Report - 1xlite-252970.top/en/registration?type=fast

Report Overview

Visited public
2023-12-25 05:57:06
Tags
URL
1xlite-252970.top/en/registration?type=fast
Finishing URL
1xlite-252970.top/en/registration?type=fast
IP / ASN
178.253.28.49
#0
Title
1xBet Bookmaker. High Odds. 24-Hour Customer Service

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
v3.traincdn.com	unknown	2022-11-10	2022-11-25 11:00:40	2023-12-24 14:13:24	27 kB	2.7 MB	185.244.209.62
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-24 11:10:12	436 B	95 kB	142.250.74.168
radar.cedexis.com	3035	2009-01-07	2013-11-27 03:31:43	2023-12-24 10:48:39	846 B	1.1 kB	45.54.49.5
www.google.no	25607	2001-02-26	2016-04-05 21:50:59	2023-12-24 13:33:37	583 B	578 B	142.250.74.163
region1.analytics.google.com	unknown	1997-09-15	2022-03-17 12:26:33	2023-12-24 05:11:12	1.7 kB	876 B	216.239.32.36
widget.suphelper.top	unknown	2023-08-02	2023-10-04 22:18:19	2023-12-24 13:05:31	6.5 kB	2.6 MB	104.18.39.72
1xlite-252970.top	unknown	2023-09-22	2023-09-22 13:46:02	2023-12-24 05:28:11	18 kB	513 kB	178.253.28.49

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-25 05:52:19	medium	Client IP	Internal IP	ET DNS Query to a *.top domain - Likely Hostile

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (53)

	URL	From	Size	First Seen	Last Seen
	v3.traincdn.com/_nuxt/desktop/default/DC-ef71a866.js	ScriptElement	2.3 kB	2023-12-20	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/DC-ef71a866.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:56 Last Seen2024-08-20 15:24 Times Seen52 Hash 2d49543c25d944c51818db736a23848d 737ea221210d343b3a4bfc67dd61baa10cd726e1 136ea74e4e683eac816eb67eaf9eda6b0c6bf995a65c103b0f117558cbbd449f Loading...

	widget.suphelper.top/_next/static/chunks/webpack-fb94d2f19425a3e3.js	ScriptElement	3.8 kB	2023-10-05	2024-08-21
Pretty URL widget.suphelper.top/_next/static/chunks/webpack-fb94d2f19425a3e3.js IP 104.18.39.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-05 09:17 Last Seen2024-08-21 05:13 Times Seen2254 Hash ba1681cca05ff7b4f8698587da76ab26 7113520b461dfcbdcbc1725a1acc6e05547bf20e bcfc83f65454f29634e61503e84d77f3fe8bc06451b90927bf842e9ad352ac64 Loading...

	v3.traincdn.com/_nuxt/desktop/default/vendors/Page.Cyber.Game/Page.NewCyber.CyberApp/Page.NewCyber.CyberChamps/Page.NewCyber.CyberDashboar/611af4ca-1871d00c.js	ScriptElement	32 kB	2023-12-20	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/vendors/Page.Cyber.Game/Page.NewCyber.CyberApp/Page.NewCyber.CyberChamps/Page.NewCyber.CyberDashboar/611af4ca-1871d00c.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:56 Last Seen2024-08-20 15:24 Times Seen47 Hash 589a5c4d0815dbde8799e68cba3b5ccc d405663f624f21fffc05f90f1c521d9703beb4e6 12f4466e1dc6cadd9eb9107740ad9127f5abff1bfb9c68512fa93f1d8dee5e2c Loading...

	widget.suphelper.top/_next/static/chunks/970-fdfa7a3a1558183b.js	ScriptElement	433 kB	2023-12-07	2024-08-20
Pretty URL widget.suphelper.top/_next/static/chunks/970-fdfa7a3a1558183b.js IP 104.18.39.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 09:12 Last Seen2024-08-20 16:29 Times Seen718 Hash a54d9af8352dcb0beae14fa400b1e102 5b7e60a2b7a322019a17aedf4795ef0671277d16 55509bd61579f4622a8f8d116542c5d5984857201a5bf3504fdf618511b67a4a Loading...

	widget.suphelper.top/_next/static/5bf52df1/_buildManifest.js	ScriptElement	429 B	2023-12-17	2024-08-20
Pretty URL widget.suphelper.top/_next/static/5bf52df1/_buildManifest.js IP 104.18.39.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-17 15:23 Last Seen2024-08-20 15:42 Times Seen654 Hash 32c876ca37b8f88455f43768ebdf09f3 53c862c13cb0828352d87ccb2fb5359a907e0418 c316f4bebfe9d0724ab6f0bf75a776cf5dd2912279792d72cba7e2a88239a96c Loading...

