track.afrsportsbetting.com/ea856513-b784-444c-8ff3-2ba19569d341
3.72.158.57 1.5 kB URL track.afrsportsbetting.com/ea856513-b784-444c-8ff3-2ba19569d341
IP 3.72.158.57:0
Hash 74e1108dee00274a4611873260099587
1bacc6d028b0e7704358219f67701b49d7a11204
5d451c11d25225e8fc389671b27ee0d90c7852febbd5412233ed168d8dd2f16d
GET /ea856513-b784-444c-8ff3-2ba19569d341 HTTP/1.1
Host: track.afrsportsbetting.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:23 GMT
content-type: text/html;charset=UTF-8
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
set-cookie: ea856513-b784-444c-8ff3-2ba19569d341-v4=l-oJK-00etZYZzbbxjGqLaEzn6EY5tqcryD4vySZhE0; Max-Age=86400; Expires=Mon, 05-Jun-2023 13:52:23 GMT; Domain=track.afrsportsbetting.com; Path=/; Secure; HttpOnly;SameSite=None
cc-v4=UwGq6ggv6WX7Xo2tKn8EzshQdtVM4M%2Bc3tvDGDosqIyiHkQMjFUwkSipGsE4IJkQR51VX9%2FpjmI%2BvRG87eSBpoZOlJAckN1S12JSsDDEyitBZRMS7buvDnTO4%2BhUBcu3DlK6L2B3KvEJG0ebTzQNMA%3D%3D; Max-Age=31536000; Expires=Mon, 03-Jun-2024 13:52:23 GMT; Domain=track.afrsportsbetting.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
1x-xredbet256225.top/?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
178.253.47.30 185 B URL 1x-xredbet256225.top/?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
IP 178.253.47.30:0
File type HTML document, ASCII text
Hash a0ffca6bc665e9a731aedf9aa7eefe01
5b5375bea47b734d888786399f4e6f4965819287
42212f3da3cc637ef4223e3ec9f7f2c8fe3b23220c5788dc7218001e80617a73
GET /?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6 HTTP/1.1
Host: 1x-xredbet256225.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
server: nginx
date: Sun, 04 Jun 2023 13:52:24 GMT
content-type: text/html; charset=utf-8
content-length: 185
location: https://1xlite-548007.top/?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
x-reason: 1080
x-request-id: 85aed6a218e0e9a1aa186490ffe4f7a6
strict-transport-security: max-age=63072000; includeSubDomains; preload
set-cookie: auid=sv0vHmR8lxiUqVZlBkHfAg==; path=/; secure; httponly; samesite=lax
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash c8c4fd34484b10881179e1a092434fd9
b37e3b04da5ba68bf533fcff188ac29b8eb27b3e
e5ccf7ef803972b97b8bff04fcab8af38c84d5a832ab096c7fd5ace5e56bf92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 13:52:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4AMP6lbBP.woff2
216.58.207.227 6.6 kB URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4AMP6lbBP.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 6632, version 1.0\012- data
Hash b44d0dd122f9146504d444f290252d88
41f0f056110dd4213c98e7dd529cd726754408fe
3e70e149a35f394bb78ef7842de11a06359fed7828f30331594a28d196c54012
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4AMP6lbBP.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1xlite-548007.top/
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6632
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 May 2023 22:54:04 GMT
expires: Wed, 29 May 2024 22:54:04 GMT
cache-control: public, max-age=31536000
age: 399503
last-modified: Wed, 11 May 2022 19:24:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
216.58.207.227 11 kB URL fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 11028, version 1.0\012- data
Hash 1f6d3cf6d38f25d83d95f5a800b8cac3
279f300ca2cbbdf9f5036ef2f438607fbf377daa
796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1xlite-548007.top/
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 00:56:32 GMT
expires: Fri, 31 May 2024 00:56:32 GMT
cache-control: public, max-age=31536000
age: 305755
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
216.58.207.227 11 kB URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 11072, version 1.0\012- data
Hash e7df3d0942815909add8f9d0c40d00d9
cf5032eea3399a58870e8a05e629b006a8c7c3c7
bce2f309470952b7affa62ff4d91b454334c68cefa541429b502904d20696875
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1xlite-548007.top/
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 May 2023 21:48:58 GMT
expires: Tue, 28 May 2024 21:48:58 GMT
cache-control: public, max-age=31536000
age: 489809
last-modified: Wed, 11 May 2022 19:24:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash d11f1919fef5d8fccf8a87cf62ec7d61
b862276403c5375ce0cf2707ff0141d0f765fafa
7002839ec0a73f7a79f9f8720287932bd850a6a1b741ad91808e402ecb1c0d48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 13:52:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash c8c4fd34484b10881179e1a092434fd9
b37e3b04da5ba68bf533fcff188ac29b8eb27b3e
e5ccf7ef803972b97b8bff04fcab8af38c84d5a832ab096c7fd5ace5e56bf92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 13:52:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash c8c4fd34484b10881179e1a092434fd9
b37e3b04da5ba68bf533fcff188ac29b8eb27b3e
e5ccf7ef803972b97b8bff04fcab8af38c84d5a832ab096c7fd5ace5e56bf92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 13:52:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash c8c4fd34484b10881179e1a092434fd9
b37e3b04da5ba68bf533fcff188ac29b8eb27b3e
e5ccf7ef803972b97b8bff04fcab8af38c84d5a832ab096c7fd5ace5e56bf92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 13:52:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKKTU1Kvnz.woff2
216.58.207.227 6.5 kB URL fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKKTU1Kvnz.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 6460, version 1.0\012- data
Hash 491a7a9678c3cfd4f86c092c68480f23
32e18ae407d782adfd54c78c6259c7be52db6bf3
41b5c3b25f4258190937deb900fa57a6db6d450ce7dd2af2259af760119a1c41
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKKTU1Kvnz.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1xlite-548007.top/
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6460
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Jun 2023 18:04:32 GMT
expires: Sun, 02 Jun 2024 18:04:32 GMT
cache-control: public, max-age=31536000
age: 71275
last-modified: Wed, 11 May 2022 19:24:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4AMP6lbBP.woff2
216.58.207.227 6.6 kB URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4AMP6lbBP.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 6620, version 1.0\012- data
Hash 376ffe2ca0b038d08d5e582ec13a310f
ec85284f360bada79122b5dca3088103c769ca8a
2f662599cf4323a18b4f7da381a998a8873c0277fff2d866336f7ee943a102d6
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4AMP6lbBP.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1xlite-548007.top/
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 May 2023 00:25:28 GMT
expires: Thu, 30 May 2024 00:25:28 GMT
cache-control: public, max-age=31536000
age: 394019
last-modified: Wed, 11 May 2022 19:24:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2
216.58.207.227 11 kB URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 11040, version 1.0\012- data
Hash 5e22a46c04d947a36ea0cad07afcc9e1
6091d981c2a4ee975c7f6b56186ee698040bb804
0f53e8b0a717ca4ce313eec62b90d41db62c2f4946259a65c93bf8e84c5b0c44
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4AMP6lQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1xlite-548007.top/
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Jun 2023 03:18:12 GMT
expires: Sun, 02 Jun 2024 03:18:12 GMT
cache-control: public, max-age=31536000
age: 124455
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash c8c4fd34484b10881179e1a092434fd9
b37e3b04da5ba68bf533fcff188ac29b8eb27b3e
e5ccf7ef803972b97b8bff04fcab8af38c84d5a832ab096c7fd5ace5e56bf92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 13:52:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash d11f1919fef5d8fccf8a87cf62ec7d61
b862276403c5375ce0cf2707ff0141d0f765fafa
7002839ec0a73f7a79f9f8720287932bd850a6a1b741ad91808e402ecb1c0d48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 13:52:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.15.101 471 B IP 104.18.15.101:0
Hash 32aa2d6d6b8dbe092114792ec2e8c017
ab042fc77a539102337321e80146c154bf0695ec
76bff4c5852bb83bf8f0e8d4dd4aac6cc108af35e0b68d2386432e6d253cb98a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 13:52:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Jun 2023 03:03:05 GMT
Expires: Thu, 08 Jun 2023 03:03:04 GMT
Etag: "ab042fc77a539102337321e80146c154bf0695ec"
Cache-Control: max-age=307309,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d20a80d2b260b59-OSL
ocsp.sectigo.com/
104.18.15.101 471 B IP 104.18.15.101:0
Hash 32aa2d6d6b8dbe092114792ec2e8c017
ab042fc77a539102337321e80146c154bf0695ec
76bff4c5852bb83bf8f0e8d4dd4aac6cc108af35e0b68d2386432e6d253cb98a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 13:52:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Jun 2023 03:03:05 GMT
Expires: Thu, 08 Jun 2023 03:03:04 GMT
Etag: "ab042fc77a539102337321e80146c154bf0695ec"
Cache-Control: max-age=307309,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d20a80d29bcb500-OSL
v3.traincdn.com/_nuxt/desktop/default/css/42701d20.css
8.248.224.22 11 kB URL v3.traincdn.com/_nuxt/desktop/default/css/42701d20.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash bc875c63e098af3351134ef3f077b6e2
9dfe08718edcb3a84df37104015132fb142a44a7
18137182feb46d351aa69582b2aea0591992de4894c2a139ec42008d885c876f
GET /_nuxt/desktop/default/css/42701d20.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:27 GMT
content-type: text/css
content-length: 10845
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-2a5d"
expires: Mon, 05 Jun 2023 13:48:59 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 238
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Righteous&family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,300;1,400;1,700&family=Roboto:ital,wght@0,400;0,500;0,700;1,300;1,400;1,500;1,700;1,900&display=swap
142.250.74.106 2.0 kB URL fonts.googleapis.com/css2?family=Righteous&family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,300;1,400;1,700&family=Roboto:ital,wght@0,400;0,500;0,700;1,300;1,400;1,500;1,700;1,900&display=swap
IP 142.250.74.106:0
File type gzip compressed data, max compression\012- data
Hash f7d0eed2ec98326c792f2b19fee4fd12
15233771ba22fb7171284a98be13bb1fd2591a93
b54f4a0c837462764b4817e345fdac5627bee335d5de423a44e7007692e85183
GET /css2?family=Righteous&family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,300;1,400;1,700&family=Roboto:ital,wght@0,400;0,500;0,700;1,300;1,400;1,500;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Jun 2023 13:52:27 GMT
date: Sun, 04 Jun 2023 13:52:27 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.14.101 471 B IP 104.18.14.101:0
Hash 32aa2d6d6b8dbe092114792ec2e8c017
ab042fc77a539102337321e80146c154bf0695ec
76bff4c5852bb83bf8f0e8d4dd4aac6cc108af35e0b68d2386432e6d253cb98a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 13:52:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Jun 2023 03:03:05 GMT
Expires: Thu, 08 Jun 2023 03:03:04 GMT
Etag: "ab042fc77a539102337321e80146c154bf0695ec"
Cache-Control: max-age=307309,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d20a80d29d3b511-OSL
v3.traincdn.com/_nuxt/desktop/default/css/27e92ca1.css
8.248.224.22 10 kB URL v3.traincdn.com/_nuxt/desktop/default/css/27e92ca1.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash f67c2c7c2ae3e03cfeff61ab03be79f1
fc559a9400d06406a460a01626331da54f4b7eab
29b9ef648a7a990b6d507e19a00e1c4915e0dfb35cb76acf6560ee9270f38ae4
GET /_nuxt/desktop/default/css/27e92ca1.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:27 GMT
content-type: text/css
content-length: 10199
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-27d7"
expires: Mon, 05 Jun 2023 12:51:14 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 3673
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/0f6b3d96.css
8.248.224.22200 OK 259 B URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/0f6b3d96.css
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (472)
Hash 488bc9fe1e7aa584f46b451a0c02ea70
01881c0cefe8af2526bbb033ecbc0ae403d79c8c
89e078c01559d5bcf1b2ff76d6752b6885bf6ef96e08e903a20840e48a3c3a0d
GET /_nuxt/desktop/default/css/0f6b3d96.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:27 GMT
content-type: text/css
content-length: 259
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-103"
expires: Mon, 05 Jun 2023 11:01:41 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 10247
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/fdcf965d.css
8.248.224.22200 OK 3.1 kB URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/fdcf965d.css
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (20265)
Hash c0e188790fe7cd75622f6c233533f2ab
d5d0f7b9b5efa000ead2af3d9bd688c82374f4f6
20120b657eae9e8bdb12a3c5fb853104a4144fdb426da1d80911455e055e17cd
GET /_nuxt/desktop/default/css/fdcf965d.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:27 GMT
content-type: text/css
content-length: 3053
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-bed"
expires: Mon, 05 Jun 2023 11:01:41 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 10247
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/version.json
8.248.224.22 44 B URL v3.traincdn.com/version.json
IP 8.248.224.22:0
Hash aff1d1c07200ccbb684dd1519e6842e8
6aedf6c90f12099528096dbc581cfc0b3a85151e
43ddc3d160de742705768186e4556e8816180cb978cc4c64c58f4274954633da
GET /version.json HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:27 GMT
content-type: application/json
content-length: 44
cache-control: max-age=60, s-maxage=60
content-encoding: gzip
etag: "647af935-2c"
expires: Sun, 04 Jun 2023 13:53:10 GMT
last-modified: Sat, 03 Jun 2023 08:26:29 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 17
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.14.101 471 B IP 104.18.14.101:0
Hash 32aa2d6d6b8dbe092114792ec2e8c017
ab042fc77a539102337321e80146c154bf0695ec
76bff4c5852bb83bf8f0e8d4dd4aac6cc108af35e0b68d2386432e6d253cb98a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 13:52:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Jun 2023 03:03:05 GMT
Expires: Thu, 08 Jun 2023 03:03:04 GMT
Etag: "ab042fc77a539102337321e80146c154bf0695ec"
Cache-Control: max-age=307309,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7d20a80d298b0b69-OSL
v3.traincdn.com/genfiles/cms/1-285/desktop/media_asset/7c43e6fa10d0665cf556d13ff2a1906d.svg
8.248.224.22 698 B URL v3.traincdn.com/genfiles/cms/1-285/desktop/media_asset/7c43e6fa10d0665cf556d13ff2a1906d.svg
IP 8.248.224.22:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1224), with no line terminators
Hash 7cca3986f7a5c4c164144ff11df71073
b22531fb1cb3ab6325986f299e0de1690a2a2724
2cb7283447d210aa27e07657e00beefe6731f9771a9445be4e44e96dfe88c232
GET /genfiles/cms/1-285/desktop/media_asset/7c43e6fa10d0665cf556d13ff2a1906d.svg HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:27 GMT
content-type: image/svg+xml
content-length: 698
cache-control: public, max-age=86400
content-encoding: gzip
etag: W/"7cca3986f7a5c4c164144ff11df71073"
expires: Mon, 05 Jun 2023 05:42:25 GMT
last-modified: Tue, 02 May 2023 10:06:49 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 29405
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/Layout.Information/Layout.Office/Page.Betting.Main/Page.Bonus/Page.Cyber.Calendar/Page.Cyber/1e6ab448-9e891c49.js
8.248.224.22 7.9 kB URL v3.traincdn.com/_nuxt/desktop/default/vendors/Layout.Information/Layout.Office/Page.Betting.Main/Page.Bonus/Page.Cyber.Calendar/Page.Cyber/1e6ab448-9e891c49.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (26298)
Hash 020265da7130a507aadbbfa614863d95
e14692e6715cd9f5016139ecd558f34b14fbcb8a
88d217fc3913c6d9577800190d2e32f793e5661289609b1d5247dcd06c26906a
GET /_nuxt/desktop/default/vendors/Layout.Information/Layout.Office/Page.Betting.Main/Page.Bonus/Page.Cyber.Calendar/Page.Cyber/1e6ab448-9e891c49.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 7877
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-1ec5"
expires: Mon, 05 Jun 2023 13:52:24 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 3
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/61755d80.css
8.248.224.22 50 kB URL v3.traincdn.com/_nuxt/desktop/default/css/61755d80.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8f70327f5841ba0b68030d84d9a71159
13a5ac94d8c50318f45c9cac09e1da05aa030e61
857ac2e8c6c2110e7d47eb9388dbe4c94fe2e9ca7b5cb98e50c3eee53a454e7c
GET /_nuxt/desktop/default/css/61755d80.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:27 GMT
content-type: text/css
content-length: 49770
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-c26a"
expires: Mon, 05 Jun 2023 09:33:53 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 15514
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/Layout.Information/Page.Betting.Main/Page.Bonus/Page.Cyber.Calendar/Page.DesktopApps/Page.Game.Proje/4d6570c2-9bbb4bdb.js
8.248.224.22 2.6 kB URL v3.traincdn.com/_nuxt/desktop/default/Layout.Information/Page.Betting.Main/Page.Bonus/Page.Cyber.Calendar/Page.DesktopApps/Page.Game.Proje/4d6570c2-9bbb4bdb.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (5836)
Hash d425dd641df9f8912f2c360aad2ca422
e2ebe28ea2a3f1f55664e47962082290002cb645
1ccc30ef85db3a56d27e969942254f2e2af1b5a425860eceba7fd804ccf243eb
GET /_nuxt/desktop/default/Layout.Information/Page.Betting.Main/Page.Bonus/Page.Cyber.Calendar/Page.DesktopApps/Page.Game.Proje/4d6570c2-9bbb4bdb.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 2559
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-9ff"
expires: Mon, 05 Jun 2023 13:52:23 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 17
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/Page.Betting.Main-cc3aea6c.js
8.248.224.22 98 kB URL v3.traincdn.com/_nuxt/desktop/default/Page.Betting.Main-cc3aea6c.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (49278)
Hash 8bf081200463fb9ebe8ab90c357f8ccb
7e1e096f3780c79086a11819f233fc43188b6f3b
b02d37e48ab7e684edc8ddf45bcd1d31101e66da0ff44e36301db30a63eab973
GET /_nuxt/desktop/default/Page.Betting.Main-cc3aea6c.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 97515
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-17ceb"
expires: Mon, 05 Jun 2023 13:52:24 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 3
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/Page.Betting.Main-fc9983e4.js
8.248.224.22 13 kB URL v3.traincdn.com/_nuxt/desktop/default/vendors/Page.Betting.Main-fc9983e4.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (38021)
Hash 15e5bf9dc5bf773b7fe89480abe13317
7bfda6b8dc4b5d19577a7720c77d994c5e338428
37eab5e61aed9a6183d81faea1ec25cca17f1818ff08abe46a5d734d32d2df62
GET /_nuxt/desktop/default/vendors/Page.Betting.Main-fc9983e4.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 12612
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-3144"
expires: Mon, 05 Jun 2023 13:52:24 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/Layout.Information/Layout.Office/Page.Betting.Main/Page.Bonus/Page.Cyber.Calendar/Page.Cyber/36a9a5d5-f05fa02a.js
8.248.224.22200 OK 7.8 kB URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/Layout.Information/Layout.Office/Page.Betting.Main/Page.Bonus/Page.Cyber.Calendar/Page.Cyber/36a9a5d5-f05fa02a.js
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (10732)
Hash 66bf23bed9d66c6a1c2ccb048573c229
0a96f1802a2e49a970a24ea0667b0868d0639bd5
2572c17d5e60c3b497f0cfef0a95344056abeff3dcff7efa1a1b19eac420e940
GET /_nuxt/desktop/default/vendors/Layout.Information/Layout.Office/Page.Betting.Main/Page.Bonus/Page.Cyber.Calendar/Page.Cyber/36a9a5d5-f05fa02a.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 7760
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-1e50"
expires: Mon, 05 Jun 2023 13:52:24 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/e47e21c8.css
8.248.224.22200 OK 2.0 kB URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/e47e21c8.css
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (15738)
Hash fab502256edf775ec6e0eb5641800f51
77484a5907ccf6a2f7f99f3a54c80e12985d03c6
81f93dc2edb7590617a4dc85524548b170dd9ac571faa850527f7203944dbf2b
GET /_nuxt/desktop/default/css/e47e21c8.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:27 GMT
content-type: text/css
content-length: 2007
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-7d7"
expires: Mon, 05 Jun 2023 13:34:21 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 1086
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/app-43346164.js
8.248.224.22 218 kB URL v3.traincdn.com/_nuxt/desktop/default/vendors/app-43346164.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (59879)
Size 218 kB (217720 bytes)
Hash 0417163cde0e8816781e49a3fa45d213
138a88adf22c1c513a45174a2b1e5c8a53423287
48c96916e6f0b903555910892553c1304b11e4773cb16feaec64a8b80124f158
GET /_nuxt/desktop/default/vendors/app-43346164.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 217720
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-35278"
expires: Mon, 05 Jun 2023 13:52:23 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 17
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/app-ee581f8e.js
8.248.224.22 204 kB URL v3.traincdn.com/_nuxt/desktop/default/app-ee581f8e.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 204 kB (203885 bytes)
Hash 035b72c9d6620ac56bae4910a1131fae
d7dae1ffe40c511bb2377a533c70b253cdda5ca5
1589c8db409432723ff6856b9782e9cbc4340c7288d0ca6924616d7829d4ed43
GET /_nuxt/desktop/default/app-ee581f8e.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 203885
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-31c6d"
expires: Mon, 05 Jun 2023 13:52:09 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 18
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/runtime-79984ce8.js
8.248.224.22 14 kB URL v3.traincdn.com/_nuxt/desktop/default/runtime-79984ce8.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (34089)
Hash a784ed781d7aca025d38ec4d4d62d238
29d691fb7f18ebfecadee766f799e7805e23ae7b
b04e3ea4ce893f78957ccf4a3f6e99584e51ff5a94a5cbf6fd3584265a303bcf
GET /_nuxt/desktop/default/runtime-79984ce8.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 13638
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-3546"
expires: Mon, 05 Jun 2023 13:52:24 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 18
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/commons/app-80e4b2da.js
8.248.224.22200 OK 58 kB URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/commons/app-80e4b2da.js
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (64816)
Hash 7b96f5cde68b39c7fedd56ec49c29639
49f234765c116eab98ff562ed9afcfa9583f2f21
2609cfbbed179f48e0a52501b50dc94ea56716eecbbf3bf9aaf4de5720f2fe86
GET /_nuxt/desktop/default/commons/app-80e4b2da.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 58263
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-e397"
