r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10322
Expires: Sat, 28 Jan 2023 22:05:56 GMT
Date: Sat, 28 Jan 2023 19:13:54 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16790
Expires: Sat, 28 Jan 2023 23:53:44 GMT
Date: Sat, 28 Jan 2023 19:13:54 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2190
Expires: Sat, 28 Jan 2023 19:50:24 GMT
Date: Sat, 28 Jan 2023 19:13:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 18:35:31 GMT
content-type: application/json
age: 2303
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bFFv+1BVQ6Snet7sbQ4EoxtE7tzSiF5iL4pHh1GE4VlENSlHEO/p6tFKykuSqLhY5EzDYcnQapk=
x-amz-request-id: 0GFD5GD38D0YGTZQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 18:50:01 GMT
age: 1433
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
1wmpam.top/
190.115.19.101301 Moved Permanently 175 B IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 27d3037d4815f88b7bb724cb258524e1
092678ca1f61e13d97f37f7be9438e7b32b722e9
0c0a343c76a265d5b6b5b3708383afaf77f187eaa7f3fa8f1fec18cdf4ebe198
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: 1wmpam.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: openresty/1.19.9.1
Date: Sat, 28 Jan 2023 19:13:54 GMT
Content-Type: text/html
Content-Length: 175
Connection: keep-alive
Location: https://1wmpam.top
X-Frame-Options: DENY
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 19:13:54 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1a23fe003f3718e6b9953a130d940dbb
5a0a1d5fd7ddba739dcae33c857c43cb10415c3f
46b86f423f979f198e05aafdc45adada543ba33c9cc37a2c42783e3af13cabbe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46B86F423F979F198E05AAFDC45ADADA543BA33C9CC37A2C42783E3AF13CABBE"
Last-Modified: Sat, 28 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21585
Expires: Sun, 29 Jan 2023 01:13:39 GMT
Date: Sat, 28 Jan 2023 19:13:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 18:41:40 GMT
age: 1935
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16847
Expires: Sat, 28 Jan 2023 23:54:42 GMT
Date: Sat, 28 Jan 2023 19:13:55 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1p5/Qcxua71jizE
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Qcxua71jizE
IP 142.250.74.131:0
Hash 6abfeef4330ef70ea7065763aa4625f0
5889ecb423b0a519c19744ee3ddbd6effc0a5087
2016211b41ae68d6016770ea6086149c1cb110a7186a49601174e52af86e4479
POST /s/gts1p5/Qcxua71jizE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 19:13:55 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/Qcxua71jizE
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Qcxua71jizE
IP 142.250.74.131:0
Hash 6abfeef4330ef70ea7065763aa4625f0
5889ecb423b0a519c19744ee3ddbd6effc0a5087
2016211b41ae68d6016770ea6086149c1cb110a7186a49601174e52af86e4479
POST /s/gts1p5/Qcxua71jizE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 19:13:55 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/Qcxua71jizE
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Qcxua71jizE
IP 142.250.74.131:0
Hash 6abfeef4330ef70ea7065763aa4625f0
5889ecb423b0a519c19744ee3ddbd6effc0a5087
2016211b41ae68d6016770ea6086149c1cb110a7186a49601174e52af86e4479
POST /s/gts1p5/Qcxua71jizE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 19:13:55 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1win-cdn.com/css/6610.4f034e44.css
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/css/6610.4f034e44.css
IP 104.26.5.11:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /css/6610.4f034e44.css HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wmpam.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:55 GMT
content-type: text/css
content-length: 0
cache-control: max-age=315360000
cf-bgj: minify
access-control-allow-origin: *
etag: "63c7c775-0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
cf-cache-status: HIT
age: 828496
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rjZpHmY4mtyIl6iySmE%2B5R%2F84nJdYe6ukIA%2BoUcMOecm3CA1Y2cJyBL645iVLZbYPsb%2BUHV9xz2VRhQoHOb9vputNY9R3aT006BPlAYEbp7AtC%2BD1fgwV087fU8bFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c50cf69b515-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/Qcxua71jizE
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Qcxua71jizE
IP 142.250.74.131:0
Hash 6abfeef4330ef70ea7065763aa4625f0
5889ecb423b0a519c19744ee3ddbd6effc0a5087
2016211b41ae68d6016770ea6086149c1cb110a7186a49601174e52af86e4479
POST /s/gts1p5/Qcxua71jizE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 19:13:55 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/Qcxua71jizE
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Qcxua71jizE
IP 142.250.74.131:0
Hash 6abfeef4330ef70ea7065763aa4625f0
5889ecb423b0a519c19744ee3ddbd6effc0a5087
2016211b41ae68d6016770ea6086149c1cb110a7186a49601174e52af86e4479
POST /s/gts1p5/Qcxua71jizE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 19:13:55 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.164.186.39101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.186.39:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cNYATHDJUrT+RSCBoekPAg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: O1aAAEwiFbEO30n5hqYWzqO7sws=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 19:13:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1win-cdn.com/js/2950.429a0b76.js
104.26.5.11200 OK 204 kB URL HTTP/2 1win-cdn.com/js/2950.429a0b76.js
IP 104.26.5.11:0
File type Unicode text, UTF-8 text, with very long lines (65459), with no line terminators
Size 204 kB (203917 bytes)
Hash ff9034c8ea436f6f7110b5d58be8f471
39509d185f95bc48fad9ad39388d4add7a7cc6a4
27ab5eaf12ccf88b4e066c1e6aebc71c3b656c45fd163eb6a0d55260f0933d36
GET /js/2950.429a0b76.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wmpam.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:55 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=540152
access-control-allow-origin: *
etag: W/"63d39637-83df8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 27 Jan 2023 09:15:35 GMT
cf-cache-status: HIT
age: 122124
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v79Uo01Dy%2BFwzOi11PlVceu9VgmQspTJfYwJL5ql1TiV%2FNNskEbEuVYS1Ey67ud7ivPD39fhET1OUCE6lQZLpDsmLv1OgYAPLTcM8MH%2BsnXaw3XncB08HDzxV1WFEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c53ec3cb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/chunk-common.cb71208d.js
104.26.5.11200 OK 448 kB URL HTTP/2 1win-cdn.com/js/chunk-common.cb71208d.js
IP 104.26.5.11:0
File type ASCII text, with very long lines (16708)
Size 448 kB (448374 bytes)
Hash dd2c4abbb120f67e90f1b03c360c0b26
607a079115726d6b194633ccf81d63c77c7fd95f
7a2c22b2dd8749973a7f9e0a682d244d166d1c579d024966d32d394234eeeeb5
GET /js/chunk-common.cb71208d.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wmpam.top
Connection: keep-alive
Referer: https://1wmpam.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:55 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 27 Jan 2023 09:15:27 GMT
etag: W/"63d3962f-4176"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qFZb3nNTuKV1KqUkKMBxrDUTis9PZrQNy0gU8ToYMzE%2F4%2BiYkANWM5Is4kGCsOBctMB1xG%2BMPd1dU6OB5LgQfxDM5PTY53TWT4VNNk%2Fdw%2FXQh8QMfNVASSFCz4l9fA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c50e8a2b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 36147c185553851c38547798733a9fb2
912ec40237eae2ed558d09103c86c41f87896eca
a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 19:13:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1win-cdn.com/js/chunk-vendors.24294a2f.js
104.26.5.11200 OK 133 kB URL HTTP/2 1win-cdn.com/js/chunk-vendors.24294a2f.js
IP 104.26.5.11:0
File type Unicode text, UTF-8 text, with very long lines (65469), with no line terminators
Size 133 kB (132612 bytes)
Hash dfc234894dd1613338d8fc619d362ac8
1e8c21178bd131d4795289af0739ec0dac42f505
87ceaa11211cdae8abd623dd7e49abae9dfb89167f1bfd222819dca23f8f1aa1
GET /js/chunk-vendors.24294a2f.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wmpam.top
Connection: keep-alive
Referer: https://1wmpam.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:55 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 27 Jan 2023 09:15:26 GMT
etag: W/"63d3962e-68484"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2sDGfUU0mQiiqfX%2FI%2BltW9OzwK1iC3ID4gk%2BpzwDqNREYzNPAUs8Qm1ksmkjnBwAl71qD%2Fp9p%2B52uksKZ92gMHkHn7N2FgCci7MMQe9vf8sy%2FHG%2FuwfV9WZOv3ICUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c50b881b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/1895.e23540aa.js
104.26.5.11200 OK 24 kB URL HTTP/2 1win-cdn.com/js/1895.e23540aa.js
IP 104.26.5.11:0
File type ASCII text, with very long lines (60177), with no line terminators
Hash 0a73e7b84a9a91244e4667635937389c
66375cf745a66f8964c372a2a89c9cd880f5f7b9
3dd1a20cc8271d6f870338cc0430338b5c68b28b00338da7f5e490236d5bd4b1
GET /js/1895.e23540aa.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wmpam.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:55 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=60219
access-control-allow-origin: *
etag: W/"63caa6b9-eb3b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 20 Jan 2023 14:35:37 GMT
cf-cache-status: HIT
age: 707792
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y1GHGoNivRwxGMyQY0rUqkeRpBM0CY%2BqOXvga%2F2dyDNkBh8se1j358yk9X%2BIIy1n3s40IchUc%2FAGpxmYCli3ddx7lnR%2Fs%2B6qnKqtuGRKxBGMIum%2B9XOJK%2BAcsgaGNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c53ec39b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash af1c521d29c662e208d80836c19fa58a
64e18dcf8f3ea43f6aeb1c66299bd37121cdfe14
57fe9c6dbb637c6090c7110234fb9d3aadb75850d6d5ed5c668376ebd121c1f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 19:13:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash af1c521d29c662e208d80836c19fa58a
64e18dcf8f3ea43f6aeb1c66299bd37121cdfe14
57fe9c6dbb637c6090c7110234fb9d3aadb75850d6d5ed5c668376ebd121c1f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 19:13:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
12688802.fls.doubleclick.net/activityi;src=12688802;type=actio0;cat=allpa0;ord=1;num=1898095237973;gtm=2wg1p0;auiddc=2016519897.1674933240;~oref=https%3A%2F%2F1wmpam.top%2F?
142.250.74.70200 OK 234 B URL HTTP/2 12688802.fls.doubleclick.net/activityi;src=12688802;type=actio0;cat=allpa0;ord=1;num=1898095237973;gtm=2wg1p0;auiddc=2016519897.1674933240;~oref=https%3A%2F%2F1wmpam.top%2F?
IP 142.250.74.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (448), with no line terminators
Hash 18b9d2a865fcce6791cd3a51b10e11fe
453730d545024e997a511b9cfd8d8ac8f57482d0
7fbe215dd197dc3784987fd526b04dd665044f8390b68ba750a57961e92c388f
GET /activityi;src=12688802;type=actio0;cat=allpa0;ord=1;num=1898095237973;gtm=2wg1p0;auiddc=2016519897.1674933240;~oref=https%3A%2F%2F1wmpam.top%2F? HTTP/1.1
Host: 12688802.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wmpam.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 19:13:56 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 234
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 28-Jan-2023 19:28:56 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1wmpam.top/img/icons/apple-touch-icon-152x152.png
190.115.19.101200 OK 29 kB URL HTTP/2 1wmpam.top/img/icons/apple-touch-icon-152x152.png
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
File type PNG image data, 152 x 152, 8-bit/color RGBA, non-interlaced\012- data
Hash 0182e90098bff38de2e9e6e5d85edc95
d64a156fb3c8c98d09c8e178ec659124258534af
d047c554c99242545a47aee401fbf84bc037057653cb7a967e089ea0aa796a85
GET /img/icons/apple-touch-icon-152x152.png HTTP/1.1
Host: 1wmpam.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wmpam.top/
Cookie: visit_domain=1wmpam.top; 1w_lang=en; _gcl_au=1.1.2016519897.1674933240; core-sticky=http://10.233.80.81:80
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Sat, 28 Jan 2023 19:13:56 GMT
content-type: image/png
content-length: 28672
last-modified: Fri, 27 Jan 2023 09:15:27 GMT
etag: "63d3962f-7000"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: DENY
accept-ranges: bytes
X-Firefox-Spdy: h2
12572451.fls.doubleclick.net/activityi;src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=1842711811156.0103?
142.250.74.70200 OK 274 B URL HTTP/2 12572451.fls.doubleclick.net/activityi;src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=1842711811156.0103?
IP 142.250.74.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (521), with no line terminators
Hash ff74e22e66e1f6acc070e95779c7e2d6
25ece65aaeaf83aa7fea4cce6dd98e5bc3b04b36
95f903670c86d7129ab9fa16f2bbbd31546b42fe0ae736047f7d2f8494c9ef69
GET /activityi;src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=1842711811156.0103? HTTP/1.1
Host: 12572451.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wmpam.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 19:13:56 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 274
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 28-Jan-2023 19:28:56 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1wmpam.top/img/icons/favicon-16x16-darkmode.png
190.115.19.101200 OK 410 B URL HTTP/2 1wmpam.top/img/icons/favicon-16x16-darkmode.png
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash c7a60b79929bf150e44e5ac28fcd0d4e
f1ecf72f71d7b4153b151e7a27d40bf0c926b09e
f2b53ffbd8af9378b2e1d160500d2a2f3fae9b963cf4d6a3e88108a765a548cf
GET /img/icons/favicon-16x16-darkmode.png HTTP/1.1
Host: 1wmpam.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wmpam.top/
Cookie: visit_domain=1wmpam.top; 1w_lang=en; _gcl_au=1.1.2016519897.1674933240; core-sticky=http://10.233.80.81:80
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Sat, 28 Jan 2023 19:13:56 GMT
content-type: image/png
content-length: 410
last-modified: Fri, 27 Jan 2023 09:15:27 GMT
etag: "63d3962f-19a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: DENY
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash af1c521d29c662e208d80836c19fa58a
64e18dcf8f3ea43f6aeb1c66299bd37121cdfe14
57fe9c6dbb637c6090c7110234fb9d3aadb75850d6d5ed5c668376ebd121c1f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 19:13:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash af1c521d29c662e208d80836c19fa58a
64e18dcf8f3ea43f6aeb1c66299bd37121cdfe14
57fe9c6dbb637c6090c7110234fb9d3aadb75850d6d5ed5c668376ebd121c1f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 19:13:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash deb4009d9cf930c22c3f5a5b84da0ac0
8a836d1d06195abd9c1a2c9de738b7e68b10f594
7cfeba165ffe403e5443ea916c93bd7f73353d1cdb0ecc0fc48bd63e6be61e24
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 19:13:56 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Wed, 01 Feb 2023 16:11:10 GMT
ETag: "8a836d1d06195abd9c1a2c9de738b7e68b10f594"
Last-Modified: Sat, 28 Jan 2023 16:11:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 880
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790c0c581ab6b515-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 19:13:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ef589be52a3e55b643978f17949a73da
74545de6f144282252ff92c751f97cc835c80341
7bfa68c43e60a2627770163b5c1b96fbd7e4843984ad5ff6225c5490b8073b26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 19:13:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
script.hotjar.com/modules.dcdf252a9a6cf097c357.js
54.230.111.73200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.dcdf252a9a6cf097c357.js
IP 54.230.111.73:0
File type Unicode text, UTF-8 text, with very long lines (48602)
Hash 4ab050de5a6437b8d1f5955ab1dbfb07
498e55a41dc3df84cf825bd946a1300a04b38677
87cbfe168c8537c46132cab67a16afe706796b7f301ac8dc5bd8f9ea847e4a72
GET /modules.dcdf252a9a6cf097c357.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
HTTP/2 200 OK
content-type: application/javascript
content-length: 68336
date: Fri, 27 Jan 2023 09:04:05 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "4ab050de5a6437b8d1f5955ab1dbfb07"
last-modified: Fri, 27 Jan 2023 09:03:53 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZAz3DeIFBC5xyarcS9yKyxcAxLUGbNp_RwgV-wgRFwog3jMpXW5rWw==
age: 122991
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2606090.js?sv=6
54.230.111.39200 OK 4.5 kB URL HTTP/2 static.hotjar.com/c/hotjar-2606090.js?sv=6
IP 54.230.111.39:0
File type ASCII text, with very long lines (7535)
Hash 25bd65a9667224436eb2fdc8b3a3d4ce
1b8a8b36270079c9875e35b2590dc4accf05a5cb
eeb1c65f897d0c95fcb6de33709e7a612bfc2988f41f8e5726d953af06db074e
GET /c/hotjar-2606090.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wmpam.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sat, 28 Jan 2023 19:13:47 GMT
cache-control: max-age=60
etag: W/30006d21180ca1bcb755069ba75c0818
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3kxs4j4tAlZ6KQ1Yin3bR0ELIIcPzNdkIH3oyEK_LJaqb-m9xKtiBg==
age: 9
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=1898095237973;gtm=2wg1p0;auiddc=2016519897.1674933240;~oref=https%3A%2F%2F1wmpam.top%2F
216.58.207.226200 OK 234 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=1898095237973;gtm=2wg1p0;auiddc=2016519897.1674933240;~oref=https%3A%2F%2F1wmpam.top%2F
IP 216.58.207.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (447), with no line terminators
Hash 594d2b38b582c8d7e17542812f51bcb9
8b25d1ee6cf977b12fe2e429f1f437e34a30255d
4132863da64caf51627c552fa27e56851517a963a1862f138bfae9f11d450d33
GET /ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=1898095237973;gtm=2wg1p0;auiddc=2016519897.1674933240;~oref=https%3A%2F%2F1wmpam.top%2F HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12688802.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 19:13:56 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 234
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/tag.js
87.250.251.119200 OK 74 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 87.250.251.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Hash a236c7014c1f1a1e52d356f59e5d665a
b66c638eb2346287364c37725819bbab1f409d66
ad2d57579e453af0eac49156840bcd1dcfbd802a82135af98f41f714d7e698f2
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
HTTP/2 200 OK
content-length: 73769
date: Sat, 28 Jan 2023 19:13:56 GMT
access-control-allow-origin: *
etag: "63c93a4b-12029"
expires: Sat, 28 Jan 2023 20:13:56 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
1wmpam.top/1.txt?1674933240496
190.115.19.101200 OK 8 B URL HTTP/2 1wmpam.top/1.txt?1674933240496
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
Hash 48cfef8b3001a8c220dc815870f9916e
b77e871e72a3083c4bb31d6bcb5a257557181269
3d2c759213949af96fbdcd756a5146f64a9acadf9625bd7a9feb04bb4517b4f9
GET /1.txt?1674933240496 HTTP/1.1
Host: 1wmpam.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1wmpam.top/sw.db344b25.js
Connection: keep-alive
