:27 GMT
date: Thu, 18 Apr 2024 12:49:27 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/tslib.es6.de9fe4f9.js | 190.115.19.210 | 200 OK | 1.0 kB |
URL GET HTTP/21win.run/_nuxt/tslib.es6.de9fe4f9.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeJavaScript source, ASCII text, with very long lines (2174) Hashc24748fff01fdf712717082943f6e4d0 ac1b6230220f976b692e7a149ed4ad60f5864e19 a24bae3aacbf7e22b7780e1a8d55ff90dec545140cc5062fe5b0555e20e98063
GET /_nuxt/tslib.es6.de9fe4f9.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/fp.esm.min.c7c919a5.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.1.1713444567.56.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"87f-rBtiMCIPl2tpLnoUntStYPWGThk"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| api.fpjs.io/xridvya/qAo6p?q=dexBvYvoWDszTouzpRYc | 76.223.60.10 | 200 OK | 96 B |
URL GET HTTP/2api.fpjs.io/xridvya/qAo6p?q=dexBvYvoWDszTouzpRYc IP76.223.60.10:443
CertificateIssuerAmazon Subjectapi.fpjs.io Fingerprint3A:A1:7F:82:48:97:10:BA:48:C8:D9:C9:DE:56:D3:C6:F1:FE:A7:26 ValidityWed, 15 Nov 2023 00:00:00 GMT - Sat, 14 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash4992dcf9f5e4d25c6286335c1d7e9ae1 b1aba0544a163c91cb997412cf16bcf1ef3ca0e7 5f82c77944dee3625304ad3f82a8ab42030bfd8a63e7fc7f4b14d5e28a82e702
GET /xridvya/qAo6p?q=dexBvYvoWDszTouzpRYc HTTP/1.1
Host: api.fpjs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: text/plain; charset=utf-8
content-length: 96
access-control-allow-origin: *
access-control-expose-headers: Retry-After
cache-control: max-age=31536000, immutable, private
content-security-policy: default-src 'none'; frame-ancestors 'none'
referrer-policy: no-referrer
strict-transport-security: max-age=63072000
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: DENY
x-robots-tag: noindex
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css | 142.250.74.163 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=j9xbochz39aw CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeASCII text, with very long lines (56398), with no line terminators Hasheb4bc511f79f7a1573b45f5775b3a99b d910fb51ad7316aa54f055079374574698e74b35 7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 11:39:42 GMT
expires: Sat, 12 Apr 2025 11:39:42 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/css
vary: Accept-Encoding
age: 522587
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.163 | 200 OK | 203 kB |
URL GET HTTP/2www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 15:10:08 GMT
expires: Sat, 12 Apr 2025 15:10:08 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 509961
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.99 | 200 OK | 15 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 06:43:51 GMT
expires: Wed, 16 Apr 2025 06:43:51 GMT
cache-control: public, max-age=31536000
age: 194738
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.99 | 200 OK | 16 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 22:10:11 GMT
expires: Tue, 15 Apr 2025 22:10:11 GMT
cache-control: public, max-age=31536000
age: 225558
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js | 142.250.74.164 | 200 OK | 7.4 kB |
URL GET HTTP/3www.google.com/js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (17636) Hashb38e10fee62caf0053645e3116660cce 2259de80ed88610f583a830443c604877466194b 3c1aaa03c8c58f4c0b10459a47b71834ee35e84cd3b82d025f639cfbf8fba9bf
GET /js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=j9xbochz39aw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7423
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 09:54:39 GMT
expires: Wed, 16 Apr 2025 09:54:39 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 183290
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/logo_48.png | 142.250.74.163 | 200 OK | 2.2 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/logo_48.png IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=j9xbochz39aw CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hashef9941290c50cd3866e2ba6b793f010d 4736508c795667dcea21f8d864233031223b7832 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:35:26 GMT
expires: Thu, 18 Apr 2024 17:35:26 GMT
cache-control: public, max-age=604800
age: 587643
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.163 | 200 OK | 203 kB |
URL GET HTTP/2www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 15:10:08 GMT
expires: Sat, 12 Apr 2025 15:10:08 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 509961
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css | 142.250.74.163 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=j9xbochz39aw CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeASCII text, with very long lines (56398), with no line terminators Hasheb4bc511f79f7a1573b45f5775b3a99b d910fb51ad7316aa54f055079374574698e74b35 7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 11:39:42 GMT
expires: Sat, 12 Apr 2025 11:39:42 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/css
vary: Accept-Encoding
age: 522587