expires: Mon, 05 Jun 2023 13:52:17 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 17
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227 16 kB URL fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Jun 2023 07:44:41 GMT
expires: Sun, 02 Jun 2024 07:44:41 GMT
cache-control: public, max-age=31536000
age: 108467
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227 16 kB URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 May 2023 21:39:40 GMT
expires: Wed, 29 May 2024 21:39:40 GMT
cache-control: public, max-age=31536000
age: 403968
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227 16 kB URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Jun 2023 03:11:48 GMT
expires: Sun, 02 Jun 2024 03:11:48 GMT
cache-control: public, max-age=31536000
age: 124840
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1xlite-548007.top/genfiles/cms/pg/285/images/7ff608075eeeae857d6d0d4fc1d19854.png
178.253.15.89 653 B URL 1xlite-548007.top/genfiles/cms/pg/285/images/7ff608075eeeae857d6d0d4fc1d19854.png
IP 178.253.15.89:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash e6f0766cbd95db33da44e7a9140648f2
5f196b1bfe8c3f92bd2ebcd67124e72e81ae6aaf
c0399d478788d5d483f104a2e8cb7c32f41cb40e9df0c22e831b2bfa2db63ec0
GET /genfiles/cms/pg/285/images/7ff608075eeeae857d6d0d4fc1d19854.png HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: image/png
content-length: 653
last-modified: Tue, 11 Apr 2023 22:55:42 GMT
x-rgw-object-type: Normal
etag: "e6f0766cbd95db33da44e7a9140648f2"
expires: Mon, 05 Jun 2023 13:06:37 GMT
cache-control: max-age=86400, public
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/polyfills.js
8.248.224.22 19 kB URL v3.traincdn.com/_nuxt/polyfills.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (29373)
Hash 4021e166a50e976319a2cdff41b100f1
0dc87ed8a91c030c66a9481f5e2cee46690f1836
462f5ed962da9e048d69b5d29011206ed0d97f89ab6b05faccf9f42121296bd9
GET /_nuxt/polyfills.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 19189
cache-control: max-age=86400
content-encoding: gzip
etag: "647af839-4af5"
expires: Mon, 05 Jun 2023 11:46:32 GMT
last-modified: Sat, 03 Jun 2023 08:22:17 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 7556
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-548007.top/_nuxt/desktop/default/vendors/plugins.v-tooltip-203159e0.js
178.253.15.89 24 kB URL 1xlite-548007.top/_nuxt/desktop/default/vendors/plugins.v-tooltip-203159e0.js
IP 178.253.15.89:0
File type ASCII text, with very long lines (38148)
Hash 4e826575e2cc66a4be42c0708ade5325
75195971878e2047141ab475d6211fe068a39d18
34bd3d7873d1dd7f5921be6290e83356512d615ec43fa8f21808a4583962c7b9
GET /_nuxt/desktop/default/vendors/plugins.v-tooltip-203159e0.js HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 23892
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
vary: Accept-Encoding
etag: "647af8c4-5d54"
content-encoding: gzip
expires: Sun, 04 Jun 2023 14:52:28 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/_nuxt/desktop/default/css/0f6b3d96.css
178.253.15.89 259 B URL 1xlite-548007.top/_nuxt/desktop/default/css/0f6b3d96.css
IP 178.253.15.89:0
File type ASCII text, with very long lines (472)
Hash 488bc9fe1e7aa584f46b451a0c02ea70
01881c0cefe8af2526bbb033ecbc0ae403d79c8c
89e078c01559d5bcf1b2ff76d6752b6885bf6ef96e08e903a20840e48a3c3a0d
GET /_nuxt/desktop/default/css/0f6b3d96.css HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: text/css
content-length: 259
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
vary: Accept-Encoding
etag: "647af8c4-103"
content-encoding: gzip
expires: Sun, 04 Jun 2023 14:52:28 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/_nuxt/desktop/default/css/fdcf965d.css
178.253.15.89 3.1 kB URL 1xlite-548007.top/_nuxt/desktop/default/css/fdcf965d.css
IP 178.253.15.89:0
File type ASCII text, with very long lines (20265)
Hash c0e188790fe7cd75622f6c233533f2ab
d5d0f7b9b5efa000ead2af3d9bd688c82374f4f6
20120b657eae9e8bdb12a3c5fb853104a4144fdb426da1d80911455e055e17cd
GET /_nuxt/desktop/default/css/fdcf965d.css HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: text/css
content-length: 3053
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
vary: Accept-Encoding
etag: "647af8c4-bed"
content-encoding: gzip
expires: Sun, 04 Jun 2023 14:52:28 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/_nuxt/desktop/default/css/e47e21c8.css
178.253.15.89 2.0 kB URL 1xlite-548007.top/_nuxt/desktop/default/css/e47e21c8.css
IP 178.253.15.89:0
File type ASCII text, with very long lines (15738)
Hash fab502256edf775ec6e0eb5641800f51
77484a5907ccf6a2f7f99f3a54c80e12985d03c6
81f93dc2edb7590617a4dc85524548b170dd9ac571faa850527f7203944dbf2b
GET /_nuxt/desktop/default/css/e47e21c8.css HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: text/css
content-length: 2007
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
vary: Accept-Encoding
etag: "647af8c4-7d7"
content-encoding: gzip
expires: Sun, 04 Jun 2023 14:52:28 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/_nuxt/desktop/default/css/27e92ca1.css
178.253.15.89 10 kB URL 1xlite-548007.top/_nuxt/desktop/default/css/27e92ca1.css
IP 178.253.15.89:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash f67c2c7c2ae3e03cfeff61ab03be79f1
fc559a9400d06406a460a01626331da54f4b7eab
29b9ef648a7a990b6d507e19a00e1c4915e0dfb35cb76acf6560ee9270f38ae4
GET /_nuxt/desktop/default/css/27e92ca1.css HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: text/css
content-length: 10199
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
vary: Accept-Encoding
etag: "647af8c4-27d7"
content-encoding: gzip
expires: Sun, 04 Jun 2023 14:52:28 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/_nuxt/desktop/default/css/8de7b863.css
178.253.15.89 979 B URL 1xlite-548007.top/_nuxt/desktop/default/css/8de7b863.css
IP 178.253.15.89:0
File type ASCII text, with very long lines (5039)
Hash 51462ac51d4b3deb88bf251f56fa0152
498a23293aebeda083a4db6eefa9ac7dbd189a17
fc8b6cab977ec7cb6e8f4ce69449fa9128fb1a82fcc470ea994a705a89edc41b
GET /_nuxt/desktop/default/css/8de7b863.css HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: text/css
content-length: 979
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
vary: Accept-Encoding
etag: "647af8c4-3d3"
content-encoding: gzip
expires: Sun, 04 Jun 2023 14:52:28 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/_nuxt/desktop/default/Page.Betting.Main.Asian-54ee00c5.js
178.253.15.89200 OK 10 kB URL GET HTTP/2 1xlite-548007.top/_nuxt/desktop/default/Page.Betting.Main.Asian-54ee00c5.js
IP 178.253.15.89:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerLet's Encrypt
Subject*.1xlite-548007.top
Fingerprint6E:05:68:A5:ED:AF:63:CB:50:7D:72:7E:44:B1:94:16:CB:EC:C9:BD
ValiditySat, 25 Mar 2023 01:05:31 GMT - Fri, 23 Jun 2023 01:05:30 GMT
File type ASCII text, with very long lines (22314)
Hash 760d10f8681424547d2a5cab7a509562
8b2b4a6a6e85a4f86a2094f888a115f5fd4eba9c
6ae659f01764376811abc0615c6395c0bce27ef998fce1a552b4707156679a4c
GET /_nuxt/desktop/default/Page.Betting.Main.Asian-54ee00c5.js HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 10504
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
vary: Accept-Encoding
etag: "647af8c4-2908"
content-encoding: gzip
expires: Sun, 04 Jun 2023 14:52:28 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/_nuxt/desktop/default/vendors/plugins.vue-notification-e85ea15b.js
178.253.15.89 4.8 kB URL 1xlite-548007.top/_nuxt/desktop/default/vendors/plugins.vue-notification-e85ea15b.js
IP 178.253.15.89:0
File type ASCII text, with very long lines (11794)
Hash e9d7bc1cd6ae86d400eeba4e0aafa12d
8d8112cd69506d1e5d11e63bdfa714201f247fdc
2af24c229fb656ab66302fd41c8f6b3577c67699583a44d084a62ac9ed2121e5
GET /_nuxt/desktop/default/vendors/plugins.vue-notification-e85ea15b.js HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 4770
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
vary: Accept-Encoding
etag: "647af8c4-12a2"
content-encoding: gzip
expires: Sun, 04 Jun 2023 14:52:28 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/_nuxt/desktop/default/css/e1ad5afb.css
178.253.15.89 938 B URL 1xlite-548007.top/_nuxt/desktop/default/css/e1ad5afb.css
IP 178.253.15.89:0
File type ASCII text, with very long lines (3295)
Hash 7fdea85d00ce2c598313ecffb87f051a
e33b0194013b78705f1eb13c4d570f1961c5f7cf
234f683aba66fdce1ec6c9a13af94918c83914847139e8a2d15761ac0c7d4d1e
GET /_nuxt/desktop/default/css/e1ad5afb.css HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: text/css
content-length: 938
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
vary: Accept-Encoding
etag: "647af8c4-3aa"
content-encoding: gzip
expires: Sun, 04 Jun 2023 14:52:28 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/_nuxt/desktop/default/vendors/plugins.vue-js-modal-e48b7331.js
178.253.15.89 8.4 kB URL 1xlite-548007.top/_nuxt/desktop/default/vendors/plugins.vue-js-modal-e48b7331.js
IP 178.253.15.89:0
File type HTML document, ASCII text, with very long lines (14653)
Hash 6663b7fccad088a4f2cddb6432cc3af6
8bcedeb07401b6745d7d8c9ff89b15164d0dc512
709a08524c35f970b8485fd39543e1965eae070205c9fb12e6fe46be5c527fbe
GET /_nuxt/desktop/default/vendors/plugins.vue-js-modal-e48b7331.js HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 8429
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
vary: Accept-Encoding
etag: "647af8c4-20ed"
content-encoding: gzip
expires: Sun, 04 Jun 2023 14:52:28 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/_nuxt/desktop/default/date-fns-locale-21-7dc4044e.js
178.253.15.89 2.3 kB URL 1xlite-548007.top/_nuxt/desktop/default/date-fns-locale-21-7dc4044e.js
IP 178.253.15.89:0
File type ASCII text, with very long lines (7131)
Hash eda6082bed2aa2bb84cc7589712a7504
aef74eca36c22d94bfddacc3520d4bca0278e942
10d11734e2f881db9aee7944020996507433f83e5181f337ba991c3e0cbf4bbb
GET /_nuxt/desktop/default/date-fns-locale-21-7dc4044e.js HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 2284
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
vary: Accept-Encoding
etag: "647af8c4-8ec"
content-encoding: gzip
expires: Sun, 04 Jun 2023 14:52:28 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/e1ad5afb.css
8.248.224.22 938 B URL v3.traincdn.com/_nuxt/desktop/default/css/e1ad5afb.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (3295)
Hash 7fdea85d00ce2c598313ecffb87f051a
e33b0194013b78705f1eb13c4d570f1961c5f7cf
234f683aba66fdce1ec6c9a13af94918c83914847139e8a2d15761ac0c7d4d1e
GET /_nuxt/desktop/default/css/e1ad5afb.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: text/css
content-length: 938
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-3aa"
expires: Sun, 04 Jun 2023 15:06:05 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 81983
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-548007.top/web-api/api/web/v1/config/actualDomain
178.253.15.89 1.3 kB URL 1xlite-548007.top/web-api/api/web/v1/config/actualDomain
IP 178.253.15.89:0
File type JSON data\012- , ASCII text
Hash 576f313ea3d571a4065e111238798786
07bb836e39db11acd233a766eb919292eb033fa9
c72af5b2ee922ee9f43246b60cfc8eff584f40b240abb900b78b334b0d305b0e
GET /web-api/api/web/v1/config/actualDomain HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: application/vnd.api+json
vary: Accept-Encoding
cache-control: no-cache, private
server-timing: p;dur=29, dt_285;dur=30, px_285;dur=30
set-cookie: ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/version.json?timestamp=1685886748405
178.253.15.89200 OK 44 B URL GET HTTP/2 1xlite-548007.top/version.json?timestamp=1685886748405
IP 178.253.15.89:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerLet's Encrypt
Subject*.1xlite-548007.top
Fingerprint6E:05:68:A5:ED:AF:63:CB:50:7D:72:7E:44:B1:94:16:CB:EC:C9:BD
ValiditySat, 25 Mar 2023 01:05:31 GMT - Fri, 23 Jun 2023 01:05:30 GMT
Hash aff1d1c07200ccbb684dd1519e6842e8
6aedf6c90f12099528096dbc581cfc0b3a85151e
43ddc3d160de742705768186e4556e8816180cb978cc4c64c58f4274954633da
GET /version.json?timestamp=1685886748405 HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: application/json
content-length: 44
last-modified: Sat, 03 Jun 2023 08:26:29 GMT
vary: Accept-Encoding
etag: "647af935-2c"
content-encoding: gzip
expires: Sun, 04 Jun 2023 13:53:28 GMT
access-control-allow-origin: *
cache-control: max-age=60, max-age=60, s-maxage=60
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/ioc.dependencies.20-b5a0209b.js
8.248.224.22 1.3 kB URL v3.traincdn.com/_nuxt/desktop/default/ioc.dependencies.20-b5a0209b.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (3295)
Hash e83f3aa6c2f5941c999f996879f12ce2
0313cdab7014d8f0aa85d58662d527ba1524df2a
a540b6c291c5c3e3729621d936fc7edd8fc45c4cd4c040c95a5463ae25327082
GET /_nuxt/desktop/default/ioc.dependencies.20-b5a0209b.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 1340
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-53c"
expires: Mon, 05 Jun 2023 13:52:30 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 6
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/2427781.webp
8.248.224.22 749 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/2427781.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash d4ec7fddb4f05c99e7d1f2ec67464c6d
cae56d860df3587f6bfe6763a54ef45766332ebd
9e75cd864bc0e70d1da43a285f74057f289b3506fb2a8ceacc22fb607e20776e
GET /resized/size16/sfiles/logo_teams/2427781.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 749
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 20:13:43 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="2427781.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 69053aa2829c76984caf93ff7f01470a
age: 2500590
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/4210.webp
8.248.224.22200 OK 982 B URL GET HTTP/2 v3.traincdn.com/resized/size16/sfiles/logo_teams/4210.webp
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash f7ca8fbe5b3a340db665d811026ac3c2
df44bb4be58e71533952bf1e16aa8fd8fe2484c8
4dc14f8c15e72c1d8efd62b605c544f77e4112a85b070d411c67a063d7c9deae
GET /resized/size16/sfiles/logo_teams/4210.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 982
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 14:00:03 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="4210.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 199a580fcefb0013a65b66f3e85d4593
age: 2505147
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/2370.webp
8.248.224.22 821 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/2370.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash c8ff2ba5b96506d6e5163b4e69d87bd7
1d529b375bb55a7b7110b937d11141345db7d2ef
9886b6b0ea29186303a66f2c3b3a94bb53596c8981c311f2d10e0fb8f5634c77
GET /resized/size16/sfiles/logo_teams/2370.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 821
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:44:51 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="2370.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 0484f6e67350789281924364195b2a4f
age: 2506080
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/5646.webp
8.248.224.22 936 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/5646.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 3280e116f1ae2330473e9a01c2701d7d
254e4f14b6a3b797500de8e9aaeceaccc0815c9d
87d8ab1d2d55dfa1d8ce4b6c7c34bafbe4e8145fee83110fb852fcc561993024
GET /resized/size16/sfiles/logo_teams/5646.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 936
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 15:37:40 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="5646.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: f79f566bd3079177e8754747efa7edae
age: 2504289
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/903e13a230efe3a57c2f269b20dbbd3c.webp
8.248.224.22 783 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/903e13a230efe3a57c2f269b20dbbd3c.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash fd77d8f470dd670679dcc38ba0b033ac
86debbd52b87e4422c45771c4523934095e32bbc
7faf4ac76ebd44f2f83c712d869ce725bfe90429e32093b8e9c0f0a2a675ea49
GET /resized/size16/sfiles/logo_teams/903e13a230efe3a57c2f269b20dbbd3c.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 783
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 15:37:40 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="903e13a230efe3a57c2f269b20dbbd3c.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: a7c98a3c7369df73f1ccc6318b52bf55
age: 2504289
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/36957.webp
8.248.224.22200 OK 592 B URL GET HTTP/2 v3.traincdn.com/resized/size16/sfiles/logo_teams/36957.webp
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 16x16, components 3\012- data
Hash c378208679e1681955483b6ad72fac95
bdd0894e33a57e9f39ae76d4ff2e016f744f9053
1cb9c5f7952852105419aa8f32b0909a967a48aad291c56b0ff5fe52bb725732
GET /resized/size16/sfiles/logo_teams/36957.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/jpeg
content-length: 592
cache-control: public, max-age=94608000
expires: Fri, 08 May 2026 01:57:58 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="36957.jpg"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 29018df6a1986e37e031d36bb14282c2
age: 2302981
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/4d1fcd840a696d9e7c35eb8aacdd8f45.webp
8.248.224.22 710 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/4d1fcd840a696d9e7c35eb8aacdd8f45.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash d6655cf5c5d46ea448117fb1c78f9b9c
5df344a876dcf0dea74c008ca673851a020a984d
4ac9da113ca0e1306c9e3da070373714a6d7f011489107210d74e03af80e651c
GET /resized/size16/sfiles/logo_teams/4d1fcd840a696d9e7c35eb8aacdd8f45.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 710
cache-control: public, max-age=94608000
expires: Sat, 09 May 2026 16:00:13 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="4d1fcd840a696d9e7c35eb8aacdd8f45.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: eeea3589fd7b5d2ad163e12afdcc6b3c
age: 2152338
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/827399.webp
8.248.224.22 590 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/827399.webp
IP 8.248.224.22:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 16x16, components 3\012- data
Hash 0f9fcb7a2ccf675c5cdd77f9516c8de9
d2c201c7bde6d84400fca661cfec073ec133d68b
65d88115fda3821adf588526b5a506c31f852129d6865c7725411c146f22ee86
GET /resized/size16/sfiles/logo_teams/827399.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/jpeg
content-length: 590
cache-control: public, max-age=94608000
expires: Thu, 14 May 2026 21:10:48 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="827399.jpg"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 3a3397570abf6a672a05f4f9250ef2e4
age: 2436166
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/771e025b9a4c43b3bea3dbda4ff31114.webp
8.248.224.22200 OK 663 B URL GET HTTP/2 v3.traincdn.com/resized/size16/sfiles/logo_teams/771e025b9a4c43b3bea3dbda4ff31114.webp
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash dbb1a8b9510563aa1de4fdd23f399028
31400398bb6cfd9e3ea3b89678600acd05588ecf
8a651eed5b084243c4aa976d90fc430b832460050ecc6cb1a2ba04e1a3d4a734
GET /resized/size16/sfiles/logo_teams/771e025b9a4c43b3bea3dbda4ff31114.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 663
cache-control: public, max-age=94608000
expires: Wed, 06 May 2026 02:24:38 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="771e025b9a4c43b3bea3dbda4ff31114.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 5fb194f720e875f19235b6cce9ce5acb
age: 2478389
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3e8e88aa66abb7cb234777ece6296bef.webp
8.248.224.22 716 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/3e8e88aa66abb7cb234777ece6296bef.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 0641c637657174ffdeb2055854c93479
1db26691a8b6e3478427757460e4a622c8f587a1
d947313b0f28680458cb07478bb4c5f6d27ab37a179baac9fc6f90f722cc737a
GET /resized/size16/sfiles/logo_teams/3e8e88aa66abb7cb234777ece6296bef.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 716
cache-control: public, max-age=94608000
expires: Thu, 14 May 2026 12:55:15 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3e8e88aa66abb7cb234777ece6296bef.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 663239175553ca3af0327a9031ee8f27
age: 1731435
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/5e9041457e25d166a5fda513ca2f0683.webp
8.248.224.22 663 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/5e9041457e25d166a5fda513ca2f0683.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash dbb1a8b9510563aa1de4fdd23f399028
31400398bb6cfd9e3ea3b89678600acd05588ecf
8a651eed5b084243c4aa976d90fc430b832460050ecc6cb1a2ba04e1a3d4a734
GET /resized/size16/sfiles/logo_teams/5e9041457e25d166a5fda513ca2f0683.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 663
cache-control: public, max-age=94608000
expires: Sun, 10 May 2026 09:51:38 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="5e9041457e25d166a5fda513ca2f0683.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 3828ee2109f5eb0e346e25bcd2bae3e7
age: 2227543
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
178.253.15.89 106 kB URL 1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
IP 178.253.15.89:0
File type gzip compressed data, from Unix\012- data
Size 106 kB (106472 bytes)
Hash 760baf9677e0f1beccf8dafa62797f74
762aaf451ade81a695e41024ffc176a7c4ad6af6
fcc7e92b93a9a7fb38a96371ad6897edafd6625681f8a297d567b9e053d6efd8
GET /en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6 HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:27 GMT
content-type: text/html; charset=utf-8
accept-ranges: none
content-encoding: gzip
server-timing: total;dur=2298;desc="Nuxt Server Time", dt_285;dur=2308, px_285;dur=2308
set-cookie: lng=en; Path=/
SESSION=0b9795a40feb335f7e1a868898639e8e; Path=/; HttpOnly; Secure; SameSite=Lax
cookies_agree_type=3; Path=/
tzo=2; Path=/
referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; Path=/; Expires=Thu, 03 Aug 2023 13:52:25 GMT
reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; Path=/; Expires=Sun, 04 Jun 2023 14:52:25 GMT
postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; Path=/; Expires=Tue, 04 Jul 2023 13:52:25 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/4206.webp
8.248.224.22200 OK 837 B URL GET HTTP/2 v3.traincdn.com/resized/size16/sfiles/logo_teams/4206.webp
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b77aa4a6eaa69e6b1e77016f07ee14b1
74826cbd538c2a31e8deb44c12d49e165740cc3e
7d30395bdf3df6f7811e4bd3a601fa2ba0ef3815094757b3fde414777d3462be
GET /resized/size16/sfiles/logo_teams/4206.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 837