Cookie: visit_domain=1wmpam.top; 1w_lang=en; _gcl_au=1.1.2016519897.1674933240; core-sticky=http://10.233.80.81:80; _ga_548949LWLW=GS1.1.1674933240.1.0.1674933240.0.0.0; _ga=GA1.1.682835143.1674933240
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Sat, 28 Jan 2023 19:13:56 GMT
content-type: text/plain
content-length: 8
last-modified: Fri, 27 Jan 2023 09:15:27 GMT
etag: "63d3962f-8"
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
1win-cdn.com/css/5616.80aa74eb.css
104.26.5.11200 OK 21 kB URL HTTP/2 1win-cdn.com/css/5616.80aa74eb.css
IP 104.26.5.11:0
File type ASCII text, with very long lines (20616), with no line terminators
Hash 8d76304a93866b75f716ad494c5cebbb
44e924a89b70dae9e3704957d3b11039a9070ea5
e9d69dc636b68e61c32096c187de75f8994dd89fa678a129d22e4a59a8aa3c57
GET /css/5616.80aa74eb.css HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:56 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
access-control-allow-origin: *
etag: W/"63a42a53-5088"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3229943
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SQnGz3zBx7jOOEA6lQ0wS520HLCbHA2es1Pon7In2%2BpNa9QMjI5KIKNtTa03MuLgzcFcgZZ3mLxVvGVwbLTTDY39YCs59D4eqcpx7Z9Rvci99XVEhv14xH9DdlpnFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c58ab58b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 19:13:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9283fba3f2d92b260136aec480688eec
4c312e5aa2a1ab465460f0aaa866920b58b41f14
ab5b2a30141185f1679c0d8ca5e89433109453319f464d28d3a9950a9e7f6b25
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AB5B2A30141185F1679C0D8CA5E89433109453319F464D28D3A9950A9E7F6B25"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=262
Expires: Sat, 28 Jan 2023 19:18:18 GMT
Date: Sat, 28 Jan 2023 19:13:56 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5555
Expires: Sat, 28 Jan 2023 20:46:31 GMT
Date: Sat, 28 Jan 2023 19:13:56 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5555
Expires: Sat, 28 Jan 2023 20:46:31 GMT
Date: Sat, 28 Jan 2023 19:13:56 GMT
Connection: keep-alive
api.lab.amplitude.com/sdk/vardata
151.101.130.132200 OK 2 B URL HTTP/2 api.lab.amplitude.com/sdk/vardata
IP 151.101.130.132:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /sdk/vardata HTTP/1.1
Host: api.lab.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1wmpam.top/
Authorization: Api-Key client-Ss5BFx7UDrTj948TJHfc5ZUoTW67EjvZ
X-Amp-Exp-User: eyJsaWJyYXJ5IjoiZXhwZXJpbWVudC1qcy1jbGllbnQvMS41LjUiLCJsYW5ndWFnZSI6ImVuLVVTIiwicGxhdGZvcm0iOiJXZWIiLCJvcyI6IkZpcmVmb3ggMTA1IiwiZGV2aWNlX21vZGVsIjoiV2luZG93cyIsInVzZXJfcHJvcGVydGllcyI6e319
Origin: https://1wmpam.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=utf-8
access-control-allow-origin: https://1wmpam.top
access-control-allow-credentials: true
x-amzn-trace-id: Root=1-63d573f4-4367b593165da1b03dfcf3f0
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 19:13:56 GMT
age: 0
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674933237.648835,VS0,VE177
vary: Origin, Origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 2
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5555
Expires: Sat, 28 Jan 2023 20:46:31 GMT
Date: Sat, 28 Jan 2023 19:13:56 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5555
Expires: Sat, 28 Jan 2023 20:46:31 GMT
Date: Sat, 28 Jan 2023 19:13:56 GMT
Connection: keep-alive
1win.direct/socket.io/?Language=en&EIO=3&transport=websocket
134.122.54.186101 Switching Protocols 0 B URL HTTP/1.1 1win.direct/socket.io/?Language=en&EIO=3&transport=websocket
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?Language=en&EIO=3&transport=websocket HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://1wmpam.top
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rB/DMGF39oeg9fLR/dztNQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Sec-Websocket-Accept: SpmX8MxublRI2ErJSCLfQ+AJl8s=
Sec-Websocket-Extensions: permessage-deflate
Set-Cookie: core-sticky=51bb0d365f2cc9d6; Path=/; HttpOnly
Upgrade: websocket
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb12df7-074b-4044-bdbe-0e07bccbc8e9.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb12df7-074b-4044-bdbe-0e07bccbc8e9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0ed1a0bd725b2078b4cfe4ed83877901
62493ca03be9870aac2341e033611a6d56bd322a
706e84bc63fd98acaeb72789239af3210ae6e3910e6589d92a25899dc9059dfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb12df7-074b-4044-bdbe-0e07bccbc8e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12397
x-amzn-requestid: e8436997-696d-483a-b03a-a84e7ca614ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_T5HbzoAMFXsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445b2-1c2ccd0a187d0a3e2f6a59cc;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lmLHc8fKQYUpq9B-GyOQ0FKzhxi0ToTEPA7cu6JnQftgDFDNV8USvw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:37 GMT
age: 76639
etag: "62493ca03be9870aac2341e033611a6d56bd322a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4afa01d2ffe17f8378e4c0b5afd4608
f5c7e2137efa07a207427a6b6fe1df541f85ea25
84fc0c05d25d674b5594b54720017332b86d391f66c7136d76cfce3e884e8e12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13375
x-amzn-requestid: 372fcbe8-85a1-4be2-a006-31fb9289c5e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CxF6BoAMFyGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-4b9860545c612cc416cbe599;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yEFlWGi3J14JLA0l2h02VlIqV8opHesKP6GOvfoP5Tp0m7dOYDxIGA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:59:32 GMT
age: 76464
etag: "f5c7e2137efa07a207427a6b6fe1df541f85ea25"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
1win-cdn.com/css/desktop.31e6deb9.css
104.26.5.11200 OK 21 kB URL HTTP/2 1win-cdn.com/css/desktop.31e6deb9.css
IP 104.26.5.11:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2c9d78c2fe8fba0803ce62eca11130f5
f2f0b1c5a3158280686bcd56cdd5eb9c900be554
6c59b243971536029f23592f0d61aae62613c173040dfb05dfa23fa30811ce47
GET /css/desktop.31e6deb9.css HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wmpam.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:55 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=95906
access-control-allow-origin: *
etag: W/"63d124be-176a2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
cf-cache-status: HIT
age: 158607
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i7yQS2DQk7PvGkTZ2EweY%2FFdm1ukQDCx8p0BMUgzOT0kSrXRF4dk16jbqSLFiCrh8TWfyjgIpe%2FiYKip286oJQeLNLXv5AK5WpZCyxb3b%2B2WsQaukMqfZTNMCpoXAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c50cf66b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 2e85f75e-ab9d-4d45-adad-7313950a9647
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSWbxGwnoAMFejw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d117-68f1a9e71a07a0453311fd32;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 06:49:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dbz3wXGNaetf6xvRE98rshyHy-FVfDo8co-4VDL0a4Qe3E4U8A82Og==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 18:36:06 GMT
age: 2270
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 76630
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ea24bcba583bd8bd139559448a343e68
b9d37c2b14f890d41983a59f352e8f7caa9c94bb
e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1WE1zQwrCGVy8HLT9_BFkAr6rQE_ROyttMOByR32KeT0w2Hd_ylvYQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:16:00 GMT
age: 75476
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
1wmpam.top/common/title?path=bets&lang=en
190.115.19.101200 OK 16 B URL HTTP/2 1wmpam.top/common/title?path=bets&lang=en
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
GET /common/title?path=bets&lang=en HTTP/1.1
Host: 1wmpam.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1wmpam.top/
Connection: keep-alive
Cookie: visit_domain=1wmpam.top; 1w_lang=en; _gcl_au=1.1.2016519897.1674933240; core-sticky=http://10.233.80.81:80; _ga_548949LWLW=GS1.1.1674933240.1.0.1674933240.0.0.0; _ga=GA1.1.682835143.1674933240
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: application/json; charset=utf-8
content-length: 16
vary: Origin
x-frame-options: DENY
X-Firefox-Spdy: h2
cdn.amplitude.com/libs/amplitude-8.17.0-min.gz.js
54.230.245.120200 OK 27 kB URL HTTP/2 cdn.amplitude.com/libs/amplitude-8.17.0-min.gz.js
IP 54.230.245.120:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e5211b7cbee53b6912f07a1cd72a4582
097096657cc1484ad9509b2c990a81a48990efdc
008014793f2666c663f98c7a3405db81b2db301c6a3caf2c05e6e9556085aa78
GET /libs/amplitude-8.17.0-min.gz.js HTTP/1.1
Host: cdn.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wmpam.top
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
HTTP/2 200 OK
content-type: application/javascript
content-length: 27400
date: Sat, 28 Jan 2023 19:13:57 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Fri, 25 Mar 2022 19:53:18 GMT
etag: "e5211b7cbee53b6912f07a1cd72a4582"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: wr63ICD3duh0Opi8j2KDhI34Ow38BHG0
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7e-y5mDf66gq3ML4zmPtNsmHtvjCzUvu8knaV-QdOx9sqoc4gXbOAw==
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-548949LWLW>m=2oe1p0&_p=1970668228&cid=682835143.1674933240&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674933240&sct=1&seg=0&dl=https%3A%2F%2F1wmpam.top%2F&dt=1win%20-%20Loading&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-548949LWLW>m=2oe1p0&_p=1970668228&cid=682835143.1674933240&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674933240&sct=1&seg=0&dl=https%3A%2F%2F1wmpam.top%2F&dt=1win%20-%20Loading&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-548949LWLW>m=2oe1p0&_p=1970668228&cid=682835143.1674933240&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674933240&sct=1&seg=0&dl=https%3A%2F%2F1wmpam.top%2F&dt=1win%20-%20Loading&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wmpam.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://1wmpam.top
date: Sat, 28 Jan 2023 19:13:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c083fb68af37d6c700a3fa4eb04a29cb
9b3ff3c9c0bd7dc448eb18e74ddc029f7c18dc9a
3ea0d4252ad90ee13a6b23ebd1144639f7bb73e4d96ef2590b21a155809e65e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 19:13:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c083fb68af37d6c700a3fa4eb04a29cb
9b3ff3c9c0bd7dc448eb18e74ddc029f7c18dc9a
3ea0d4252ad90ee13a6b23ebd1144639f7bb73e4d96ef2590b21a155809e65e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 19:13:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=1898095237973;gtm=2wg1p0;auiddc=2016519897.1674933240;~oref=https%3A%2F%2F1wmpam.top%2F
142.250.74.66200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=1898095237973;gtm=2wg1p0;auiddc=2016519897.1674933240;~oref=https%3A%2F%2F1wmpam.top%2F
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=1898095237973;gtm=2wg1p0;auiddc=2016519897.1674933240;~oref=https%3A%2F%2F1wmpam.top%2F HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 19:13:57 GMT
expires: Sat, 28 Jan 2023 19:13:57 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=1842711811156.0103;~oref=https://1wmpam.top/
142.250.74.66200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=1842711811156.0103;~oref=https://1wmpam.top/
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=1842711811156.0103;~oref=https://1wmpam.top/ HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 19:13:57 GMT
expires: Sat, 28 Jan 2023 19:13:57 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1win-cdn.com/img/present-with-light.bd57fb06-151.png
104.26.5.11200 OK 6.7 kB URL HTTP/2 1win-cdn.com/img/present-with-light.bd57fb06-151.png
IP 104.26.5.11:0
File type PNG image data, 151 x 161, 8-bit colormap, non-interlaced\012- data
Hash 6e2f4fff39b3a495fecefe5fee863c51
d358f1c8d7fe7298feea325c7ea6d145a3634026
4800fa860802fd0e46629776201afccd5adc1bf6b8b5a45a5e7c46d8d3b2a690
GET /img/present-with-light.bd57fb06-151.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/png
content-length: 6732
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: "63a42a53-1a4c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3229926
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vzHhsa3y%2FyuVg78soc4NFJL0wgdsuMLEQcLmFaP1TzEHkeUTRtw7znGp796XWbqWdwS1W1ugOAmGFjdOcnU5mIGmEHN1BNnB903kQ2endrR%2BuLhfmqhEXCAO42w8Ng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5edbc7b515-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/casino-mentor.f6b6387a-172.png
104.26.5.11200 OK 2.0 kB URL HTTP/2 1win-cdn.com/img/casino-mentor.f6b6387a-172.png
IP 104.26.5.11:0
File type PNG image data, 172 x 50, 8-bit colormap, non-interlaced\012- data
Hash 1c8fa7ed406056b760b1171b49f8fd73
601643736f0c6bdce0531f5bc5252a96879d1ad1
c4ff5a6ee1315f5e5eeb287189912baaae7e032f178ccad3c575d6f8d99d4916
GET /img/casino-mentor.f6b6387a-172.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/png
content-length: 1976
last-modified: Wed, 21 Dec 2022 11:04:29 GMT
etag: "63a2e83d-7b8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3297966
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jzjVD0jtCvu2q8qynJjqDRSabrV%2Bs5WA7hZWmQG2x41En%2FPt2J9PVAhQ8Pi7mZrzNljYnnXALLLIY421O%2FjlT6E5OLLFDSM%2BeOE%2B1QHJ0nRrlWg%2FNDFQu5J7vbGPgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5efbf8b515-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/casinos-analyzer.896bc525-182.png
104.26.5.11200 OK 2.0 kB URL HTTP/2 1win-cdn.com/img/casinos-analyzer.896bc525-182.png
IP 104.26.5.11:0
File type PNG image data, 182 x 50, 8-bit colormap, non-interlaced\012- data
Hash 75b2e733b195a4dc9229efa156e5a67a
f1755917d01bb31e56ab6e68c16656f6ffa9c38a
58a6718ce885d0923e0c0cdf64b8017396068f6c4c7ebda40fe951221dfb7475
GET /img/casinos-analyzer.896bc525-182.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/png
content-length: 2047
last-modified: Wed, 21 Dec 2022 11:04:29 GMT
etag: "63a2e83d-7ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3297966
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vtU32AxYG1y4HZQffQl%2BHbFaKmTnNmYeXuVnORMa33OnstisfVCtkEUSb55a5yD9%2FWdXfhOl7CKvW77JvQAfH6G23Favwx1LIbRuC9bTT4mgGoMSemhUF%2BeYIk4FVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5efbfeb515-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/cricket-betting-guru.cfe7d426-500.png
104.26.5.11200 OK 9.2 kB URL HTTP/2 1win-cdn.com/img/cricket-betting-guru.cfe7d426-500.png
IP 104.26.5.11:0
File type PNG image data, 500 x 500, 8-bit colormap, non-interlaced\012- data
Hash 3c6da1041cc0873ff73533fd0e03f5a0
0666e13970c0698cf09ffafc9467ea705258c552
dfeed2cdb884b7769b5ee0fde60457b4b5380b7608c296b67e26c48dc1ca3f08
GET /img/cricket-betting-guru.cfe7d426-500.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/png
content-length: 9249
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: "63a42a53-2421"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3229926
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LrKvhZY1xl%2Bl59Cl1q36EkdJHMNwArCO8guED4ZyFnMzOeAhuPpdG%2FI%2BW1iPG9fdk%2F3QIDby%2B3w13cDrxr1GiFW7TGq%2F5BiUIxnFYHB9UmKcreMjHLAdfUUQV%2BqWEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5f0c01b515-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/cricket-betting-wali.1863d1d9-43.png
104.26.5.11200 OK 2.5 kB URL HTTP/2 1win-cdn.com/img/cricket-betting-wali.1863d1d9-43.png
IP 104.26.5.11:0
File type PNG image data, 43 x 50, 8-bit colormap, non-interlaced\012- data
Hash f4d8e1bf9ee6fb80b23760cae020a174
008045648a3c542d9ffb296b9ab7f57dce550274
207d2b3d3be139912aef09fc9c5f794a8853c2c3526ab30a3603b8767d7cd07e
GET /img/cricket-betting-wali.1863d1d9-43.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/png
content-length: 2508
last-modified: Wed, 21 Dec 2022 11:04:29 GMT
etag: "63a2e83d-9cc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3297966
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1Cby%2BwCb1aIT1XVPaFrrLFk8QHx52tXdx84ygGo%2B5u%2BVYE%2BsoXu9mMOFysnjanBM05O4ir1zg3beVvmidR0aGTAijbJ2ANmwWhtPbcUmBstQ5g2g78RgorTTiNVx7Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5efbffb515-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-tvbet-frame@2.52cde99d-256.png
104.26.5.11200 OK 4.5 kB URL HTTP/2 1win-cdn.com/img/sprite-tvbet-frame@2.52cde99d-256.png
IP 104.26.5.11:0
File type PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Hash 40212134fb58f842529fa66647f1b7d2
e6d355ea609129942cde7b9d47e587ae5cc8596c
c04666bc555dfa0fbd2b5da4984cb813b58eab772e1fa1efa2fd2e62c6d11f7b
GET /img/sprite-tvbet-frame@2.52cde99d-256.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/png
content-length: 4458
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: "63a42a53-116a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228028
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Exhut6urkWRweaQnesx5iHqLLiiSqWCBCsgVmCgGum5UlsCBy3hUipX5Ps286jUqVRmuw%2FiOH99uhrMwCxpNb4IvUxwtxqZaX5BSZDuXH%2FWvT49R1hHQafKegbxa4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5f0c05b515-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b7da7d1d3e5880d5d4e313ac7fcf2a83
60a1e887ccb7c7cdae0035c65ef7df9908547fef
af17efcd17df50324c29cff05cea79f18cba79f6b1134ec0e6d1637759b5e895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 19:13:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1win-cdn.com/img/free-money-link-image.4433e497-120.png
104.26.5.11200 OK 6.3 kB URL HTTP/2 1win-cdn.com/img/free-money-link-image.4433e497-120.png
IP 104.26.5.11:0
File type PNG image data, 120 x 97, 8-bit colormap, non-interlaced\012- data
Hash 8c77c77c33189721a876fefeadf5ca83
0b197aa9e55fe824b28e55b9e0591f8631b6c3c8
b2a4295182c1f7c9619a4d2f842be12f4cbc6c4bb8d2ea607f06ff3bc4099486
GET /img/free-money-link-image.4433e497-120.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/png
content-length: 6292
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: "63a42a53-1894"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228028
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZOxKmGf9uhM25dQC%2Bv9%2Br%2BPidMQhUxkGvRdM2Y9eWi6V%2BsmfUNJpnGq6XJfejltB547F2dBaVkpnHlL%2F8F46q30MgrCac9iLX25553EMjO%2FDxNs%2Bdrd%2FT24Q25rMtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5f0c04b515-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/best-bitcoin-casino.9c1716b1-50.png
104.26.5.11200 OK 1.0 kB URL HTTP/2 1win-cdn.com/img/best-bitcoin-casino.9c1716b1-50.png
IP 104.26.5.11:0
File type PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Hash d17d9ae707b485a356eec325e36aa505
650fc9b7790343d87eacfa5f5466ecf659f3b9a7
5bca66d0040f92e3f15089ebc1f46687cf7bde68d46db0fb286113aaba9ac57f
GET /img/best-bitcoin-casino.9c1716b1-50.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/png
content-length: 1035
last-modified: Wed, 21 Dec 2022 11:04:29 GMT
etag: "63a2e83d-40b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3297966