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.163 | 200 OK | 203 kB |
URL GET HTTP/2www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 15:10:08 GMT
expires: Sat, 12 Apr 2025 15:10:08 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 509961
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.99 | 200 OK | 15 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 06:43:51 GMT
expires: Wed, 16 Apr 2025 06:43:51 GMT
cache-control: public, max-age=31536000
age: 194739
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 | 142.250.74.99 | 200 OK | 15 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15340, version 1.0 Hash19b7a0adfdd4f808b53af7e2ce2ad4e5 81d5d4c7b5035ad10cce63cf7100295e0c51fdda c912a9ce0c3122d4b2b29ad26bfe06b0390d1a5bdaa5d6128692c0befd1dfbbd
GET /s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 23:58:18 GMT
expires: Tue, 15 Apr 2025 23:58:18 GMT
cache-control: public, max-age=31536000
age: 219072
last-modified: Mon, 16 Oct 2017 17:33:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.99 | 200 OK | 16 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 22:10:11 GMT
expires: Tue, 15 Apr 2025 22:10:11 GMT
cache-control: public, max-age=31536000
age: 225559
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/refresh_2x.png | 142.250.74.163 | 200 OK | 600 B |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/refresh_2x.png IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced Hash0f2a4639b8a4cb30c76e8333c00d30a6 57e273a270bb864970d747c74b3f0a7c8e515b13 44b988703019cd6bfa86c91840fecf2a42b611b364e3eea2f4eb63bf62714e98
GET /recaptcha/api2/refresh_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 12:26:13 GMT
expires: Tue, 23 Apr 2024 12:26:13 GMT
cache-control: public, max-age=604800
age: 174197
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/audio_2x.png | 142.250.74.163 | 200 OK | 530 B |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/audio_2x.png IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced Hash88e0f42c9fa4f94aa8bcd54d1685c180 5ad9d47a49b82718baa3be88550a0b3350270c42 89c62095126fca89ea1511cf35b49b8306162946b0c26d6f60c5506c51d85992
GET /recaptcha/api2/audio_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 530
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 01:43:57 GMT
expires: Tue, 23 Apr 2024 01:43:57 GMT
cache-control: public, max-age=604800
age: 212733
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/recaptcha/api2/reload?k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX | 142.250.74.164 | 200 OK | 15 kB |
URL POST HTTP/3www.google.com/recaptcha/api2/reload?k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd6578265be74e8fe2458fc37a6f02dfd c7d6cda6bfef3e0b1e4b8204459a39104541464d dcb5feb20e9bdeca33382de9ff040ca09d6695988aed2700085a0182fef7009c
POST /recaptcha/api2/reload?k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 6799
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Thu, 18 Apr 2024 12:49:30 GMT
expires: Thu, 18 Apr 2024 12:49:30 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
set-cookie: _GRECAPTCHA=09AH0dGfQ6L4kTwGnwB0Dph7kRbF2KOsOkc1jriUFO04dJPgnY3hBkM_q6JkUhGruw4I6uvGpJ2Tz2anglBAPnUPs;Path=/recaptcha;Expires=Tue, 15-Oct-2024 12:49:30 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js | 142.250.74.164 | 200 OK | 7.4 kB |
URL GET HTTP/3www.google.com/js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (17636) Hashb38e10fee62caf0053645e3116660cce 2259de80ed88610f583a830443c604877466194b 3c1aaa03c8c58f4c0b10459a47b71834ee35e84cd3b82d025f639cfbf8fba9bf
GET /js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7423
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 09:54:39 GMT
expires: Wed, 16 Apr 2025 09:54:39 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 183291
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| api.fpjs.io/?ci=js/3.9.3&q=dexBvYvoWDszTouzpRYc | 76.223.60.10 | 200 OK | 1.1 kB |
URL POST HTTP/2api.fpjs.io/?ci=js/3.9.3&q=dexBvYvoWDszTouzpRYc IP76.223.60.10:443
CertificateIssuerAmazon Subjectapi.fpjs.io Fingerprint3A:A1:7F:82:48:97:10:BA:48:C8:D9:C9:DE:56:D3:C6:F1:FE:A7:26 ValidityWed, 15 Nov 2023 00:00:00 GMT - Sat, 14 Dec 2024 23:59:59 GMT
Hash429c6cc4382c190c7abb989dfdef6fb1 31bb26255331a242a448c2b2a8b43ea566bbab53 375dc26c1a2409b26c666c2617bd6ccc66641a8fba3b99c3ffd9531fabe79821
POST /?ci=js/3.9.3&q=dexBvYvoWDszTouzpRYc HTTP/1.1
Host: api.fpjs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 12775
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _iidt=BB/CX/uSx8bujzTNAMKRWg4n7pcMZjUWbH+riGYtESHZY3L+W3zQX58UA1HiiUC1wa4s3H9Wgdp4MG4oE8yZQaYoBnYo2jk+ZQ==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 12:49:30 GMT
content-type: text/plain
content-length: 1050
access-control-allow-credentials: true
access-control-allow-origin: https://1win.run
access-control-expose-headers: Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'
referrer-policy: no-referrer