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 15:41:53 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="4206.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 7bf5b36404ec71cda941f5cec3f9579c
age: 2501271
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/09714fd297deea3eb8e7815d3ca15085.webp
8.248.224.22 717 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/09714fd297deea3eb8e7815d3ca15085.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 28e5d685b37ef51819c58e0b53753b27
d6202d77f72013ece46095490866ba61b395565e
bf16e7a7b1cab5b79a11c25311492a4cdb42a3b48bf31395711a9ce2d1294f56
GET /resized/size16/sfiles/logo_teams/09714fd297deea3eb8e7815d3ca15085.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 717
cache-control: public, max-age=94608000
expires: Thu, 28 May 2026 05:58:32 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="09714fd297deea3eb8e7815d3ca15085.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 012172d948d1e23bf08fb604439b9961
age: 546838
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/8528183549132521d042ef58810f390f.webp
8.248.224.22 732 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/8528183549132521d042ef58810f390f.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 7645b76a9ae87fe84a0445a55a9930e1
4afc70d69ff2fd3566d49d5b794695587d66331d
b38bbd3da24a55d4c7d52a6a4be839dca97a7ec0e2a9f41d593dd7ffd44de4a9
GET /resized/size16/sfiles/logo_teams/8528183549132521d042ef58810f390f.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 732
cache-control: public, max-age=94608000
expires: Fri, 15 May 2026 11:02:29 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="8528183549132521d042ef58810f390f.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: ea63cac7453e8bc857f6a18851f66dd0
age: 1685450
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/b71c8c924a4504bb0763a051d44c7e68.webp
8.248.224.22 698 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/b71c8c924a4504bb0763a051d44c7e68.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash ad385cc6faf78350fe969d1c61560878
7d28ef8395f5fe1ff6498f118840b968e786d53e
0df44f16543643f9390227828df3c1b845e5454c0000e0a2624284d73634fa44
GET /resized/size16/sfiles/logo_teams/b71c8c924a4504bb0763a051d44c7e68.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 698
cache-control: public, max-age=94608000
expires: Sat, 16 May 2026 15:48:07 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="b71c8c924a4504bb0763a051d44c7e68.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 97f49e5cdaa4a2d1fc70c44247490693
age: 2227543
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/eef321ba05eaade076af096d69d6c604.webp
8.248.224.22 681 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/eef321ba05eaade076af096d69d6c604.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 3658ec70f6c6bd484b41b912edf77e55
42e9fc67c0260f2e3d043ee15d42ee93334ba861
9b80bac5fea9547a06cf3d22a9f7563d0b36acab84ce176436fc05391d6904b0
GET /resized/size16/sfiles/logo_teams/eef321ba05eaade076af096d69d6c604.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 681
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 15:15:07 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="eef321ba05eaade076af096d69d6c604.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 3f5798a3f05e7e8cc048f6f36304b34a
age: 2503645
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/14539.webp
8.248.224.22 896 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/14539.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 78c11e9ae48cae599524e8a88373d79f
1ac0abb81a8b289ed2e7d786b913980c2c539c00
8aad217023d14f64be40f4789963b3380ae147f1c01713c1255636fcd777a861
GET /resized/size16/sfiles/logo_teams/14539.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 896
cache-control: public, max-age=94608000
expires: Thu, 28 May 2026 13:38:14 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="14539.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: d7c8967a173f32f4788c6224c1c6c8dd
age: 519256
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/a35e9c6f67bce87d960e6dfd1de1e1b4.webp
8.248.224.22 668 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/a35e9c6f67bce87d960e6dfd1de1e1b4.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 64a544c1ea4b4e767a1ee5262765bbd4
c1b6c754b85b218a5fcbafc9bbed9e2582f12c73
c2a83102537887db9b7856a9fffbe78158ba6e72edd847a72b5665d940c556d6
GET /resized/size16/sfiles/logo_teams/a35e9c6f67bce87d960e6dfd1de1e1b4.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 668
cache-control: public, max-age=94608000
expires: Mon, 11 May 2026 18:36:17 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="a35e9c6f67bce87d960e6dfd1de1e1b4.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 9c9c76ae273ad31f4d835952da453b81
age: 2227383
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/59987.webp
8.248.224.22 792 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/59987.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b7ad8870f7c6880ccad705b41b796b05
9de75e4593381ea512d6207e7a09d20611830354
656cfa35d388ddbd81535b3b6638e1d339f5c6a3c6a0bc09bca4e76ab9f9dab9
GET /resized/size16/sfiles/logo_teams/59987.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 792
cache-control: public, max-age=94608000
expires: Fri, 15 May 2026 09:04:07 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="59987.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 33dcf905e8fe5a6e2dfbd4fd50254cd7
age: 2477206
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo-champ/cdb74e431f4b89936d1d0899186cdd29.webp
8.248.224.22 3.7 kB URL v3.traincdn.com/sfiles/logo-champ/cdb74e431f4b89936d1d0899186cdd29.webp
IP 8.248.224.22:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1c1d7f1fce71d4f341322f720be61b92
93c44d70c6b7d929114e96d536db76d0de671e93
bfdb39de8a9e0bab0c3d521b78efaf83d0524cc35877355d63ec06a4a50f01d1
GET /sfiles/logo-champ/cdb74e431f4b89936d1d0899186cdd29.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/webp
content-length: 3680
cache-control: public, max-age=86400
etag: "1c1d7f1fce71d4f341322f720be61b92"
expires: Mon, 05 Jun 2023 13:41:41 GMT
last-modified: Tue, 03 Jan 2023 16:35:11 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-amz-server-side-encryption: AES256
age: 651
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/30eca9251451fa1c13827586be5848a4.webp
8.248.224.22 694 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/30eca9251451fa1c13827586be5848a4.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 845477e753a4d26d4bf90e5e0b57bddf
4fd0d4560562af1dca36b291f76dacf85ad9fc90
bd37f35e03e603ab208d6a1a178bf9bcdaa0f3d236b987f69f2aa68048c9c30a
GET /resized/size16/sfiles/logo_teams/30eca9251451fa1c13827586be5848a4.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 694
cache-control: public, max-age=94608000
expires: Tue, 12 May 2026 13:36:07 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="30eca9251451fa1c13827586be5848a4.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: d01995436df65abf7182e2e93f41b0ed
age: 2227543
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/15f8082f71a5d0a99a6cd5b9a5bb9a23.webp
8.248.224.22 773 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/15f8082f71a5d0a99a6cd5b9a5bb9a23.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash fe51699571ced3c348fdaa18a8220c12
3fd1e043e2459fa121f01d19cf7e4a6e53359523
d82972d3865896473ca13522840c228105fd5c72e6b5cb3cc4f2d9d50d04e0cf
GET /resized/size16/sfiles/logo_teams/15f8082f71a5d0a99a6cd5b9a5bb9a23.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 773
cache-control: public, max-age=94608000
expires: Sun, 31 May 2026 10:36:09 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="15f8082f71a5d0a99a6cd5b9a5bb9a23.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 465bb6052c15f6fe80d0524919b56a73
age: 272299
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/f6bd35e82f3d06ee27cd0d21b7d622d5.webp
8.248.224.22 717 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/f6bd35e82f3d06ee27cd0d21b7d622d5.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 2c6b03b7860dccaa9d47ad88d49118f3
3655b491a00f7d982a81b4f13b3bea93460fed80
8291e060878a877a067c5698aca013213fc26122f76405c9a56d4efc569598cb
GET /resized/size16/sfiles/logo_teams/f6bd35e82f3d06ee27cd0d21b7d622d5.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 717
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 18:25:56 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="f6bd35e82f3d06ee27cd0d21b7d622d5.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 22dc3ff6d942e8272af5b1f44c90163e
age: 2497231
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/6c955da71d276ab0c19c97126cdf922d.webp
8.248.224.22 657 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/6c955da71d276ab0c19c97126cdf922d.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 1363ff0b3db8a79ad8b95e5a72621fd8
f7d2bd9f8a5a7d7d3ee853f723d0e0097f3e8ab2
130ae30b72f223b6ff85b9f426abec087eb6d9f19673e2a3718faab521a73222
GET /resized/size16/sfiles/logo_teams/6c955da71d276ab0c19c97126cdf922d.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 657
cache-control: public, max-age=94608000
expires: Thu, 28 May 2026 05:58:32 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="6c955da71d276ab0c19c97126cdf922d.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: aee91c087c110ba20b8b3ad072d2c992
age: 2497228
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo-champ/5cb01f082ac880d7a83262b1edc34661.webp
8.248.224.22 1.4 kB URL v3.traincdn.com/sfiles/logo-champ/5cb01f082ac880d7a83262b1edc34661.webp
IP 8.248.224.22:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 144c63ffbf2346e0e0105f6da18e1f72
05818a758c864fa118405a0b152e31216e047dbf
40c8cc803649193320f5d674d7f7b4dd2b17ce3eb29d49e1cba609668229b8dd
GET /sfiles/logo-champ/5cb01f082ac880d7a83262b1edc34661.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/webp
content-length: 1406
cache-control: public, max-age=86400
etag: "144c63ffbf2346e0e0105f6da18e1f72"
expires: Mon, 05 Jun 2023 12:11:33 GMT
last-modified: Tue, 03 Jan 2023 16:35:14 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-amz-server-side-encryption: AES256
age: 6057
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/15469.webp
8.248.224.22 594 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/15469.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 346c2247780c7199c0a7db66f628de30
5f2bab7c6578059845f8e7271d55c7c133d8d785
1fa4168e6085356b3b4b997e3a139a03e3742c49a7a48330f4088768a3f740f9
GET /resized/size16/sfiles/logo_teams/15469.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 594
cache-control: public, max-age=94608000
expires: Sat, 16 May 2026 12:45:20 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="15469.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: fba2177f551d5f48c5723d42e5feb197
age: 2505755
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/14527.webp
8.248.224.22200 OK 709 B URL GET HTTP/2 v3.traincdn.com/resized/size16/sfiles/logo_teams/14527.webp
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b2abdcf872529aac7ccfd6bb8c863bff
047fbd268d8f86bde597cc8bd1c3ed7bea4a6435
a2cd9dbaa10f99514ddcd55bbc1aad392dee9b2db05d8385ca4ac8b5562ad4fd
GET /resized/size16/sfiles/logo_teams/14527.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 709
cache-control: public, max-age=94608000
expires: Tue, 19 May 2026 07:48:07 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="14527.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 8139106cba63520595f7cc7812954094
age: 1318094
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3478.webp
8.248.224.22 789 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/3478.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 1c895e6f8167b01b8fc0a5504a7dc8df
f606fa515b9c1549d7f67f1346896cf939029918
b01944f85b90889b1ab2cbdba586b140a3e35f682eadbaf0e4ffbf57bccf9d35
GET /resized/size16/sfiles/logo_teams/3478.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 789
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:45:22 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3478.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 2814bfa4c8ffb35a047f25dd25151324
age: 2506028
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3458.webp
8.248.224.22 925 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/3458.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 4e7ce6f4f508f5e93e4284c4350cf80a
143ca6261cbc6b40336a6249c440cc81d8e7bafa
6cf17fb948ad09cbb86b392197f9f7f6bf4de23513933a3131dec58498f61fbf
GET /resized/size16/sfiles/logo_teams/3458.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 925
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:50:13 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3458.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 5fecf3fb3451fc9a7d1c977c242db842
age: 2506028
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3470.webp
8.248.224.22 775 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/3470.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 2f2a035ad8fc128b6db81118ad3a49d4
c0201bdd5aa61def8bd798cb713eb44d2e63293b
6c69fae75598d4c8db36d091bd1b7126b1892d8e71a5ef4eeeaa2b2ef27008d4
GET /resized/size16/sfiles/logo_teams/3470.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 775
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:44:47 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3470.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 2f1dcb23029a52480f3e08a40ffd2f31
age: 2506099
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/f5aa0573b873dbf403c1cdfdba4fa0b2.webp
8.248.224.22 900 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/f5aa0573b873dbf403c1cdfdba4fa0b2.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 9402bcfe8b8851cba961c215cb5edce3
e9aca9ea7bc5e77b214ab6d2b283e172c66f276a
9bc51af5086433b3cae6be2d5e5f16f6d9efe06835399cee9ba3330d1abfee9c
GET /resized/size16/sfiles/logo_teams/f5aa0573b873dbf403c1cdfdba4fa0b2.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 900
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:52:47 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="f5aa0573b873dbf403c1cdfdba4fa0b2.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 54ed4ad9b63e09d93e68d84dc438e39a
age: 2505789
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/04abe3fa4260dc224a6ab0949c5b8b35.webp
8.248.224.22 812 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/04abe3fa4260dc224a6ab0949c5b8b35.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 50c739d085d4fdc20f96029ec7bad23c
a56b2216b7ee39d62fc4d097ade61734e02a860a
a8430968bcd23d22b66010a7de83585c2e400a9900cf5b8f1008f96d5d70c021
GET /resized/size16/sfiles/logo_teams/04abe3fa4260dc224a6ab0949c5b8b35.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 812
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 14:26:17 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="04abe3fa4260dc224a6ab0949c5b8b35.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: a2443bb2e3422b87bb08c25b1b13f488
age: 2506077
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/65e3e972954419765c3ce21698edf6cb.webp
8.248.224.22 785 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/65e3e972954419765c3ce21698edf6cb.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash de7e20cad600fbd7be8e36352ee402cd
0f0e1c95b0299ea332083ff5d8e601671d95a5ff
be64b5a81478554d26c3e5e8cedd47b2b273f8800452e5955544848b6bc7d178
GET /resized/size16/sfiles/logo_teams/65e3e972954419765c3ce21698edf6cb.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 785
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:44:47 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="65e3e972954419765c3ce21698edf6cb.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: f5cbfdd3f58387d5bfc64eaf60bccb85
age: 2506098
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3448.webp
8.248.224.22 793 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/3448.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 74855befc461c36601224661de33b6bf
1a749e3c3cab8d65b4b449187378e50159c1c7f1
ccd29b79f7a90aa3471258aebb1318b61922b7fe1fec9b1b0aaf889e49e2d736
GET /resized/size16/sfiles/logo_teams/3448.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 793
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:58:11 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3448.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: d3b75a77cf9e49ed949046d45946b2d1
age: 2505259
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/11551.webp
8.248.224.22200 OK 696 B URL GET HTTP/2 v3.traincdn.com/resized/size16/sfiles/logo_teams/11551.webp
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 8b998cbb1bb146196ed12f3543165a44
18809e6ea4d66019e1d861820c5e42763870c49e
fc01e0ee50f68f886c67d96bf854ef31e2decb33c46423b690426e831300cfa1
GET /resized/size16/sfiles/logo_teams/11551.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 696
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:45:22 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="11551.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: e7350c5db604d718e2522e366e3ddb05
age: 2506029
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/fadddef16fb3f0768be2989065e9be6b.webp
8.248.224.22200 OK 479 B URL GET HTTP/2 v3.traincdn.com/resized/size16/sfiles/logo_teams/fadddef16fb3f0768be2989065e9be6b.webp
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 9af4e2aac1c75f9ca7a495b90f33b37f
554330982d444d02eb484954c1cfffa95bb9e034
d88739b4e273c7fc5320543b7ad4736114d418a30bd2f24ef990769a640009f8
GET /resized/size16/sfiles/logo_teams/fadddef16fb3f0768be2989065e9be6b.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 479
cache-control: public, max-age=94608000
expires: Sun, 17 May 2026 19:01:33 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="fadddef16fb3f0768be2989065e9be6b.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 5b536091180ed4b8919b11533235eff4
age: 2506028
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3442.webp
8.248.224.22 859 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/3442.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 8c26c6f55533bb4b426448d8edf42760
7e7b8b6e72d0cfe42c45128debbfb4d55ae45e92
f9d51803d097c08a732787591c320a72e5a626c14a400b0cefcd4863ad1bd350
GET /resized/size16/sfiles/logo_teams/3442.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 859
cache-control: public, max-age=94608000
expires: Fri, 15 May 2026 15:30:09 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3442.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 7f5a7dc424964b1694057e7096e3ce34
age: 2506028
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3488.webp
8.248.224.22200 OK 853 B URL GET HTTP/2 v3.traincdn.com/resized/size16/sfiles/logo_teams/3488.webp
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e793307845f1f9ba0461817853a4cfa
f4fdfb833d3bc68a3c508dfb13c3df51f4686571
2e10a128e286f2ddde09ca06e616587b0a9d7a1635184075c15ab5b73e914d77
GET /resized/size16/sfiles/logo_teams/3488.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 853
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 15:14:00 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3488.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 2c7ae9942a41149a6eac3918a886a686
age: 2506078
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3462.webp
8.248.224.22 780 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/3462.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 0188728194478658ee91ae67428b88df
eb6ec5772e705e2b47e6dbce4aebe35bc7326804
2e8f0219d9484087ad0dbc5a533dea83e8eb36a8e4e97e76eefd83e2ed25b4c6
GET /resized/size16/sfiles/logo_teams/3462.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 780
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:49:21 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3462.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 03baecbfb961b5d08d842358725b8d4b
age: 2505789
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3482.webp
8.248.224.22 801 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/3482.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 88c45abc096b865b1f8cdfad6d175782
57791fd5c2d9f95f374943dcc6bf6f8a25a4319d
818142ab46a9db4f8cab045f4a134564dc27abc0553c4de2913ff4ed99a70ea3
GET /resized/size16/sfiles/logo_teams/3482.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 801
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:48:29 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3482.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 4cafe8596e5d69d46be156695e323deb
age: 2506077
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/34225.webp
8.248.224.22 671 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/34225.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 67ae201c2dc80174b59d7b0cf5831f8d
af0ccdb7478e93954a1bf168dc1e7f39be72ef80
a22184f81ebbf30bb389642963cf5c7611e501a975ff0f3bbd011c80ce55ccc7
GET /resized/size16/sfiles/logo_teams/34225.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 671
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:58:11 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="34225.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 3f175c702725ae8f9d6c8cb28d61544a
age: 2505259
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/24a303cdc0a24b99485aebc26ff13f55.webp
8.248.224.22 700 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/24a303cdc0a24b99485aebc26ff13f55.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 82d516b8659de59e2e8c6c7b2d352938
442360ab459bc9a5fab2716d1e6fa837a74e669f
0ab932f66535d84927afd9692a59fe9293efa9be85f98de5368d2dca76f254e5
GET /resized/size16/sfiles/logo_teams/24a303cdc0a24b99485aebc26ff13f55.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 700
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 14:35:49 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="24a303cdc0a24b99485aebc26ff13f55.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: bf8f055e96e8eca1cb169522aa556510
age: 2506077
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3486.webp
8.248.224.22 746 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/3486.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 571f2e59a8c011684fbdb90d07d74297
a2e46822277cad7209778ee5123cf82855edd137
2aa1be517c71b195a02f98905cf6927cfc865a7ca6540b6d18254488301f89a8
GET /resized/size16/sfiles/logo_teams/3486.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 746
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:48:29 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3486.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 94be521b51920d2eed973c05ca68b71a
age: 2506028
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3454.webp
8.248.224.22200 OK 666 B URL GET HTTP/2 v3.traincdn.com/resized/size16/sfiles/logo_teams/3454.webp