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LrF123DcLdSsNEdpybCFkdecmnIEZ7RdDrDqdeho6gQpm0RmIe7xhmsonG%2BCUNt3s2m4rgfLZzwTZCczTdQdHt1DqzKICGw9ahI%2FguHmPTO%2FkfI4X%2B%2FArMiaTsx%2FuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5efbfab515-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-poker-frame@2.1caa31af-256.png
104.26.5.11200 OK 10 kB URL HTTP/2 1win-cdn.com/img/sprite-poker-frame@2.1caa31af-256.png
IP 104.26.5.11:0
File type PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Hash 74023900d89b98987ea3248f4a89a218
4ea53a2415cf89647c40a32c69b50bde861a40ed
484183c9f4d5b2d68649d3025af4d2b95a5cb71f40a1cf960d62e0e3560162ab
GET /img/sprite-poker-frame@2.1caa31af-256.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/png
content-length: 10453
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: "63a42a53-28d5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228027
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BsD4kkoJzfaZbjwYtrpcy4mVnwH1t1bKmz71OfCd2cjLGSSb3g6%2BuM9IapMxzk8SbffRox06mQF1U2wp038eKJd8hGDE8k4%2Bdgq%2BPf1x6AGXKP2nGekcg1nhK5T2RQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5f0c13b515-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/pwa_android_en.b229a444-690.png
104.26.5.11200 OK 38 kB URL HTTP/2 1win-cdn.com/img/pwa_android_en.b229a444-690.png
IP 104.26.5.11:0
File type PNG image data, 690 x 450, 8-bit colormap, non-interlaced\012- data
Hash 8b6daeaca5784288934eb5c3dbc3401d
2df52222cb03510733d5f5c616278143e7f93f2d
53ee238e1169d7940016da0159e72a214403576447cf1b8cb384942a6200d191
GET /img/pwa_android_en.b229a444-690.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/png
content-length: 37637
last-modified: Thu, 22 Dec 2022 11:20:11 GMT
etag: "63a43d6b-9305"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3223698
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KO6WtkpNXywqzL3kc0lU7yP2u5jGz9jdKe3xHtzg4bHxgpMKbnkCWcZoMbnka%2FbD6IpzNyuXwnGNT5APb07PcpAwIw5GbdbC8zh6VcnKYgKPL7pwdjiSODR1Q75mRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5f0c15b515-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-dice-frame@2.8e0d7067-256.png
104.26.5.11200 OK 17 kB URL HTTP/2 1win-cdn.com/img/sprite-dice-frame@2.8e0d7067-256.png
IP 104.26.5.11:0
File type PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Hash b5469917695caf597285ce3e08c0e314
8d6b57a1590baf7531d688d5dde729ede7d02108
3353862bc343fe2f92faf7e59595d9aa80d2fbdc90c6677437daf3a9acd84b32
GET /img/sprite-dice-frame@2.8e0d7067-256.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/png
content-length: 17269
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: "63a42a53-4375"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228028
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tAc2XF0Km1kA0RVGJmzz4G6nvayXcdtFjIMf0WkuJzhZFy9gaHgfGSGbcRnlCTigocgaGagFCiT3PkNgMOPgXw6cFpabj6fR0Z%2BYnu0gOfPBT3knUainWa9%2FrLyKaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5f0c11b515-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-roulette-frame@2.76ea5a24-256.png
104.26.5.11200 OK 30 kB URL HTTP/2 1win-cdn.com/img/sprite-roulette-frame@2.76ea5a24-256.png
IP 104.26.5.11:0
File type PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Hash fa83f73358ed73cbd8a0faf0d8e6c019
586b95f1e5e1945abd0248e995f79274463c1cd8
ede3848497b96e7defd4c5d53133cf2e374487411186a66a6146191ae5692f77
GET /img/sprite-roulette-frame@2.76ea5a24-256.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/png
content-length: 29770
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: "63a42a53-744a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228027
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LloTY7KEK8R2oK7jZg0FINxb9uISDL0YgW9IFFHi8Jfg29sBhUEfs%2BNXwnJLW4XXz390s81JdHd5DmpGJgZOOf%2BnSNXO0cwHjL%2BAEDa0C6ri2Lbz0tIK6wUSETy6cg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5f0c07b515-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-poker@2.a38733e7-256.webp
104.26.5.11200 OK 361 kB URL HTTP/2 1win-cdn.com/img/sprite-poker@2.a38733e7-256.webp
IP 104.26.5.11:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 361 kB (360930 bytes)
Hash 3da44652926631bc4fc847cfcbad6c71
a5f7955272162e543d5db897e200d00d3af22b22
354fe37cee669fe141e1e1dcb3b5a12df1ff2b9b34be38b4f2e20dd46fdb7d2a
GET /img/sprite-poker@2.a38733e7-256.webp HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/webp
content-length: 360930
last-modified: Fri, 27 Jan 2023 09:15:36 GMT
etag: "63d39638-581e2"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: HIT
age: 6404
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J%2BnF56AUrW4wjQX0cOyKK%2FgL9JmhqcHnUyv6EWrRQigUxV6YVnMyotU7FQOAmn6XAu79ts%2Bjq%2BdnfVVBfen2%2F6kMhwzI9G%2BikVOzSse4rXAMVYk3UrhVbKu3RNq9jg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5f0c14b515-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/pwa_ios_en.f08ddb1e-690.png
104.26.5.11200 OK 39 kB URL HTTP/2 1win-cdn.com/img/pwa_ios_en.f08ddb1e-690.png
IP 104.26.5.11:0
File type PNG image data, 690 x 450, 8-bit colormap, non-interlaced\012- data
Hash 2b063a8e2fb87b84cbf377d7a7fd389e
5c12f02ca086902c7fd9a5bd5de9eabce82c22a1
aa8f787e4db589a38a5c5a56bdb03f69329bfedc64649454f9fd370b78820b49
GET /img/pwa_ios_en.f08ddb1e-690.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/png
content-length: 39066
last-modified: Thu, 22 Dec 2022 11:20:11 GMT
etag: "63a43d6b-989a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3223697
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BLkULGJzpI2lHD1%2BpK%2BHnKJ%2FXHNpIlh4nlItKz52NoGTdUqcu7Dm%2BdfaN2UCWmvcPga6UZ2z6nYPTHilcK7nxzXI7GNTc1T%2BZtX4JS5Ib7fjROZyaihV8JNeWJuCdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5f1c1cb515-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/home-poker-banner-bg.87d81897-600.webp
104.26.5.11200 OK 12 kB URL HTTP/2 1win-cdn.com/img/home-poker-banner-bg.87d81897-600.webp
IP 104.26.5.11:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d42d6b091c917baad89cc62f34b1ef8d
6915e60ae50f4b00af5083ce1217a7dab04df42d
9ac95cc43cf590f1f9a5dd85b5b0bf04d98e38d3005b6e4b436f8c04d09a66e9
GET /img/home-poker-banner-bg.87d81897-600.webp HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/webp
content-length: 11812
last-modified: Fri, 27 Jan 2023 09:15:36 GMT
etag: "63d39638-2e24"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: HIT
age: 1862
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IOVwXwXaWGvZEDEwWOPGFHiLzgX39TsDaYdt9qM%2F0PEmI%2BWYbhjwXRAjtJllZV4RNX5S8sr1OGnxi4%2Bun0hPeTDW4d6m3WN7R6WVztbWH9lyHb0AxgQ19yOjkxWQDg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5f0c19b515-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-dice@2.6e1ac0ed-256.webp
104.26.5.11200 OK 430 kB URL HTTP/2 1win-cdn.com/img/sprite-dice@2.6e1ac0ed-256.webp
IP 104.26.5.11:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 430 kB (429680 bytes)
Hash abaa6833958bdc5427e6fa573cbfa70a
d43989916cc382e4e3d983933d9cd52a7d1dbeb2
51ba8ea694483e38020360731af53be7cd411671786008119b70b2a320e3bd92
GET /img/sprite-dice@2.6e1ac0ed-256.webp HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/webp
content-length: 429680
last-modified: Fri, 27 Jan 2023 09:15:36 GMT
etag: "63d39638-68e70"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: HIT
age: 6404
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0DHolCj5wkeXX0zmrAQUPLed0GSjE2xpsEuOYqr19848DRvr0loIxobDAf17PqTwJzs5dQV98wW3izoESsSY37NgAAXgVGvVWua7bnE5s5b%2FFubwzvNM0%2B6DKLckZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5f0c12b515-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-roulette@2.25507485-256.webp
104.26.5.11200 OK 720 kB URL HTTP/2 1win-cdn.com/img/sprite-roulette@2.25507485-256.webp
IP 104.26.5.11:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 720 kB (719644 bytes)
Hash 344d71695bd0f387fedd84fba6ace2c1
1d37e2d66ab1098072febc0a0dc3769d44090048
7775854f4b641fa2c9f954c79de9d4bd51ffea8b9bc74d8e01768718cc438003
GET /img/sprite-roulette@2.25507485-256.webp HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/webp
content-length: 719644
last-modified: Fri, 27 Jan 2023 09:15:36 GMT
etag: "63d39638-afb1c"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: HIT
age: 6404
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r4dAdeD4ftMAy41p%2F9HnBHlrArohsgNOtzLL%2FhRrhebWFX7NPuDJm%2BmCOns78a7%2FVi2XTTs2CeCSqO8CPPK%2BBDs5cDeo6QdPrccewvd9YFjZA28bLevaqTIoOgLfrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5f0c10b515-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-tvbet@2.888adc8e-256.webp
104.26.5.11200 OK 354 kB URL HTTP/2 1win-cdn.com/img/sprite-tvbet@2.888adc8e-256.webp
IP 104.26.5.11:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 354 kB (353842 bytes)
Hash 8df817e5ef0af5dc8279d3f20cae9bc3
12c85bcc74a48053c92f3f75ce3c14e1a19e46d3
61a0f98511e6c60430ab044d1f80e1c9eff83f577064d465cc5f893ba3ce0fee
GET /img/sprite-tvbet@2.888adc8e-256.webp HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/webp
content-length: 353842
last-modified: Fri, 27 Jan 2023 09:15:36 GMT
etag: "63d39638-56632"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: HIT
age: 1863
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kCtJ9WJWh9JcFEDjxg2f8iWQUOYfn8L0SJe3484upp4EH0%2BQPrFsdv4mYZ8IqmGM9doyMcm7J5SIhbZFHEOyV7DtNS37D5DSzbhwfcbCLKDAh2HRNCiU%2BM%2B%2B4TUJ1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5f0c06b515-OSL
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2 B URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://1wmpam.top/
Origin: https://1wmpam.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wmpam.top
access-control-expose-headers: Authorization
content-type: text/plain; charset=utf-8
date: Sat, 28 Jan 2023 19:13:57 GMT
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
set-cookie: core-sticky=890391af8fc888d1; Path=/; HttpOnly
x-powered-by: Express
content-length: 2
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2 B URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://1wmpam.top/
Origin: https://1wmpam.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wmpam.top
access-control-expose-headers: Authorization
content-type: text/plain; charset=utf-8
date: Sat, 28 Jan 2023 19:13:57 GMT
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
set-cookie: core-sticky=300bce1683c333c5; Path=/; HttpOnly
x-powered-by: Express
content-length: 2
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2 B URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://1wmpam.top/
Origin: https://1wmpam.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wmpam.top
access-control-expose-headers: Authorization
content-type: text/plain; charset=utf-8
date: Sat, 28 Jan 2023 19:13:57 GMT
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
set-cookie: core-sticky=b89dcdbbbcfcec31; Path=/; HttpOnly
x-powered-by: Express
content-length: 2
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2 B URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://1wmpam.top/
Origin: https://1wmpam.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wmpam.top
access-control-expose-headers: Authorization
content-type: text/plain; charset=utf-8
date: Sat, 28 Jan 2023 19:13:57 GMT
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
set-cookie: core-sticky=3bff0df57a815b91; Path=/; HttpOnly
x-powered-by: Express
content-length: 2
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2 B URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://1wmpam.top/
Origin: https://1wmpam.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wmpam.top
access-control-expose-headers: Authorization
content-type: text/plain; charset=utf-8
date: Sat, 28 Jan 2023 19:13:57 GMT
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
set-cookie: core-sticky=16f815f09e880af8; Path=/; HttpOnly
x-powered-by: Express
content-length: 2
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b8a28769561cc9fa50343c20a31cb84d
0a7b5c9b25721a985f8278b5ff9b20985fbeaece
2d81b347b7679013552a3c43ff706768527f7a616c8a9edd5641907b7b2cba52
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2D81B347B7679013552A3C43FF706768527F7A616C8A9EDD5641907B7B2CBA52"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5125
Expires: Sat, 28 Jan 2023 20:39:22 GMT
Date: Sat, 28 Jan 2023 19:13:57 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b8a28769561cc9fa50343c20a31cb84d
0a7b5c9b25721a985f8278b5ff9b20985fbeaece
2d81b347b7679013552a3c43ff706768527f7a616c8a9edd5641907b7b2cba52
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2D81B347B7679013552A3C43FF706768527F7A616C8A9EDD5641907B7B2CBA52"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5125
Expires: Sat, 28 Jan 2023 20:39:22 GMT
Date: Sat, 28 Jan 2023 19:13:57 GMT
Connection: keep-alive
1win.direct/microservice/ask
134.122.54.186200 OK 2 B URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://1wmpam.top/
Origin: https://1wmpam.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wmpam.top
access-control-expose-headers: Authorization
content-type: text/plain; charset=utf-8
date: Sat, 28 Jan 2023 19:13:57 GMT
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
set-cookie: core-sticky=780879a3a57fb48e; Path=/; HttpOnly
x-powered-by: Express
content-length: 2
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2 B URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://1wmpam.top/
Origin: https://1wmpam.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wmpam.top
access-control-expose-headers: Authorization
content-type: text/plain; charset=utf-8
date: Sat, 28 Jan 2023 19:13:57 GMT
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
set-cookie: core-sticky=4483dd81051eb823; Path=/; HttpOnly
x-powered-by: Express
content-length: 2
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2 B URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://1wmpam.top/
Origin: https://1wmpam.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wmpam.top
access-control-expose-headers: Authorization
content-type: text/plain; charset=utf-8
date: Sat, 28 Jan 2023 19:13:57 GMT
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
set-cookie: core-sticky=47446d5769b203fa; Path=/; HttpOnly
x-powered-by: Express
content-length: 2
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 3.4 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with very long lines (17749), with no line terminators
Hash b1da0f55def6bae6eca720e54c5b8a1d
206692db7f4b3e76399da513e790f6fa7b18633b
2fbed773e4d7a4e04c956ed38b8f2f667b452cb4b6add9df05e91463314c5af5
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 88
Origin: https://1wmpam.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wmpam.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Sat, 28 Jan 2023 19:13:57 GMT
etag: W/"d22-IGaS239LPnY5naUT55D2+nsYYzs"
set-cookie: core-sticky=b1ff9d782588ea7e; Path=/; HttpOnly
x-powered-by: Express
content-length: 3362
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 18 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 91ecb0ced11003c1bb35055eadba442b
6944808390bca230850d68ed9ba697b5157ebf55
35a734498c074c56bce66dbc32f88c8ca7755dd7fc9c7d419866f31b063fd924
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 80
Origin: https://1wmpam.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wmpam.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Sat, 28 Jan 2023 19:13:57 GMT
etag: W/"4734-aUSAg5C8ojCFDWjtm6aXtRV+v1U"
set-cookie: core-sticky=3b80968ed731790; Path=/; HttpOnly
x-powered-by: Express
content-length: 18228
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-deposit.png@avif
190.115.24.75200 OK 4.3 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-deposit.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 22a160f55908549771f823852d5eaeea
267d86356fc72824681f08d9fd1207b77530c08d
bb19dc50ecc9dd60ce8760b73843ce465df86b78a76de6a924c813fc770a2f23
GET /unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-deposit.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/avif
content-length: 4323
cache-control: max-age=604800, public
content-disposition: inline; filename="bonus-banner-deposit.avif"
etag: "afr-jhlkuoDx_XrwjiuFbkzj6HdVsjvDmAeQvV8BbYs/RIjYxYTRlY2UwLTU0YWIyIg"
expires: Thu, 02 Feb 2023 09:59:19 GMT
x-request-id: k_UiPjjC7eUn-KF9U943Q
x-cache-status: HIT
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2.7 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (44409), with no line terminators
Hash 7be14b8a0b056b592a9fc8609eccba2f
5859d8a0e197392c235d966b55dc3567d8f40b4b
8361320771b60ab6963dee173dc1ef498ba42fabf121345156f61388f743521e
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 71
Origin: https://1wmpam.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wmpam.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Sat, 28 Jan 2023 19:13:57 GMT
etag: W/"ab5-WFnYoOGXOSwjXZZrVdw1Z9j0C0s"
set-cookie: core-sticky=158ca94b6d68c5bb; Path=/; HttpOnly
x-powered-by: Express
content-length: 2741
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-cashback-casino.png@avif
190.115.24.75200 OK 7.9 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-cashback-casino.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash f86f39dc44e8f92cc5658a394e833352
54093f2e69f448e122e771ec7c63d3cce35ffbdf
3fded209043aa6ec28cdff6321cff18c41238215a062dc02fab1af3915c637fe
GET /unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-cashback-casino.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/avif
content-length: 7940
cache-control: max-age=604800, public
content-disposition: inline; filename="bonus-banner-cashback-casino.avif"
etag: "afr-jhlkuoDx_XrwjiuFbkzj6HdVsjvDmAeQvV8BbYs/RIjYxYTRlY2U4LTYzNWI4Ig"
expires: Thu, 02 Feb 2023 09:59:18 GMT
x-request-id: uzFsF7HGLMtmmodlVn6LF
x-cache-status: HIT
X-Firefox-Spdy: h2
1win-cdn.com/fonts/SFNSDisplay.2b5dc965.woff2
104.26.5.11200 OK 295 kB URL HTTP/2 1win-cdn.com/fonts/SFNSDisplay.2b5dc965.woff2
IP 104.26.5.11:0
File type Web Open Font Format (Version 2), TrueType, length 295048, version 1.0\012- data
Size 295 kB (295048 bytes)
Hash a54910c24518869ec095d604c76adb74
cd8ed32dd18b7f672bf502847242b0a9eee4c2c8
efdc0e9caf5e1b3f650e8ecd022ecd000bb070e1b0cf359eeb228603c325384b
GET /fonts/SFNSDisplay.2b5dc965.woff2 HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wmpam.top
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1win-cdn.com/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: application/octet-stream
content-length: 295048
last-modified: Fri, 27 Jan 2023 09:15:36 GMT
etag: "63d39638-48088"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vw8CJOf9GLhCE2tL%2FLUsvg4Vc21na1y8dImVDxY%2B5a%2BHqDR2a16cINUgLBQ%2Fj1iQq3lVTjjbdSQ7Vfs3f25ZL2aG%2FBCmiWlPGbcxm2HYeCqT8tYqh5OjfEMTiQHQ%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5f0bbbb4fa-OSL