	v3.traincdn.com/_nuxt/desktop/default/Page.Registration-e4e4727f.js	ScriptElement	6.5 kB	2023-12-21	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/Page.Registration-e4e4727f.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-21 02:02 Last Seen2024-08-20 15:24 Times Seen17 Hash d07a9ea34fc720ad00f15fa4ecb0caab 0aea178c2d9224b38e4fe477eb62e73063947c27 1ab3c8607d9ce75e0a1876b0df702a5342c94e96dc6628513685b67f42d5f2bf Loading...

	v3.traincdn.com/_nuxt/desktop/default/consultant.supHelperV2-063664df.js	ScriptElement	3.7 kB	2023-12-20	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/consultant.supHelperV2-063664df.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:56 Last Seen2024-08-20 15:24 Times Seen49 Hash b3a82ab12d0b6db395b467cbf903fa8f a1b276288959177b113f05b4e3d8f07500fbf660 6fd57977c67413e704b7f2a0b8eb5dc545b2df1b8c2eb947e575f7bc3648a083 Loading...

	radar.cedexis.com/1/23802/radar.js	ScriptElement	390 B	2023-05-07	2024-08-21
Pretty URL radar.cedexis.com/1/23802/radar.js IP 45.54.49.5 ASN #63911 NetActuate, Inc Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-07 17:46 Last Seen2024-08-21 09:36 Times Seen1078 Hash cec7270f03f717f8feca31e994d894d6 470eb82c7e87dccb465562030ed6db7c1e2dd78c 40fceb327b96d3557153ea9feb76e426f85b52dda8fd6444e96134bc4ff5f594 Loading...

	v3.traincdn.com/_nuxt/desktop/default/vendors/Auth.Forms/Page.SiteUpdates/components/userControl.auth_form_extended/modal.RegistrationSucc/62f29d8c-c6c8fda6.js	ScriptElement	18 kB	2023-12-21	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/vendors/Auth.Forms/Page.SiteUpdates/components/userControl.auth_form_extended/modal.RegistrationSucc/62f29d8c-c6c8fda6.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-21 02:02 Last Seen2024-08-20 15:24 Times Seen17 Hash 660c787a276d33e3b890d1f1ce38cf9e 647ddcb094638b4fef6db4e4a3bb034890aea94f 10a2ededa5ccd959fa3eae2a4780217c39730d0c7955fa1bdac2578f428415ed Loading...

	www.googletagmanager.com/gtag/js?id=G-7JGWL9SV66	ScriptElement	289 kB	2023-12-24	2024-08-20
Pretty URL www.googletagmanager.com/gtag/js?id=G-7JGWL9SV66 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-24 14:14 Last Seen2024-08-20 15:07 Times Seen8 Hash dac1ca78f5e58df9c82330acbf407238 6c72d9096f29fecd2ec95ff31ddff3be78f95bdc 15ac48a6bd690777198ac03eb30cc53933a9826d21f003874539ee4bd3e6ec1d Loading...

	unknown	Function	47 B	2023-04-14	2025-04-25
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 16:26 Last Seen2025-04-25 22:44 Times Seen4059 Hash 580b3e56fc9ab6e8b4655f43ee057cc1 5dfce565e446f4a167195de9a1a5dd26163c711c 446f07b6e56de61d2c2d5b6ba408cc580b492a6d1ede8fc51cfde4ef75a2b382 Loading...

	1xlite-252970.top/en/registration?type=fast	ScriptElement	550 kB	2024-08-20	2024-08-20
Pretty URL 1xlite-252970.top/en/registration?type=fast IP 178.253.28.49 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 15:03 Last Seen2024-08-20 15:03 Times Seen1 Hash 5f37dda7279214e94ac114b050f908db 1110658dc85d09fa406497e8338872682f05aade a2da9278a52c5df9107fc9b647a1419772842a725933df026af22dc01a27b643 Loading...

	v3.traincdn.com/_nuxt/desktop/default/app-d680f897.js	ScriptElement	855 kB	2023-12-23	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/app-d680f897.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-23 09:35 Last Seen2024-08-20 15:13 Times Seen28 Hash 56c47cff782be9779759b86392e0314e af26d277d6a0347de52a1a50b9aed9c8b90ab550 d747548f5ad80e27f115fb97359556059a14ec0484ec1cc44911671f0deda83d Loading...

	v3.traincdn.com/_nuxt/desktop/default/vendors/modal.RegistrationSuccessModalApp/registration.Main/user.userRegistration-fb4545c6.js	ScriptElement	53 kB	2023-12-21	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/vendors/modal.RegistrationSuccessModalApp/registration.Main/user.userRegistration-fb4545c6.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-21 02:02 Last Seen2024-08-20 15:24 Times Seen17 Hash a90d2ab7291af295857417259ff99f7c 8cf437f37b42d83fdadefad89c5b4e4f525fe5b7 12721d4607829f44230f24ce4152019fd8086ae48310c8f7fc16a47c1e847001 Loading...