set-cookie: _iidt=CX1SArdV/4AYR1GS2Vl12bxPyn0M+3fVc5WIdg+sNjDy0P706j9RUkkaWepMypm7prGVarBkAZrlMDQHkWN0ztltRW08Glx0fw==; Path=/; Domain=fpjs.io; Expires=Fri, 18 Apr 2025 12:49:30 GMT; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020za200&_p=1713444567693&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=1030573795.1713444564&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713444563&sct=1&seg=1&dl=https%3A%2F%2F1win.run%2F&dr=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-192x192.png&dt=1win%20Affiliate%20Program&en=scroll&epn.percent_scrolled=90&tfd=6242 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020za200&_p=1713444567693&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=1030573795.1713444564&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713444563&sct=1&seg=1&dl=https%3A%2F%2F1win.run%2F&dr=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-192x192.png&dt=1win%20Affiliate%20Program&en=scroll&epn.percent_scrolled=90&tfd=6242 IP216.239.32.36:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020za200&_p=1713444567693&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=1030573795.1713444564&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713444563&sct=1&seg=1&dl=https%3A%2F%2F1win.run%2F&dr=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-192x192.png&dt=1win%20Affiliate%20Program&en=scroll&epn.percent_scrolled=90&tfd=6242 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://1win.run
date: Thu, 18 Apr 2024 12:49:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020za200&_p=1713444563302&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=1030573795.1713444564&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713444563&sct=1&seg=0&dl=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-192x192.png&dt=1win&en=scroll&epn.percent_scrolled=90&tfd=4147 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020za200&_p=1713444563302&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=1030573795.1713444564&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713444563&sct=1&seg=0&dl=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-192x192.png&dt=1win&en=scroll&epn.percent_scrolled=90&tfd=4147 IP216.239.32.36:443
Requested byhttps://1win.run/panel/img/icons/android-chrome-192x192.png CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020za200&_p=1713444563302&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=1030573795.1713444564&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713444563&sct=1&seg=0&dl=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-192x192.png&dt=1win&en=scroll&epn.percent_scrolled=90&tfd=4147 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/3 204 No Content
access-control-allow-origin: https://1win.run
date: Thu, 18 Apr 2024 12:49:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/AppHeader.0d40d81c.js | 190.115.19.210 | 200 OK | 2.6 kB |
URL GET HTTP/21win.run/_nuxt/AppHeader.0d40d81c.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeC source, ASCII text, with very long lines (2727), with no line terminators Hashaa4d37463e3b27e71fe3ac9edf184d62 c3889530eede7992b67901737a187d28286b9f76 acd2a0b5d4d4cb2e569fce12882662d7f81e6508694efd93ef440aa3f99f305a
GET /_nuxt/AppHeader.0d40d81c.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/default.4dc7ed4f.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.1.1713444567.56.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"a34-T0dSK4SsifEnB1j1/g3yLpuxHas"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/_locale_.342f1ac3.js | 190.115.19.210 | 200 OK | 201 kB |
URL GET HTTP/21win.run/_nuxt/_locale_.342f1ac3.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeC source, ASCII text, with very long lines (65536), with no line terminators Size201 kB (201399 bytes) Hashff43a624b69870ee93e5568de98d4246 8fc9aa7f0475cbd3ca9fc1c2711b25f6a0932648 7a77a966240f76b3198bc903d4b9c1437bf606bf3ecaca0a8b4ba88d867e327f
GET /_nuxt/_locale_.342f1ac3.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/entry.af293afb.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"312b7-j8mqfwR1y9PKn8HCcRsl9qCTJkg"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/instagram.c07adbe3.svg | 190.115.19.210 | 200 OK | 2.7 kB |
URL GET HTTP/21win.run/_nuxt/instagram.c07adbe3.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hashed97fc31cec55005d747f09f3ce3fb32 2d1362c78ad0198ab14dde343dc11f45e9433e4a 9d9e2c73550ffd716b1eeffd9c831f9c043b659edf615ac6c4c0098dc5a26b10
GET /_nuxt/instagram.c07adbe3.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.1.1713444567.56.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"a61-/4cXQyQQLFA/LZs9FMa2Fqbe3HQ"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fpnpmcdn.net/v3/dexBvYvoWDszTouzpRYc/loader_v3.8.3.js | 54.230.111.71 | 200 OK | 132 kB |
URL GET HTTP/3fpnpmcdn.net/v3/dexBvYvoWDszTouzpRYc/loader_v3.8.3.js IP54.230.111.71:443
CertificateIssuerAmazon Subjectfpcdn.io Fingerprint50:73:A9:9D:5E:A5:A2:57:0B:73:8F:D2:B2:1E:8A:5D:A7:FF:F8:16 ValidityTue, 10 Oct 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT
Size132 kB (132180 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/dexBvYvoWDszTouzpRYc/loader_v3.8.3.js HTTP/1.1
Host: fpnpmcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
alt-svc: h3=":443"; ma=86400
age: 109224
server: CloudFront
date: Wed, 17 Apr 2024 06:29:04 GMT
cache-control: public, max-age=3729, s-maxage=617146
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
etag: W/"k5aiGxGijreb1jCJ0YNtCoRJLCc"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ji2cAB9272uF5bKJTmz-vABErBK4zl_lNiPwGfjwsXcHSMm-zj-67g==
|
|
| 1win.run/_nuxt/polyfills.1635f540.js | 190.115.19.210 | 200 OK | 28 kB |
URL GET HTTP/21win.run/_nuxt/polyfills.1635f540.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_nuxt/polyfills.1635f540.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"6bd9-oSlLJ9QswYK0TmGO/vLUPbyrgvc"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/fp.esm.min.c7c919a5.js | 190.115.19.210 | 200 OK | 5.4 kB |
URL GET HTTP/21win.run/_nuxt/fp.esm.min.c7c919a5.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeJavaScript source, ASCII text, with very long lines (5528), with no line terminators Hash2325dab7ffa05f0c1b2e78c9bba9b584 8c51ce147b4f30c2097ee24fdd4c873e4ddbd938 3406e94faf09f96b5de46de1fbd3eabbcee4a2f4592e2838898f4f2fe0f9a1e4
GET /_nuxt/fp.esm.min.c7c919a5.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/entry.af293afb.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.1.1713444567.56.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"153d-QNMNvco4V7hDUOEKcgiqIoXx+gk"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| | 190.115.19.210 | 200 OK | 326 kB |
URL User Request GET HTTP/2IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
Size326 kB (326425 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-192x192.png
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:26 GMT
content-type: text/html;charset=utf-8
cache-control: no-cache
set-cookie: 1w_lang=en; Max-Age=604800; Path=/
vary: Accept-Encoding
x-powered-by: Nuxt
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/envelope.4ddbfd6f.js | 190.115.19.210 | 200 OK | 799 B |
URL GET HTTP/21win.run/_nuxt/envelope.4ddbfd6f.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (826), with no line terminators Hash9913538352c939d8f87065ca8e7a9044 93b725aa60f40c22a8f74983c6ac7d117c78fe41 dc70717a39b20b664eabe6d9b8d28237b1b5265e4093e162afedb11bb259305a
GET /_nuxt/envelope.4ddbfd6f.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"31f-vSDWCSj/zjZHuynMvRskpWkAaE8"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/builds/meta/f2255aec-1c02-4818-ad5f-e65dd2cac8be.json | 190.115.19.210 | 200 OK | 139 B |
URL GET HTTP/21win.run/_nuxt/builds/meta/f2255aec-1c02-4818-ad5f-e65dd2cac8be.json IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashaa95878e1fd2c720d051da35e9ae7f6c 6b1cb95e140a4f908817a8352acb7e01132ff292 f6f132168fb5ca45b9cb765635085e535ee6bc7e6f3cb93cd481b665df6a032a
GET /_nuxt/builds/meta/f2255aec-1c02-4818-ad5f-e65dd2cac8be.json HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1win.run/
DNT: 1
Connection: keep-alive
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/json
content-length: 139
cache-control: public, max-age=31536000, immutable
etag: "8b-2BnkjzZnhgj3RWYTlTnKKPWbVTg"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/changeKeysImportGlob.9d744f95.js | 190.115.19.210 | 200 OK | 647 B |
URL GET HTTP/21win.run/_nuxt/changeKeysImportGlob.9d744f95.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (680), with no line terminators Hashbbe9e5b75b13fc3e52a23b13166ea1d7 9e8fd8b0a218073124a6a27022687af9db517e7f 76bc872d372d2f293dc72a0962f3ac2e9f7a5f9a7f68ff8b7fb111fc0d3906e9
GET /_nuxt/changeKeysImportGlob.9d744f95.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"287-FlX0vWOcD0CU4vyPXMFz7QfY8Ms"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/fp.esm.8130da25.js | 190.115.19.210 | 200 OK | 33 kB |
URL GET HTTP/21win.run/_nuxt/fp.esm.8130da25.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_nuxt/fp.esm.8130da25.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/entry.af293afb.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.1.1713444567.56.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"817d-/pW2dYhGPlj7SU+lSchuxTq90IY"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/statistic-s.83e5a909.svg | 190.115.19.210 | 200 OK | 2.1 kB |
URL GET HTTP/21win.run/_nuxt/statistic-s.83e5a909.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hashf32492bf932dda87c5554d26eae93fa8 8843fd797d367efcaf91c340a4f74f050c1537a5 dce99b1ba2c99dda37076cd9b3177da2660fcd590b26c1dfdb745e778c8c25fa
GET /_nuxt/statistic-s.83e5a909.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.4c218f9a.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.1.1713444567.56.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"860-appgy6jHOflD6FOmVY+ths2CWbE"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/useImages.c52ffa7b.css | 190.115.19.210 | 200 OK | 6.6 kB |