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 176 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size 176 kB (175808 bytes)
Hash 878ee3754ee0351ece519dd1630045e7
7b42c927106a3350d4bf0d211430a69c2351f670
cc7f9d1cb78417ea9f7911797a52a5a07c476d3d98cd2afb913443d2ec182d5b
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 98
Origin: https://1wmpam.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wmpam.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Sat, 28 Jan 2023 19:13:57 GMT
etag: W/"2aec0-e0LJJxBqM1DUvw0hFDCmnCNR9nA"
set-cookie: core-sticky=64fb19be1041bd3e; Path=/; HttpOnly
x-powered-by: Express
content-length: 175808
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 180 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size 180 kB (179508 bytes)
Hash 706478f3c9dd00ed152faf513d43f816
38eaf2fc749da898103e3990bc39e69a7a0d4780
fdbab072c57bbd8d479c7b80bbc8662d0d44e183cd6fd75e060fb11aa3380bcf
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 85
Origin: https://1wmpam.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wmpam.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Sat, 28 Jan 2023 19:13:57 GMT
etag: W/"2bd34-OOry/HSdqJgQPjmQvDnmmnoNR4A"
set-cookie: core-sticky=9250e14e76aadaf9; Path=/; HttpOnly
x-powered-by: Express
content-length: 179508
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 18 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 91ecb0ced11003c1bb35055eadba442b
6944808390bca230850d68ed9ba697b5157ebf55
35a734498c074c56bce66dbc32f88c8ca7755dd7fc9c7d419866f31b063fd924
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 67
Origin: https://1wmpam.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wmpam.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Sat, 28 Jan 2023 19:13:58 GMT
etag: W/"4734-aUSAg5C8ojCFDWjtm6aXtRV+v1U"
set-cookie: core-sticky=f00e2df9a6729095; Path=/; HttpOnly
x-powered-by: Express
content-length: 18228
X-Firefox-Spdy: h2
1wmpam.top/sw.db344b25.js
190.115.19.101304 Not Modified 0 B URL HTTP/2 1wmpam.top/sw.db344b25.js
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sw.db344b25.js HTTP/1.1
Host: 1wmpam.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: visit_domain=1wmpam.top; 1w_lang=en; _gcl_au=1.1.2016519897.1674933240; core-sticky=http://10.233.80.81:80; _ga_548949LWLW=GS1.1.1674933240.1.1.1674933241.0.0.0; _ga=GA1.1.682835143.1674933240; _ym_uid=1674933241650073255; _ym_d=1674933241; 1w_locale=1; amp_494ccc=o5tCIT4J_TorsTo0nzid3e...1gnssq1ib.1gnssq1ib.0.0.0; _hjSessionUser_2606090=eyJpZCI6IjMzNDUxZmU1LWNmNjYtNWUxOC1hZjlhLWUwMjc5ZmEyNmRjYyIsImNyZWF0ZWQiOjE2NzQ5MzMyNDA2MDMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_2606090=eyJpZCI6IjIxYWFiNTI0LWRlODEtNDY4My05MjhmLTg5NjZhMjUyZTgzOCIsImNyZWF0ZWQiOjE2NzQ5MzMyNDE1NDQsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
If-Modified-Since: Fri, 27 Jan 2023 09:15:27 GMT
If-None-Match: W/"63d3962f-18bf"
Cache-Control: max-age=0
TE: trailers
HTTP/2 304 Not Modified
server: openresty/1.19.9.1
date: Sat, 28 Jan 2023 19:13:58 GMT
last-modified: Fri, 27 Jan 2023 09:15:27 GMT
etag: "63d3962f-18bf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: DENY
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=653139882097.2445;~oref=https://1wmpam.top/
142.250.74.66200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=653139882097.2445;~oref=https://1wmpam.top/
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=653139882097.2445;~oref=https://1wmpam.top/ HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 19:13:58 GMT
expires: Sat, 28 Jan 2023 19:13:58 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=4274273072789;gtm=2wg1p0;auiddc=2016519897.1674933240;~oref=https%3A%2F%2F1wmpam.top%2F
142.250.74.66200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=4274273072789;gtm=2wg1p0;auiddc=2016519897.1674933240;~oref=https%3A%2F%2F1wmpam.top%2F
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=4274273072789;gtm=2wg1p0;auiddc=2016519897.1674933240;~oref=https%3A%2F%2F1wmpam.top%2F HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 19:13:58 GMT
expires: Sat, 28 Jan 2023 19:13:58 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 3.4 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with very long lines (17749), with no line terminators
Hash b1da0f55def6bae6eca720e54c5b8a1d
206692db7f4b3e76399da513e790f6fa7b18633b
2fbed773e4d7a4e04c956ed38b8f2f667b452cb4b6add9df05e91463314c5af5
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 101
Origin: https://1wmpam.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wmpam.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Sat, 28 Jan 2023 19:13:59 GMT
etag: W/"d22-IGaS239LPnY5naUT55D2+nsYYzs"
set-cookie: core-sticky=ea0755b956748598; Path=/; HttpOnly
x-powered-by: Express
content-length: 3362
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2.7 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (44409), with no line terminators
Hash 7be14b8a0b056b592a9fc8609eccba2f
5859d8a0e197392c235d966b55dc3567d8f40b4b
8361320771b60ab6963dee173dc1ef498ba42fabf121345156f61388f743521e
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 71
Origin: https://1wmpam.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wmpam.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Sat, 28 Jan 2023 19:13:59 GMT
etag: W/"ab5-WFnYoOGXOSwjXZZrVdw1Z9j0C0s"
set-cookie: core-sticky=ed3f39e7fa8b2df7; Path=/; HttpOnly
x-powered-by: Express
content-length: 2741
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=5025282736224;gtm=2wg1p0;auiddc=2016519897.1674933240;~oref=https%3A%2F%2F1wmpam.top%2Fbets%2Fhome
142.250.74.66200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=5025282736224;gtm=2wg1p0;auiddc=2016519897.1674933240;~oref=https%3A%2F%2F1wmpam.top%2Fbets%2Fhome
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=5025282736224;gtm=2wg1p0;auiddc=2016519897.1674933240;~oref=https%3A%2F%2F1wmpam.top%2Fbets%2Fhome HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 19:13:59 GMT
expires: Sat, 28 Jan 2023 19:13:59 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=6966216613444.184;~oref=https://1wmpam.top/
142.250.74.66200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=6966216613444.184;~oref=https://1wmpam.top/
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=6966216613444.184;~oref=https://1wmpam.top/ HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 19:13:59 GMT
expires: Sat, 28 Jan 2023 19:13:59 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/5b4ab347-f37c-44e4-93e6-2c1c0efa069e.jpg@avif
190.115.24.75200 OK 5.3 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/5b4ab347-f37c-44e4-93e6-2c1c0efa069e.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 76a502c1036d076e2317739f0cc878d8
480303b6e1e68b1d04e998d9bcd26224429db376
e377abb67003f9b87b6c67e87b9814b99bb3c1de68f286546d9af4e6d6377351
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/5b4ab347-f37c-44e4-93e6-2c1c0efa069e.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/avif
content-length: 5302
cache-control: max-age=604800, public
content-disposition: inline; filename="5b4ab347-f37c-44e4-93e6-2c1c0efa069e.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzOTM2OTc5LTJiMmQxIg"
expires: Thu, 02 Feb 2023 09:59:10 GMT
x-request-id: hS5nFRN0pTfRoKGm08TCF
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/576a0d3a-0df0-4a5b-ac90-7e9f2ab73407.png@avif
190.115.24.75200 OK 4.3 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/576a0d3a-0df0-4a5b-ac90-7e9f2ab73407.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash d5f05284c21b7798248cd9fa99bfd299
bf9b3b55c3aa5508d51c2935e6494a6f91fb21b9
85a15ca1b3ad7e7569214ac1e02596a70b806eccd8ebf2b9fb079ca53986a0d4
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/576a0d3a-0df0-4a5b-ac90-7e9f2ab73407.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/avif
content-length: 4304
cache-control: max-age=604800, public
content-disposition: inline; filename="576a0d3a-0df0-4a5b-ac90-7e9f2ab73407.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzOTM2OTZmLTIwOWY5Ig"
expires: Thu, 02 Feb 2023 09:59:11 GMT
x-request-id: qdWArseWFiQPH7191DrZi
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/81c5273a-ebb1-47f6-8535-6376c353ea74.png@avif
190.115.24.75200 OK 3.6 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/81c5273a-ebb1-47f6-8535-6376c353ea74.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 38274844df1004bd9a0e2ebaa78fc880
ef316b9b62257b1e930eb064f30c1baecd86f2b9
5d128fbc4ca805ffd77a5d0c93ed6c15e548157d1b6a68b16c2849a98799a6a6
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/81c5273a-ebb1-47f6-8535-6376c353ea74.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/avif
content-length: 3601
cache-control: max-age=604800, public
content-disposition: inline; filename="81c5273a-ebb1-47f6-8535-6376c353ea74.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzOTM2OTc1LTY1Njk0Ig"
expires: Thu, 02 Feb 2023 09:59:15 GMT
x-request-id: 3_3K_XaC4gvPsdkGmWl7c
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/f736e1ff-fdf7-40e5-93b5-2daa1b472e4d.png@avif
190.115.24.75200 OK 3.3 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/f736e1ff-fdf7-40e5-93b5-2daa1b472e4d.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash bbb2a9093140015e4ebcb4b1ade5b171
dc35c677bb7d9b9e222f93e844793afc4fc06b2a
769a8489bc32f748e268b35024e9726719ef2a65d32665b0a5a54ca6d28789d9
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/f736e1ff-fdf7-40e5-93b5-2daa1b472e4d.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/avif
content-length: 3255
cache-control: max-age=604800, public
content-disposition: inline; filename="f736e1ff-fdf7-40e5-93b5-2daa1b472e4d.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzOTM2OThiLTFiYzYyIg"
expires: Thu, 02 Feb 2023 09:59:15 GMT
x-request-id: yhDgjau2hqJoacHHecauB
x-cache-status: HIT
X-Firefox-Spdy: h2
1win-cdn.com/js/icons-pack-social.11d06b0b.js
104.26.5.11200 OK 12 kB URL HTTP/2 1win-cdn.com/js/icons-pack-social.11d06b0b.js
IP 104.26.5.11:0
File type ASCII text, with very long lines (20091), with no line terminators
Hash 2b8da52c254bccbffc84b5297bd90b3a
eebcd5b84fa3d7cb987507917768566ee2477f0d
d8dc4b79766780a208115dd6984b80371808f80737d9f45e51d652e05a0289af
GET /js/icons-pack-social.11d06b0b.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=20146
access-control-allow-origin: *
etag: W/"63a42a53-4eb2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3229926
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P9odMTMEpJDmjRoQZ22UZ23LYErM%2FNPrAE3jWwa6J9Cnf1b9APSCslPhJC3oug4p4WwyGXiXMrZBRMD0%2FkqhNjSb8PwkYn96GKg02iY8uSGC%2BCCc%2FyRBm3aw5LcmlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5facbdb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/1983b5c6-aeba-424f-b790-01d500023607.jpg@avif
190.115.24.75200 OK 7.6 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/1983b5c6-aeba-424f-b790-01d500023607.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash d437b0757b3d3be3c19c87919a3aa1d2
32a477ee6439bab8e93e3f47c949000a2c6270dd
0cf00b44bd1b346f12c6b46e7316669113d0c2cd43e752c5a06ae4990d78d9a8
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/1983b5c6-aeba-424f-b790-01d500023607.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/avif
content-length: 7591
cache-control: max-age=604800, public
content-disposition: inline; filename="1983b5c6-aeba-424f-b790-01d500023607.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzOTczNDEyLTIxMzk1Ig"
expires: Thu, 02 Feb 2023 10:09:25 GMT
x-request-id: 7FZkIHauUdzQArQbJb8jG
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/relax/c_102de4b840e0b3d43ec219886af06871.png@avif
190.115.24.75200 OK 7.4 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/relax/c_102de4b840e0b3d43ec219886af06871.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 44d6d73bffea52fdb89dbce90b12ed68
3e2feb53775a9b247958092366956ec10ac06b3f
3249942415e96d6fb3c5099b69b378f556f3bbc1cd3e674e6c87311177a4fa10
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/relax/c_102de4b840e0b3d43ec219886af06871.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/avif
content-length: 7415
cache-control: max-age=604800, public
content-disposition: inline; filename="c_102de4b840e0b3d43ec219886af06871.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYyOWEwODM4LTY4MzFjIg"
expires: Thu, 02 Feb 2023 10:05:28 GMT
x-request-id: BzPlnfcoMMob-lFMDxjbf
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/bgaming/194f01dc-eaa3-4379-831d-5a792c1eca57.png@avif
190.115.24.75200 OK 8.9 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/bgaming/194f01dc-eaa3-4379-831d-5a792c1eca57.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 17026de42f18fb450b84240abe77801b
aac5ef93d090c0f7711e949da60170ceeb09e291
954db7309a3f64c0f1784e7a72542a54a4216f182ea865080ad6efbaa71414e0
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/bgaming/194f01dc-eaa3-4379-831d-5a792c1eca57.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/avif
content-length: 8870
cache-control: max-age=604800, public
content-disposition: inline; filename="194f01dc-eaa3-4379-831d-5a792c1eca57.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzYzkwNDMzLTY0MWJhIg"
expires: Thu, 02 Feb 2023 08:50:36 GMT
x-request-id: XaEAK-kY2gZKSLFgjEWKA
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/evoplay/c_629b5b7ecad77eca213957740c0ac78c.jpg@avif
190.115.24.75200 OK 5.0 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/evoplay/c_629b5b7ecad77eca213957740c0ac78c.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 3076cecb5519fe3ab82562ba350f69b5
cc77dcda234ae49c57fd0534ebddaf1b1fb9fe82
5ee40b48c9b99199aa92cb5c9832626d77f5ba97a362ff617fcc12f94017f9a1
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/evoplay/c_629b5b7ecad77eca213957740c0ac78c.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/avif
content-length: 5026
cache-control: max-age=604800, public
content-disposition: inline; filename="c_629b5b7ecad77eca213957740c0ac78c.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjVmODQ0YWFmLTRmNjQi"
expires: Thu, 02 Feb 2023 10:04:25 GMT
x-request-id: oMLdXJ5uFDVAqqILg_OdH
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/spinomenal/e8c6ec93-32f6-423b-b5e0-574778b0383e.jpg@avif
190.115.24.75200 OK 17 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/spinomenal/e8c6ec93-32f6-423b-b5e0-574778b0383e.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 10efcdb8a9e6e4d6e26335cb5f6f22e5
6dea345a0cbd5d7a467315dd9ebb48949e761b60
6ac02eb9d12d1a9b448180af552bed3ed48b749345c0979ad991650f81c063ce
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/spinomenal/e8c6ec93-32f6-423b-b5e0-574778b0383e.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/avif
content-length: 17157
cache-control: max-age=604800, public
content-disposition: inline; filename="e8c6ec93-32f6-423b-b5e0-574778b0383e.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzNjNiNWM4LTE0ODkzIg"
expires: Thu, 02 Feb 2023 10:05:16 GMT
x-request-id: KL7T5SHGdCoCVOyCw9Vca
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/infingames/5cc068cf-9d52-4102-9f28-66395a65c931.png@avif
190.115.24.75200 OK 8.5 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/infingames/5cc068cf-9d52-4102-9f28-66395a65c931.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 67a53ed7251c92f5ea42d77beae82de5
9110e976e79310157443eac3ae7329b4ebc6d716
527ab81f140771168d3e0d7401d3a75dcd3aa9a9341529b2cd066f105ef01879
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/infingames/5cc068cf-9d52-4102-9f28-66395a65c931.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/avif
content-length: 8467
cache-control: max-age=604800, public
content-disposition: inline; filename="5cc068cf-9d52-4102-9f28-66395a65c931.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzYTk5ODk5LTE3NzA3Ig"
expires: Mon, 30 Jan 2023 12:53:00 GMT
x-request-id: M55yKr0DaOUP7c5_YVuHS
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/infingames/eb768ea8-8c0f-4c1d-a465-b8273ca51b7b.png@avif
190.115.24.75200 OK 7.2 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/infingames/eb768ea8-8c0f-4c1d-a465-b8273ca51b7b.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 346cd8e0efd877ab4b3be5e25dcccf98
e9b425456024f04cd54718964de4460a030ece5b
24c523648df2f1021c092a6a6e217f892a6192c3828d71af9ff2177ae77a8cff
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/infingames/eb768ea8-8c0f-4c1d-a465-b8273ca51b7b.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/avif
content-length: 7168
cache-control: max-age=604800, public
content-disposition: inline; filename="eb768ea8-8c0f-4c1d-a465-b8273ca51b7b.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzNWZlNTkzLTU2ZTRhIg"
expires: Thu, 02 Feb 2023 09:59:55 GMT
x-request-id: H1Z6wD1jtNxW1mPqoxQDi
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/cat_wilde_doom_of_dead.jpg@avif
190.115.24.75200 OK 9.4 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/cat_wilde_doom_of_dead.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 76dbfbe5cdd074e629e319a5d6b3dddb
6ffd4956326fc530e89fdfc5c5708d25cb9617ec
38bbf2f26820df3af512990110e926a7fd0c95dbbd203edad95562aafd75e9c6
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/cat_wilde_doom_of_dead.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/avif
content-length: 9367
cache-control: max-age=604800, public
content-disposition: inline; filename="cat_wilde_doom_of_dead.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjVmZDg5ZjBjLTI3Mzc5Ig"
expires: Sat, 04 Feb 2023 01:30:02 GMT
x-request-id: LGSuP5PoWS0qM3nJ8dU3I
x-cache-status: HIT
X-Firefox-Spdy: h2
1win-cdn.com/img/allwayspin.ef1458a7.svg
104.26.5.11200 OK 7.6 kB URL HTTP/2 1win-cdn.com/img/allwayspin.ef1458a7.svg
IP 104.26.5.11:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b56cd99ccee322ba4ec431afa197a5c9
483670e76e7cc3cb85ff2c56c14a30bcfeb8e438
def177000f378314a984e0f65364a0eb43c794a20694d5048408a335f611dd23
GET /img/allwayspin.ef1458a7.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-db6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zwQ7Xg3YjmPkamESMdZgUbUGvQAD5sb1MeSMASPxNYYG2nfVaTW%2FDRxS1A9J8tin0mq%2Bc9VcTv%2FcQzBuE3AvshqNr9Nhepop74kjc258O76Ret8Xpf9GSKoFPgdxQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d28d9b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/agt.a6dc1f1b.svg
104.26.5.11200 OK 6.9 kB URL HTTP/2 1win-cdn.com/img/agt.a6dc1f1b.svg
IP 104.26.5.11:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5d9cbab4d3e0c3d0572c48b396326f0f
53e3639cf77128258e581fca5d77b100c0953759
2167d3993f034b44fd8595ae0edd8894f7dfd70b31c3334d635d4fa9bf4b65ec
GET /img/agt.a6dc1f1b.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-13fc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1oCHNq8Ip81%2FZ2MhcwuZeNZz1f%2BIJLqH3V%2BNjrQvfV%2FkuJ8XfJJK8og4cWq1FTmePRk%2FbIuH65S3WAUj%2FnZFMgwaXGpMgltw6vR9%2FE2kZ4iUnVuDT3RNg%2BCZed50TQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d28d0b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/26b06924-2e59-423a-b6ef-9bd9c97f41ae.jpg@avif