	v3.traincdn.com/_nuxt/desktop/default/vendors/Registration.Fields-eddb2493.js	ScriptElement	39 kB	2023-12-20	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/vendors/Registration.Fields-eddb2493.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:56 Last Seen2024-08-20 15:24 Times Seen47 Hash 4213fa083384b52bddf13ac4b70630c8 db5c9ffabc6ba5811048a498867f980c116c186a 4808cc0a97531730191f7115db85fac702492075526633a683b3ad26658477a9 Loading...

	v3.traincdn.com/_nuxt/desktop/default/commons/app-b2c05717.js	ScriptElement	136 kB	2023-12-20	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/commons/app-b2c05717.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:56 Last Seen2024-08-20 15:24 Times Seen74 Hash f00ab03089953aa145bd1d6be95f176e 7121e8981f65df9381f1d1696a422f837038450b 6e34afd10e988f9b5675b3f0bc69e4f6fb1d6d0594f8970c311dcb49ab27d36a Loading...

	v3.traincdn.com/_nuxt/desktop/default/ioc.dependencies.30-53701a5f.js	ScriptElement	2.4 kB	2023-12-20	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/ioc.dependencies.30-53701a5f.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:56 Last Seen2024-08-20 15:24 Times Seen74 Hash d5f2fcaac2e9f66cc82efd4624bce62d 6135721e0a175f4390c1fd743264c207444b514a fb4591b5f22d1c6895930da04d8db96ced5d17f6749ddf76ab6e223e74efe49b Loading...

	widget.suphelper.top/_next/static/chunks/pages/index-b7d46b0d02cf400d.js	ScriptElement	112 kB	2023-12-17	2024-08-20
Pretty URL widget.suphelper.top/_next/static/chunks/pages/index-b7d46b0d02cf400d.js IP 104.18.39.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-17 15:23 Last Seen2024-08-20 15:42 Times Seen655 Hash e244696c9d4560de7ac48bfa5c74bb1f e6b079de13fb0dfb215a4c8a7b942a7783e1be45 dbea852a59ec7f82e0dc6af05016aa715224fda48873a6510a18b949aaaad2ee Loading...

	v3.traincdn.com/_nuxt/desktop/default/vendors/app-fc0b1985.js	ScriptElement	946 kB	2023-12-20	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/vendors/app-fc0b1985.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:56 Last Seen2024-08-20 15:24 Times Seen49 Hash 0096ebf7cb736b6dbec9a0cb1edf323f 963f706fd412f17370d842795a55444e4ae224a0 a9aa1a4206c8657cf32adcb8528c9d465f5a58ac2a45b181e560be992dc5b98f Loading...

	widget.suphelper.top/_next/static/5bf52df1/_middlewareManifest.js	ScriptElement	92 B	2023-03-07	2025-04-25
Pretty URL widget.suphelper.top/_next/static/5bf52df1/_middlewareManifest.js IP 104.18.39.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-04-25 08:16 Times Seen5025 Hash 7c3f7e060745668041278118c0bb3d6d e639f56695b3cc30d78dce7a0084aa8299a1311a de5341313a4dc5d982ca50ae4a491e84bc5e80b0f439d87f05fc3973c1b7e59a Loading...

	v3.traincdn.com/_nuxt/desktop/default/vendors/conversion-3ea97863.js	ScriptElement	172 kB	2023-12-20	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/vendors/conversion-3ea97863.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:56 Last Seen2024-08-20 15:24 Times Seen74 Hash a041776db758d7522504be6d8560d3df 0ce234888a124b036f2aca3a7ea17205844e58e4 72327ce008e3545e9da311d2653ed576ff0a8fadb3f97716e3c8d93d5782d21b Loading...

	v3.traincdn.com/_nuxt/desktop/default/Betting.Core-6ca1ec0b.js	ScriptElement	2.3 kB	2023-12-23	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/Betting.Core-6ca1ec0b.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-23 09:35 Last Seen2024-08-20 15:13 Times Seen28 Hash 47efb6f524b8ce117b6d2c9ada234ace af7b1112bacbe844a28e032b03bbb9a44a690c8d aa8d73b141ac838550755ac4e8e753c69f9e1b86f3d8522d7c4717fc90a575a7 Loading...

	v3.traincdn.com/_nuxt/desktop/default/registration.Main-71259b6f.js	ScriptElement	23 kB	2023-12-21	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/registration.Main-71259b6f.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-21 02:02 Last Seen2024-08-20 15:24 Times Seen17 Hash 255edce7ca3d84237009781cb5acdd13 93156ffcfb8e808f66bd7b7d00cc4e06dc7e1121 9402921be0e2b29f2d2f39998aaedf91855d229eae6c5c1552d8f18aef4ef5b2 Loading...