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5caa027c53afc134bd5c0d494b543ea4
ee58d1432bc9bc2d45405bcba72651ea90c62623
8bd78e9e66ff1e9642cab9712d58c69c91e0d0900e967ba2dbf0e719da32d79a
GET /resized/size16/sfiles/logo_teams/3454.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 666
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:52:47 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3454.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 879ad44ed0798bea0fa25db6fef68643
age: 2505789
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/427086634c5f3d22a998233c13817267.webp
8.248.224.22 657 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/427086634c5f3d22a998233c13817267.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 071c78befedc1e1ac3d3c1612bdf236d
7186dca9681c5ba22b79154994b7057ebc5c289c
20d479bd842fd6715db4f4bf7d65d386d2630f5aadf6abefd42f7387faff577a
GET /resized/size16/sfiles/logo_teams/427086634c5f3d22a998233c13817267.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 657
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:52:47 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="427086634c5f3d22a998233c13817267.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 7c5d68181bbad2c5c7a1ed1e252ac048
age: 2505788
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/e5f210ac37638c73fa8ef665b5b9b0fb.webp
8.248.224.22 723 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/e5f210ac37638c73fa8ef665b5b9b0fb.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 0a48bbc0b24b406a3e6f43803ae29d74
8f8323ffeb7766d265d7320336f105cd0a332cf5
3f20c5e95f5df337ebe2584d1cd8d247048005c1019ca2c73a0f555248130068
GET /resized/size16/sfiles/logo_teams/e5f210ac37638c73fa8ef665b5b9b0fb.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 723
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 21:04:10 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="e5f210ac37638c73fa8ef665b5b9b0fb.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: fc57ef2808f59302eba0d1f0b213c12b
age: 2504888
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3456.webp
8.248.224.22 987 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/3456.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 60e71121876861b5bc3f09636f1e9b27
1a098d183d26d2ddab8784aa48e13f1b26838a98
f540b4b79ce5082a20010bb9913e525041336056d5e8eabf52fbc5eb56a63dfd
GET /resized/size16/sfiles/logo_teams/3456.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: image/png
content-length: 987
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:45:22 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3456.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: d9188fc1f4d243213038da27819a6233
age: 2506077
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/BetsHistory.BetsHistoryCashbox/BetsHistory.BetsHistoryDefault/BetsHistory.BetsHistoryExact/B/a675d231-94c761d6.js
8.248.224.22 7.8 kB URL v3.traincdn.com/_nuxt/desktop/default/vendors/BetsHistory.BetsHistoryCashbox/BetsHistory.BetsHistoryDefault/BetsHistory.BetsHistoryExact/B/a675d231-94c761d6.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (17631)
Hash 40fb712af141296a32f462ce89c0766c
e3fdac5a0d9d947375ae28b6d41ab3831bcc8e11
b5217ed467e911ff3fb64dd2483e7b4d75f6e9355cccbd27318fdb6320e5f8db
GET /_nuxt/desktop/default/vendors/BetsHistory.BetsHistoryCashbox/BetsHistory.BetsHistoryDefault/BetsHistory.BetsHistoryExact/B/a675d231-94c761d6.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 7819
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-1e8b"
expires: Sun, 04 Jun 2023 13:53:42 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 86337
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/b35ed48d.css
8.248.224.22 884 B URL v3.traincdn.com/_nuxt/desktop/default/css/b35ed48d.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (5159)
Hash b371721e2dd3f042f63e016ce85af058
5c11a94fa0863c634e45d89cde7e2f012d390946
f39cbf5f641cd8ff76384938caac8f8923e7537fe9749b47f2695fb751329aab
GET /_nuxt/desktop/default/css/b35ed48d.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: text/css
content-length: 884
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-374"
expires: Mon, 05 Jun 2023 10:40:38 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 11521
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/17cbd274.css
8.248.224.22 4.8 kB URL v3.traincdn.com/_nuxt/desktop/default/css/17cbd274.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (37816)
Hash 3a7f0af9a8f2380b5dbf29d99152a512
227f2d99ba9bd19f316b013b0765b6e192ebc24c
7efd31f1cdd45a52aba24d23333a62a6f4f1daf1c3880e4e00a6f7c423474352
GET /_nuxt/desktop/default/css/17cbd274.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: text/css
content-length: 4780
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-12ac"
expires: Mon, 05 Jun 2023 09:52:38 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 14439
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/BetsHistory.BetsHistoryCashbox/BetsHistory.BetsHistoryDefault/BetsHistory.BetsHistoryExact/B/10646477-b0cf4e00.js
8.248.224.22 15 kB URL v3.traincdn.com/_nuxt/desktop/default/vendors/BetsHistory.BetsHistoryCashbox/BetsHistory.BetsHistoryDefault/BetsHistory.BetsHistoryExact/B/10646477-b0cf4e00.js
IP 8.248.224.22:0
File type Unicode text, UTF-8 text, with very long lines (25429)
Hash 7fc01beda018b8a21541712dabb78588
96d9afaf22488bb69f5528f9cdbcc5cf41f50ca0
c1f08f70a585776ea47f3cfd7747a5a58d72c04b7d41b2bc32ed37f4c5740950
GET /_nuxt/desktop/default/vendors/BetsHistory.BetsHistoryCashbox/BetsHistory.BetsHistoryDefault/BetsHistory.BetsHistoryExact/B/10646477-b0cf4e00.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 15406
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-3c2e"
expires: Mon, 05 Jun 2023 13:52:18 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 14
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/d9921c15.css
8.248.224.22200 OK 708 B URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/d9921c15.css
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (2182)
Hash 23353a0db0c8e22518effe74a9b497ef
d78cf74c8a06d501b4754a7152d94c6f676290fd
d527c59ee301c37058d27db890f5c5b73e70638a6f6f6ed3ffb2b525746e4771
GET /_nuxt/desktop/default/css/d9921c15.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: text/css
content-length: 708
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-2c4"
expires: Mon, 05 Jun 2023 09:51:54 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 14438
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/998924e4.css
8.248.224.22200 OK 2.5 kB URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/998924e4.css
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (19004)
Hash 9b189aba7097430a85a9dd63781a1cef
ced2e91c4282dee696884a5b12a92908a52d94a9
6fabda5658052d6005f158c3116609f829e943c765ff205d42d8fd45638444b1
GET /_nuxt/desktop/default/css/998924e4.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: text/css
content-length: 2539
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-9eb"
expires: Sun, 04 Jun 2023 14:21:34 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 84656
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/239b3a82.css
8.248.224.22 457 B URL v3.traincdn.com/_nuxt/desktop/default/css/239b3a82.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (1429)
Hash e925f1d768bc6bbd96e745f13a7eb48e
9659cce4e62e4d384fb05dc718c0791ff9d3ff78
e0d9b8cfcbf7af94cfd032495866585b6fe24b7632755383ffcbda07bd613ab6
GET /_nuxt/desktop/default/css/239b3a82.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: text/css
content-length: 457
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-1c9"
expires: Mon, 05 Jun 2023 11:01:36 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 10257
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/2f1fe4ed.css
8.248.224.22 1.3 kB URL v3.traincdn.com/_nuxt/desktop/default/css/2f1fe4ed.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (5504)
Hash 1f8c2966f8006e52f98039924fff900f
fddf4c589d579829403e74fdbf159f3c384d969c
d5a23926862bfc8db927d3ba485ec4be6111670cf5e83ee78498445943efd471
GET /_nuxt/desktop/default/css/2f1fe4ed.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: text/css
content-length: 1251
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-4e3"
expires: Mon, 05 Jun 2023 12:50:43 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 3709
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/betting.media-5e1c69fc.js
8.248.224.22200 OK 18 kB URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/betting.media-5e1c69fc.js
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (57481)
Hash 438d2fac85500f875cb66ec02641140d
cff70f718824746a5e8bdbb69fd6237cb275ad8a
d2ebeca6c769f80dd294d44ea0b7abbfc86303524f5d214a07e222c041cc4da6
GET /_nuxt/desktop/default/vendors/betting.media-5e1c69fc.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 18197
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-4715"
expires: Mon, 05 Jun 2023 13:52:20 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 15
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
216.58.207.227 9.6 kB URL fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 9628, version 1.0\012- data
Hash d9ac47c7e500fb7083b8d595eaf6fe12
112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933
495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Jun 2023 03:23:01 GMT
expires: Sun, 02 Jun 2024 03:23:01 GMT
cache-control: public, max-age=31536000
age: 124169
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
v3.traincdn.com/_nuxt/desktop/default/betting.media-ac55a864.js
8.248.224.22 5.0 kB URL v3.traincdn.com/_nuxt/desktop/default/betting.media-ac55a864.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (10170)
Hash 1a005a3a85ae38aa60239159da5516ad
76b0a4c857f1752b32ad1bc1f2b192d58b02de36
2a887e53479c454b52d6a7dd6b2c4a2fb3b39cbdfedf55be29c2023f32f8f118
GET /_nuxt/desktop/default/betting.media-ac55a864.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 4980
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-1374"
expires: Mon, 05 Jun 2023 13:52:20 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 15
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/betting.SportMenuApp/betting.SportMenuAppAsia-a49e2dc1.js
8.248.224.22 3.7 kB URL v3.traincdn.com/_nuxt/desktop/default/betting.SportMenuApp/betting.SportMenuAppAsia-a49e2dc1.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (7333)
Hash 56dc8dd6dbeb14de30dff8332bd7fb24
26969dce470809ea58dfbe0dc57bd2e4d8264c38
7e18863578cbd08e9660c6c1cf5825fb8fa14618f9459815fc4b1a4cc532df3f
GET /_nuxt/desktop/default/betting.SportMenuApp/betting.SportMenuAppAsia-a49e2dc1.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 3744
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-ea0"
expires: Mon, 05 Jun 2023 13:52:30 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 7
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/betting.CentralMenuApp-0163e23d.js
8.248.224.22 12 kB URL v3.traincdn.com/_nuxt/desktop/default/betting.CentralMenuApp-0163e23d.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (10916)
Hash c5aaaeb57ee8a909b9268be4991759e4
de34d93ea88793c6e2b15a5150e2a5e9b1d956c0
a26ebf4269646ca14c125feae25407f82d749795ba5a54c143f3c84a1ede12d4
GET /_nuxt/desktop/default/betting.CentralMenuApp-0163e23d.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 12032
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-2f00"
expires: Mon, 05 Jun 2023 13:52:30 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 5
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/Layout.Betting.ExpressDay-d2f0dcb9.js
8.248.224.22 9.7 kB URL v3.traincdn.com/_nuxt/desktop/default/Layout.Betting.ExpressDay-d2f0dcb9.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (14224)
Hash 082dd175ca11c4bdbb1f1b35a834c06f
7c9738b2ff1a6ec7e3e5264320e935dc87b56917
63da5c28e1c4805be48ed1d104a366bc1453c842359c5d15503cde131affc81b
GET /_nuxt/desktop/default/Layout.Betting.ExpressDay-d2f0dcb9.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 9662
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-25be"
expires: Mon, 05 Jun 2023 13:52:30 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 7
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/betting.SportMenuApp-1293aadc.js
8.248.224.22 38 kB URL v3.traincdn.com/_nuxt/desktop/default/betting.SportMenuApp-1293aadc.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (27229)
Hash d0b104f0dcb878af7581f1f9365b7336
a9668ea16ebd86403acc66adc51a7167e70cbb12
3691a5633d9d922aca59a0d8c614f145ab8b1177c2659167fc20a2b00fa3b619
GET /_nuxt/desktop/default/betting.SportMenuApp-1293aadc.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 38035
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-9493"
expires: Mon, 05 Jun 2023 13:52:27 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 7
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-548007.top/service-api/LiveFeed/GetTopGamesStatZip?lng=en&antisports=66
178.253.15.89 2.1 kB URL 1xlite-548007.top/service-api/LiveFeed/GetTopGamesStatZip?lng=en&antisports=66
IP 178.253.15.89:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (7603), with no line terminators
Hash b97da677eed09e358a5f1f8dfee483a1
392a64b55412ce31e0c90c996c63fca347e2cb5e
2244b607beefa558051dc294b18ac00b1b9b691f30d8225c018ed6595f939d93
GET /service-api/LiveFeed/GetTopGamesStatZip?lng=en&antisports=66 HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: application/json; charset=utf-8
content-length: 2112
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/service-api/LiveFeed/WebGetTopChampsZip?lng=en&gr=285&country=137
178.253.15.89 88 B URL 1xlite-548007.top/service-api/LiveFeed/WebGetTopChampsZip?lng=en&gr=285&country=137
IP 178.253.15.89:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a62a3d291c25728a06f15b4ee47d5e43
7613e665c8dd639f4f8b821f8337cc4629e3d942
1e2d5a52c362e3ab706e11a3ee2454024423019bd4976d4874df7681c7468b3c
GET /service-api/LiveFeed/WebGetTopChampsZip?lng=en&gr=285&country=137 HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: application/json; charset=utf-8
content-length: 88
cache-control: no-cache
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/Page.Office.Security/Page.Office.Support/RegistrationWidgetApp/components/userControl.auth_f/1501452e-64cabde0.js
8.248.224.22200 OK 8.2 kB URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/Page.Office.Security/Page.Office.Support/RegistrationWidgetApp/components/userControl.auth_f/1501452e-64cabde0.js
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (13292)
Hash b2029a207a71a7f91fb9244a26baeed7
ffebbf5b9297827d02102b6c00aa828d0cdbd195
d2f300ed4d554ffb09990c3cc2e5754d79195671a6b89a278144d9165935c4a2
GET /_nuxt/desktop/default/vendors/Page.Office.Security/Page.Office.Support/RegistrationWidgetApp/components/userControl.auth_f/1501452e-64cabde0.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 8232
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-2028"
expires: Sun, 04 Jun 2023 13:53:34 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 86338
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/Auth.Forms/BetsHistory.BetsHistoryCashbox/BetsHistory.BetsHistoryDefault/Page.Information.Ru/117e201d-3c1a1cbd.js
8.248.224.22 8.7 kB URL v3.traincdn.com/_nuxt/desktop/default/vendors/Auth.Forms/BetsHistory.BetsHistoryCashbox/BetsHistory.BetsHistoryDefault/Page.Information.Ru/117e201d-3c1a1cbd.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (23906)
Hash b4b996d5b0152194e9bf40583c60bbb5
cec5921ae6d57a386d13f2a5070ec9b3a07bf1dd
2ec853a0433dd92ae0ffc9ed7415393264afdb189a0e5adb668def4e42fe2e1f
GET /_nuxt/desktop/default/vendors/Auth.Forms/BetsHistory.BetsHistoryCashbox/BetsHistory.BetsHistoryDefault/Page.Information.Ru/117e201d-3c1a1cbd.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 8666
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-21da"
expires: Mon, 05 Jun 2023 09:35:02 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 15467
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/cfd7eaa3.css
8.248.224.22 1.6 kB URL v3.traincdn.com/_nuxt/desktop/default/css/cfd7eaa3.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (7739)
Hash 91a5eed0a81a30fbf64ed323bd7c8923
e6be261c80f9c0b1d0ddac8e01d0aa4e47600260
cfd511adc4bac7e564bc020b9dd99101d00be2c8fe59de91ca037f6093b22aab
GET /_nuxt/desktop/default/css/cfd7eaa3.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: text/css
content-length: 1620
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-654"
expires: Mon, 05 Jun 2023 09:51:55 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 14438
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/betting.coupon2/vuedraggable-513ae8ed.js
8.248.224.22 25 kB URL v3.traincdn.com/_nuxt/desktop/default/vendors/betting.coupon2/vuedraggable-513ae8ed.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (37357)
Hash d5d081206b4d0b41b0c50eadb4ed475f
64f0b719c30cce94e5003191ee8f7050b191b7a8
b504e4913d22c44ace406774410d4d11f466fa0bfd399e29d32acd93830532e8
GET /_nuxt/desktop/default/vendors/betting.coupon2/vuedraggable-513ae8ed.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 24803
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-60e3"
expires: Mon, 05 Jun 2023 09:35:02 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 15467
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/b4325ebc.css
8.248.224.22 7.7 kB URL v3.traincdn.com/_nuxt/desktop/default/css/b4325ebc.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0a646828618cb78d4ce4cc53d563300b
283b02c6d67919b4c8884f36598f9cf7347bfa0e
beeac95230ee559ba99e718adf6cb86c29465ffbdab8abfc12d751fecf79d66a
GET /_nuxt/desktop/default/css/b4325ebc.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: text/css
content-length: 7709
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-1e1d"
expires: Mon, 05 Jun 2023 09:54:16 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 14448
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/betting.coupon2-61751194.js
8.248.224.22200 OK 7.0 kB URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/betting.coupon2-61751194.js
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (23186)
Hash 474853250c4da5ed0fac29e0ba42b3c4
d0b4b99e135d54db79935c39d536db3dd579d669
df1250a55b59d4494dbb1cca460c8465dc3c5fd323b3d494f9e294534693071c
GET /_nuxt/desktop/default/vendors/betting.coupon2-61751194.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 6955
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-1b2b"
expires: Mon, 05 Jun 2023 13:52:27 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 5
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/5ba9ceec.css
8.248.224.22 1.0 kB URL v3.traincdn.com/_nuxt/desktop/default/css/5ba9ceec.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (5212)
Hash ec465e43a1df4e7918ac04eda445462e
9df95a951bf086a9b420ac73db1074f5ff9ddd2d
266f34eb6e1f19aa3bf2c0d4db5766000ba33b5ec0e2ef543174f8f079c5e5d8
GET /_nuxt/desktop/default/css/5ba9ceec.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: text/css
content-length: 1022
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-3fe"
expires: Mon, 05 Jun 2023 13:41:01 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 692
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/DownloadAppWidgetAnalytics-ff411b83.js
8.248.224.22 360 B URL v3.traincdn.com/_nuxt/desktop/default/DownloadAppWidgetAnalytics-ff411b83.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (399)
Hash ab8b8491a503f11ce74b43872a02ddde
3cfcf455d7374ae6972272977c9304a4363a8522
f81890e7417a4907fd546081866581250ee1b942dc1a1df4d275936cc91c305e
GET /_nuxt/desktop/default/DownloadAppWidgetAnalytics-ff411b83.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 360
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-168"
expires: Mon, 05 Jun 2023 13:52:31 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 5
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/RegistrationWidgetApp-746a7945.js
8.248.224.22 20 kB URL v3.traincdn.com/_nuxt/desktop/default/RegistrationWidgetApp-746a7945.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (20611)
Hash f5c96bc930bda7eb7792eed737e13a83
031f3bfb14cf8ca365e8bef23f4761f34d3bd4ad
67ced31ef90904c92c7ff3b7af02b355798fde08ba5a91783e7b1a794b9bd19b
GET /_nuxt/desktop/default/RegistrationWidgetApp-746a7945.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 19860
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-4d94"
expires: Mon, 05 Jun 2023 13:52:31 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 2
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/betting.coupon2-87985db3.js
8.248.224.22 35 kB URL v3.traincdn.com/_nuxt/desktop/default/betting.coupon2-87985db3.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (23696)
Hash 0dd9e0218ae77588fb390c64afbdd7e7
cb867c09b88d49e75d00e678a40db3bfd41fbbe5
ed1f20b8ee36d28ffbb234c2d16191157e703a1933e5ce5085837f6f8e55075d
GET /_nuxt/desktop/default/betting.coupon2-87985db3.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 35260
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-89bc"
expires: Mon, 05 Jun 2023 13:52:27 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 5
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/betting.HomeSliderComponent-503ba7bd.js
8.248.224.22 7.3 kB URL v3.traincdn.com/_nuxt/desktop/default/betting.HomeSliderComponent-503ba7bd.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (13048)
Hash 376159b86b29e92b7869ac8432fdd0e5
38e1d8dd080d359ca0e89669122e1620824dff47
a48020df42e469dd23e78aec36b0b9d400b27a88ae973c33d27eae4cb42fb1eb
GET /_nuxt/desktop/default/betting.HomeSliderComponent-503ba7bd.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 7325
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-1c9d"
expires: Mon, 05 Jun 2023 13:52:29 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-548007.top/session-api/sessions/user
178.253.15.89 16 B URL 1xlite-548007.top/session-api/sessions/user
IP 178.253.15.89:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 646b2e82b65602d35f7aa6283c387e3a
b163a70c5df8e4b0861a23a04f8a6f78393747f4
b68bf12405ee2cb5b76764df21dbc2df0953ddff4072ddc5281d1aab05e8c4ab
GET /session-api/sessions/user HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: application/json
content-length: 16
cache-control: no-cache, private
server-timing: p;dur=0.84686279296875
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/ioc.dependencies.30-bc0b0ef4.js
8.248.224.22 1.2 kB URL v3.traincdn.com/_nuxt/desktop/default/ioc.dependencies.30-bc0b0ef4.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (2568)
Hash 1b545a3a2c26bd49250c7c19d515b6ac
37cc0b0eef4fe7e4898e86ea5b2f2ecead607b0e