190.115.24.75200 OK 5.7 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/26b06924-2e59-423a-b6ef-9bd9c97f41ae.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash d43bad364c5a03c96a9609f5817e6150
15772d42d72303f27a057a208ffa73a5e2cd79c5
fc301e54c3cfd5b3a1ae24e06ce4df85391d488199b163e44fe653027fc014e4
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/26b06924-2e59-423a-b6ef-9bd9c97f41ae.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/avif
content-length: 5690
cache-control: max-age=604800, public
content-disposition: inline; filename="26b06924-2e59-423a-b6ef-9bd9c97f41ae.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzMDc2Zjg5LTEyZjkwIg"
expires: Thu, 02 Feb 2023 09:59:43 GMT
x-request-id: TX1K5cWHXpyP0FUMhzS8Y
x-cache-status: HIT
X-Firefox-Spdy: h2
1win-cdn.com/img/apollo.72eae79f.svg
104.26.5.11200 OK 21 kB URL HTTP/2 1win-cdn.com/img/apollo.72eae79f.svg
IP 104.26.5.11:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ffc7d64e6e2dec8b80b74eb0a65ec918
2e250c9625efb6891269885f79fe6febaa10829e
a041f0806cd720148346f085d69492a1b7c42ab063e01f40e727f4b8a3649af0
GET /img/apollo.72eae79f.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-312f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228807
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9RjVmlr%2F8cJgrRkQcKFr1SO0z%2BXng1NgKxUdpYtNyGGf4fvUx%2Fz%2BL9%2BghB%2FTVpw9%2F1GmfscV3THTm%2FSixBnnTb5BJ4V3zrAg2G9JE%2Ffn1x6t%2FZrRXcLwu5Bu8px5SQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d38ebb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/c_8792a3c772d93d7dc92e4edc1d5a31e5.png@avif
190.115.24.75200 OK 8.7 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/c_8792a3c772d93d7dc92e4edc1d5a31e5.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 7921b4a91ddd9ab56997c39c3d48a3ba
c078d305db8a5d1c1ed7c09e1b1c450df04e954b
83182603aa52b27c1d70640c348906f9ce3a5e5e94c05d1bed32780b14dfbb5b
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/c_8792a3c772d93d7dc92e4edc1d5a31e5.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/avif
content-length: 8735
cache-control: max-age=604800, public
content-disposition: inline; filename="c_8792a3c772d93d7dc92e4edc1d5a31e5.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYyYmFjNjBjLTYxNzM1Ig"
expires: Thu, 02 Feb 2023 09:59:43 GMT
x-request-id: F0Vhdy3fdN4X7pVkGsJgx
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/infingames/c_38ae1e54bc435f6d927e64db72581a88.jpg@avif
190.115.24.75200 OK 7.1 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/infingames/c_38ae1e54bc435f6d927e64db72581a88.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 9db21ab2a17ee074773a34d9ce557050
091b44984cd072fb529fded7603caf5577c286e3
8a39b25b51238f74b1c955eae40aabfc074deded7b0bc111061fe139820780b4
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/infingames/c_38ae1e54bc435f6d927e64db72581a88.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/avif
content-length: 7054
cache-control: max-age=604800, public
content-disposition: inline; filename="c_38ae1e54bc435f6d927e64db72581a88.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYyNGQ5ZDcyLTRmZTc5Ig"
expires: Thu, 02 Feb 2023 09:59:50 GMT
x-request-id: cUwa_9FyiRESR_XZhmA_Q
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/0454b4e5-60dc-489e-b56b-32a10b2c8515.jpg@avif
190.115.24.75200 OK 16 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/0454b4e5-60dc-489e-b56b-32a10b2c8515.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 8ec5cb671f5d77870c4aedcbdddf8fa1
076251b76aa32b66c0cec26a61c5a734055f1c8b
6b909f634726426df55659b111f2296bcfc59dd903b08e80c9b8cc3761d1b2b6
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/0454b4e5-60dc-489e-b56b-32a10b2c8515.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/avif
content-length: 15723
cache-control: max-age=604800, public
content-disposition: inline; filename="0454b4e5-60dc-489e-b56b-32a10b2c8515.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzNjNiNTZiLTE4NzgzIg"
expires: Thu, 02 Feb 2023 09:59:50 GMT
x-request-id: lVRDVswYW1yo4KNK2NMTF
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pariplay/c_417ebb6133419d71e5076b8e1b27a711.jpg@avif
190.115.24.75200 OK 4.3 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pariplay/c_417ebb6133419d71e5076b8e1b27a711.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 52be98b40001d0290ead3dc53a30bf09
aa554b3d2e9529c3e9e42c880bb929e9f4b154f6
ac15aaeca6b947566a2f08f9c2eea880daf22488a7fd7336b75f329db018b423
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pariplay/c_417ebb6133419d71e5076b8e1b27a711.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/avif
content-length: 4264
cache-control: max-age=604800, public
content-disposition: inline; filename="c_417ebb6133419d71e5076b8e1b27a711.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYyYjJmMjU3LTNmNmRiIg"
expires: Thu, 02 Feb 2023 09:59:08 GMT
x-request-id: kXIW3_-1LR-h-JPAKkacG
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/infingames/c_171d11fea2c7d05d6a86e9d1d16b550f.jpg@avif
190.115.24.75200 OK 7.6 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/infingames/c_171d11fea2c7d05d6a86e9d1d16b550f.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 7b1c5c217520a7f481efbacb3260d9a4
ed7c8c5563bd2dba071938994725b8d51b498781
691a0da9dc1e49511aed52b3170ff6601ea46403967f1180c29c86e12b26ce6c
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/infingames/c_171d11fea2c7d05d6a86e9d1d16b550f.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/avif
content-length: 7556
cache-control: max-age=604800, public
content-disposition: inline; filename="c_171d11fea2c7d05d6a86e9d1d16b550f.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYyNGRhMWY3LTU3NmE5Ig"
expires: Thu, 02 Feb 2023 09:59:50 GMT
x-request-id: UI7a1cl6h0X7HocY_viEf
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/c_c8e904ac4dabe3818f06e49a09fdaac0.png@avif
190.115.24.75200 OK 9.4 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/c_c8e904ac4dabe3818f06e49a09fdaac0.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash a995261e906304939463e01e8d2209d0
37ba1a9417ce2730d73f53e18643421ec7b05dbd
7f07e25e2084c5d7e38ed047b1e8a11fc2276e23dc966a3dd659824fe5523de5
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/c_c8e904ac4dabe3818f06e49a09fdaac0.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/avif
content-length: 9379
cache-control: max-age=604800, public
content-disposition: inline; filename="c_c8e904ac4dabe3818f06e49a09fdaac0.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYyOGUyMTg2LTkwOTI4Ig"
expires: Thu, 02 Feb 2023 09:59:50 GMT
x-request-id: J8wKb_PLVkwdL47bQa2d8
x-cache-status: HIT
X-Firefox-Spdy: h2
1win-cdn.com/img/belatra.259628ea.svg
104.26.5.11200 OK 8.8 kB URL HTTP/2 1win-cdn.com/img/belatra.259628ea.svg
IP 104.26.5.11:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4338)
Hash 08abca5b29488e7f3297a7fe34088c28
bd680a1516cb89090006a49b8324f34224edadea
ecef2587cec4d5c7925ba6e91744306b517d99303e15d73354e82c17fd17318d
GET /img/belatra.259628ea.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1818"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8zDX0nCN0sE1OZQHTJ4Oa4MgAjxIQnNjR1aaqfWEoNRj7zvXI51K2w8DbxUe8eQ2FQS%2BwMXEXPj%2BuiAgwVb5clnBn0H0qq3IDxZ7nU7ZmxYAdz%2BzmtHt8DU%2FsbNSWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d490bb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/c_300da598258852b57b4ecd31843f80f9.png@avif
190.115.24.75200 OK 9.1 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/c_300da598258852b57b4ecd31843f80f9.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 6e6f32713b50df3ba50d41505175c63f
5547a296063359192cb4ef07b5519bcc16cb447e
04a0454bd3d732c13f6e1e77d7565181c79366d5ec1c949b51f54cf58ce66f3d
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/c_300da598258852b57b4ecd31843f80f9.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/avif
content-length: 9050
cache-control: max-age=604800, public
content-disposition: inline; filename="c_300da598258852b57b4ecd31843f80f9.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYyOGUyMTY1LTg3NjIxIg"
expires: Thu, 02 Feb 2023 09:59:51 GMT
x-request-id: MI6nR4_fmtm2LxIQ6Zx1i
x-cache-status: HIT
X-Firefox-Spdy: h2
1win-cdn.com/img/bet2tech.bb2f3549.svg
104.26.5.11200 OK 6.7 kB URL HTTP/2 1win-cdn.com/img/bet2tech.bb2f3549.svg
IP 104.26.5.11:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (561)
Hash 06a17277cf746bd3807bc362926551db
7f799635aabc7d7419f3f060b4e94f36ddd75936
e9b4ce0d191fb7aa70eb6d47642b8f38428a12561935722339d830c1324975d3
GET /img/bet2tech.bb2f3549.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-5e6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=15L90F5OadmF4MdEpMKS%2BsEJIbp5x3IPn1dnbuEUI6KARlKAdby7wPPG6iN7X81xDO2yJS%2FPIdjfjtoJxUboMjMPJxEg5Vgwqlh32maPwAo%2FilEI%2B5Vq%2FW2wVGCaFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d490db515-OSL
content-encoding: br
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 28 Jan 2023 19:14:00 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Sat, 28 Jan 2023 20:14:00 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
1win-cdn.com/img/onlyplay.820ab1cc.svg
104.26.5.11200 OK 1.4 kB URL HTTP/2 1win-cdn.com/img/onlyplay.820ab1cc.svg
IP 104.26.5.11:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (899)
Hash df43c2a6f89b8b67357edd32479e5594
620aa4a2f350f52fa9f3de6705c3d0af2bee5504
8c12e27a34597fc83cc82ba7ad67cd42b7795163d9a5aae4501b9299aef3567e
GET /img/onlyplay.820ab1cc.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: W/"63d124be-648"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 152034
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F3eHYqsUThGOXIL67ofqtOhIoZgGxTW3KvYSCHb7slmOKRzMs0FY0qkX46BDg7QUnI%2FyHqmhEmIQy0PlVmz1xxslpvoGbpF2dX0BcDQRDs3%2FQer0cJBSHkCSCExAlw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e2a7eb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/5%20men%20gaming.81b340c2.svg
104.26.5.11200 OK 12 kB URL HTTP/2 1win-cdn.com/img/5%20men%20gaming.81b340c2.svg
IP 104.26.5.11:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (1262)
Hash 143970b0040784feac099abdee993046
2e081052ee42803b0f03b3728cc717c5df829dc4
aee2952547c5717d4ccdf1b9c05de205dc98512c59aeccdf5c16435ea7658f9a
GET /img/5%20men%20gaming.81b340c2.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1ac8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tis%2FuoEQxHM52yAk53qbMwcYjUqNor%2FOzynGB6CprxxJPv4xnsFgezLVckW8OzJ8xPBS0gvwUkv1rPDpZYLYPfJmjXxxPiH4Etk1HXyIr7%2FfU7%2FexoX%2B%2BGdHIdgmZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6cc855b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/4theplayer.1c19371a.svg
104.26.5.11200 OK 5.4 kB URL HTTP/2 1win-cdn.com/img/4theplayer.1c19371a.svg
IP 104.26.5.11:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash db3ae2fe77d2c9473c672f91f81ea374
2df07d15912e7efd12c12314fad0b5b29ee05fc8
c3f743d6254653b80948faf5eadd22c1bd1751da972d15d3c90feab4723d4afb
GET /img/4theplayer.1c19371a.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-25e5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C2vN6xR6E1G5IPsEzQUtSEgK4JahpDaeFqGjs8USwSS5Hqp5D8Q5LFmgBVsYyeppbrPQAdFLssAEpb107ZWxI4TXERQCSqocJzDs2ZDOup%2BUvOjDg3LVFNL0H5esjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6cc84db515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/common/banners/all-v2?lang=en&type=desktop&bannersType=main
104.26.5.11200 OK 1.3 kB URL HTTP/2 1win-cdn.com/common/banners/all-v2?lang=en&type=desktop&bannersType=main
IP 104.26.5.11:0
File type JSON data\012- , ASCII text, with very long lines (3086), with no line terminators
Hash 6d2e68896bdea35a43904b8b01dc4d4e
69cfb634b6d2e275dd01c04a6789399c2e3916c9
5f743d235fb0ac4ace72a80393532af7404662d70098973f63f219ad09db5cbb
GET /common/banners/all-v2?lang=en&type=desktop&bannersType=main HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wmpam.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:58 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://1wmpam.top
vary: Origin
x-frame-options: DENY
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vH7e3LRvbBJtUWhqcsvbAvrbbJWbuhjeeaCFB4oU1s2%2BLXajhS1G7O1874QS6WhRq9JQ8xkpS8tAa%2BcTFtUju622U6DJ8wLD8x%2Fm9aXAHzDc6BuDyQ2tUMRiBjJS2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790c0c5f1bc4b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/bD9xEdP9SoU
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/bD9xEdP9SoU
IP 142.250.74.131:0
Hash 11c191bd69289aeda02a7d7e46b066d4
1f1b797c3eaf5908e42f4339227339808f04e505
191c81a6c9616452fa4f2204eb968e1015b451bdc9fb79ab5eac7025faae4559
POST /s/gts1p5/bD9xEdP9SoU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 19:14:03 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1win-cdn.com/img/aviator-game-logo.2fb50dc0.svg
104.26.5.11200 OK 15 kB URL HTTP/2 1win-cdn.com/img/aviator-game-logo.2fb50dc0.svg
IP 104.26.5.11:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2997)
Hash 57b3915385961e4595b28b28392119d7
2c663bb325d2466799ec740924648fd8475ec3cf
9bfd1686e35889804c705385acdd37d6e7fa6978103bf5a18d1f3ffa8bd73384
GET /img/aviator-game-logo.2fb50dc0.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-bfa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3229925
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fbN8lz26UpfVd38i5lIVmlhk16ydO234bTaOU%2FQ5gOwm1X4czGHQGCY%2F9dRv%2Bw0Y%2FisblVJ1aJYOcwfH7OHyfmIltj685iMCbRqKFEGhpFwaKRAY7lorMu8xtjgEkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5efbe5b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d04b173ecc22c619998bda87a8f9ce70
9e3c3ac1b5a8a5fcee6d1b0db1a61b71948d5fe5
c30fbd2807e36b637bd1382a955c34abb4fe88b99173692530d288fff0986896
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8739
x-amzn-requestid: 77241ca1-d7d1-4133-bc06-e89a8db93aef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbANlFiSoAMFrcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44723-0b07156624f03d47665f2d4f;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:50:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9ZePVrD3oL-ImiMCCYYfuUbQ8l09Q-9F91cFRgSgFG2poVC5Ww4JaQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:57:22 GMT
age: 76603
etag: "9e3c3ac1b5a8a5fcee6d1b0db1a61b71948d5fe5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
1win-cdn.com/img/felt.10413409.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/felt.10413409.svg
IP 104.26.5.11:0
GET /img/felt.10413409.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-17fa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228035
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dvkkbDJZn0HAogUU6Q36qK0RnP2FiT6pDoS5%2FFrxS%2FSetG2Wy2JktAozjWx%2FbsWLEGpSQ2sJmzYiUffGWIbyBRfPLaCLmrwiCyyzGf0wjXJCOgglu21hNBtkyJcAYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6db9b9b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/platipus.62dd70ad.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/platipus.62dd70ad.svg
IP 104.26.5.11:0
GET /img/platipus.62dd70ad.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1368"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OOUvZK5ZxKNTeRkT0tZenLRFZhCQb54nNd8XebmQQfCKVPkYe9e6foxyHNLgPywT%2BUlFNnGyjnPaqMcjQPlh0xBjs17xXHfF%2FP46WNZmYhIsXVoH6waVPO2PqJqppg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e3a8db515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/nolimit%20city.73ea77ec.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/nolimit%20city.73ea77ec.svg
IP 104.26.5.11:0
GET /img/nolimit%20city.73ea77ec.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-21a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZLFQlw3Yl1U%2BAOBmgKiCyiSMpqp1uWPU1DXxsRKv2VfPUvIQgUJZnUIk4o1pGF1vmqK2f5EGmsr%2B0w4vA2F5nbX7QTjphLS4QEGkohLwaRNnQr4DWgb6W2ECppfvCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e0a4ab515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/sapphire%20gaming.474064f5.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/sapphire%20gaming.474064f5.svg
IP 104.26.5.11:0
GET /img/sapphire%20gaming.474064f5.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-3bfe"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aUxxFyuIVUsd7vr0opdXahkdh6dRYO1%2FJX8B6avQTsu6pH%2FVXYLwZfpEF9kQ0bZbYmGqbLjgYe%2BuEG6knTwvV%2FvJ1jQpxiqz%2BtA%2Bn270CojVUzTPc0G9%2B6zt8Vw3aA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4aa7b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/spribe.e535371c.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/spribe.e535371c.svg
IP 104.26.5.11:0
GET /img/spribe.e535371c.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-843"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9M2dc%2Bl038zE%2F3V7UPXyUXjIGYR7LGmiQYxT6Lj3UxPWa8WqtbKPRg%2BXNfQAI4iwCiIjr5ks%2FKCXYHdFcXBgXceMJSDJgj5CU5mrZM%2BerSgcS0llOzuv2q%2Bn6nTAFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e5ab4b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/desktop.4480ee7e.js
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/desktop.4480ee7e.js
IP 104.26.5.11:0
GET /js/desktop.4480ee7e.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wmpam.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:55 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=119486
access-control-allow-origin: *
etag: W/"63d39635-1d2be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 27 Jan 2023 09:15:33 GMT
cf-cache-status: HIT
age: 122124
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1zfDKVK8yiOzu%2FaKz2WAmq2VtAymu6XgoBk8IpRPT%2FM7OmE2HLRPKXfKoV7T4asWpVRzKSPPMAnHSHjuSOf8jAxU%2BsWwgZeZtnNDxkavVPUlpOUYpnnqvAoFumXUNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c50bf5ab515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/flags/en.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/flags/en.svg
IP 104.26.5.11:0
GET /img/flags/en.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Jan 2023 10:56:34 GMT
etag: W/"63ce67e2-8ae"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 460827
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qkCNblkr3qEjXQItRNxTCSJPLMyK88JNv%2F8mOf6IBNo%2B8ctJAKkOLM%2FBf3%2Fva1m5Hh22XVTp4cRkaFt4RD5ZyXCvHqW57mXZqLieK2zY%2BefviP%2Fiw%2Fek9ojaGNH9Dg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5edbcab515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/index.7a0a193e.js
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/index.7a0a193e.js
IP 104.26.5.11:0
GET /js/index.7a0a193e.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wmpam.top
Connection: keep-alive
Referer: https://1wmpam.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:55 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 27 Jan 2023 09:15:29 GMT