URL GET HTTP/21win.run/_nuxt/useImages.c52ffa7b.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (6650), with no line terminators Hash4d40ced86b47cf6536628e7c60049d38 6970a96d8558322158409c88e353add8f0d1f7f6 0609816e1506c9c4c8abea8c956d5e5c46566fcb38901ef2ac5a4b0038992ab2
GET /_nuxt/useImages.c52ffa7b.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"19f6-TCmyZTMWn7Tm2p3UXo7wx6sxyCI"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/useOpenModals.1c37ecf0.js | 190.115.19.210 | 200 OK | 501 B |
URL GET HTTP/21win.run/_nuxt/useOpenModals.1c37ecf0.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (508), with no line terminators Hashafe74ff8007718e6abaa86a853deef79 0c9c8db0db6966a0424d446c845be1856028b061 b6161fb67fbb9a6485fb4623ca32fe02214ec9bb1128d582abe4944720e57048
GET /_nuxt/useOpenModals.1c37ecf0.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"1f5-QyhAF9tcPfvgU/+JnUXWK+t2mH8"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/Link.aee80935.js | 190.115.19.210 | 200 OK | 4.3 kB |
URL GET HTTP/21win.run/_nuxt/Link.aee80935.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeJavaScript source, ASCII text, with very long lines (4340), with no line terminators Hash23049b9ed52ab0a252a677f7bd97b54b b848b9e7a63d6bdcc14d681beeafc7f9a88b99ff b62d7645a1d6af4ecb14d6b30059123e435322731b5d97c213659568658840b7
GET /_nuxt/Link.aee80935.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"10c3-j0Hl9oZyzKc6Uk9dmjIYgn+Ge70"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- | 142.250.74.164 | 200 OK | 102 B |
URL GET HTTP/3www.google.com/recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=j9xbochz39aw CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeASCII text, with no line terminators Hash701c50fe2f9d8cfca61542dee7684552 952a04f81a291e11f5d4ecd7364a3840412ba65e 9fc5dfc54de18e9c98733bbea6ebdcbc1f01c0b23f985556f24684ee96dc0582
GET /recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=j9xbochz39aw
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Thu, 18 Apr 2024 12:49:29 GMT
date: Thu, 18 Apr 2024 12:49:29 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/recaptcha/api2/payload?p=06AFcWeA7WSY7cAnLYQKyWFhcnz2R1X3W0uegz8kjM3E6Yj37iOQVjogAhBP8G_oMxl-vbdpqOf6FGb1Gw2tEFm6SfjzUamHLesCK7DhxrOXw-KH_s36320eqkh3BnT02aj7wv40gmJUkfuCDt7GIxGA5-HyZerWFVZS4C8OkckXiWw-dbGqe_QV_zcxRqSApZifc3LZ5Gx8dx&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX | 142.250.74.164 | 200 OK | 56 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/payload?p=06AFcWeA7WSY7cAnLYQKyWFhcnz2R1X3W0uegz8kjM3E6Yj37iOQVjogAhBP8G_oMxl-vbdpqOf6FGb1Gw2tEFm6SfjzUamHLesCK7DhxrOXw-KH_s36320eqkh3BnT02aj7wv40gmJUkfuCDt7GIxGA5-HyZerWFVZS4C8OkckXiWw-dbGqe_QV_zcxRqSApZifc3LZ5Gx8dx&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 450x450, components 3 Hash5590230e10cd9aa31278369e5fdfb17e da2a6512c901b6ca6c18b98b78a7db5bdf033e49 283927522eceeef185d97b1c3e1c6021879cc3788d09fb7699107f00e0131af1
GET /recaptcha/api2/payload?p=06AFcWeA7WSY7cAnLYQKyWFhcnz2R1X3W0uegz8kjM3E6Yj37iOQVjogAhBP8G_oMxl-vbdpqOf6FGb1Gw2tEFm6SfjzUamHLesCK7DhxrOXw-KH_s36320eqkh3BnT02aj7wv40gmJUkfuCDt7GIxGA5-HyZerWFVZS4C8OkckXiWw-dbGqe_QV_zcxRqSApZifc3LZ5Gx8dx&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX
Cookie: _GRECAPTCHA=09AH0dGfQ6L4kTwGnwB0Dph7kRbF2KOsOkc1jriUFO04dJPgnY3hBkM_q6JkUhGruw4I6uvGpJ2Tz2anglBAPnUPs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: image/jpeg
expires: Thu, 18 Apr 2024 12:49:30 GMT
date: Thu, 18 Apr 2024 12:49:30 GMT
cache-control: private, max-age=30
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/logo.3bb310f6.svg | 190.115.19.210 | 200 OK | 9.5 kB |
URL GET HTTP/21win.run/_nuxt/logo.3bb310f6.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hashb09c616e91b67a1295ab7f3389e09dff 7e97c59c01c62cdffbf3bbf4b80faf5fc4108bfa 2a260ec9052540ebbd8b7d1422e2582829f4dc33183ef9ecfec209ea10f1f1d5
GET /_nuxt/logo.3bb310f6.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"24ed-rb4HsgHTwI1xpXf1BlL7enApCCI"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/useImages.713b2a79.js | 190.115.19.210 | 200 OK | 93 kB |
URL GET HTTP/21win.run/_nuxt/useImages.713b2a79.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash24454691db0583e68c13c7124c0be069 6441d69096ddff03388d69b3cd6ef28de97e8e89 a18e76d10b557b27ac7727ffa9ae7a33a7725226e7343733d8eb777a29371790
GET /_nuxt/useImages.713b2a79.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"16a03-ZEHWkJbd/wM4jWmzzW7yjel+jok"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/MenuEnum.b19d6b42.css | 190.115.19.210 | 200 OK | 3.0 kB |
URL GET HTTP/21win.run/_nuxt/MenuEnum.b19d6b42.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (2968), with no line terminators Hashdb126ec928806ae5dbde99a2ab74e5e4 15f2f5997d10ea3e0c7b555cb2fc8dc427298bc7 c9bd5853e2738d704a65704628a5ebfa0c0e5eb4eae984177d9d43e9d1789484
GET /_nuxt/MenuEnum.b19d6b42.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"b91-dFWVSHYbOHdw1kgGEJkp0aTtoJg"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/js/polyfills/globalThis.js | 190.115.19.210 | 200 OK | 357 B |