f503936f5bd24e692f3a953ce95586deb2110badf782d9a007b44d3d49e2cf57
GET /_nuxt/desktop/default/ioc.dependencies.30-bc0b0ef4.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 1156
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-484"
expires: Mon, 05 Jun 2023 13:52:31 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 13
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-548007.top/service-api/LiveFeed/Get1x2_VZip?count=20&lng=en&gr=285&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true
178.253.15.89200 OK 11 kB URL GET HTTP/2 1xlite-548007.top/service-api/LiveFeed/Get1x2_VZip?count=20&lng=en&gr=285&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true
IP 178.253.15.89:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerLet's Encrypt
Subject*.1xlite-548007.top
Fingerprint6E:05:68:A5:ED:AF:63:CB:50:7D:72:7E:44:B1:94:16:CB:EC:C9:BD
ValiditySat, 25 Mar 2023 01:05:31 GMT - Fri, 23 Jun 2023 01:05:30 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (51482), with no line terminators
Hash 2cea7dbf3e6fddfad4fab06b1b3e8901
ba48b11e36f744b995f6e570e974b7db5e86da53
adea2acefff59bfb9e683178caa854f4f4d53523c3b64ef3fbcfb75217d5e588
GET /service-api/LiveFeed/Get1x2_VZip?count=20&lng=en&gr=285&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: application/json; charset=utf-8
content-length: 10908
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/web-api/user/secure
178.253.15.89200 OK 59 B URL POST HTTP/2 1xlite-548007.top/web-api/user/secure
IP 178.253.15.89:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerLet's Encrypt
Subject*.1xlite-548007.top
Fingerprint6E:05:68:A5:ED:AF:63:CB:50:7D:72:7E:44:B1:94:16:CB:EC:C9:BD
ValiditySat, 25 Mar 2023 01:05:31 GMT - Fri, 23 Jun 2023 01:05:30 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash ed588d174a33a0703c03a27ad91efe76
3b83be1f1aeb4ce8ed929c7e98b09188fdb62ebb
ba0882eb3aa6dd5124e8f9dc3d5e28293b16f7baa73eb94c4258944fdca25ae1
POST /web-api/user/secure HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: application/json; charset=utf-8
content-length: 59
server-timing: dt_285;dur=96, px_285;dur=96
set-cookie: is_rtl=1; expires=Mon, 03-Jun-2024 13:52:31 GMT; Max-Age=31536000; path=/; HttpOnly
disallow_sport=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; HttpOnly
fast_coupon=true; expires=Sun, 11-Jun-2023 13:52:31 GMT; Max-Age=604800; path=/
v3fr=1; expires=Wed, 07-Jun-2023 13:52:31 GMT; Max-Age=259200; path=/; HttpOnly; SameSite=lax
_glhf=1685904527; expires=Sun, 04-Jun-2023 14:52:31 GMT; Max-Age=3600; path=/
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/service-api/LineFeed/Get1x2_VZip?count=20&lng=en&tz=2&mode=4&country=137&virtualSports=true&gr=285
178.253.15.89 7.4 kB URL 1xlite-548007.top/service-api/LineFeed/Get1x2_VZip?count=20&lng=en&tz=2&mode=4&country=137&virtualSports=true&gr=285
IP 178.253.15.89:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (46167), with no line terminators
Hash 9eed4457e098ec7f51688736e2d0c701
540f5db5de363c3f1f5a144b0f9727db1d32e48d
47dc82bb20d39172e0a2a779e5438ac61c12202be7c3fe67e1ed6c24185478a9
GET /service-api/LineFeed/Get1x2_VZip?count=20&lng=en&tz=2&mode=4&country=137&virtualSports=true&gr=285 HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: application/json; charset=utf-8
content-length: 7431
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/checker/redirect/stat/run/
178.253.15.89 14 B URL 1xlite-548007.top/checker/redirect/stat/run/
IP 178.253.15.89:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2de0d0acfd684235f066bd0ec0c9e3df
68d0cb64805a42d7e40f43e8e198986b43dd6b69
9682f312f23e078bb135f23ea5a178b178e75c02d33672f20044d18c6d258928
GET /checker/redirect/stat/run/ HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1685904527; che_g=ba89276d-fa94-1c88-38a4-c9ded0ae9d6d
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: application/json
content-length: 14
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/fatman-api/a6f69e4388362d761ee5bb073edb23ae3d9341fb/event.json
178.253.15.89 0 B URL 1xlite-548007.top/fatman-api/a6f69e4388362d761ee5bb073edb23ae3d9341fb/event.json
IP 178.253.15.89:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fatman-api/a6f69e4388362d761ee5bb073edb23ae3d9341fb/event.json HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Content-Type: application/json
X-Lang: en
X-Uuid: 99684a20-b4a6-431d-ae57-2bc5198c31e8
Content-Length: 92
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1685904527; che_g=ba89276d-fa94-1c88-38a4-c9ded0ae9d6d
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sun, 04 Jun 2023 13:52:31 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/6bf7a942.css
8.248.224.22200 OK 1.1 kB URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/6bf7a942.css
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type ASCII text, with very long lines (5061)
Hash 6e9b3857a4b3d39815d5debb1df88058
a3de7ca91bd43e0485eeb76d033e39126bf32911
c632941b8ea454f76159977da75cec0c6a42bd9f49843bf1de2396ad5003f48f
GET /_nuxt/desktop/default/css/6bf7a942.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: text/css
content-length: 1129
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-469"
expires: Mon, 05 Jun 2023 10:41:41 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 11520
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-548007.top/_nuxt/Desktop/Default/svg-sprites/country-100059.svg
178.253.15.89 54 kB URL 1xlite-548007.top/_nuxt/Desktop/Default/svg-sprites/country-100059.svg
IP 178.253.15.89:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65536), with no line terminators
Hash ad5fe0559536cde6c7872198e3caccb1
b8a5c113b37d1a3c66dccb0154a7ba63fd47872b
2e0f939bb5568334207a240a91cb37e306593a8d7f450372718193ee132ae648
GET /_nuxt/Desktop/Default/svg-sprites/country-100059.svg HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
etag: W/"647af8c4-26288"
expires: Mon, 05 Jun 2023 13:51:23 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/web-api/api/v3/bonuses/first-deposit
178.253.15.89 272 B URL 1xlite-548007.top/web-api/api/v3/bonuses/first-deposit
IP 178.253.15.89:0
File type gzip compressed data, from Unix\012- data
Hash a7eda4467b004800503c114710ef18f4
9b2c1255eec843ab233976246ddc12ba6dc1c5fc
ccfe0c9b99310dcd5802936793be6acef65dcfd1ac7eed85550b650b670f16e5
GET /web-api/api/v3/bonuses/first-deposit HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=38, dt_285;dur=39, px_285;dur=39
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/DownloadAppWidget-4793a302.js
8.248.224.22 4.1 kB URL v3.traincdn.com/_nuxt/desktop/default/DownloadAppWidget-4793a302.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (5748)
Hash 3a85c6b4a54972d04a5affd0865be78b
498e2cee96a578fc0a6420e4af6cab66078676c6
7a75450893ef43d809dfec3b31665da87207ce3941a84589157e8b58f024cb1f
GET /_nuxt/desktop/default/DownloadAppWidget-4793a302.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:32 GMT
content-type: application/javascript; charset=utf-8
content-length: 4081
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-ff1"
expires: Mon, 05 Jun 2023 13:52:31 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 10
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/betstemplates/bets_model_full_en_0.json
8.248.224.22 4.5 kB URL v3.traincdn.com/genfiles/cms/betstemplates/bets_model_full_en_0.json
IP 8.248.224.22:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (21692), with no line terminators
Hash 9c1e449d0b116b398773068b48d4e44f
d05392cec153f3ee5b00e51d804511430f06b869
2776692e833fee91d96742918b3c838c8bfada2fc67afb9766ff6adbba35f54c
GET /genfiles/cms/betstemplates/bets_model_full_en_0.json HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:32 GMT
content-type: application/json
content-length: 4501
cache-control: public, max-age=86400
content-encoding: gzip
etag: W/"9c1e449d0b116b398773068b48d4e44f"
expires: Mon, 05 Jun 2023 11:02:03 GMT
last-modified: Wed, 31 May 2023 08:46:51 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 10229
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-548007.top/service-api/LineFeed/GetExpressDayExtendedZip?lng=en
178.253.15.89 627 B URL 1xlite-548007.top/service-api/LineFeed/GetExpressDayExtendedZip?lng=en
IP 178.253.15.89:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1484), with no line terminators
Hash 7ed41908831d9c8fa1ad183b38a531ae
560fd991eff4cd9c53a881c2d5a3be5481377bc2
47bb2a9e3cbfa2136e45a8406b35eaf5f652597e8fe8a0a2a0545a5951739dc9
GET /service-api/LineFeed/GetExpressDayExtendedZip?lng=en HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1685904527; che_g=ba89276d-fa94-1c88-38a4-c9ded0ae9d6d; ggru=216
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:32 GMT
content-type: application/json; charset=utf-8
content-length: 627
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/_nuxt/Desktop/Default/svg-sprites/sports-100059.svg
178.253.15.89 144 kB URL 1xlite-548007.top/_nuxt/Desktop/Default/svg-sprites/sports-100059.svg
IP 178.253.15.89:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65536), with no line terminators
Size 144 kB (143669 bytes)
Hash a3d3bebc628822341ebd30803735262b
3b8a6ac9167b3562125ba0e2ebad7268a377c3b5
c03d62cb97629e8ec6ea91f7838f838a1c3e6861d0785a4e65b5402e7e1e644b
GET /_nuxt/Desktop/Default/svg-sprites/sports-100059.svg HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
etag: W/"647af8c4-59453"
expires: Mon, 05 Jun 2023 13:51:25 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/bd7ead59.css
8.248.224.22 477 B URL v3.traincdn.com/_nuxt/desktop/default/css/bd7ead59.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (1788)
Hash e057d9dec0127593911cc12c93eaae8d
04ba60eec2ca7a1d4e762e0c9c50296483bd102d
8e869890f520c9e19bb6a37be9e0a0ef9d043398ac4c0bf6770279f53c6fb291
GET /_nuxt/desktop/default/css/bd7ead59.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:32 GMT
content-type: text/css
content-length: 477
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-1dd"
expires: Mon, 05 Jun 2023 10:41:19 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 11499
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/betting.SportsMenuCompact-bc0c7b52.js
8.248.224.22 5.8 kB URL v3.traincdn.com/_nuxt/desktop/default/betting.SportsMenuCompact-bc0c7b52.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (14755)
Hash 7e70e995e1c245b933fc8d68fb74c90e
c0782354d474ff41fe843227d73ada77fde5fc5d
3856aea9f97d72ac1db3ac1b34d364c15dc863ef298defa31007db34bc8515d3
GET /_nuxt/desktop/default/betting.SportsMenuCompact-bc0c7b52.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:32 GMT
content-type: application/javascript; charset=utf-8
content-length: 5750
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-1676"
expires: Sun, 04 Jun 2023 13:52:57 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 86389
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-548007.top/service-api/LiveFeed/GetSportsShortZip?lng=en&gr=285&country=137&virtualSports=true&groupChamps=true
178.253.15.89 2.8 kB URL 1xlite-548007.top/service-api/LiveFeed/GetSportsShortZip?lng=en&gr=285&country=137&virtualSports=true&groupChamps=true
IP 178.253.15.89:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (11017), with no line terminators
Hash c95be60041dafad589cde2afd683f047
2aa88a6f47394a1cd06fbd0e10b49ebbb3f6238b
2b905af7df5eed4697e678e45dbe230fb3b0a9659e951288ee626e6cf5513db6
GET /service-api/LiveFeed/GetSportsShortZip?lng=en&gr=285&country=137&virtualSports=true&groupChamps=true HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1685904527; che_g=ba89276d-fa94-1c88-38a4-c9ded0ae9d6d; ggru=216
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:32 GMT
content-type: application/json; charset=utf-8
content-length: 2790
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/service-api/LineFeed/GetSportsShortZip?lng=en&tz=2&country=137&virtualSports=true&gr=285&groupChamps=true
178.253.15.89 1.8 kB URL 1xlite-548007.top/service-api/LineFeed/GetSportsShortZip?lng=en&tz=2&country=137&virtualSports=true&gr=285&groupChamps=true
IP 178.253.15.89:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (5651), with no line terminators
Hash dee403b7ab699b52644e7d7e34cd2367
529097566b59a614e0e4baf31189f18b23f16c71
b96f511bdf8991eb5764975e9fd4977451411f69d4df24261d09be860d5a6c7f
GET /service-api/LineFeed/GetSportsShortZip?lng=en&tz=2&country=137&virtualSports=true&gr=285&groupChamps=true HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1685904527; che_g=ba89276d-fa94-1c88-38a4-c9ded0ae9d6d; ggru=216
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:32 GMT
content-type: application/json; charset=utf-8
content-length: 1814
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/service-api/LiveFeed/GetSportsShortZip?lng=en&gr=285&country=137&virtualSports=true&groupChamps=true
178.253.15.89 2.8 kB URL 1xlite-548007.top/service-api/LiveFeed/GetSportsShortZip?lng=en&gr=285&country=137&virtualSports=true&groupChamps=true
IP 178.253.15.89:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (11017), with no line terminators
Hash c95be60041dafad589cde2afd683f047
2aa88a6f47394a1cd06fbd0e10b49ebbb3f6238b
2b905af7df5eed4697e678e45dbe230fb3b0a9659e951288ee626e6cf5513db6
GET /service-api/LiveFeed/GetSportsShortZip?lng=en&gr=285&country=137&virtualSports=true&groupChamps=true HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1685904527; che_g=ba89276d-fa94-1c88-38a4-c9ded0ae9d6d; ggru=216
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:32 GMT
content-type: application/json; charset=utf-8
content-length: 2790
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/betstemplates/bets_model_short_en_0.json
8.248.224.22 3.7 kB URL v3.traincdn.com/genfiles/cms/betstemplates/bets_model_short_en_0.json
IP 8.248.224.22:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (13983), with no line terminators
Hash 4f8f8657a322af0cc811a2b41b320398
509cbf4880b081b466360bc28f286e3b0aaa7179
c110356995d092e5aeb213be06de8461826b26cc00ee5137c887c5968f91db08
GET /genfiles/cms/betstemplates/bets_model_short_en_0.json HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:33 GMT
content-type: application/json
content-length: 3746
cache-control: public, max-age=86400
content-encoding: gzip
etag: W/"4f8f8657a322af0cc811a2b41b320398"
expires: Mon, 05 Jun 2023 11:01:51 GMT
last-modified: Wed, 31 May 2023 08:46:47 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 10252
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/betstemplates/bets_model_map_short_en.json
8.248.224.22 530 B URL v3.traincdn.com/genfiles/cms/betstemplates/bets_model_map_short_en.json
IP 8.248.224.22:0
File type JSON data\012- , ASCII text, with very long lines (1186), with no line terminators
Hash 048f838e2163fb0db1ee1a501f94bd31
81c1e20e23a5c7516985198e79f9e297136e0076
68d1ac51895837f006b9321140a78ed03684dcad362575f92c30c3031351ae26
GET /genfiles/cms/betstemplates/bets_model_map_short_en.json HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:33 GMT
content-type: application/json
content-length: 530
cache-control: public, max-age=86400
content-encoding: gzip
etag: W/"048f838e2163fb0db1ee1a501f94bd31"
expires: Mon, 05 Jun 2023 11:07:53 GMT
last-modified: Wed, 31 May 2023 08:46:50 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 9880
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/1/desktop/banner/d94c9b1508a286d270c77946ff0972fa.jpg
8.248.224.22 51 kB URL v3.traincdn.com/genfiles/cms/1/desktop/banner/d94c9b1508a286d270c77946ff0972fa.jpg
IP 8.248.224.22:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1380x248, components 3\012- data
Hash 15b1bda7b31ccc5eacce67afbe6f160b
d41eac3583bb0495a008b0d1e4a584d103feb436
2e1b52936d0c7081d46010cd49e236aed8cefc16adad7c908c108aff4a73718d
GET /genfiles/cms/1/desktop/banner/d94c9b1508a286d270c77946ff0972fa.jpg HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:33 GMT
content-type: image/jpeg
content-length: 51087
cache-control: public, max-age=86400
etag: "15b1bda7b31ccc5eacce67afbe6f160b"
expires: Mon, 05 Jun 2023 11:03:00 GMT
last-modified: Tue, 11 Apr 2023 18:15:30 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 10175
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/1/desktop/banner/bf26d696b76130d9781b16f89f1de4cc.jpg
8.248.224.22 147 kB URL v3.traincdn.com/genfiles/cms/1/desktop/banner/bf26d696b76130d9781b16f89f1de4cc.jpg
IP 8.248.224.22:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 1380x248, components 3\012- data
Size 147 kB (147402 bytes)
Hash 9d1ab102184100544b4a72fcc6a8c458
79a64d17a182311cf4f856e39c83e3d9c5b1e55b
0fd0800599423b6bc4c2fe90c96f0025f4dd0d13d0c4b535e9421e21049a0903
GET /genfiles/cms/1/desktop/banner/bf26d696b76130d9781b16f89f1de4cc.jpg HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:33 GMT
content-type: image/jpeg
content-length: 147402
cache-control: public, max-age=86400
etag: "9d1ab102184100544b4a72fcc6a8c458"
expires: Mon, 05 Jun 2023 11:02:48 GMT
last-modified: Tue, 11 Apr 2023 18:15:17 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 10185
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/1/desktop/banner/4ccc307454478f032505dfa67f232149.jpg
8.248.224.22 103 kB URL v3.traincdn.com/genfiles/cms/1/desktop/banner/4ccc307454478f032505dfa67f232149.jpg
IP 8.248.224.22:0
File type JPEG image data, progressive, precision 8, 1380x248, components 3\012- data
Size 103 kB (103207 bytes)
Hash b8f2a16b3c40dd0bab89303b600e4dd6
2335fc7ac5420bcbccab5027da5a1278d86e6878
1544ab26a829bd9c6ad4400d487be445fd3ba0ee4f92ac69060c319f86da1bff
GET /genfiles/cms/1/desktop/banner/4ccc307454478f032505dfa67f232149.jpg HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:33 GMT
content-type: image/jpeg
content-length: 103207
cache-control: public, max-age=86400
etag: "b8f2a16b3c40dd0bab89303b600e4dd6"
expires: Mon, 05 Jun 2023 12:33:09 GMT
last-modified: Fri, 02 Jun 2023 12:31:36 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 4765
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/1/desktop/banner/3a8291c8cadcb2cfd805b1f9b64b6be6.jpg
8.248.224.22200 OK 276 kB URL GET HTTP/2 v3.traincdn.com/genfiles/cms/1/desktop/banner/3a8291c8cadcb2cfd805b1f9b64b6be6.jpg
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 1380x248, components 3\012- data
Size 276 kB (276535 bytes)
Hash d697dc452a9c933f1a39ffd932732449
bbca26717c63f5d45366df2a9e00c4ac599ac221
c7b66eeb7ed34c2ae7e312593c099b9c50b14805bc8199f2c5f859484c7fad6e
GET /genfiles/cms/1/desktop/banner/3a8291c8cadcb2cfd805b1f9b64b6be6.jpg HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:33 GMT
content-type: image/jpeg
content-length: 276535
cache-control: public, max-age=86400
etag: "d697dc452a9c933f1a39ffd932732449"
expires: Mon, 05 Jun 2023 11:07:30 GMT
last-modified: Tue, 11 Apr 2023 18:14:16 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 10186
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/1/desktop/banner/c4814879b7343a55333a250f8ff20339.jpg
8.248.224.22 275 kB URL v3.traincdn.com/genfiles/cms/1/desktop/banner/c4814879b7343a55333a250f8ff20339.jpg
IP 8.248.224.22:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.1 (Windows), datetime=2022:11:18 13:24:12], baseline, precision 8, 1380x248, components 3\012- data
Size 275 kB (275031 bytes)
Hash 1d78b25536d46a434917801c2168a15a
019946e6d0b63da8f9fe130446ce6239e7625c4f
6d600d8b07eab7edaae3534f705c728bdfcd8342734c84fb639103b2a67d83b4
GET /genfiles/cms/1/desktop/banner/c4814879b7343a55333a250f8ff20339.jpg HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:33 GMT
content-type: image/jpeg
content-length: 275031
cache-control: public, max-age=86400
etag: "1d78b25536d46a434917801c2168a15a"
expires: Mon, 05 Jun 2023 11:04:02 GMT
last-modified: Tue, 11 Apr 2023 18:15:21 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 10113
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/1-285/desktop/media_asset/3083a20a3f73c30fce38710d7ada9cbb.svg
8.248.224.22 694 B URL v3.traincdn.com/genfiles/cms/1-285/desktop/media_asset/3083a20a3f73c30fce38710d7ada9cbb.svg
IP 8.248.224.22:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1220), with no line terminators
Hash 3ae81b002dca46d3b732ce3e03ae35c6
388d37b5f714937677de74330a8daab0a0d1196b
1c76b93f07c6a861c4ad9529059ea99ae69f2451788da7cab1f17fa94d54382e
GET /genfiles/cms/1-285/desktop/media_asset/3083a20a3f73c30fce38710d7ada9cbb.svg HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:33 GMT
content-type: image/svg+xml
content-length: 694
cache-control: public, max-age=86400
content-encoding: gzip
etag: W/"3ae81b002dca46d3b732ce3e03ae35c6"
expires: Mon, 05 Jun 2023 06:51:41 GMT
last-modified: Wed, 19 Apr 2023 11:51:30 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 25252
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/8d3f03ee342f3868a16a303cdf091f28.webp
8.248.224.22 669 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/8d3f03ee342f3868a16a303cdf091f28.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 647941e193e4b830f59f59be44d25784
46b6da06f681f901e6c0403d41ef6c2e1ddb0e2e
53656d365ee8d9efbc87c9e25a8372fecacb626baeedb376f1ae42c858693c7d
GET /resized/size16/sfiles/logo_teams/8d3f03ee342f3868a16a303cdf091f28.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:33 GMT
content-type: image/png
content-length: 669
cache-control: public, max-age=94608000
expires: Wed, 06 May 2026 08:44:35 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="8d3f03ee342f3868a16a303cdf091f28.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 8498045d954bc3e3e39630a6d84c369e
age: 2437678
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/7b36eb7489448810086bc7e4253e63e9.webp
8.248.224.22 575 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/7b36eb7489448810086bc7e4253e63e9.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 7fd065098d29304c06fe92711adaa2e8
9a45beba3728a8293fdc6057b59e2968007c9b8d
2bcc9267de0f2717ca46cc17e0cbb02a710a561945f88ab144af2326aa7fec9e
GET /resized/size16/sfiles/logo_teams/7b36eb7489448810086bc7e4253e63e9.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:33 GMT
content-type: image/png
content-length: 575
cache-control: public, max-age=94608000
expires: Wed, 03 Jun 2026 11:33:03 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="7b36eb7489448810086bc7e4253e63e9.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 16ceb755ecc4ff4843eec9a0208398ee
age: 2437678
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/dd5fdec6c323b6b8d6903e9f21943b18.webp
8.248.224.22 683 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/dd5fdec6c323b6b8d6903e9f21943b18.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5517d269a5005bb3bc9f6c8eebbd8e72
48708fb26b7dce408ebff8fe0e96ce051c0854b4
793ecba1bcb59170aee8b95665207bc6c387ebdf387ae7a15cc2da2c5f6e0038