etag: W/"63d39631-165d2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7RewPU%2Bt4SZTvbtmomns9hlCzwHd0mUQEx1UaRWzpdFk1aNSrBG%2FqxrEwVr3xBZAfRFMGCCCFAVcLa2QVyoBUE6TNO7V14N4z9PiDX34l8BQFqrdDa9tKGCvOebAGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c50e89bb4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/authenticgaming.08e94926.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/authenticgaming.08e94926.svg
IP 104.26.5.11:0
GET /img/authenticgaming.08e94926.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2813"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I0ahjEun4TuskKWza7vkh2ijH24r6AIlWjZDVzeT0J5PdCM7c2Kw68mxJNK90QQ0UwnTBzr5TOmJFxsKZmgtDKM1tVVo96j7O%2BdVaTXje6n9owUCsKw71MXYKRkddA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d4909b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/playbro.29e123ea.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/playbro.29e123ea.svg
IP 104.26.5.11:0
GET /img/playbro.29e123ea.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1b2f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1xzJyLkzDwiWq23WMrJ3hPpAWIqLPBYMtSoQp%2BztZyChLCfb1Ez%2F6kasRVltofAWiZDbe7F7UwGHXmg0qQ4U5Vd9X%2FdoDLVjKQg%2BniVgaHvXDKPosVdGWA3ForKeXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e3a90b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/reelplay.7c34e6a5.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/reelplay.7c34e6a5.svg
IP 104.26.5.11:0
GET /img/reelplay.7c34e6a5.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-6070"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 826462
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JftsqnfX7YSL2ugTYaaq4rJxT%2FXeo4ybO1lx%2FO8zOpYLoxHSqAZiK%2FLCOfEwooDl61M3rvE%2FvvG4wmdIFtuD8ye48welCZxJxkkuwl%2FjdjeeY%2F12rCdUWuWXfD4P6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4aa1b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/virtual%20generation.76588830.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/virtual%20generation.76588830.svg
IP 104.26.5.11:0
GET /img/virtual%20generation.76588830.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2e89"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dgEkNZZPzwWNEZ8gla6GUdOQ4W648noegwJJ%2Fl6GraysPpjtA4uWo2CezXb3Vxbjt6VfnxGnAJ4SOdQ1sdkbNE1OaNu4oV%2BZj6wTQHwg8qSe8DpBujMX2XL%2FY5grqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e6aeeb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/10.fff54e18.js
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/10.fff54e18.js
IP 104.26.5.11:0
GET /js/10.fff54e18.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:56 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=11301
access-control-allow-origin: *
etag: W/"63cfcc79-2c25"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 24 Jan 2023 12:18:01 GMT
cf-cache-status: HIT
age: 368604
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JhGxRZ0D3qSyroHSM9ffYGmKXIOYMZLU6IVyNwX39rPoCj2OUdS8EuO6Au%2FXXqFC273aWevF%2BkyzZ5Dx1tPPluZtvRccYbqLff0S0P1fEw7DvCOvn%2Fl8bbqxXJZfUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c58fbc1b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/fire.47bc0337.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/fire.47bc0337.svg
IP 104.26.5.11:0
GET /img/fire.47bc0337.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-244"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228027
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OXmNAc4vBCGR0U0zic0vgUwgDFms0xlHsEZ3noEI3mqTtKs9DCklxB1BYK2xY5VGWWijSqBv23ypYBFt0wv7OmkhLh5H1iipUcasiqrqzoBZKPO149c6%2BgEFuIWBEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5efbe9b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/max%20win%20gaming.d504cecb.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/max%20win%20gaming.d504cecb.svg
IP 104.26.5.11:0
GET /img/max%20win%20gaming.d504cecb.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-a04"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qLhdJFsIBFLhwb4uysWxd2C%2Fxbe0Jv6CJNPokpUQT%2FVttT9jzc1CAK9sd2ukNnfqz0Z0V31PcGdmZgelYceqBonlCF%2BTYGZ30QvYjxNClwNJUE1RC5QuapM6h3mD0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dfa41b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/goldenrace.423ead5c.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/goldenrace.423ead5c.svg
IP 104.26.5.11:0
GET /img/goldenrace.423ead5c.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-7198"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228035
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h1wNcRgTznamj%2FzHoNZ2shq6lyQ%2BQQU3S2ni%2FHatNZY85TCYf2dwxVXQ2o0XIwC6HFWQ0lcHEDU0vZLX7K23CqmPewfytZ2eMc8o2%2Fg3vSJqrt8aApRQgRR3QvESKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dfa22b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/icons-pack-home.e8bf03cf.js
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/icons-pack-home.e8bf03cf.js
IP 104.26.5.11:0
GET /js/icons-pack-home.e8bf03cf.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=80069
access-control-allow-origin: *
etag: W/"63a42a53-138c5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3229925
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HYMzJ6R6aDU6jq1YkFWdqqRx1Umq8TA0%2BPCQVqC31llF5CCvI6ytd46QtA1zBPSzBcUokXD4s9Ub9AaEEwp7WjJE1sJk%2FyyeEtiCxRv2e14U6fHe1MF6EBgzbiFoEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5efbe7b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/gamomat%20premium.5db51aa0.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/gamomat%20premium.5db51aa0.svg
IP 104.26.5.11:0
GET /img/gamomat%20premium.5db51aa0.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: W/"63d124be-7f9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 152033
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HIL35zfw87QhY97Qc%2FWwae70MFHB%2FX5hwXrz0qQzBG0MXjnqs3kBA13UMt5h6E%2Byv91U61gePrbhoRzgj%2B0Ogh95xK4EyURL4HYIqYAxfPhzPe1qh1S%2FJSvT8XY9kA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dc9c9b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/sthlm%20gaming.a42e0c70.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/sthlm%20gaming.a42e0c70.svg
IP 104.26.5.11:0
GET /img/sthlm%20gaming.a42e0c70.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-3199"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RQD%2Fkg26OTx0EiYvgpsS61nHuQIDrjbe0w6HDTyoVXPMrU2sTCbQbygpAHacApLLSH1orp70YcVXS%2Fru35YEZ8XJNESiFZ7joeLCQLv1%2FK2Mu2q4%2BXNgR5pb1amKLQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e5ab6b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/mascotgaming.fbac2f51.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/mascotgaming.fbac2f51.svg
IP 104.26.5.11:0
GET /img/mascotgaming.fbac2f51.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-b64"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ndI2ssldYuhBL9x8UDBciNWj7Ux15qaTZ%2BNp42X8jjkBhHS5euup1PTtkd0LahR%2BbCkRCYbXbY%2BQPypEkJleAXthswaBWp8iILfJXM0Sbd%2Fg1kg0Dk6OZ325RkGTlw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dfa40b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/hacksaw.ba9f22a5.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/hacksaw.ba9f22a5.svg
IP 104.26.5.11:0
GET /img/hacksaw.ba9f22a5.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-110b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m7zEN6Iv2N84q%2FUuQd7PBX5o%2BKYBsf9J3Z5h83URODSgPFdWg1phAIIb0sIAA01c7%2FtFRMKk%2BluyK9zqsLXBVVg1CnbWSo0m%2BfpW6KHnLngPRHmQTSS%2F%2FwGYWyt6MA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dfa27b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/playngo.ee16ad11.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/playngo.ee16ad11.svg
IP 104.26.5.11:0
GET /img/playngo.ee16ad11.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-dea"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gcQDTjJaZMOfYbN%2F7DvU4lDGp63kanSfjG62GTiGPhlgwIQske6uVf4HHd4q1UquM8TP5PV9jQERlru0%2B%2BMtr9CYKn0Cv7jXV3srSG3KsSddfraQ2T2GXayK7pKQDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4a95b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/vivogaming.41d892b8.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/vivogaming.41d892b8.svg
IP 104.26.5.11:0
GET /img/vivogaming.41d892b8.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: W/"63d124be-f228"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 163935
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TQMRatHCwlunRF0xGGRjAvoPd50RXIs4OhumjRCrNxpaGlR%2FSXr3YgPVyeBYnj3mIvrqqUZ5k9spWuHk1yRHrdyLPTV%2Bilm%2BdbVmfZDQzEDhgarPVcmfKJ9nT6FicQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e7afeb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/boldplay.018c7f09.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/boldplay.018c7f09.svg
IP 104.26.5.11:0
GET /img/boldplay.018c7f09.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-1603"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 826461
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lePuvnTQKI1rhQ9flmRoXG6xIT1MjKBVJgE5TTn8sL9WBH5rnpgzjOYgaDkWCbWfGaqEPJg8aPWRD5YdzCiCbUcQyBJJSeC5Wwnesg50NPvGzPazqjQQ0an%2BwndwAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d7954b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/mrslotty.366e094c.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/mrslotty.366e094c.svg
IP 104.26.5.11:0
GET /img/mrslotty.366e094c.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-8d5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228808
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ipAaP1oGHrIkLq69ah0ZWykBWDlld%2FQCbKEjXoYA0hz9y7RJSPig12rQ8VFxkcu86Xw8rPAxu1Nw9QOcQpo%2FP3IdYXJhWWAIJurl0bdWJo64g6QGgbmifP8rLxwj9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dfa43b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/wazdan.63223c78.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/wazdan.63223c78.svg
IP 104.26.5.11:0
GET /img/wazdan.63223c78.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-cac"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6wO7bk%2B5SVcOr%2BBTMkATTNjpMBwA2T2O%2BRjvd1PUsX63p0A98UTwKPtnDI6IcUOFvaNUOmnbYARAYmM16FkEJofgNsJxjJ%2B2lDAH7QUb%2BRpUPSzP4llcBbe1U4cJOw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e7b01b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1wmpam.top/pwaNotFound.html
190.115.19.101200 OK 0 B URL HTTP/2 1wmpam.top/pwaNotFound.html
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
GET /pwaNotFound.html HTTP/1.1
Host: 1wmpam.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1wmpam.top/sw.db344b25.js
Connection: keep-alive
Cookie: visit_domain=1wmpam.top; 1w_lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Sat, 28 Jan 2023 19:13:56 GMT
content-type: text/html
last-modified: Fri, 27 Jan 2023 09:15:27 GMT
etag: W/"63d3962f-136c"
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
1win-cdn.com/img/spinmatic.6decf00d.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/spinmatic.6decf00d.svg
IP 104.26.5.11:0
GET /img/spinmatic.6decf00d.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-24b3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NQhJawoXMbOostT7k5M8jjUlWxFb0XruNnztrQNRvRizLohJAo%2B3S%2BKvBhRvp3tb6kV4lpuh5AHVPrxeuz4Au27dG55qKurmXUTX9sil7ajPb9wyIhywkGejJN2Kxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4aafb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/zeus%20play.8ccc9002.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/zeus%20play.8ccc9002.svg
IP 104.26.5.11:0
GET /img/zeus%20play.8ccc9002.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-3d9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K0TqofCMX3%2FGunL1FTgSEY2ygUpkfRFKElV%2FUcJHOntiCJ8LljiTbqS6NFG9JOcX3kMm6UE3w7N%2B201Djice5kPSd6L1m0yyr0XHDqfhLTUripNp4NHeeZvps%2FS01Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e7b09b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/simpleplay.21ac090f.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/simpleplay.21ac090f.svg
IP 104.26.5.11:0
GET /img/simpleplay.21ac090f.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: W/"63d124be-a01"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 163935
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c2f4cWT6EGry4aKuxe2iaI%2FYiwd5M0JzpgkAgdWHcHk%2BzpaT6uc9%2BgLbfLI2U0CcMb%2FSMmQYfyMNh2H93YOjfqNaD3HTa6UAUztnIEeaXlLHqNUr3PR0tR2WtHrvEA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4aa9b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/smartsoft.55c81c76.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/smartsoft.55c81c76.svg
IP 104.26.5.11:0
GET /img/smartsoft.55c81c76.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-149b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PHIRZooHRdMvN7X2YrjMl1R0ZpwVPfVG02broHQi%2BH8TE0h%2BcO3WSntqXxuZ4%2FVpZgo%2BLrDzjSExAw9rEUTtFNaSHqm2ZCJbrJ8vpwYoVwA%2FCBk08lBISKYQ75pl9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4aadb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/common/banners/all-v2?lang=en&type=desktop&bannersType=main&localeId=1
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/common/banners/all-v2?lang=en&type=desktop&bannersType=main&localeId=1
IP 104.26.5.11:0
GET /common/banners/all-v2?lang=en&type=desktop&bannersType=main&localeId=1 HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wmpam.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:58 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://1wmpam.top
vary: Origin
x-frame-options: DENY
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b5XJw79bsn%2FABYUo4TOPA59RKHetXpmQ8Lw0TgaFPdZdocZlyJ%2Bpqc1Wk99moo18VNXT2U9jxqqYNHNZomgUOWKiepz9wWZdLIjivtiIF2KJb2xZydnSzxfdLbBTSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790c0c5fac89b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/edict.209e128e.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/edict.209e128e.svg
IP 104.26.5.11:0
GET /img/edict.209e128e.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2f34"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aGtejlKDesKh3VRf5n1hPmEygFq6jLFows%2BsI6rAwYTVHaR%2FJA%2FGJBo8T9OUmJDLFWPpjt7WOLNb0DKWtcQkPfXEN2dbbcFiO1gUvGL8Hi7CMXbgfNdCjhZxw45TYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d997eb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/hogaming.f8502380.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/hogaming.f8502380.svg
IP 104.26.5.11:0
GET /img/hogaming.f8502380.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2cde"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228035
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tbhb1K2g8L2pYbnyRI7Dkk6YLwwWQocPU1NX474OnHIk2tXQiv58abjwMndSbsFnq09SM7XgJgKoWiLmCpUBYEakc7tSODUW6tg1ADH1xNToZ%2FU%2Fm1EP7CfURrhpBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dfa35b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/atmosfera.2954041c.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/atmosfera.2954041c.svg
IP 104.26.5.11:0
GET /img/atmosfera.2954041c.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-156d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pzJ%2B%2FK%2FdlE4z2rLYk5rNRZLzAGIZiYCauqKTncbV17AqxGnL0Fd6jDjsnsvKyeyrEdIwTpeHgIbWMmMs%2Fr66RSc7E%2BeTsQd3Aul%2FBnokomcMdiaQlN%2BIcdZ1a8F06Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d48ffb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/gameart.bec40c08.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/gameart.bec40c08.svg
IP 104.26.5.11:0
GET /img/gameart.bec40c08.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-a20"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228035
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VyQ%2FcTA6MOsTYqP%2B2qXtakJIX4dsdJVvaC92AVo5DABh1%2B29eQTnP2DD1jJFPAI4IKihWqedZe0kIjBK0CV8oOwaHIiiGeJy%2FdM2K5KTg%2FcmorByY%2FvKynely1BhbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dc9c7b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/superlotto.164bda58.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/superlotto.164bda58.svg
IP 104.26.5.11:0
GET /img/superlotto.164bda58.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1a77"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LiD6fdmPBAd7RVukG4jlPM0JHNIA7IsPup4Lmyf5zUQmhEI7Fg9DSoq9F1Uca8mG10TUpRL1KmiufU8ZLorctZdG9aG9EijLmyZ4VrVhp2YLK1xtkc9w5M8KnW0xUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e5ac3b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
api.lab.amplitude.com/sdk/vardata
151.101.130.132200 OK 0 B URL HTTP/2 api.lab.amplitude.com/sdk/vardata
IP 151.101.130.132:0
OPTIONS /sdk/vardata HTTP/1.1
Host: api.lab.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,x-amp-exp-user
Referer: https://1wmpam.top/
Origin: https://1wmpam.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://1wmpam.top
access-control-allow-credentials: true
access-control-max-age: 1800
access-control-allow-methods: GET,POST,HEAD
access-control-allow-headers: authorization,x-amp-exp-user
x-amzn-trace-id: Root=1-63d573f4-7a2bf2976454e5db47cc7e58
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 19:13:56 GMT
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674933236.449797,VS0,VE171
vary: Origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
1win-cdn.com/img/liw.06ac3b16.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/liw.06ac3b16.svg
IP 104.26.5.11:0
GET /img/liw.06ac3b16.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1df5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F52z5SVcPDEoCxNvKsBoJlVsZFKcyxXxMsSf4892Z3T%2FWckjRml%2BOusJTl4H3jYyLscQI%2BjI8JrMCHjJ5FU6AUdc3u5xRyo44jLdynTZ3ft2KUIRhgxRmmCcX2ejoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dfa3eb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/retrogames.513aab74.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/retrogames.513aab74.svg
IP 104.26.5.11:0
GET /img/retrogames.513aab74.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-815"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vn5BffUky0LR80P6ZN2EDCzAeayzmd4glIhb%2B2GC3FSUnHsLaoKa6dgx16OaJr9TreWpgdpitg5IcAFSoaXP7AUO3tlfvYuSxEFg8P8ZaUW6LBUx%2F5Wb04ODmFxhKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4aa3b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/nsoft.694e7d47.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/nsoft.694e7d47.svg
IP 104.26.5.11:0
GET /img/nsoft.694e7d47.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-532"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3fnF%2FjzK31EjOZ62Haur2J75juAIM6X7c8WdoskN1KGzUfLgNrvtHAEPyc38257dDo1vpw8ydoxgSB8s3zLxLqW06YHAqHrtZ7smHT9ISof6PjMdY7KQUgf2fjAWuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e2a7ab515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/relax.c4362d19.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/relax.c4362d19.svg
IP 104.26.5.11:0
GET /img/relax.c4362d19.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: W/"63d124be-1994"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 152034