URL GET HTTP/21win.run/js/polyfills/globalThis.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (370), with no line terminators Hashab05a9dbe8bddd96b41a8c8de53e2dfa e0bf058443a1409616d2c2218faaa677b0aab518 edd48ef8500de2fb36d96536f08b11f5e775bae46b0523975f9a03cd08af7011
GET /js/polyfills/globalThis.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/javascript; charset=utf-8
etag: W/"165-8omh0YR4Qo+qDF4EP7appG6skxs"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/icons/64x64.708b580c.png | 190.115.19.210 | 200 OK | 4.9 kB |
URL GET HTTP/21win.run/_nuxt/icons/64x64.708b580c.png IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typePNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced Hash3edbb690b0420ca031ad65703d24e233 3c3fc02a3ed8c68482fd02456762f705cd79dde0 60a3fe40eea18a1ef677239aec61a56d29065ac7d241aea673363291a1761024
GET /_nuxt/icons/64x64.708b580c.png HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: image/png
content-length: 4936
cache-control: public, max-age=31536000, immutable
etag: "1348-PD/AKj7YxoSC/QJFZ2L3Bc153eA"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/button.1da91cc6.webp | 190.115.19.210 | 200 OK | 32 kB |
URL GET HTTP/21win.run/_nuxt/button.1da91cc6.webp IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeRIFF (little-endian) data, Web/P image Hash1bbfa4e88f075f941e2aa38dc3b9d8c5 ef438ac3a426410fcc9c006beb35ec28db98cb5d 1da91cc6cd748172fc940cb7bf0281338cb4481e0c57d32b32884f835090a2c9
GET /_nuxt/button.1da91cc6.webp HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.4c218f9a.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.1.1713444567.56.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: image/webp
content-length: 32082
cache-control: public, max-age=31536000, immutable
etag: "7d52-70OKw6QmQQ/MnABr6zXsKNuYy10"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/Registration.21e083b5.js | 190.115.19.210 | 200 OK | 287 kB |
URL GET HTTP/21win.run/_nuxt/Registration.21e083b5.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size287 kB (286888 bytes) Hash700cd99938cb83768a5b6d008c5e6710 cee747eee7d26e86fde930ab0cf778d71fa7f259 423574506305bc48f2db7ee5feb3710b8489a2dbc64e9b46574e56b71a9a3cf6
GET /_nuxt/Registration.21e083b5.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"460a8-zudH7ufSbob96TCrDPd41x+n8lk"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/en.458e6464.svg | 190.115.19.210 | 200 OK | 2.2 kB |
URL GET HTTP/21win.run/_nuxt/en.458e6464.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hash79e4258317717cae7d54221d403e28d4 85a14a9c6aa03cf4c9ec9e942a06e5987cb61d0a 0b0d98ecb898886bc24f0a6859a7a76034f960374c9914370e69d3ac7467a697
GET /_nuxt/en.458e6464.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/MenuEnum.b19d6b42.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.1.1713444567.56.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"8ae-uUSpGKGRbU+pvTTrdQBVFuoZ76g"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/AppHeader.3d817507.css | 190.115.19.210 | 200 OK | 2.9 kB |
URL GET HTTP/21win.run/_nuxt/AppHeader.3d817507.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (2950), with no line terminators Hasha4b07b448a26d1ae862a9be4fa1c5e4e 0dbf35066d8b29323a7b463c68aee693e1229f79 82179db6fd817521483c0943001c62e9f914f65314ff4e1e117c259d212784a3
GET /_nuxt/AppHeader.3d817507.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"b83-YJ2EiEhWyOJ3H9t/FTXjxGyLTD8"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/useDisableAuth.49c83f5d.js | 190.115.19.210 | 200 OK | 322 B |
URL GET HTTP/21win.run/_nuxt/useDisableAuth.49c83f5d.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (329), with no line terminators Hash2ecfc2b18417228519ee55048bb354b7 4794f37633480f4bfdd4f2f6dc1f8d6f69ddb380 0ddce885e18b5dfa3a528e689d98dd6f2e35660dd91fb2629dce8bf0bc7173b2
GET /_nuxt/useDisableAuth.49c83f5d.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"142-RA7SrTWwwPkeokcDir+mqpzODE0"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/api2/info_2x.png | 142.250.74.163 | 200 OK | 665 B |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/info_2x.png IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced Hash07bf314aab04047b9e9a959ee6f63da3 17bef6602672e2fd9956381e01356245144003e5 55eaf62cb05da20088dc12b39d7d254d046cb1fd61ddf3ae641f1439efd0a5ee
GET /recaptcha/api2/info_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 665
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:20:08 GMT
expires: Tue, 23 Apr 2024 07:20:08 GMT
cache-control: public, max-age=604800
age: 192562
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/Modal.2a0b0849.css | 190.115.19.210 | 200 OK | 524 B |
URL GET HTTP/21win.run/_nuxt/Modal.2a0b0849.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (525), with no line terminators Hash6783f8e90dfacc0c0c4839e1e103a97d a57397ad24685c10eeabf9a5c5d5dbaf41304c2b eb71a528d5d9bb885d6bb0356a8a5a0325bdef02e9a8bf570fe4042ec545031c