GET /resized/size16/sfiles/logo_teams/dd5fdec6c323b6b8d6903e9f21943b18.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:33 GMT
content-type: image/png
content-length: 683
cache-control: public, max-age=94608000
expires: Wed, 03 Jun 2026 13:09:36 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="dd5fdec6c323b6b8d6903e9f21943b18.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 438013012198d0fe85e45058154a07c1
age: 2437678
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/f61c4218f08583b312e9bd8fed17bc66.webp
8.248.224.22200 OK 707 B URL GET HTTP/2 v3.traincdn.com/resized/size16/sfiles/logo_teams/f61c4218f08583b312e9bd8fed17bc66.webp
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash be639a9db92b16527d21eee03bc4e14c
63de967780a4655e8d0db8c1cb86a2b88ca3eca3
34a9176b0ef26ef8fa98294ea8819f5553b6352b393c4a5b968dbdbd9f6870c0
GET /resized/size16/sfiles/logo_teams/f61c4218f08583b312e9bd8fed17bc66.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:33 GMT
content-type: image/png
content-length: 707
cache-control: public, max-age=94608000
expires: Wed, 13 May 2026 14:29:22 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="f61c4218f08583b312e9bd8fed17bc66.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: eac335b162931c5a310a1d9e9d7e56c3
age: 1829446
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-548007.top/service-api/LiveBet/Secure/WebGetTax?partner=1&gr=285&country=137&betSum=150&cf=0¤cyId=63¤cyIso=NOK&lng=en&taxMode=0
178.253.15.89200 OK 144 B URL GET HTTP/2 1xlite-548007.top/service-api/LiveBet/Secure/WebGetTax?partner=1&gr=285&country=137&betSum=150&cf=0¤cyId=63¤cyIso=NOK&lng=en&taxMode=0
IP 178.253.15.89:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerLet's Encrypt
Subject*.1xlite-548007.top
Fingerprint6E:05:68:A5:ED:AF:63:CB:50:7D:72:7E:44:B1:94:16:CB:EC:C9:BD
ValiditySat, 25 Mar 2023 01:05:31 GMT - Fri, 23 Jun 2023 01:05:30 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 7f4d58517db2a951eb0e9173ab5f8f6b
db503dacdf4a6d156295a6835394f161bb3b9fa7
ed92eaa7d8114048772964c83fb40207c09487fbf125bd0e9aab08bdb1735b81
GET /service-api/LiveBet/Secure/WebGetTax?partner=1&gr=285&country=137&betSum=150&cf=0¤cyId=63¤cyIso=NOK&lng=en&taxMode=0 HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1685904527; che_g=ba89276d-fa94-1c88-38a4-c9ded0ae9d6d; ggru=216
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:33 GMT
content-type: application/json; charset=utf-8
content-length: 144
cache-control: public,max-age=600
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/46041.webp
8.248.224.22 917 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/46041.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash c2f0dfdd1b06a15f6a07ef1586056416
6d3ec89fb0bbc4943b2e7b85af9f4e99457e9c47
ea626961ea323a7a73a14284eb7ae09ac46a6b0c15effa4d49713d93783d1f9c
GET /resized/size16/sfiles/logo_teams/46041.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:33 GMT
content-type: image/png
content-length: 917
cache-control: public, max-age=94608000
expires: Fri, 22 May 2026 13:54:41 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="46041.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: fe94a23d28090a88f68fbd0671c647b4
age: 2504024
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-548007.top/web-api/mobile
178.253.15.89 564 B URL 1xlite-548007.top/web-api/mobile
IP 178.253.15.89:0
File type JSON data\012- , ASCII text, with very long lines (564), with no line terminators
Hash 1b6fc3a6bf48d6a1a5f94919d8311165
7d06add87750f4282fd9aaf80f886ad1148144e3
30d20fb2e2bd102d3fa62daff7ce03b8accc10b16bcaf25ab13b15bd8664b32f
POST /web-api/mobile HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1685904527; che_g=ba89276d-fa94-1c88-38a4-c9ded0ae9d6d; ggru=216
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:33 GMT
content-type: application/json; charset=utf-8
content-length: 564
server-timing: dt_285;dur=98, px_285;dur=98
set-cookie: is_rtl=1; expires=Mon, 03-Jun-2024 13:52:33 GMT; Max-Age=31536000; path=/; HttpOnly
disallow_sport=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; HttpOnly
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/77747.webp
8.248.224.22 868 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/77747.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 14c926fba89579446f02df7f6efd64f1
92ce96bc39dd0d67dd32d6a67009ec4899e2f9dd
75f61c3e0d530d60a27b19f646d1285923e8d3edfd0f0ff315460f7147db7ddb
GET /resized/size16/sfiles/logo_teams/77747.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:33 GMT
content-type: image/png
content-length: 868
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 14:00:10 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="77747.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: b75dc9e03abe953140a2805ee7525606
age: 2505425
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo-champ/sub_e_sport_cs_go.webp
8.248.224.22 2.3 kB URL v3.traincdn.com/sfiles/logo-champ/sub_e_sport_cs_go.webp
IP 8.248.224.22:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4e27e260bac649328182f70a8dbfc21e
e05e349c227de6b18388388dac581f852b577325
ca619d4f9f687b8490beb1ec20fc04cd8d17f6ce7fc62b4e13c71723c2f4dc25
GET /sfiles/logo-champ/sub_e_sport_cs_go.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/webp
content-length: 2304
cache-control: public, max-age=86400
etag: "4e27e260bac649328182f70a8dbfc21e"
expires: Mon, 05 Jun 2023 12:20:01 GMT
last-modified: Tue, 03 Jan 2023 12:42:29 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-amz-server-side-encryption: AES256
age: 5637
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/560f510ac44c990297e28ece29f6611b.webp
8.248.224.22 698 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/560f510ac44c990297e28ece29f6611b.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 503ff0751e653472baa96d273bda116a
737a2cedbcd6be831b38f98816618d289f37d5e7
49df937564ea4715a5bef25272ced8dc08f252eb3361790f564366fa01d93dbd
GET /resized/size16/sfiles/logo_teams/560f510ac44c990297e28ece29f6611b.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 698
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 14:27:42 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="560f510ac44c990297e28ece29f6611b.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 55ee57031d9f8b56037ce4c108b287ac
age: 2504964
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3be655f9bc5a560fc90b9aaeb1617d84.webp
8.248.224.22 647 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/3be655f9bc5a560fc90b9aaeb1617d84.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 1ca5d82c28e761ce94d38c7c5c2de40c
b775342b9853b5e867c4b4b19dfbcbdcabb62e32
1029fe0baab6f6f01ce7c233e22ee20f63f0bb4b00d6b28af21e19101e5f7db1
GET /resized/size16/sfiles/logo_teams/3be655f9bc5a560fc90b9aaeb1617d84.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 647
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 14:14:55 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3be655f9bc5a560fc90b9aaeb1617d84.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: dc52c1b31a559cff9c6f52d26797f05a
age: 2505365
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/878951a18e79e575bc03de5b1e33f5f3.webp
8.248.224.22 799 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/878951a18e79e575bc03de5b1e33f5f3.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash f0e70186b46e8dd52ee5b600f5bc68f1
ea95c27f1272c93a5ad3c4f8b890a89b3b41c7fd
d7be4e60eda50fc8881df37c99113af91d5d23504444179ec8c211c2333ced41
GET /resized/size16/sfiles/logo_teams/878951a18e79e575bc03de5b1e33f5f3.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 799
cache-control: public, max-age=94608000
expires: Mon, 11 May 2026 06:58:16 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="878951a18e79e575bc03de5b1e33f5f3.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 1e1cb6f52c47383fed629acc6535c969
age: 2504691
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/82b13e03d302f461fcb063e7decabcc6.webp
8.248.224.22 759 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/82b13e03d302f461fcb063e7decabcc6.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash bcc1e22759d1d3a4f6c9c94bf2992289
019cf1f97ed30a6c29706b523a94ad0f8f54689c
0e674e78c3005e1ee20c809a2aa3e13f5da313f18c3990bc290d4e670687a9a7
GET /resized/size16/sfiles/logo_teams/82b13e03d302f461fcb063e7decabcc6.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 759
cache-control: public, max-age=94608000
expires: Tue, 02 Jun 2026 11:43:19 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="82b13e03d302f461fcb063e7decabcc6.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: efa2f3d38913ce8ac089d40f26802d15
age: 2206847
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/4e8d6c85756f806f36667300c7462d57.webp
8.248.224.22200 OK 655 B URL GET HTTP/2 v3.traincdn.com/resized/size16/sfiles/logo_teams/4e8d6c85756f806f36667300c7462d57.webp
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 9926102e3baf1af1e700ebfa7eb0d3da
7aa9c3550e0aa9156809564dda852c590796c917
b3f19e13e971d7e9b1d0477590a4c7df7832e2bbae50080c3d4c65864f50e786
GET /resized/size16/sfiles/logo_teams/4e8d6c85756f806f36667300c7462d57.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 655
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 15:38:41 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="4e8d6c85756f806f36667300c7462d57.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: d8b656b02d897a5fc8867992c22e1c39
age: 2499234
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/cbeacf42f75ab7724c5d3a90de04114e.webp
8.248.224.22200 OK 879 B URL GET HTTP/2 v3.traincdn.com/resized/size16/sfiles/logo_teams/cbeacf42f75ab7724c5d3a90de04114e.webp
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash eadcf8c4f84e9a70383d556571bbec6f
6f3d2f8b4cb926404989f764538d338afcd31a10
fb4e9b96e713f799ae03ce07332b287437edbf90bebf530bda0912703c5ed45c
GET /resized/size16/sfiles/logo_teams/cbeacf42f75ab7724c5d3a90de04114e.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 879
cache-control: public, max-age=94608000
expires: Wed, 06 May 2026 10:56:19 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="cbeacf42f75ab7724c5d3a90de04114e.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 999a080397154f19df5c98882e5f6e45
age: 2499233
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/5692.webp
8.248.224.22 824 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/5692.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 4b7be6dea68efc048b9f82620e02bcc7
ff0f4c349cd94f80e7e5ff4b3aa423bced051f63
ab1c6cffe1c2cc5049a2fc2fce2e0aa06eec3dec905ec9ac6cdb41343c838f74
GET /resized/size16/sfiles/logo_teams/5692.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 824
cache-control: public, max-age=94608000
expires: Tue, 19 May 2026 13:03:18 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="5692.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: ed4c0e18e38582aad5d846428d22bcd8
age: 2453814
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/5678.webp
8.248.224.22200 OK 941 B URL GET HTTP/2 v3.traincdn.com/resized/size16/sfiles/logo_teams/5678.webp
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash d9ca6e9f2e72d058b0dc4d9e9141eb25
c4fc7dd03f71fc2006e45d3ef2089fb6eb329832
77783c89202e8784854409d1f222351e51e4f25f43fbe2107a83d7e81613942c
GET /resized/size16/sfiles/logo_teams/5678.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 941
cache-control: public, max-age=94608000
expires: Wed, 06 May 2026 07:17:46 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="5678.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: dc94e25f66e02cb824172e09cd281088
age: 2442901
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/5694.webp
8.248.224.22 859 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/5694.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash f4df8867148743b912409d0d8165fe55
89b99bcd3dce5bcaf5a6783d925e014d53b350c6
52053784fbaab8fa811ea6095aa0e25e68e3d9aa49d2ff73416617bc01a0ff02
GET /resized/size16/sfiles/logo_teams/5694.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 859
cache-control: public, max-age=94608000
expires: Wed, 06 May 2026 08:08:55 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="5694.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 84da81a748473ed44a9d6df5b20c7e6a
age: 2453823
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/733605.webp
8.248.224.22 731 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/733605.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 16e3c521d7015c16620b82217575c748
211d97e12450f3ba7157c0490c51838d7b7e1b90
57e31108ff3020c0ba55efe71f841022ce2fe6adfdab68c8b682d074bc4b49ad
GET /resized/size16/sfiles/logo_teams/733605.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 731
cache-control: public, max-age=94608000
expires: Wed, 06 May 2026 04:06:12 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="733605.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 7b3acb5eba8f21fda5283d4a1442a884
age: 2504933
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/89deba02f858f00ca7cf764059b88509.webp
8.248.224.22200 OK 875 B URL GET HTTP/2 v3.traincdn.com/resized/size16/sfiles/logo_teams/89deba02f858f00ca7cf764059b88509.webp
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 0751101ef3cd36b8872564a1e6726d32
1a8692831e521726f87fde60666b48e3fd0c8341
45d41edb62a23b134130be15fed1e83f236caa3713a1eb22cd3c63ac322a8bf5
GET /resized/size16/sfiles/logo_teams/89deba02f858f00ca7cf764059b88509.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 875
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:51:57 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="89deba02f858f00ca7cf764059b88509.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: adafebfab248d4bd0612e00d88d42e38
age: 2505637
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/5132.webp
8.248.224.22 697 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/5132.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash c3f77d8b2112208c2363ad358c81664d
16c5c5ff668e2f034acae714e1cdb851e9d51224
00368ae6ca7972141a4e014fc9f872ed6798d4be8e86ff4615f9e057289e66e0
GET /resized/size16/sfiles/logo_teams/5132.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 697
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 14:03:42 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="5132.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: cfac821b3665fe1ce8c1aa208c8d31e0
age: 2504932
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/003c9e415446b17f56f76991b28c0711.webp
8.248.224.22 860 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/003c9e415446b17f56f76991b28c0711.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 0a98e422c6a15d9fb34347dd478bac2f
ae4202ad9a3c56df5aa9648ed8f9364c42a79aa3
d319603a8b0fd383d14eb31598f24ecab451b4ac27ad9b5b7ebbcf20d9a9834e
GET /resized/size16/sfiles/logo_teams/003c9e415446b17f56f76991b28c0711.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 860
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:51:57 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="003c9e415446b17f56f76991b28c0711.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: cb06c2298edfeec4fe03b15723d6a2c6
age: 2505637
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/fa11ae6a6ad5341f4f186b6244bfa79e.webp
8.248.224.22 610 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/fa11ae6a6ad5341f4f186b6244bfa79e.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 843911ea42b50ce69153bb4944a6e003
25048b9ae115599ff7d54770ec136998fa4b6ef5
a647769f82e5ed802b03af4cc6325ac9bcd6289aab2827e2208ce26aa81f62eb
GET /resized/size16/sfiles/logo_teams/fa11ae6a6ad5341f4f186b6244bfa79e.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 610
cache-control: public, max-age=94608000
expires: Wed, 06 May 2026 07:06:49 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="fa11ae6a6ad5341f4f186b6244bfa79e.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 875d683fa021b249ed8549df13fbca19
age: 2504933
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/5152.webp
8.248.224.22200 OK 635 B URL GET HTTP/2 v3.traincdn.com/resized/size16/sfiles/logo_teams/5152.webp
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 9bdac68845d26d8c57ac997ed9062e5c
bb97064cef5fd00a2888cf0cbaa64820fc048d60
09eadebd9b4c6f42e39fe488c405825ff855280e04026b158358c6eeb1d21be9
GET /resized/size16/sfiles/logo_teams/5152.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 635
cache-control: public, max-age=94608000
expires: Wed, 06 May 2026 11:38:31 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="5152.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: fe4665e618def52c5aeb45ba272538ac
age: 2504933
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/5142.webp
8.248.224.22200 OK 930 B URL GET HTTP/2 v3.traincdn.com/resized/size16/sfiles/logo_teams/5142.webp
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 7e91b620956740569b4e410564ce4b73
e8d1a91557058b077d49faf83e68cf8848da5e27
b7a5a26db2de5ea93b6bdeef1b85bffecdf70dee691401a7fa8f3bd877373a58
GET /resized/size16/sfiles/logo_teams/5142.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 930
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 14:03:42 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="5142.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: f3f051be0a4f60ae988c02da87f114ff
age: 2504932
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/2472.webp
8.248.224.22 722 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/2472.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 947a6555bdd8411bb63194182c04a6e4
335424a37d3ecdccdcfbed78c9abe4b66ed4283e
9216d9531bd8957040c890c15e9048e97714fa012961babfad4212b305b57a13
GET /resized/size16/sfiles/logo_teams/2472.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 722
cache-control: public, max-age=94608000
expires: Wed, 03 Jun 2026 09:56:39 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="2472.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 3d3180d3c0d6647299595ffa9ceefbf7
age: 2504935
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/5712.webp
8.248.224.22 1.0 kB URL v3.traincdn.com/resized/size16/sfiles/logo_teams/5712.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash c1493024d40894ace58d6f9784a2f4d4
effedb243de69c4103494d0dc84a67ad898a24c0
87cc25f770ae5ace8b46aa143dbad7981becd299d8624ab8ef4faad93cd7cb4d
GET /resized/size16/sfiles/logo_teams/5712.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 1008
cache-control: public, max-age=94608000
expires: Wed, 06 May 2026 15:00:48 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="5712.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 20f5bc62bee35ef7ccb0d82efccae6ff
age: 2442901
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/7614.webp
8.248.224.22 665 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/7614.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 1587ad1009eac96e78f172cfe6e992cb
c43a9938f234d409029f9fc552a9852d9d212d44
5217f173e127400c85ac2485aeb103cf8de47ad236939e81af9610c4c9c614ea
GET /resized/size16/sfiles/logo_teams/7614.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 665
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 14:16:36 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="7614.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 94ffee4299f2700d3046f7442ac7c713
age: 2505936
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/595b7fdda59d97a0bc0d19685826fb48.webp
8.248.224.22 423 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/595b7fdda59d97a0bc0d19685826fb48.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 94106d8b56b20a534c990deb8f3b8fbd
c22fae017f7e837a3f559bc8d0eb44ea3a05938b
1b89fd184ebb1904f3f69873145b638d8463073b878bf2126e2c0d1b289b397f
GET /resized/size16/sfiles/logo_teams/595b7fdda59d97a0bc0d19685826fb48.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 423
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 15:53:45 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="595b7fdda59d97a0bc0d19685826fb48.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 79e3119aa411c2614aed525fb11ed3fe
age: 2502115
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3528.webp
8.248.224.22 826 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/3528.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 25a4bc0686d21d82607577f4e34acea0
676a043b577dc3a1f2fdd0766cd495ed1dcc0120
557c2f3e0a7d1e6c8854311db9a071a83a9d6d033e9f7c343a38a54421b3c0ab
GET /resized/size16/sfiles/logo_teams/3528.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 826
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:45:44 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3528.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 6e32c35b87c95c75cdcd3eab50cc4844
age: 2506010
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3550.webp
8.248.224.22 762 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/3550.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 900df624c92934e4225701e2afad4d78
486b075dd3538828d297a76f2e6f7ed2220fc15f
f60903fe25d76038b77dff3a59abae82deae87ef71275e97f20b5a6841761236
GET /resized/size16/sfiles/logo_teams/3550.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 762
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 14:12:50 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3550.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: a7c54e8c2f5f46ed4dc9ae8b13441810
age: 2506080
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/1/desktop/banner/3a8291c8cadcb2cfd805b1f9b64b6be6.jpg
8.248.224.22200 OK 83 kB URL GET HTTP/2 v3.traincdn.com/genfiles/cms/1/desktop/banner/3a8291c8cadcb2cfd805b1f9b64b6be6.jpg
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 1380x248, components 3\012- data
Hash 252e7f3e125df20905e8e30ccf7f49bf
ac6e3fc1307e5c61a50b580edd74919710f7e0e8
bc23881ebf548bf7c2e5d93ea39e2c45d992a61e566c73ae2f29c1ea0e8af1dd
GET /genfiles/cms/1/desktop/banner/3a8291c8cadcb2cfd805b1f9b64b6be6.jpg HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:33 GMT
content-type: image/jpeg
content-length: 276535
cache-control: public, max-age=86400
etag: "d697dc452a9c933f1a39ffd932732449"
expires: Mon, 05 Jun 2023 11:07:30 GMT
last-modified: Tue, 11 Apr 2023 18:14:16 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 10186
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/2f0d1152e896d9ead623347d79dd9e59.webp
8.248.224.22 706 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/2f0d1152e896d9ead623347d79dd9e59.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 0200298c185d62d6f9f42eba64cfa11d
6ac0d971db9e2448947041d100044aa3a082632a
9dd55cd804b4fa34b865dd0c5d5f96c2d0327bc787b25d2be118a85cb2ca7be2
GET /resized/size16/sfiles/logo_teams/2f0d1152e896d9ead623347d79dd9e59.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 706