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HbiahCHKs0bhHz1IOA9EaBV%2FSbSPXXFGRO6fhtgVn2gX%2BXOT9tMrhWyNXzGT3vXAJq1sHVnEjZyJOMnzaS7Kd6Vrg1qxZBoyTKTZi0EleuFa2%2FOVv%2BVniRu1PTvyLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4aa2b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/salsa.aa6535b1.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/salsa.aa6535b1.svg
IP 104.26.5.11:0
GET /img/salsa.aa6535b1.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-246f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2vg3%2FBS1eN2blVRdIGnFGsd7kkIaWrTWDlxcz2%2FIEqJTAFCqg5nARhIH65SIoDJu6FBFk0oQZMDHrzK0nxEQebd8pBzQ%2FY9pmXQL2Orw8gN%2BScWVhrGqzOy%2BqvyACA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4aa6b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/tvbet.c92ea7dc.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/tvbet.c92ea7dc.svg
IP 104.26.5.11:0
GET /img/tvbet.c92ea7dc.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-3edf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s%2FOxdWhswceN1n5umNsSq0zWZaMPYaEe%2FYC1yxJ5lOJxqVg4tq2lrT6jsqFpmba%2FV3hQ10CxW%2F62LlongB9m8P00yH7m6m1cq5JZOWNk2kB5Z9lxn4GszoGevDBdlg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e6ae9b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/539.677ecef1.js
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/539.677ecef1.js
IP 104.26.5.11:0
GET /js/539.677ecef1.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:56 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=22657
access-control-allow-origin: *
etag: W/"63ce67df-5881"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 23 Jan 2023 10:56:31 GMT
cf-cache-status: HIT
age: 460531
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CjJg42qCNVsTTgU%2BYZ5xKUVj4RxhPLjnqPBMY0bEvKFPNcxT5Q%2BdtBkk3EJP%2BrZLkIbSXVCgJ9vkO6BjJ%2F2mspDZRLBvjhwtvIaxCVc6btFY%2FjIHikYT6Yod4ogHqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c58fbcfb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/netgaming.aac206c0.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/netgaming.aac206c0.svg
IP 104.26.5.11:0
GET /img/netgaming.aac206c0.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-127cf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LWtEu3kjwsfjy6%2FRDu2vBXK7AoHnSriZ0ZMBSf33MANtQ26RjxMbdrFeocP9C6Ya5YO%2BRTw4t6dl%2FYJ4sdHrbgmkr%2BgXnAqLsVPuv1QoltfqJ7u0putaP8JhcL93xQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dfa46b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/champion.2f4e5fd3.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/champion.2f4e5fd3.svg
IP 104.26.5.11:0
GET /img/champion.2f4e5fd3.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-a80"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228038
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hnM%2BmzFelU4CRuslmbRjKBXInE6Vfab6%2BvheQNr1cRZz7gQ9i7aldFJurCSPwcZgUzyJaBlbj9rkkc91TugGPqOEcOez9YZqWSk6Nr0rGKkajVWOrTv%2FKGplz3%2BPZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6ebb63b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/playsondirect.60f5d958.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/playsondirect.60f5d958.svg
IP 104.26.5.11:0
GET /img/playsondirect.60f5d958.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1b2b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2NSsza3DhOtu5dBYtpGe9lMrZR5MOZU1VXg03cQdEhAjrZ8bkYNwgoclHMD8S89H7cvIF8NRyTEIdZsfqkWsgAD8ZgwRy8IcUymhHqgtg%2BpXJhVzsBezEIyUcUnyiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4a99b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/hollegames.04d23aa8.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/hollegames.04d23aa8.svg
IP 104.26.5.11:0
GET /img/hollegames.04d23aa8.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2121"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228035
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FhIOYl0N5XNvd%2FygMfQ4aRILJmncZJvFmI%2Bo%2BxSDnV2NH%2FhE4%2B79oMXyDVrpMrFF0kJSzpZYt6w6HcPIag368rRCmEd2WCa6JpwDZdcUckJIF9P6K0ybH1ACVPUkXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dfa38b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/green%20jade.c62a1806.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/green%20jade.c62a1806.svg
IP 104.26.5.11:0
GET /img/green%20jade.c62a1806.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2aee"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228035
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GuKUGPIwokac58N41teYuujwvjzphKSMugWgO8AkBj9B9W8svZvdOcvMtbrdPjKaEyqY22msVpEh3tRNJeM6wWr1%2FGQWwpzjgAARYYneBoiPYMncrW3RJk6C2ciy3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dfa24b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/kiron.4a0c7f94.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/kiron.4a0c7f94.svg
IP 104.26.5.11:0
GET /img/kiron.4a0c7f94.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-264"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v3DZ%2Fbw7OuYDzyQZAGpxhRGSqWnfk3BXqRJgkPAzV7gSMlghhuR%2FlmeGiDU8vVAZ4em%2FuBptogihQvTctoKCOAd1VGB3LKDV%2B1R8r4KhjrZOCye9iIzDZVgBt3GkiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dfa3db515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/worldmatch.767ba51a.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/worldmatch.767ba51a.svg
IP 104.26.5.11:0
GET /img/worldmatch.767ba51a.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-1f6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 826462
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jMFiaDFRUuL23vaeKNRNxhfMrjiCOyL%2BdsHrxK5j%2BronCQHzOInGXqZ4cw%2BRI1GkIzzDtVIgmbW7XOG7Hoy%2FL7CZ4fZHmVvPMH3nd7HCIPynX66JuKNnD2mHnhB02A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e7b06b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/1win.e3630873.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/1win.e3630873.svg
IP 104.26.5.11:0
GET /img/1win.e3630873.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-60f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r%2F66BAz7%2BDRJNNQE4q1TB%2Fm3R34NcGxNhgRa6kCw3JAvLdEXGDkS1lAjnu4M4pPBT03RLjArK8uhAc3%2BNlAQbuGvmvUNCcZWe2sbPjdl8horDX0u5fxuIIiyh434KQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6cb842b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/betsoft.c6b04922.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/betsoft.c6b04922.svg
IP 104.26.5.11:0
GET /img/betsoft.c6b04922.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-14a0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228807
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U6JRuD6tPD%2BQ34giykgrOAaeVCvzXoOyShCK%2BDqZak2jSW0EUkmVFQHqJlq2FDhxdoJoqf0S%2FgNESKY%2B%2Bqb1IQCRe0krliompO2NKmnNfuWRjUc43a94PsMUXMuNQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d490fb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/blueprint.92d09945.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/blueprint.92d09945.svg
IP 104.26.5.11:0
GET /img/blueprint.92d09945.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2a4f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228038
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=agSc3X4waRYr%2Fcft4UVl3LroxnpDnyKwaONWpaFLBGor1YSgnJkF3OxkPlW1Iwxtsa0rS7%2FR2w8P1qNoR9jOSNes19VjB3TDZK%2Frhf6L5VTHUm7Bx9BtitZkEBH6KA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d7953b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/booming.a167e59f.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/booming.a167e59f.svg
IP 104.26.5.11:0
GET /img/booming.a167e59f.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-8b3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228038
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b6geUxgrvQYj0%2FfN29LQIgrext7dGlM14fNfhyiW3qYffck6G7hihGap58KeVHGcHxmE0PvGJwWuT47EKoUBNEFbdznJnQp9NNuS%2FJUzZKaMRMkU%2BOx2bfr6bz8Wiw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d7956b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/icons-pack-sports-promotion.9bb32256.js
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/icons-pack-sports-promotion.9bb32256.js
IP 104.26.5.11:0
GET /js/icons-pack-sports-promotion.9bb32256.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:57 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=19260
access-control-allow-origin: *
etag: W/"63a42a53-4b3c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3229926
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F4RqJCT8YBPVxcLk6RlWh5cpLNRNh%2FdafyKP1h7mT15eYtnQ9IBN97dtVTSRAaHiW%2FB8yEY08VU8sU%2F5t1j%2B13ii4MQlzj0Bj6iS3ZyzinbENn6N%2BeIDEVIFnUbUwg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c5efbf6b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/apparat.982be0d4.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/apparat.982be0d4.svg
IP 104.26.5.11:0
GET /img/apparat.982be0d4.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-177"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KOT5xlLjkAhv4twnCuKqwsLx1AhsOmj7tMzno9EogXloZp1qEKBzCYJi3bJM9cgXYGX0AtG3Rbev2MY1kBpzU3ht2TkmoXdlMJ%2BMyjJ3UsTq8Q%2FbqS1sQ0hDDWja6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d48fcb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/fazi.0731b5cf.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/fazi.0731b5cf.svg
IP 104.26.5.11:0
GET /img/fazi.0731b5cf.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-27b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228035
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rHcJiFEzOzedDlKTmPyBRe5f95sKs25bqxVja74%2BouPg1LQzUW4Hz3arWWPZdbuKu%2Fg05fFxj9cV7cSKziQF7IctHPuYktbsfbjd374lvf%2BH%2F5WTmFCBp6Q5NdSF9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6db9b4b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/revolver.1a5adf31.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/revolver.1a5adf31.svg
IP 104.26.5.11:0
GET /img/revolver.1a5adf31.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-e61"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=brbXjVBwn%2FaE2pglV%2B8oQ7JdbHTDZr0KlZqloNyM6go6Wx7Gw6PAHqmOxH9TixFaIF6KwtyzskHSBHiX0JbH7W03TUROaZ75gVLH7CPqv2eHiuxBcs0QPJor7w2%2FDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4aa4b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/spinomenal.30d1dc2d.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/spinomenal.30d1dc2d.svg
IP 104.26.5.11:0
GET /img/spinomenal.30d1dc2d.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-6e7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228679
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=frEF%2BZ6neU0TRcuvFclHMbW6WzS5hNg9jovwKCg9iiFDX0YyfgyHKSXxKUYHORBc08fsFH0WyOYQWhq82DD0VTWw3XNzvv%2FHhecpaZe20pNQEWscVWwuD9xTUvDoWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4ab1b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1wmpam.top/
190.115.19.101200 OK 0 B IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: 1wmpam.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Sat, 28 Jan 2023 19:13:55 GMT
content-type: text/html; charset=utf-8
x-frame-options: DENY
content-encoding: gzip
X-Firefox-Spdy: h2
1win-cdn.com/img/7mojos%20live.0bbc237e.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/7mojos%20live.0bbc237e.svg
IP 104.26.5.11:0
GET /img/7mojos%20live.0bbc237e.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-144e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HrDRUrPWCI79HM7vfm5OoWf%2FZO2FxgksevpDRu%2B%2FW85zd8KxWoNUEbmlNYvDs8kkTcefpD78bxjw314ztFClzQOYQ8uRWxHdC6I0DNOp8REYR45603mOgJVNbHH9Gg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6ce875b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/high5.4aa8a605.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/high5.4aa8a605.svg
IP 104.26.5.11:0
GET /img/high5.4aa8a605.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-1314"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 826462
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rkdT6ePKxyR0hAyOqe7HHJ8H2AqCggeIZn7vLB2TFQOjZW4yXoKS2LbAR%2FXLs0QcUoylzQ6GtnUOqdtVUFl5pU7vqe3GWFcTIimFC6exTRIJjyJHCHUAPCPkYH7uqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dfa29b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/playtech.f068e8ab.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/playtech.f068e8ab.svg
IP 104.26.5.11:0
GET /img/playtech.f068e8ab.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-50e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u3T74FWrtbpODgBh%2BPGVfKCisoxSESJdh37%2Fz6yC%2BV9mdpGdztzWgsj%2Fc71Rt%2BRZC9dZYpweHxfZKfJ7iob3E1casx9c1XSnwxWkdi077KbhmT5slHf4Vf2f6euAzw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4a9ab515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/vibragaming.4b28676d.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/vibragaming.4b28676d.svg
IP 104.26.5.11:0
GET /img/vibragaming.4b28676d.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-22a4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TWfyWpNlXWd9d6wynjngC6PiTpAZj1XleHLiz5gT9HIJQSxYODnvyAR09zGWRbYUZ%2BgUWysQ62DCNvuGzQl4gMzKw61IzG00HO2a%2BallAAn8UpXE152yx8bG34XsRw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e6aeab515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1wmpam.top/sw.db344b25.js
190.115.19.101200 OK 0 B URL HTTP/2 1wmpam.top/sw.db344b25.js
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
GET /sw.db344b25.js HTTP/1.1
Host: 1wmpam.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Sat, 28 Jan 2023 19:13:55 GMT
content-type: application/javascript
last-modified: Fri, 27 Jan 2023 09:15:27 GMT
etag: W/"63d3962f-18bf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: DENY
content-encoding: gzip
X-Firefox-Spdy: h2
1win-cdn.com/img/iron%20dog%20studios.8a9aca7b.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/iron%20dog%20studios.8a9aca7b.svg
IP 104.26.5.11:0
GET /img/iron%20dog%20studios.8a9aca7b.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-23e8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J%2F8Du88aIo%2BypC4ePAEJKNpm5DzhCZORHGtQkictsnrVRiJlWN%2Badu6l9rhn2KfZI071RTyt0ea869PzO%2FEsIwSXdxyTWjUND8Vua4ASt4oXT0U8FVcNAGgUzpHUgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dfa3bb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/pushgaming.bc19137b.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/pushgaming.bc19137b.svg
IP 104.26.5.11:0
GET /img/pushgaming.bc19137b.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-e19"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0Bcj2ipUoRoF%2FxcH136dzWA0eFdmrAucRr8B5dFGvcJslxwMCAwoPnQGcKI%2Bm3mBBmIss9A0rGhWuWKY1VP%2BN6NNGH%2FfWHPW1mHjZs3cVk%2FX7Uh0DoE2V7xXQFyQOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4a9db515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/thunderkick.93d20b41.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/thunderkick.93d20b41.svg
IP 104.26.5.11:0
GET /img/thunderkick.93d20b41.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: W/"63d124be-1f2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 152034
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ivz68009rpTBaH7p1CsOQ%2BEsuWOT1UQxagRYG1HdfoEC6SekAtyZep46VRSzYb6cY8egImdobZUwDwEeIwCDQY0ZCRu8NH6LGgLm5JegTOnGUjd0IVybwr%2BFqaCW3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e5ac9b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/kalamba.f208b29d.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/kalamba.f208b29d.svg
IP 104.26.5.11:0
GET /img/kalamba.f208b29d.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-5343"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FeCqu8Qhd8OosbmPokzoZ3Kbg%2Bp2Dvcpn92sr67IF2LBZekC7tU5V0NI5uuZZkq6P8x%2FyQwzc3CCl%2BDGGYQ5BkI3ia0tNu0oLfZdZglNBv7DoqQRk2cvdOrG32Vucw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dfa3cb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/electric%20elephant%20.0f5be6ef.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/electric%20elephant%20.0f5be6ef.svg
IP 104.26.5.11:0
GET /img/electric%20elephant%20.0f5be6ef.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1cdd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uj1RPyWaU9VTqDuwYisZFs1WxgKkaXOC%2BRko8dT4TvVBlDDlwJjS2lx1FfV5NUIq0P879%2F0pNAEHniVzC2lh%2BxeHNzcdQNRByjbcpydKsRvUlHyJ5osuwnQHe2h24Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d9983b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/tomhorn.8e656e09.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/tomhorn.8e656e09.svg
IP 104.26.5.11:0
GET /img/tomhorn.8e656e09.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1811"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YVnopjWQhHk7A5kWX3t8rBiwDTjeBBZykVBo81UoHt53A1ZXRTWL2M4BBu%2B4kuSR8Z6HphnVyTrSYxKE5DOLMlvut%2FHQxPVF%2FuCteE3mJxEreBUhrbug2K0MqzOYUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e6ad5b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/skywind.61796511.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/skywind.61796511.svg
IP 104.26.5.11:0
GET /img/skywind.61796511.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-15e3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 826462
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PCHwM3fQtYvR9T8Ktti7UJw3ho3rGbCwaqIiiC3SiBcFHtFhHIB%2FQ%2Bc6iLocmE%2Bpy2S5epndpmSpvMyzqjawQRpcPW7gWWZl8MTq2peyfTpjfAWflLJveQeDH%2FlWTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4aabb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/synot.becc85e0.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/synot.becc85e0.svg
IP 104.26.5.11:0
GET /img/synot.becc85e0.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-b94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IeZNtTZgxkrTdIGxXVQrKTD3I0UDOJ78tyvotrZojfz0fnoDpeVmMNxcIR3sjfeZ54C4EevFDXAr9iLwhxzkN%2FHOwHcU8iULlTNTzgUTrcSnmSma2BJa%2F%2BOH1DzjFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e5ac6b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/sagaming.4e1b794f.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/sagaming.4e1b794f.svg
IP 104.26.5.11:0
GET /img/sagaming.4e1b794f.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1060"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1u1Ps6h0JIcN%2FYU7%2FHjeIzQ0GxZ8w6quFM2NKdSDXX2F0fgS10eMt6laPBM0sqvBEYZvnC4T4tYujAvbQjOAFE7gs3FwjCfSnvZXIbOimTJET9oZ7%2F6zNa3N2v50Yg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4aa5b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/7057.ec2ef73a.js
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/7057.ec2ef73a.js
IP 104.26.5.11:0
GET /js/7057.ec2ef73a.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:56 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=99219
access-control-allow-origin: *
etag: W/"63d39632-18393"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 27 Jan 2023 09:15:30 GMT
cf-cache-status: HIT
age: 118553