GET /_nuxt/Modal.2a0b0849.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"20c-3X+ZaNqBlviUelP/iAiiNO0JtI8"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/linkedin.bf69fa96.svg | 190.115.19.210 | 200 OK | 1.8 kB |
URL GET HTTP/21win.run/_nuxt/linkedin.bf69fa96.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hashdccb77298aa7974f25b27e960c8c831b f85a73a2e8bd0e860de25d7df2d601089d6b8313 099a8920f322bc1a891483162471bddcb3ab16a8a8e8fb7a302c888a194108cd
GET /_nuxt/linkedin.bf69fa96.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.1.1713444567.56.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"6ff-L8YL3SQ4O3IkQQ9kAyKsngIDSr4"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020z89132822158za200&_p=1713444567693&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=1030573795.1713444564&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713444563&sct=1&seg=1&dl=https%3A%2F%2F1win.run%2F&dr=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-192x192.png&dt=1win%20Affiliate%20Program&en=page_view&tfd=1240 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020z89132822158za200&_p=1713444567693&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=1030573795.1713444564&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713444563&sct=1&seg=1&dl=https%3A%2F%2F1win.run%2F&dr=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-192x192.png&dt=1win%20Affiliate%20Program&en=page_view&tfd=1240 IP216.239.32.36:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020z89132822158za200&_p=1713444567693&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=1030573795.1713444564&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713444563&sct=1&seg=1&dl=https%3A%2F%2F1win.run%2F&dr=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-192x192.png&dt=1win%20Affiliate%20Program&en=page_view&tfd=1240 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/3 204 No Content
access-control-allow-origin: https://1win.run
date: Thu, 18 Apr 2024 12:49:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX | 142.250.74.164 | 200 OK | 7.4 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeHTML document, ASCII text, with very long lines (7675), with no line terminators Hash4abf43d0e36b671e77a99be87244e7fb 4138dd2ad8b32d3520f3c5d5eeb64d8ba2475ace 74fc1de3c98929a8b2c5ef2ddf38ad0daf593b38b0897aab7ac47e0d0c1bb161
GET /recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 18 Apr 2024 12:49:29 GMT
content-security-policy: script-src 'nonce-Y9F6vFrgEsOZfsyAhKCdiQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/entry.af293afb.js | 190.115.19.210 | 200 OK | 355 kB |
URL GET HTTP/21win.run/_nuxt/entry.af293afb.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
Size355 kB (354634 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_nuxt/entry.af293afb.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"5694a-rODNF4sdoE5A96Q5/8ImKs4riPE"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/useVuelidateForm.9350eb9e.js | 190.115.19.210 | 200 OK | 20 kB |
URL GET HTTP/21win.run/_nuxt/useVuelidateForm.9350eb9e.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeJavaScript source, ASCII text, with very long lines (19618) Hash577c57dd336d929d1d2fb288c648a4a5 fe0803e9af64e5a424bee0c5b28eeb2f6d33fb5d d112604813605841f88c57e43431d10f16bbca3c03f095b9f28410246fe36767
GET /_nuxt/useVuelidateForm.9350eb9e.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"4ca3-/ggD6a9k5aQkvuDFso7rL20z+10"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api.js?onload=vueRecaptchaApiLoaded&render=explicit&hl= | 142.250.74.164 | 200 OK | 916 B |
URL GET HTTP/2www.google.com/recaptcha/api.js?onload=vueRecaptchaApiLoaded&render=explicit&hl= IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
File typeJavaScript source, ASCII text, with very long lines (916), with no line terminators Hash7f3d42b7a3a44de639b879809d3a412a 89d598ef5e1dfbd96e2491370a442abcea280ee6 83437b46b8870ed8bcdc3f1ae29a43409efefd4f09507bbab4e2bbb3f091d0ef
GET /recaptcha/api.js?onload=vueRecaptchaApiLoaded&render=explicit&hl= HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Thu, 18 Apr 2024 12:49:28 GMT
date: Thu, 18 Apr 2024 12:49:28 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/phone-bg.6388017c.webp | 190.115.19.210 | 200 OK | 130 kB |
URL GET HTTP/21win.run/_nuxt/phone-bg.6388017c.webp IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeRIFF (little-endian) data, Web/P image Size130 kB (130074 bytes) Hashf6a774e285b4d276a1c196dcd69ac199 bbb25280c76b014fa86b238ee56717c9576c589d 6388017c44e2188941647d4ccd0f1e2aaf10dea0525fc92c683adff80f32377a
GET /_nuxt/phone-bg.6388017c.webp HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.4c218f9a.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.1.1713444567.56.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: image/webp
content-length: 130074
cache-control: public, max-age=31536000, immutable