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:45:00 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="2f0d1152e896d9ead623347d79dd9e59.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 0f5eccabf3ea97122e140fcb6618d838
age: 2506096
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-548007.top/web-api/external-api/config/getVideoAccessConfig
178.253.15.89 4.0 kB URL 1xlite-548007.top/web-api/external-api/config/getVideoAccessConfig
IP 178.253.15.89:0
File type gzip compressed data, from Unix\012- data
Hash 7bae93265e8c61bfa15705c7d47c0371
0787e80ad4fbffd012faa65db00aabe668996f82
3c186a584b758ca211a9879c595b8edbc69a889ce1c3c3e154ef3ed0adec732b
GET /web-api/external-api/config/getVideoAccessConfig HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1685904527; che_g=ba89276d-fa94-1c88-38a4-c9ded0ae9d6d
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:31 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=42, dt_285;dur=43, px_285;dur=43
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3548.webp
8.248.224.22 661 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/3548.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 428a18b9b40c368430dc42deb86914aa
d0f7c59eba913b52bd96d63b5f6bca04d578a4ea
bbb13ed9f2989e81d5a506e64750ca56ccb9a3e4578cba510b17423d1ffbfe75
GET /resized/size16/sfiles/logo_teams/3548.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 661
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:49:22 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3548.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 056cab7504122d773bbd42136003ed8b
age: 2506080
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3530.webp
8.248.224.22 639 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/3530.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 3b9e10d22e7246a843ec90814f50f269
f3c074e3119723b0ececda8ba0e595712513e7be
b249da7a1201a4cc6143a9d4a9fc583cb5b5b492ed07dfc8e4b5655e8948ace4
GET /resized/size16/sfiles/logo_teams/3530.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 639
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:44:39 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3530.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: f5adc22f5fb07c4a50bac5f2b477df3f
age: 2506105
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/83b500ce2fbb122814f7973d7e41c7a2.webp
8.248.224.22 629 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/83b500ce2fbb122814f7973d7e41c7a2.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 037baa9199ecc6bfcf8ca18f7208c6cb
5bca01ef8902076c2d1a9cb72a0997c992dce62b
047a243fb5d4b3fe05e2c3fee397506ba4cd7db035bfef3ff624b704a72df7cc
GET /resized/size16/sfiles/logo_teams/83b500ce2fbb122814f7973d7e41c7a2.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 629
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:59:05 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="83b500ce2fbb122814f7973d7e41c7a2.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 0abe96ca1ebf39c3b26f0d2e7b0fc274
age: 2506081
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/167095.webp
8.248.224.22 782 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/167095.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash a646a54cf748597b0adcc6d52e7348a0
21513a28f8a939d4c300f7e3ea4d5d6792730023
2d32d5e5bcbb48d109e94f3439a919c5b4badf36cdf81db3fbeebbf5da6a23dd
GET /resized/size16/sfiles/logo_teams/167095.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 782
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:44:47 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="167095.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 1b7fe0dd1495d8d1afd4d24e6f8099d8
age: 2506101
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3602.webp
8.248.224.22 959 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/3602.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash f14bfc1cf6feabae06f216c582248847
c1baaf596b7ab6c9475ea97796ba45cadd776a12
cc88d44eb3bbcce3f3a9a84524a662001c033e31d97cd3f427384c7f42f2e801
GET /resized/size16/sfiles/logo_teams/3602.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 959
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:44:47 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3602.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: afac4c06f88db08678d826982c09f299
age: 2506102
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/3542.webp
8.248.224.22200 OK 917 B URL GET HTTP/2 v3.traincdn.com/resized/size16/sfiles/logo_teams/3542.webp
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 0fd548a3f48b380ef6e64f90e1250fe4
48e9aa37cb7dd5ac7b0712a8f6bbeebdd4178612
cc178039a3762f951336a47ee69df8889bf11249c5bf7a1e78b377fbafa766eb
GET /resized/size16/sfiles/logo_teams/3542.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 917
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:52:47 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="3542.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 356dc58af183d7fe1e012dbbefa4ef7b
age: 2506081
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/e1eb6e4adda0df3ef108df2dd55a4b14.webp
8.248.224.22 454 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/e1eb6e4adda0df3ef108df2dd55a4b14.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 4262f0825c8bf4487cb4882d59fc701e
fc7b602e4d55a9945618c58a3516ab9253a6344f
706a511d441fef7299ec173b643bab1305adb95f0aa2f6752a995ae609cb55be
GET /resized/size16/sfiles/logo_teams/e1eb6e4adda0df3ef108df2dd55a4b14.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 454
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:45:00 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="e1eb6e4adda0df3ef108df2dd55a4b14.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 97cfc6be566edc77203d60caf73792ff
age: 2506096
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/defaultlogo.webp
8.248.224.22 570 B URL v3.traincdn.com/resized/size16/sfiles/logo_teams/defaultlogo.webp
IP 8.248.224.22:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash f2714358e2708608b0cf934d1680a32f
2d1636d9815c993de7e1ef5f3fc5e7887189637a
2a6e00ca01eac6060d143e8e40e0cfb0b22d7a920c89ee12f4c6e51b67907cff
GET /resized/size16/sfiles/logo_teams/defaultlogo.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 570
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 13:44:47 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="defaultlogo.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 32af5545687a63b58b5948d698b0b401
age: 2506101
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-548007.top/web-api/registration
178.253.15.89200 OK 1.6 kB URL POST HTTP/2 1xlite-548007.top/web-api/registration
IP 178.253.15.89:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerLet's Encrypt
Subject*.1xlite-548007.top
Fingerprint6E:05:68:A5:ED:AF:63:CB:50:7D:72:7E:44:B1:94:16:CB:EC:C9:BD
ValiditySat, 25 Mar 2023 01:05:31 GMT - Fri, 23 Jun 2023 01:05:30 GMT
File type gzip compressed data, from Unix\012- data
Hash 79f8d7ff0d2cf75c186ea0d69aaabac1
88f3d99975b191c67f8b1834547e80490d6a089d
afcc7cf09128d19db945d0f4583ddb5c4f654ec016b4800bfd8a79dec42fb504
POST /web-api/registration HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Content-Type: application/json
Content-Length: 17
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1685904527; che_g=ba89276d-fa94-1c88-38a4-c9ded0ae9d6d; ggru=216
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: application/json; charset=utf-8
content-encoding: gzip
server-timing: dt_285;dur=664, px_285;dur=664
set-cookie: is_rtl=1; expires=Mon, 03-Jun-2024 13:52:33 GMT; Max-Age=31536000; path=/; HttpOnly
disallow_sport=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; HttpOnly
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size14/sfiles/logo_teams/4210.webp
8.248.224.22 787 B URL v3.traincdn.com/resized/size14/sfiles/logo_teams/4210.webp
IP 8.248.224.22:0
File type PNG image data, 14 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 9c6fafaf1418756c551b53ac021b0d0b
d49688e8248d4aa522c19f8a78846332d8ee290c
ada3523bd8b8cee865daaa91eec698270a754e0df8809a5b4bb9fc6cea7e1751
GET /resized/size14/sfiles/logo_teams/4210.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:35 GMT
content-type: image/png
content-length: 787
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 14:02:59 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="4210.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 68a1285708e298f402f3aaf91e2d1c43
age: 2505891
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/betstemplates/bets_model_short_en_1.json
8.248.224.22 2.5 kB URL v3.traincdn.com/genfiles/cms/betstemplates/bets_model_short_en_1.json
IP 8.248.224.22:0
File type JSON data\012- , ASCII text, with very long lines (10044), with no line terminators
Hash b607cd71ca2b886219a430cb5e45a884
e569a84d239f42a1afd161dc46dc1bc7f6e2bdba
d7ef6d5d0808597d4e679aa1b55caaa958b0f5e0e824585bcfbabfea92cd468c
GET /genfiles/cms/betstemplates/bets_model_short_en_1.json HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:35 GMT
content-type: application/json
content-length: 2521
cache-control: public, max-age=86400
content-encoding: gzip
etag: W/"b607cd71ca2b886219a430cb5e45a884"
expires: Mon, 05 Jun 2023 11:08:57 GMT
last-modified: Wed, 31 May 2023 08:46:47 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 9818
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-548007.top/_nuxt/Desktop/Default/svg-sprites/coloredSvg-100059.svg
178.253.15.89 23 kB URL 1xlite-548007.top/_nuxt/Desktop/Default/svg-sprites/coloredSvg-100059.svg
IP 178.253.15.89:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (62174), with no line terminators
Hash 62e100cfa2fa9bf671a0e6a41c2ed084
540807ebdb10806e1e1b703285ff76d539b031fd
127cb95ba2412f0fe38264ccfdd357becf5ace0def3572ce9526bd293941bf30
GET /_nuxt/Desktop/Default/svg-sprites/coloredSvg-100059.svg HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1685904527; che_g=ba89276d-fa94-1c88-38a4-c9ded0ae9d6d; ggru=216
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:33 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
etag: W/"647af8c4-f2de"
expires: Mon, 05 Jun 2023 13:51:44 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/bc915abb.css
8.248.224.22 1.1 kB URL v3.traincdn.com/_nuxt/desktop/default/css/bc915abb.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (4034)
Hash a8a7b6ee6c9310fc2896a32c7ed88c6e
9f64f7d7210580a529dbeb2b5b71e5bb9a16a745
cc36c6fab8ae3e431a672a5e459cb2f6aa6547eee43505c591246a094d9967f0
GET /_nuxt/desktop/default/css/bc915abb.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:35 GMT
content-type: text/css
content-length: 1052
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-41c"
expires: Mon, 05 Jun 2023 09:52:32 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 14428
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/Registration.Fields-97af5388.js
8.248.224.22 9.5 kB URL v3.traincdn.com/_nuxt/desktop/default/Registration.Fields-97af5388.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (10259)
Hash 006c07567cc5816a20a26f015e21dbb5
cea3afdea8a3f0b5cf19acdf8fbcdee101ac9def
b6f90aee23ea3bfc14684c95418db2a696c07213b11f04c8a77311c02aa302e1
GET /_nuxt/desktop/default/Registration.Fields-97af5388.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 9519
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-252f"
expires: Mon, 05 Jun 2023 13:52:36 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 18
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 0f9b480992f630430e33e1063b414542
bcaedb7914f5c0069c7f4187dad0ae8a4e2d94d9
bfcc73247d3e026090d69a4b8348f2a506fa1f8eb40fbd2e709482b7f5c5b750
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 13:52:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=explicit&hl=en
142.250.74.132 556 B URL www.google.com/recaptcha/api.js?render=explicit&hl=en
IP 142.250.74.132:0
File type ASCII text, with very long lines (852), with no line terminators
Hash 2f8167a83a96c015814efbdcafa4ba64
10d0d3111342f2741856701a4403e31ee8f6d155
fb7de641340e1ef87fc299914f3a18ddbd745d01e1194103c3c948bd748cd858
GET /recaptcha/api.js?render=explicit&hl=en HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Sun, 04 Jun 2023 13:52:37 GMT
date: Sun, 04 Jun 2023 13:52:37 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 556
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ca359c54531ea823812a5abbcf85eb97
6c9d445dc87b58e70dfd8d80a15374667f9f0b4f
32015b73ad6385df42848ae288806993cab31ee8f210e61ac5d2857fa0d30805
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 13:52:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js
216.58.211.3 166 kB URL www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (749)
Size 166 kB (166186 bytes)
Hash ee07ba65373413be83ec0d45887c2a44
13646acedb5d781fed2599c46634b4e58b8217db
d946e8f3fb4fe90a5ae3027b91a76703106e2c5c1d762fc3fc230895db7b6048
GET /recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166186
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 13:34:38 GMT
expires: Fri, 31 May 2024 13:34:38 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 30 May 2023 00:01:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 260280
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/anchor?ar=1&k=6LcHxwcUAAAAAIUazEuUGlfmc7IyjkUDFXwtd70t&co=aHR0cHM6Ly8xeGxpdGUtNTQ4MDA3LnRvcDo0NDM.&hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&theme=light&size=invisible&badge=inline&cb=xpgidd68b1uu
142.250.74.132 28 kB URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LcHxwcUAAAAAIUazEuUGlfmc7IyjkUDFXwtd70t&co=aHR0cHM6Ly8xeGxpdGUtNTQ4MDA3LnRvcDo0NDM.&hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&theme=light&size=invisible&badge=inline&cb=xpgidd68b1uu
IP 142.250.74.132:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (43646)
Hash 7f67058a06599de5ccceeb91ac1d8f4e
7451043dbcf680f9d20117b119e40fcfac0f79ac
00e46d624f4fa669989f57030b534e1aa942dc867e86ee748bdb45a1d319a63d
GET /recaptcha/api2/anchor?ar=1&k=6LcHxwcUAAAAAIUazEuUGlfmc7IyjkUDFXwtd70t&co=aHR0cHM6Ly8xeGxpdGUtNTQ4MDA3LnRvcDo0NDM.&hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&theme=light&size=invisible&badge=inline&cb=xpgidd68b1uu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 04 Jun 2023 13:52:38 GMT
content-security-policy: script-src 'nonce-Z3VjBygNUi6r8H9cNUCcEg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 28444
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/styles__ltr.css
216.58.211.3 25 kB URL www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/styles__ltr.css
IP 216.58.211.3:0
File type ASCII text, with very long lines (56403), with no line terminators
Hash 83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8
GET /recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Jun 2023 05:10:26 GMT
expires: Sat, 01 Jun 2024 05:10:26 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 30 May 2023 00:01:16 GMT
content-type: text/css
vary: Accept-Encoding
age: 204132
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
1xlite-548007.top/web-api/external-api/v3/banners?project_id=285&country_code=NO&language=en&platform=2§ion=6&is_auth=false&limit=100
178.253.15.89 171 kB URL 1xlite-548007.top/web-api/external-api/v3/banners?project_id=285&country_code=NO&language=en&platform=2§ion=6&is_auth=false&limit=100
IP 178.253.15.89:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data, Unicode text, UTF-8 text, with very long lines (26366), with no line terminators
Size 171 kB (171330 bytes)
Hash 696f12da98933dbbc4b9651b703061ec
a5f7c7c64321a1ba932ff5cce89a180b10b8b1d0
1fa7067094f083eb206ac72e59b02446230a2f2d97aabdb877006993d589d995
GET /web-api/external-api/v3/banners?project_id=285&country_code=NO&language=en&platform=2§ion=6&is_auth=false&limit=100 HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1685904527; che_g=ba89276d-fa94-1c88-38a4-c9ded0ae9d6d; ggru=216
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:32 GMT
content-type: application/vnd.api+json
vary: Accept-Encoding
cache-control: no-cache, private
server-timing: p;dur=113, dt_285;dur=115, px_285;dur=115
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227 15 kB URL fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 May 2023 17:31:32 GMT
expires: Wed, 29 May 2024 17:31:32 GMT
cache-control: public, max-age=31536000
age: 418866
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
1xlite-548007.top/web-api/default/img/icons/pixels2.svg?v=1685886755
178.253.15.89 16 kB URL 1xlite-548007.top/web-api/default/img/icons/pixels2.svg?v=1685886755
IP 178.253.15.89:0
File type PNG image data, 1 x 1, 8-bit/color RGB, non-interlaced\012- data
Hash 674352b1863a690991c0170d93a70966
598392b3c4aa8c5178dd92e46aad9d933192ee02
855c32f81687cea096e0ccd4e9671c67cf6b656d8e78b9e5d54022df02d1fd32
GET /web-api/default/img/icons/pixels2.svg?v=1685886755 HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1685904527; che_g=ba89276d-fa94-1c88-38a4-c9ded0ae9d6d; ggru=216
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:35 GMT
content-type: image/png
cache-control: no-cache, private
server-timing: p;dur=38, dt_285;dur=39, px_285;dur=39
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/webworker.js?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-
142.250.74.132 112 B URL www.google.com/recaptcha/api2/webworker.js?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-
IP 142.250.74.132:0
File type ASCII text, with no line terminators
Hash 28c612c7ed1d28591eb7ed8d95816a94
bc402ec3d9eccbb9ce2b682bb43fa23ab92afb80
dc304d634887ea89a42e74d959fdc8dc4517e33e0df44764aad5bc63870ccb29
GET /recaptcha/api2/webworker.js?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL- HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcHxwcUAAAAAIUazEuUGlfmc7IyjkUDFXwtd70t&co=aHR0cHM6Ly8xeGxpdGUtNTQ4MDA3LnRvcDo0NDM.&hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&theme=light&size=invisible&badge=inline&cb=xpgidd68b1uu
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
expires: Sun, 04 Jun 2023 13:52:38 GMT
date: Sun, 04 Jun 2023 13:52:38 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 112
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/logo_48.png
216.58.211.3 2.2 kB URL www.gstatic.com/recaptcha/api2/logo_48.png
IP 216.58.211.3:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 May 2023 21:48:58 GMT
expires: Mon, 05 Jun 2023 21:48:58 GMT
cache-control: public, max-age=604800
age: 489820
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js
216.58.211.3 166 kB URL www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (749)
Size 166 kB (166186 bytes)
Hash ee07ba65373413be83ec0d45887c2a44
13646acedb5d781fed2599c46634b4e58b8217db
d946e8f3fb4fe90a5ae3027b91a76703106e2c5c1d762fc3fc230895db7b6048
GET /recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166186
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 13:34:38 GMT
expires: Fri, 31 May 2024 13:34:38 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 30 May 2023 00:01:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 260280
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
v3.traincdn.com/_nuxt/desktop/default/vendors/conversion-73f07768.js
8.248.224.22 47 kB URL v3.traincdn.com/_nuxt/desktop/default/vendors/conversion-73f07768.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash d442a43ff38381a5fb83ffa783f9086a
a66b60a127c8d3576fc1155e32c310be4c352028
5133a3b6a4d5f243d4b10c523084050d16e31506117543d35c59ec14d3d0dfa6
GET /_nuxt/desktop/default/vendors/conversion-73f07768.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:38 GMT
content-type: application/javascript; charset=utf-8
content-length: 47386
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-b91a"
expires: Mon, 05 Jun 2023 13:52:35 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 15
accept-ranges: bytes
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/bframe?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&k=6LcHxwcUAAAAAIUazEuUGlfmc7IyjkUDFXwtd70t
142.250.74.132 1.2 kB URL www.google.com/recaptcha/api2/bframe?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&k=6LcHxwcUAAAAAIUazEuUGlfmc7IyjkUDFXwtd70t
IP 142.250.74.132:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d75bff415a96a80903ff16609ac9dd74
d8e05f67667f329694167ec0cf650bdd4225ccc0
54dce83bea4a9414b7e9ea81fa4f5c0889ee5c0ea2f9ef4895b3ed2322ddfb38
GET /recaptcha/api2/bframe?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&k=6LcHxwcUAAAAAIUazEuUGlfmc7IyjkUDFXwtd70t HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 04 Jun 2023 13:52:38 GMT
content-security-policy: script-src 'nonce-iJJ1yni3ROfBSPdSsGto7w' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1152
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
1xlite-548007.top/web-api/api/converslon/load
178.253.15.89 33 kB URL 1xlite-548007.top/web-api/api/converslon/load
IP 178.253.15.89:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 8c9e641eb0859f86a9f1931f9f791418
2fcbaf88dec73c56b58cf94097c5b4782bbac49b
d74c483dd3cdb04a31747f2a424f0d2aa5aa31d0d1fa37c1c0d01f8bc95d921e
GET /web-api/api/converslon/load HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1685904527; che_g=ba89276d-fa94-1c88-38a4-c9ded0ae9d6d; ggru=216
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:38 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=17, dt_285;dur=27, px_285;dur=27
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js
216.58.211.3 166 kB URL www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (749)
Size 166 kB (166186 bytes)
Hash ee07ba65373413be83ec0d45887c2a44
13646acedb5d781fed2599c46634b4e58b8217db
d946e8f3fb4fe90a5ae3027b91a76703106e2c5c1d762fc3fc230895db7b6048
GET /recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166186
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 13:34:38 GMT
expires: Fri, 31 May 2024 13:34:38 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 30 May 2023 00:01:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 260281
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/reload?k=6LcHxwcUAAAAAIUazEuUGlfmc7IyjkUDFXwtd70t
142.250.74.132 24 kB URL www.google.com/recaptcha/api2/reload?k=6LcHxwcUAAAAAIUazEuUGlfmc7IyjkUDFXwtd70t
IP 142.250.74.132:0
File type ASCII text, with very long lines (40293)
Hash c28afd7fe911f478c219a3aec0eb454d
760d836a98aab4458b0e35d9fad45805391ab8d5
9913e0b869e132a41a481f659fa77393da4a3cd7a8299406eabb1db2943bcf9e
POST /recaptcha/api2/reload?k=6LcHxwcUAAAAAIUazEuUGlfmc7IyjkUDFXwtd70t HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 8440
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&k=6LcHxwcUAAAAAIUazEuUGlfmc7IyjkUDFXwtd70t