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P5zqPAnsiZ%2Bu5hQBGqw2vbJ7oos%2BS3BIw0fJ6q9etJsi87uaNLLufBseTdkkxKxYQxOCUTcWx1N7X9ACMJ8EKLLnpLSo8HYy3PK96qOkmaHvJ7PPPkPkHzS%2BK4XDJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c58fbc6b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/igrosoft.81ca5abc.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/igrosoft.81ca5abc.svg
IP 104.26.5.11:0
GET /img/igrosoft.81ca5abc.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2243"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B7Mu5sJrF8tRwnMWEXaFcDU4gZgpsT4jAAJTAXz2f3DywjFAvCTeZk%2FvnxgrU0g6ab3UV4wSvW63hqeUQqHhCFWf0g3U%2FUQxfAATTQAqmOt4JMwzTvIoa535z6d8zg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dfa39b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/redtiger.81376ac8.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/redtiger.81376ac8.svg
IP 104.26.5.11:0
GET /img/redtiger.81376ac8.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2a9f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228679
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9cPUnclHyAh6Kwew%2FX63THI8DWXtQB6cLYYCk3pUOADuToY42WUAH52WNxLOsD8mCMwS2ZGsEHV4Xf4d1YTHQFeJIUA6pmqysQYAFRmImfV6Ia2Mc7VCMm7GmRpL8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4aa0b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/northernlights.efa65c9f.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/northernlights.efa65c9f.svg
IP 104.26.5.11:0
GET /img/northernlights.efa65c9f.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2699"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i8%2FLj0ntXVKikjFsSoT7Ve%2BmMOAw2PrNPBuMEc58HJQdGsyWKc5nd73KVWsej7mgnfZkabJR9ZkITtsqviLh4nd3FXWYHSKSfuER8p0TVNCCPM%2Fx%2BBJ128MvLhUFYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e2a77b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/play%20pearls.e674562a.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/play%20pearls.e674562a.svg
IP 104.26.5.11:0
GET /img/play%20pearls.e674562a.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-a4a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GoObMfN4KJ93b2gZ6Qy%2BpgKGHF6QdT91vBeZ32GTMEqb93OA9mVCt1HlzgHusLDY6t6krg3zjKVgyc1YyKSYNhVi6MLZ1U145D2iUX9fmJ3%2BBrVUlbEVbhDElBLLxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e3a8fb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/yggdrasil.6666231e.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/yggdrasil.6666231e.svg
IP 104.26.5.11:0
GET /img/yggdrasil.6666231e.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-12ef"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N51pIBM0nHSLxwfi3%2FMUMs0yVwsmjeU6JPc6McV0q5DnJ5qVsbv8%2FHKYbpsZgq%2FObh5tpa31iEmYSNdFG8tT%2BzkqAijo8FXXowwCY38eZR6eLPfDCCnsp580s6Lz1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e7b08b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/spadegaming.eebb41d8.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/spadegaming.eebb41d8.svg
IP 104.26.5.11:0
GET /img/spadegaming.eebb41d8.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2d62"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dNmFkWrqDEkaWxpKuMRZMj3qoJgVDEt1piasTHI7X1FTnSLBodekwlEwGYrpQu2rKk09YWllUBIWo%2FrgAWB5VOkRnHKhGCNqO5p5sLh34tXk%2BEl%2FxBV9jJBhz3qnbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4aaeb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/silverback.e3f805e2.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/silverback.e3f805e2.svg
IP 104.26.5.11:0
GET /img/silverback.e3f805e2.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1c185"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hXNJVN0kZt%2BSxLeTIpWKRnwaIRRRUON7KzlAiAw6mAJThEbfwYLj8%2BzsbefEaxNLs3y36LEQTtO776XYUx5n8npsNnnvXJFzX7Y9yFOn6cf7b7as0rcvkG6ASP69tQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4aa8b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/1883.ce7803cd.js
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/1883.ce7803cd.js
IP 104.26.5.11:0
GET /js/1883.ce7803cd.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:56 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=13732
access-control-allow-origin: *
etag: W/"63a42a53-35a4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3229898
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C7wWs8R8MYE57fvzPYrlNZPIJZ8z7pPHheN9Ti3FEcfi3gY6b%2BY57bryASdAE2zpzoEnCv9bfq2vNlAMV1PlHIlzODnt75bwujiQmN%2FWqYVdr2xDf291cLzbex4%2BEA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c58ab5eb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/big%20time%20gaming.848cd084.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/big%20time%20gaming.848cd084.svg
IP 104.26.5.11:0
GET /img/big%20time%20gaming.848cd084.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-209a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aBM2MhTTBPe1LbYAyKlXHueIEs2TVWfd1eVfrAQAT9QY5tjtFzw7s4b%2Fav8AJa60SurHm571etX%2Fh350gPi6mtw6VdEYVeiW%2FkqnU67WgVPdRUDvU%2FxzHN1%2B%2B8KKlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d7950b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/caleta.4b134d78.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/caleta.4b134d78.svg
IP 104.26.5.11:0
GET /img/caleta.4b134d78.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-502"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228038
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RT5vXGb5HRNVJULEaEZzmHEAfi3mqsRCHDrTdgURDfIiWjmOwkztJU58nLuJdDdTxFALev%2B7iVB%2Fk%2FTa6UtWXkd51CVMCzc8VhizJ0NSYm521rRGD0aGIc5n59KHGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d7957b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/pragmatic.fd2b7bb4.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/pragmatic.fd2b7bb4.svg
IP 104.26.5.11:0
GET /img/pragmatic.fd2b7bb4.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-52f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p5MPoSu%2FxV%2B9MoDowxhFmlY115LLqWWV%2F%2FtO06wWdWGam%2B646HRw%2F82Pt9xcIH3bJkJZK7c5CKI5ZgeTZSJIndjO%2FcC25Lj6EdzC5%2BkypKKFOs1xJm9yMyi2Blu%2Bbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4a9cb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/turbo%20games.bfc7405e.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/turbo%20games.bfc7405e.svg
IP 104.26.5.11:0
GET /img/turbo%20games.bfc7405e.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-18b5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 858474
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vu%2F62BlXAJQWCgt9igSVURTHecgIJ2nBpZnrZxlD8X1LDT4JcYhBi%2Btb490WEoLxbydy8WMMRiK9lDTUsbZpxxtp9JZICTDlJvp9yojSTIPwBtDjFEGtNj%2FZyztzBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e6ae4b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/fugaso.a193ab53.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/fugaso.a193ab53.svg
IP 104.26.5.11:0
GET /img/fugaso.a193ab53.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-4c1e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228807
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9FY8DMznRsPZ6YsCt2sw%2FKulyquH3TuH6IQyWaeoQSOC%2BWKgpVTGVuszB3gxaNXLjVJGyNcZgsGIc1wxnEoj4ioSGtK6IPu%2FKEU%2Flll%2FS5hmtMXxyyUPsWvGChdbMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dc9bfb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/gamomat%20standard.7d28ae64.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/gamomat%20standard.7d28ae64.svg
IP 104.26.5.11:0
GET /img/gamomat%20standard.7d28ae64.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-31a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228035
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FZN1LBHgacEj9rSTJeXF50qcqqC1pwSyYvBcP4QMHxQamdHjO9EcOMtkeqwKIAcny3uBW%2FjS%2FLt3lb550BKJdbjwKpfIe97rU08Z3n%2FNT9fdWiR8%2FfhwFQSP2jE%2FIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dc9ccb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/betsolutions.9f618e22.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/betsolutions.9f618e22.svg
IP 104.26.5.11:0
GET /img/betsolutions.9f618e22.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-911"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ai3h4JDf%2BUrXDwpyQnhh2rBttbLvz%2F9qiJ%2FRb3EptoT2w9iMJRiP4vnZuacqfxBc8DQoOi%2FGK2BzgCmv41wxMyZmbpezo71JKwMW%2BFzPqBcp9fo1PfRajQEKyykRZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d4911b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/onetouch.8550a163.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/onetouch.8550a163.svg
IP 104.26.5.11:0
GET /img/onetouch.8550a163.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-3ad4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SQEXguKFYWwXCp1FyH5pTbShVk8H7MU%2BeqXfsEObPzgWhfV7BEOW6RUEbzd62s7577fzBWS6wrXWMnoxBe48Pt9mMegU5apTmTNWCDF2UhJWgTSkWXGEEraQxKwpPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e2a7db515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/quickspin.9b693b27.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/quickspin.9b693b27.svg
IP 104.26.5.11:0
GET /img/quickspin.9b693b27.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-16a6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228679
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OVmfn6vz9%2B8jc942yYiMzDqpzkXy0RfgKSbY9LNAWofEbJn7BwXVcl4fK%2B80gMEbHAyl4NeSIXEbYoT2PeE3CDJJ%2BZC22CLxDDQNgVcTWnQndipr5J9RZ8b%2B1XiTJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e4a9eb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/triplecherry.ca9e4ee4.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/triplecherry.ca9e4ee4.svg
IP 104.26.5.11:0
GET /img/triplecherry.ca9e4ee4.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-d37"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3h1Crg0nE%2FggB7Q2%2Bs5mDQ1o5Dl7Jc8lD0leMH3nLPFZflbS3sEFgMj%2FMz0BSEHoCk07yFmU%2FZ6%2FyyqZiFauWMXD5jL7%2FFn8BFDsMC83KuyOC0WRFhDD0MC0ululIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e6adbb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/tpg.b2c2a9df.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/tpg.b2c2a9df.svg
IP 104.26.5.11:0
GET /img/tpg.b2c2a9df.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-a6f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 826462
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c%2BqAwsFnYQVa2wJGCA88O4H4MlIZTrRfh1S3rywxaOkJQkr7dB0sGmY7gvj0natUdzmjGa1NC5ClQvaOO2Bd1ik3V2fKsD%2FfIUlCrWeXyWvrgidW0Te%2BuqDwQNsDlw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e6ad7b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/blackpudding.ab318dcd.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/blackpudding.ab318dcd.svg
IP 104.26.5.11:0
GET /img/blackpudding.ab318dcd.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-141e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=51WQFknDuQikv0r0LT1A3gA0Fo4mT22qMNYUaltDCnh%2BRkISvVrL3Xv2l5skFE8BzYdLCTgrrK5verppDHR3ErZVYaJqn8FZzVLDUo8vWFNcjnGNtjpi9SiMtxNHRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d7952b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/dicelab.f8f3d560.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/dicelab.f8f3d560.svg
IP 104.26.5.11:0
GET /img/dicelab.f8f3d560.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-f89"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zv7FK4AYdmYJnfmnr9h21aWAQcXK7VIodEEWHnujR%2FOyb7WD%2FH5cDV3EdYTS9JkLwjqe%2FA5juRhfVBSXymZ0mzpVaoSEPRGyTDeY0vrUASRFQ8NBMCmxhsJ9uUD%2BNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d997cb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/7mojos%20slots.d3a1137d.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/7mojos%20slots.d3a1137d.svg
IP 104.26.5.11:0
GET /img/7mojos%20slots.d3a1137d.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-22be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 826461
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=COhF6XMHTJd8cop%2FkKHtKKdf%2BqiLex%2FNdLV%2BFVwPZ5bWYLr%2Fb9rCJVsY%2BoHOgBieaOZzeURJ6OjU2B%2BdgY2uBIIpHQonRsiHcdGlIxdeU7sMv6Z7dHH87wwsTwW08g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6cf898b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/gamzix.f7270646.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/gamzix.f7270646.svg
IP 104.26.5.11:0
GET /img/gamzix.f7270646.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-f15b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228035
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sgOzANNe58QCX%2BHQTL3tTzaR68pScQ8jTWTgtIAvsOw1XFvn98dOjh9NygdgGr9w4NEkWGqHvjiLkFnNK7KPb0MAVoNzxhvMJT82hKDIZAdrTy6UtRKY0pwUfXdn1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6dc9ceb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/css/7057.6c4e5731.css
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/css/7057.6c4e5731.css
IP 104.26.5.11:0
GET /css/7057.6c4e5731.css HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:56 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=68681
access-control-allow-origin: *
etag: W/"63cfcc7b-10c49"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 24 Jan 2023 12:18:03 GMT
cf-cache-status: HIT
age: 368604
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5QPCj0CkL2TeIudtLc4aXkZc%2BzytOMSjbsVrSrXR0sJnCkzDdYCGrQjoaCguTTJqz8NnjoBxW0%2BK24X93SQMkeDzi%2BDzzrz2n%2BQDn9qdyIcvDWhVN62YcaGbYZWbBw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c58fbc4b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/bf%20games.a530d147.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/bf%20games.a530d147.svg
IP 104.26.5.11:0
GET /img/bf%20games.a530d147.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1374"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0BNXFjRCoQFLMuNfwAKoKhOYG6LmiLENyzdpLALwICVAb%2F%2B68zXIm4QFTDLS4WB%2FKOlFjdXljspRC%2FHuBiJqWDz3Pk%2B%2BObQyUCrKOytsJ0O4Um460BrCkINgK5raeg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d4913b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/cool%20games.5793050c.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/cool%20games.5793050c.svg
IP 104.26.5.11:0
GET /img/cool%20games.5793050c.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-d49"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228037
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Clbx7cnXhqysdQcOYBqExHgABmnQLr09oJAv5Mbkz4ubXoldD442Oh6AtuM95%2FMCnZbMyvHczsr45TZLVmQSE6OUWEu%2B4RVo5krt%2FU6mIUWoVYOJNU38l3AURFTiOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d7958b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/pgsoft.5ab7874f.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/pgsoft.5ab7874f.svg
IP 104.26.5.11:0
GET /img/pgsoft.5ab7874f.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-d6f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VFi6zCRm%2BGVz91Y1bRd37WU1taLKPJMfaKdwKyf5HJOLCehrlnXT1wuce8S7tRqeZxU4ol2a8WVqkTDzlNRbkmwj6tRuVf9fDkDz%2F8nNMaezQTEtNasqo%2BnaoSv8oA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e3a88b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/cq9.bd2145b0.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/cq9.bd2145b0.svg
IP 104.26.5.11:0
GET /img/cq9.bd2145b0.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1169"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228037
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JBNqqGxehw%2FFL23I6QYJe85P%2FctXpkAD1jW%2FjdC3rR2NmlcXTXpZ2p1fJz6cJSFeA%2FU%2BsbFoV7E812x%2BejwZPG5k2q1C%2FA30qF3E%2Fe792VjxNVuKdycFNZxqmcXzFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6d8959b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/truelab.c0496875.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/truelab.c0496875.svg
IP 104.26.5.11:0
GET /img/truelab.c0496875.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:14:00 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1043"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228036
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5iCEeOghI28d0lE7qUHzQ4iLm8H6akzuzRCZ0IRufCVnnyXCEi4Hzn0i1e355RzbTuZbT8gU5g0Jg0R3O%2BesQDFr7sa7t5pIlZcLn9q8suz%2B%2Bsc1FJS96cvLskzjYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6e6ae3b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/css/2950.0a35ca33.css
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/css/2950.0a35ca33.css
IP 104.26.5.11:0
GET /css/2950.0a35ca33.css HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wmpam.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:55 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=19535
access-control-allow-origin: *
etag: W/"63ce67e3-4c4f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 23 Jan 2023 10:56:35 GMT
cf-cache-status: HIT
age: 461784
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aylZdHZ6x3rcOW5Eu2ftc4EvUbAuN3b6LoB2hs3vd%2FFseZKag1dQAcJy56MUlO1uHDET7y%2B47jypsEq68cHaIICfJEbP1Ma2KjqLspzY1xhLgGHyyZuUrspUdqnsMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c53ec3bb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/541.d536ea95.js
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/541.d536ea95.js
IP 104.26.5.11:0
GET /js/541.d536ea95.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:56 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=11217
access-control-allow-origin: *
etag: W/"63a43d6a-2bd1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 11:20:10 GMT
cf-cache-status: HIT
age: 3225192
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hkFosvfz8FVD%2BGMdK02tJtjZT7r31OYtHWEAIDCZGWTXj0EmvBOlJMPFx0bP8oX0jY6hpbs%2FpclwMhBIDgYPenhhZYVLGbnSIv16IZFaY0PZsOfLlTtg%2BBbohOlBqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c58db8bb515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/icons-pack-casino.243be753.js
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/icons-pack-casino.243be753.js
IP 104.26.5.11:0
GET /js/icons-pack-casino.243be753.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=93639
access-control-allow-origin: *
etag: W/"63a42a53-16dc7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3229997
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uNvRd8R17YXw5KmkyDF8Wg%2FGHNAaCR41Gs6qjvmeRbpwC6iH9bpwW1ZlHlr8R4GNQdreoxiXmSPr3WZBd8jKptUAbf1vNLNhHngn3KvJ80CL2Or8SYvSfhCF2UT%2Bmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6cb839b515-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/1x2gaming.9c41eb85.svg
104.26.5.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/1x2gaming.9c41eb85.svg
IP 104.26.5.11:0
GET /img/1x2gaming.9c41eb85.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wmpam.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 19:13:59 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-f4c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3228029
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y%2BHdzC6KVo50wRf0rY9ly5Cyubt6qCoT5rUdSp%2FpunRId%2FtnVMPm0Q52MhVKP0OqDr9DVjkkdZ3JaB01x920nfzIIBuKhTnfAwGR1lRuUAAXYgMKVIqasDyEujDlxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790c0c6cb846b515-OSL
content-encoding: br
X-Firefox-Spdy: h2