etag: "1fc1a-u7JSgMdrAU+oayOO5WcXyVdsWJ0"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=j9xbochz39aw | 142.250.74.164 | 200 OK | 47 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=j9xbochz39aw IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeHTML document, ASCII text, with very long lines (38348) Hash1db4bf8fa96b4d03fd66170a5f8c578c 9a1d6f3ff06bb12bf86a858fc65137da90cf9c91 1beaa49b899134dd76e75e07a0eeee99791326d74fe5b6aea669ea2af4546995
GET /recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=j9xbochz39aw HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 18 Apr 2024 12:49:28 GMT
content-security-policy: script-src 'nonce-GPT7frVZ6gPkTf7mhNtPVg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/bg-vector.367614b4.svg | 190.115.19.210 | 200 OK | 15 kB |
URL GET HTTP/21win.run/_nuxt/bg-vector.367614b4.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hashc5dcb0ad782b6e7eb1804fff9491e894 723fe8e611dcd096697c73b0108805819c049290 367614b4959e418ff8367bab5d5aea6e6c52dbf0a78a25bce6ff47913473cd85
GET /_nuxt/bg-vector.367614b4.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.4c218f9a.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.1.1713444567.56.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"3953-cj/o5hHc0JZpfHOwEIgFgZwEkpA"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/telegram.747c2948.svg | 190.115.19.210 | 200 OK | 1.6 kB |
URL GET HTTP/21win.run/_nuxt/telegram.747c2948.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hash98722fa743187c4ad093a9248a4c97f8 8779f43e47a10b577796877ab877f4a64dc77b37 4cf166ff4807a95c10a98df131f5b934796ed7eb0e49283cecee0c7df8fe0679
GET /_nuxt/telegram.747c2948.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.1.1713444567.56.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"60f-qsCb+t+JaE5lXYzWT+EMc2mdPyA"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/bg.5725d1ad.webp | 190.115.19.210 | 200 OK | 6.5 kB |
URL GET HTTP/21win.run/_nuxt/bg.5725d1ad.webp IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeRIFF (little-endian) data, Web/P image Hash187f40302084c28df9291dfc561150f4 8ae7b69ae4237e0c0675fdbee0feb7b2c539b84b 5725d1ade623473e8c09dd6b54af63561c26a9f7d681e5bb58fcee1b431549ed
GET /_nuxt/bg.5725d1ad.webp HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.4c218f9a.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.1.1713444567.56.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: image/webp
content-length: 6540
cache-control: public, max-age=31536000, immutable
etag: "198c-iue2muQjfgwGdf2+4P63ssU5uEs"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/default.4dc7ed4f.js | 190.115.19.210 | 200 OK | 2.2 kB |
URL GET HTTP/21win.run/_nuxt/default.4dc7ed4f.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeC source, Unicode text, UTF-8 text, with very long lines (2349), with no line terminators Hash51db02ce88205c02cb6882799eca7f0d 310303b574d7d51829f87c23bfc6cde0088bc61f 828cef238f669df45ffacb055ffbeaaf139d034987dc91c64715bd3528bbc49f
GET /_nuxt/default.4dc7ed4f.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/entry.af293afb.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"8c9-+AGzm1BF1NgawTuJzXNGJYzviKQ"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/Button.b6a71541.js | 190.115.19.210 | 200 OK | 1.1 kB |
URL GET HTTP/21win.run/_nuxt/Button.b6a71541.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (1116), with no line terminators Hash109349f2b5460ab57804fce29e14150a c799d5537d66d0ab2dda467bd8090cad2a32a0c9 5b16e0a1973b99bccb744e5741ddfabaac0d7a6a9fa1f9ea2d234bda6c267042
GET /_nuxt/Button.b6a71541.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"42b-hPnpZw6xfIu5v+D7s7+LXsxzbYA"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/default.21f0dd30.css | 190.115.19.210 | 200 OK | 1.7 kB |
URL GET HTTP/21win.run/_nuxt/default.21f0dd30.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (1655), with no line terminators Hashe5c4d5ed8b9b0ffa6d21db0eff61025c 9732b744a7a0f2b681bb049f07646f352349032d 3d1ac42e234901621f5b81f8788f9b8052c3f19ae14e3b3a278323055fd657f8
GET /_nuxt/default.21f0dd30.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.0.1713444563.60.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"674-QYOq82Z3GohzsV7pyYFvoy5aWPM"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/MenuEnum.3c40e0da.js | 190.115.19.210 | 200 OK | 6.5 kB |
URL GET HTTP/21win.run/_nuxt/MenuEnum.3c40e0da.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (6774), with no line terminators Hash55f98e14af952beef5432a5bf2c69f1e eb541c759a0fb099ec86733a31249209e01cea01 646be9d6ec083613e01945302360c3692d0a4d8b4a3624cc0ab245858acc7319
GET /_nuxt/MenuEnum.3c40e0da.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/default.4dc7ed4f.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444563.1.1.1713444567.56.0.0; _ga=GA1.1.1030573795.1713444564; _vid_t=v1wlRO+86udX68QXqc9LiMAdcFWF16WNVa4PhpUSuIbVZhz1jexlAeAqkSiBYnZajFVsxC9Sdy4TckmxPUb3kNfS9Sr/PoDQwA==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"1939-1f5DCD7/1APaVJ/RC+Z9jQKQnB0"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|