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Sun, 04 Jun 2023 13:52:39 GMT
expires: Sun, 04 Jun 2023 13:52:39 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 24212
server: GSE
set-cookie: _GRECAPTCHA=09ALyjir_6Ds8i0YLxJ64T-mZwFG9UaY2veFJe-Q_P2Y5LAACiDf5KbWov7cR7Nses8TkqMYZo1E03gntCu5y6piA;Path=/recaptcha;Expires=Fri, 01-Dec-2023 13:52:39 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227 15 kB URL fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 May 2023 17:31:32 GMT
expires: Wed, 29 May 2024 17:31:32 GMT
cache-control: public, max-age=31536000
age: 418867
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227 16 kB URL fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 May 2023 21:40:21 GMT
expires: Wed, 29 May 2024 21:40:21 GMT
cache-control: public, max-age=31536000
age: 403938
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.227 15 kB URL fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15340, version 1.0\012- data
Hash 19b7a0adfdd4f808b53af7e2ce2ad4e5
81d5d4c7b5035ad10cce63cf7100295e0c51fdda
c912a9ce0c3122d4b2b29ad26bfe06b0390d1a5bdaa5d6128692c0befd1dfbbd
GET /s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Jun 2023 11:10:37 GMT
expires: Sat, 01 Jun 2024 11:10:37 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:16 GMT
content-type: font/woff2
age: 182522
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/payload?p=06AL8dmw9QsQVXap08GiaUbfKL8YXRxRSBS5nW0cLwGI6juU1BUYZ6JIWxmwNr0vd_udX0DkfBFYpFFkrPsfqkp6NmEIAkpNOAogcX8TnjogNmxE31cM1xvayCm6oAuL2awSwi2bU5k3lFCBrEvdRj4y_oA6TKFQ9tI0DmuhBtFmvInykuU2bTEqeI6WHczxNNIxqjkkyHrIGv&k=6LcHxwcUAAAAAIUazEuUGlfmc7IyjkUDFXwtd70t
142.250.74.132 30 kB URL www.google.com/recaptcha/api2/payload?p=06AL8dmw9QsQVXap08GiaUbfKL8YXRxRSBS5nW0cLwGI6juU1BUYZ6JIWxmwNr0vd_udX0DkfBFYpFFkrPsfqkp6NmEIAkpNOAogcX8TnjogNmxE31cM1xvayCm6oAuL2awSwi2bU5k3lFCBrEvdRj4y_oA6TKFQ9tI0DmuhBtFmvInykuU2bTEqeI6WHczxNNIxqjkkyHrIGv&k=6LcHxwcUAAAAAIUazEuUGlfmc7IyjkUDFXwtd70t
IP 142.250.74.132:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash 10f07d56e33f8d2d81e44693f10a5bfe
4867056734067db39e4fcc578ebebcf1e152431b
6be9053db90f86ab10cfc382dc91cd9a68d4c1e24922f65fb382e5a831152e37
GET /recaptcha/api2/payload?p=06AL8dmw9QsQVXap08GiaUbfKL8YXRxRSBS5nW0cLwGI6juU1BUYZ6JIWxmwNr0vd_udX0DkfBFYpFFkrPsfqkp6NmEIAkpNOAogcX8TnjogNmxE31cM1xvayCm6oAuL2awSwi2bU5k3lFCBrEvdRj4y_oA6TKFQ9tI0DmuhBtFmvInykuU2bTEqeI6WHczxNNIxqjkkyHrIGv&k=6LcHxwcUAAAAAIUazEuUGlfmc7IyjkUDFXwtd70t HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=sNQO7xVld1CuA2hfFHvkpVL-&k=6LcHxwcUAAAAAIUazEuUGlfmc7IyjkUDFXwtd70t
Cookie: _GRECAPTCHA=09ALyjir_6Ds8i0YLxJ64T-mZwFG9UaY2veFJe-Q_P2Y5LAACiDf5KbWov7cR7Nses8TkqMYZo1E03gntCu5y6piA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
expires: Sun, 04 Jun 2023 13:52:39 GMT
date: Sun, 04 Jun 2023 13:52:39 GMT
cache-control: private, max-age=30
content-type: image/jpeg
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 29638
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/refresh_2x.png
216.58.211.3 600 B URL www.gstatic.com/recaptcha/api2/refresh_2x.png
IP 216.58.211.3:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 0f2a4639b8a4cb30c76e8333c00d30a6
57e273a270bb864970d747c74b3f0a7c8e515b13
44b988703019cd6bfa86c91840fecf2a42b611b364e3eea2f4eb63bf62714e98
GET /recaptcha/api2/refresh_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 May 2023 20:49:22 GMT
expires: Wed, 07 Jun 2023 20:49:22 GMT
cache-control: public, max-age=604800
age: 320597
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/audio_2x.png
216.58.211.3 530 B URL www.gstatic.com/recaptcha/api2/audio_2x.png
IP 216.58.211.3:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 88e0f42c9fa4f94aa8bcd54d1685c180
5ad9d47a49b82718baa3be88550a0b3350270c42
89c62095126fca89ea1511cf35b49b8306162946b0c26d6f60c5506c51d85992
GET /recaptcha/api2/audio_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 530
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 May 2023 16:14:42 GMT
expires: Tue, 06 Jun 2023 16:14:42 GMT
cache-control: public, max-age=604800
age: 423477
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/info_2x.png
216.58.211.3 665 B URL www.gstatic.com/recaptcha/api2/info_2x.png
IP 216.58.211.3:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 07bf314aab04047b9e9a959ee6f63da3
17bef6602672e2fd9956381e01356245144003e5
55eaf62cb05da20088dc12b39d7d254d046cb1fd61ddf3ae641f1439efd0a5ee
GET /recaptcha/api2/info_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/sNQO7xVld1CuA2hfFHvkpVL-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 665
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 00:56:35 GMT
expires: Thu, 08 Jun 2023 00:56:35 GMT
cache-control: public, max-age=604800
age: 305764
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
suphelper.com/widget/injector.js
104.16.42.72 56 kB URL suphelper.com/widget/injector.js
IP 104.16.42.72:0
File type Unicode text, UTF-8 text, with very long lines (38365)
Hash 7ec3059f6feb8b861a7c9814e092ac4a
a85801f5cda640dec5af6adc27f5e12b6f26b12c
a091d01c187f204dd23011c9eef4f43cf8cb49adc36cd3425c675401bc133f3d
GET /widget/injector.js HTTP/1.1
Host: suphelper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:40 GMT
content-type: application/javascript; charset=UTF-8
x-dns-prefetch-control: off
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'; script-src 'self' *.google-analytics.com https://www.google-analytics.com/analytics.js *.googletagmanager.com https://www.googletagmanager.com/gtag/ *.google.com/recaptcha/ https://www.gstatic.com/recaptcha/api2/ https://code.jquery.com/ 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline' fonts.googleapis.com; img-src 'self' https: data:; font-src 'self' https://fonts.gstatic.com data:; connect-src 'self' ws://localhost:8085 https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://mc.yandex.ru https://api.github.com http://192.168.208.23:11999 https://suphelper.com wss://suphelper.com *.suphelper.com https://suphelper.ru wss://suphelper.ru *.suphelper.ru https://cons.insystem.su wss://cons.insystem.su *.cons.insystem.su wss://chat.insystem.su https://chat.insystem.su *.chat.insystem.su; frame-src 'self' https://www.google.com https://www.google.com/recaptcha/; report-uri /widget/api/report-csp1/
x-content-security-policy: default-src 'self'; script-src 'self' *.google-analytics.com https://www.google-analytics.com/analytics.js *.googletagmanager.com https://www.googletagmanager.com/gtag/ *.google.com/recaptcha/ https://www.gstatic.com/recaptcha/api2/ https://code.jquery.com/ 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline' fonts.googleapis.com; img-src 'self' https: data:; font-src 'self' https://fonts.gstatic.com data:; connect-src 'self' ws://localhost:8085 https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://mc.yandex.ru https://api.github.com http://192.168.208.23:11999 https://suphelper.com wss://suphelper.com *.suphelper.com https://suphelper.ru wss://suphelper.ru *.suphelper.ru https://cons.insystem.su wss://cons.insystem.su *.cons.insystem.su wss://chat.insystem.su https://chat.insystem.su *.chat.insystem.su; frame-src 'self' https://www.google.com https://www.google.com/recaptcha/; report-uri /widget/api/report-csp1/
x-webkit-csp: default-src 'self'; script-src 'self' *.google-analytics.com https://www.google-analytics.com/analytics.js *.googletagmanager.com https://www.googletagmanager.com/gtag/ *.google.com/recaptcha/ https://www.gstatic.com/recaptcha/api2/ https://code.jquery.com/ 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline' fonts.googleapis.com; img-src 'self' https: data:; font-src 'self' https://fonts.gstatic.com data:; connect-src 'self' ws://localhost:8085 https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://mc.yandex.ru https://api.github.com http://192.168.208.23:11999 https://suphelper.com wss://suphelper.com *.suphelper.com https://suphelper.ru wss://suphelper.ru *.suphelper.ru https://cons.insystem.su wss://cons.insystem.su *.cons.insystem.su wss://chat.insystem.su https://chat.insystem.su *.chat.insystem.su; frame-src 'self' https://www.google.com https://www.google.com/recaptcha/; report-uri /widget/api/report-csp1/
cache-control: public, max-age=300
last-modified: Thu, 27 Apr 2023 05:44:19 GMT
etag: W/"28ea5-187c13db338"
vary: Accept-Encoding
cf-cache-status: HIT
age: 6
server: cloudflare
cf-ray: 7d20a85b3b6c2d8c-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/analytics-d04dffa7.js
8.248.224.22 1.1 kB URL v3.traincdn.com/_nuxt/desktop/default/analytics-d04dffa7.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (2545)
Hash 8d97eb3b92672c773e17949df1b60a33
eb20c4a0610e3fe90043c6dd9d93b0c5cb9cca1b
d035c21ea8e25fbe6d58a9960d71fc9e3e7f353cf3053d60160d46d623c9f987
GET /_nuxt/desktop/default/analytics-d04dffa7.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 1104
cache-control: max-age=86400
content-encoding: gzip
etag: "647af8c4-450"
expires: Mon, 05 Jun 2023 13:52:35 GMT
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 15
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 8543a104bf352a1cf8ad1bf2e07100a2
ce7140bcab4ded21050f0249e87e9e0afdd1f94a
06a7f106970ad07a284048a8847a60121e6d64ba0baabcc00e701491aee183fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 13:52:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-178408567-1
142.250.74.168 48 kB URL www.googletagmanager.com/gtag/js?id=UA-178408567-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (2271)
Hash f0c038614df997f5b775e08e43afb0af
7977e5cbceb1625f77b3f615185f346803f8454e
5f3f760d02f0d3859eabb4458c66d2c83e6c5c82f2dc3e390a34bec623a3c3e8
GET /gtag/js?id=UA-178408567-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Jun 2023 13:52:41 GMT
expires: Sun, 04 Jun 2023 13:52:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 48398
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
radar.cedexis.com/1593429750/radar.js
45.54.49.5 19 kB URL radar.cedexis.com/1593429750/radar.js
IP 45.54.49.5:0
ASN #63911 NetActuate, Inc
File type ASCII text, with very long lines (1782)
Hash f0bad4e1f4843352017e0dcec735975a
7708b6d1c3966fda619af0bfb64d5c14b85e5da9
79541fbd5863b789f16e341208642f1b47bb3bc939121ed63426dd7969714390
GET /1593429750/radar.js HTTP/1.1
Host: radar.cedexis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Jun 2023 13:52:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Jun 2020 11:30:33 GMT
Vary: Accept-Encoding
ETag: W/"5ef9d0d9-af5c"
Expires: Sun, 18 Jun 2023 13:52:41 GMT
Cache-Control: max-age=1209600, public
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 8543a104bf352a1cf8ad1bf2e07100a2
ce7140bcab4ded21050f0249e87e9e0afdd1f94a
06a7f106970ad07a284048a8847a60121e6d64ba0baabcc00e701491aee183fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 13:52:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
suphelper.com/widget/assets/sounds/new-message.mp3
104.16.42.72 30 kB URL suphelper.com/widget/assets/sounds/new-message.mp3
IP 104.16.42.72:0
File type MPEG ADTS, layer III, v1, 192 kbps, 48 kHz, JntStereo\012- data
Hash ef9af24dc7dbd24ffd99c832e1300351
f78744a5013038446c468de14f205f2d52373fd6
5049d7fe87a7327a291441181d1a328a15f46a21081b970502c540406011c9b9
GET /widget/assets/sounds/new-message.mp3 HTTP/1.1
Host: suphelper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://suphelper.com/widget/?build=1682574223929&lang=en&langInited=true&opener=full
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 04 Jun 2023 13:52:41 GMT
content-type: audio/mpeg
content-length: 29952
x-dns-prefetch-control: off
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'strict-dynamic' 'nonce-806ddff0-7677-401a-a9ef-33f47f73064f' https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com; img-src 'self' https: data:; font-src 'self' https://fonts.gstatic.com data:; connect-src 'self' ws://localhost:8085 https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://mc.yandex.ru https://api.github.com http://192.168.208.23:11999 https://suphelper.com wss://suphelper.com *.suphelper.com https://suphelper.ru wss://suphelper.ru *.suphelper.ru https://cons.insystem.su wss://cons.insystem.su *.cons.insystem.su wss://chat.insystem.su https://chat.insystem.su *.chat.insystem.su; frame-src 'self' https://www.google.com https://www.google.com/recaptcha/; report-uri /widget/api/report-csp/
cache-control: public, max-age=2592000
last-modified: Thu, 27 Apr 2023 05:44:19 GMT
etag: W/"7500-187c13db338"
cf-cache-status: HIT
age: 2020078
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d20a86298122d93-ARN
alt-svc: h3=":443"; ma=86400
www.googletagmanager.com/gtag/js?id=G-7JGWL9SV66&l=dataLayer&cx=c
142.250.74.168 89 kB URL www.googletagmanager.com/gtag/js?id=G-7JGWL9SV66&l=dataLayer&cx=c
IP 142.250.74.168:0
File type Unicode text, UTF-8 text, with very long lines (9524)
Hash 7d0586a0f2536a705326a0f8f6c4d2ca
2cecb7bf50b84d86aa02c226bf9ecdbb7b17d9fb
5dc51d63ac7a8361e17cab2fe5decd2199e2053e4e27b2b0b64db2ab17f07e41
GET /gtag/js?id=G-7JGWL9SV66&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Jun 2023 13:52:41 GMT
expires: Sun, 04 Jun 2023 13:52:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88888
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash e7b6cbe8a94c6cb240ce77c42a8968f2
98dcc5f84369060eb767e67997d541eeb994e290
82736e8da7b595e7370396055bcd69ff02e4686f866b9724f429e60c0135d19c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 13:52:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7JGWL9SV66&cid=1257240456.1685886761>m=45je35v0&aip=1&z=1504038456
142.250.74.163 42 B URL www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7JGWL9SV66&cid=1257240456.1685886761>m=45je35v0&aip=1&z=1504038456
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7JGWL9SV66&cid=1257240456.1685886761>m=45je35v0&aip=1&z=1504038456 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 04 Jun 2023 13:52:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1xlite-548007.top/fatman-api/a6f69e4388362d761ee5bb073edb23ae3d9341fb/event.json
178.253.15.89 0 B URL 1xlite-548007.top/fatman-api/a6f69e4388362d761ee5bb073edb23ae3d9341fb/event.json
IP 178.253.15.89:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fatman-api/a6f69e4388362d761ee5bb073edb23ae3d9341fb/event.json HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Content-Type: application/json
X-Lang: en
X-Uuid: 99684a20-b4a6-431d-ae57-2bc5198c31e8
Content-Length: 99
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1685904527; che_g=ba89276d-fa94-1c88-38a4-c9ded0ae9d6d; ggru=216; _ga_7JGWL9SV66=GS1.1.1685886761.1.0.1685886761.60.0.0; _ga=GA1.1.1257240456.1685886761; sh.session=e27419a7-c132-475d-bc8c-1e7bb17b2a95
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sun, 04 Jun 2023 13:52:41 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash e7b6cbe8a94c6cb240ce77c42a8968f2
98dcc5f84369060eb767e67997d541eeb994e290
82736e8da7b595e7370396055bcd69ff02e4686f866b9724f429e60c0135d19c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Jun 2023 13:52:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1xlite-548007.top/service-api/LiveFeed/GetSportsShortZip?lng=en&gr=285&country=137&virtualSports=true&groupChamps=true
178.253.15.89 2.8 kB URL 1xlite-548007.top/service-api/LiveFeed/GetSportsShortZip?lng=en&gr=285&country=137&virtualSports=true&groupChamps=true
IP 178.253.15.89:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (11017), with no line terminators
Hash 5d2542f6879c4c37f6a1f6abb7bdd110
8b3b87fd4958059f6678384c9a82bfce39c09493
eafd5ede061dd37afa06513a3cd321c5f53d18ee4976fb6f8a9a1e24f439564a
GET /service-api/LiveFeed/GetSportsShortZip?lng=en&gr=285&country=137&virtualSports=true&groupChamps=true HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1685904527; che_g=ba89276d-fa94-1c88-38a4-c9ded0ae9d6d; ggru=216; _ga_7JGWL9SV66=GS1.1.1685886761.1.0.1685886761.60.0.0; _ga=GA1.1.1257240456.1685886761; sh.session=e27419a7-c132-475d-bc8c-1e7bb17b2a95
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:42 GMT
content-type: application/json; charset=utf-8
content-length: 2788
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-7JGWL9SV66>m=45je35v0&_p=2042715146&_gaz=1&cid=1257240456.1685886761&ul=en-us&sr=1280x1024&_s=1&sid=1685886761&sct=1&seg=0&dl=https%3A%2F%2F1xlite-548007.top%2Fen%3Ftag%3Dd_2173691m_1599c_br1xbetPerAdrJune23desk%26pb%3D735be6ba179e425cb6bb2d2bdc7f2c59%26click_id%3Dw3jnmmhv42d6vt6p2568rvq6&dt=Online%20sports%20betting%20at%201xBet.%20Norway%20%E1%90%89%201xlite-548007.top&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36 0 B URL region1.analytics.google.com/g/collect?v=2&tid=G-7JGWL9SV66>m=45je35v0&_p=2042715146&_gaz=1&cid=1257240456.1685886761&ul=en-us&sr=1280x1024&_s=1&sid=1685886761&sct=1&seg=0&dl=https%3A%2F%2F1xlite-548007.top%2Fen%3Ftag%3Dd_2173691m_1599c_br1xbetPerAdrJune23desk%26pb%3D735be6ba179e425cb6bb2d2bdc7f2c59%26click_id%3Dw3jnmmhv42d6vt6p2568rvq6&dt=Online%20sports%20betting%20at%201xBet.%20Norway%20%E1%90%89%201xlite-548007.top&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-7JGWL9SV66>m=45je35v0&_p=2042715146&_gaz=1&cid=1257240456.1685886761&ul=en-us&sr=1280x1024&_s=1&sid=1685886761&sct=1&seg=0&dl=https%3A%2F%2F1xlite-548007.top%2Fen%3Ftag%3Dd_2173691m_1599c_br1xbetPerAdrJune23desk%26pb%3D735be6ba179e425cb6bb2d2bdc7f2c59%26click_id%3Dw3jnmmhv42d6vt6p2568rvq6&dt=Online%20sports%20betting%20at%201xBet.%20Norway%20%E1%90%89%201xlite-548007.top&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://1xlite-548007.top
date: Sun, 04 Jun 2023 13:52:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1xlite-548007.top/_nuxt/Desktop/Default/svg-sprites/common-100059.svg
178.253.15.89200 OK 133 kB URL GET HTTP/2 1xlite-548007.top/_nuxt/Desktop/Default/svg-sprites/common-100059.svg
IP 178.253.15.89:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerLet's Encrypt
Subject*.1xlite-548007.top
Fingerprint6E:05:68:A5:ED:AF:63:CB:50:7D:72:7E:44:B1:94:16:CB:EC:C9:BD
ValiditySat, 25 Mar 2023 01:05:31 GMT - Fri, 23 Jun 2023 01:05:30 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65536), with no line terminators
Size 133 kB (133361 bytes)
Hash 178a247e2af51f9e1ec825f80dee72aa
46b21e902f361baaf12e5321a80b7d0f40e23404
fee52f87794292aa8553f6b737c31aee25ffc937e0fe42e15ec54b3036c373d2
GET /_nuxt/Desktop/Default/svg-sprites/common-100059.svg HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:28 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Sat, 03 Jun 2023 08:24:36 GMT
etag: W/"647af8c4-208f1"
expires: Mon, 05 Jun 2023 13:51:21 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/resized/size16/sfiles/logo_teams/11947.webp
8.248.224.22200 OK 757 B URL GET HTTP/2 v3.traincdn.com/resized/size16/sfiles/logo_teams/11947.webp
IP 8.248.224.22:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerSectigo Limited
Subject*.traincdn.com
FingerprintF7:A7:ED:9E:3B:F4:CE:E8:C3:22:A8:4F:B3:10:2E:81:09:E4:33:24
ValidityThu, 10 Nov 2022 00:00:00 GMT - Fri, 10 Nov 2023 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 0e3a49ae23718d9b3747e1dffc988188
eb93a6e1d85637cc9fa3907228d4adcffb5e6b97
5a4a21232eff28fc7d0696f5ca61ad46c0aff96d4f7208acbab243a8ab367de3
GET /resized/size16/sfiles/logo_teams/11947.webp HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Jun 2023 13:52:34 GMT
content-type: image/png
content-length: 757
cache-control: public, max-age=94608000
expires: Tue, 05 May 2026 14:12:50 GMT
server: nginx
access-control-allow-origin: *
content-disposition: inline; filename="11947.png"
content-security-policy: script-src 'none'
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-request-id: 103cf4d765bf286eeec356277778f538
age: 2505224
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-548007.top/web-api/registration/fields
178.253.15.89200 OK 23 kB URL POST HTTP/2 1xlite-548007.top/web-api/registration/fields
IP 178.253.15.89:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerLet's Encrypt
Subject*.1xlite-548007.top
Fingerprint6E:05:68:A5:ED:AF:63:CB:50:7D:72:7E:44:B1:94:16:CB:EC:C9:BD
ValiditySat, 25 Mar 2023 01:05:31 GMT - Fri, 23 Jun 2023 01:05:30 GMT
File type JSON data\012- , ASCII text, with very long lines (22821), with no line terminators
Hash 75194ec7cec7954df6f4e7eedeae819b
5943b6d7113b0b86323fad943c8c95c51274ee18
61eb1b13bf583bd7349b0cd0956a070b4eb7fe356f2b092de65845b20614e374
POST /web-api/registration/fields HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Content-Type: application/json
Content-Length: 19
Origin: https://1xlite-548007.top
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1685904527; che_g=ba89276d-fa94-1c88-38a4-c9ded0ae9d6d; ggru=216
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:35 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=111, dt_285;dur=113, px_285;dur=113
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-548007.top/web-api/api/v3/bonuses/welcome-bonuses
178.253.15.89200 OK 618 B URL GET HTTP/2 1xlite-548007.top/web-api/api/v3/bonuses/welcome-bonuses
IP 178.253.15.89:443
Requested by https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Certificate IssuerLet's Encrypt
Subject*.1xlite-548007.top
Fingerprint6E:05:68:A5:ED:AF:63:CB:50:7D:72:7E:44:B1:94:16:CB:EC:C9:BD
ValiditySat, 25 Mar 2023 01:05:31 GMT - Fri, 23 Jun 2023 01:05:30 GMT
File type troff or preprocessor input, ASCII text, with very long lines (706), with no line terminators
Hash 0a619cd349d56137a06e0c799875a630
766df2e8f6a93eb6f8b86b47d9d71b1bc7434b34
10200dd044f2e0c48cfcfe7c8672959cfcc4bad7ffd29d6bcc6a5dad0ca7dd32
GET /web-api/api/v3/bonuses/welcome-bonuses HTTP/1.1
Host: 1xlite-548007.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
DNT: 1
Connection: keep-alive
Referer: https://1xlite-548007.top/en?tag=d_2173691m_1599c_br1xbetPerAdrJune23desk&pb=735be6ba179e425cb6bb2d2bdc7f2c59&click_id=w3jnmmhv42d6vt6p2568rvq6
Cookie: platform_type=desktop; auid=sv0PWWR8lxh7Il6OB+YpAg==; lng=en; SESSION=0b9795a40feb335f7e1a868898639e8e; cookies_agree_type=3; tzo=2; referral_values=%7B%22type%22%3A%22reflinkid%22%2C%22val%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22additional%22%3A%7B%22name_tag%22%3A%22tag%22%7D%7D; reflinkid=d_2173691m_1599c_br1xbetPerAdrJune23desk; postback_watcher=%7B%22tag%22%3A%22d_2173691m_1599c_br1xbetPerAdrJune23desk%22%2C%22pb%22%3A%22735be6ba179e425cb6bb2d2bdc7f2c59%22%2C%22click_id%22%3A%22w3jnmmhv42d6vt6p2568rvq6%22%7D; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1685904527; che_g=ba89276d-fa94-1c88-38a4-c9ded0ae9d6d; ggru=216
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 04 Jun 2023 13:52:32 GMT
content-type: application/vnd.api+json
vary: Accept-Encoding
cache-control: no-cache, private
server-timing: p;dur=19, dt_285;dur=23, px_285;dur=23
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2