	widget.suphelper.top/	ScriptElement	196 B	2023-07-20	2025-04-23
Pretty URL widget.suphelper.top/ IP 104.18.39.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-20 14:42 Last Seen2025-04-23 22:40 Times Seen3828 Hash aa729c2ec64b60ce3b2052cc8edaa329 0f673deff4bffdd337a6220feb0b7b5b5ff666c4 9693391d461678be59d683100b1442f4ee65d2cf5bda3904fbf6232a7eb921ca Loading...

	widget.suphelper.top/_next/static/chunks/pages/_app-69a0aff2a4fc316d.js	ScriptElement	1.0 MB	2023-12-17	2024-08-20
Pretty URL widget.suphelper.top/_next/static/chunks/pages/_app-69a0aff2a4fc316d.js IP 104.18.39.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-17 15:23 Last Seen2024-08-20 15:42 Times Seen654 Hash 4a655178cab18128578f96dea89a0f10 57cc96a64264b20701f3e0bfd20b242ccc6fc2d6 f34b04f1dc831cdd77450fef4a34f9e272f7de96de3377948954b2101f40f35e Loading...

	unknown	Function	39 B	2023-04-14	2025-04-25
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 16:26 Last Seen2025-04-25 22:44 Times Seen4063 Hash bc51ed8c76553717f10d58b2df60fd76 e2d03a8fd8d280074b226c288880f9df299c7cb1 bee994eaf88453f6343ba57571a069054c12c9b4e42f8cbad4f2ad75c7fb264c Loading...

	1xlite-252970.top/_nuxt/check-ob.js	ScriptElement	342 B	2023-12-06	2024-08-20
Pretty URL 1xlite-252970.top/_nuxt/check-ob.js IP 178.253.28.49 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 14:32 Last Seen2024-08-20 16:35 Times Seen836 Hash 51c38d7f8ad860f8b5bc7010ea8fdb7e d8800c25a96238ea8eb8a087b9285b7ebf617a01 9dc59b4e91c1aada81294c54029320042844fe6f142eb8ad393b97227db7f531 Loading...

	1xlite-252970.top/en/registration?type=fast	ScriptElement	8.6 kB	2023-12-21	2024-08-20
Pretty URL 1xlite-252970.top/en/registration?type=fast IP 178.253.28.49 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-21 02:02 Last Seen2024-08-20 15:24 Times Seen103 Hash 7052240e7cf20214d3c89c03fcb8f807 5f06e727803c210aa7d51f4c1100cb04f54574d2 4fbc37b43b5dab41521afe8359450f3b692cbb6b9c241583c1c64df99b4e8c9b Loading...

	v3.traincdn.com/_nuxt/desktop/default/runtime-2e0ad923.js	ScriptElement	51 kB	2023-12-23	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/runtime-2e0ad923.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-23 09:35 Last Seen2024-08-20 15:13 Times Seen28 Hash fe136a1b12adaf266e311f5e73add02d 066ef2761dd155a2be84e6e402a8ad9f9bc7fd70 bc08bd0e630298f40841ad63d9fea2976f5978a781ab310ac915442f1c5e98cd Loading...

	v3.traincdn.com/_nuxt/desktop/default/vendors/plugins.v-tooltip-4f30f919.js	ScriptElement	77 kB	2023-12-20	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/vendors/plugins.v-tooltip-4f30f919.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:56 Last Seen2024-08-20 15:24 Times Seen49 Hash 44ee990529e581273921783695d86701 2e96e976428cf4f36dfd3f1abf7c876b7ff3d436 120eed41168dedc6b52afda6281c309a7ab32977fed7c218b3607a6e36271044 Loading...

	unknown	Function	47 B	2023-04-14	2025-04-25
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 16:26 Last Seen2025-04-25 22:44 Times Seen4056 Hash a01893d8e129ad16c1e0fc5c7537f411 0e46d1bf2718f848d9d596fa269eaedb31204772 cbe7b89533bcd75b69f3e54807308551d68242ec1761e63bee1a99fc6e560175 Loading...

	v3.traincdn.com/_nuxt/desktop/default/vendors/RegistrationWidgetApp/registration.Main/user.userRegistration-cd171124.js	ScriptElement	70 kB	2023-12-20	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/vendors/RegistrationWidgetApp/registration.Main/user.userRegistration-cd171124.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:56 Last Seen2024-08-20 15:24 Times Seen47 Hash 6239d85aaa2349efa608878fdcb6b2d2 7d327e77d0e7693dfe38c8fc47c611afdc128632 279db55fde02bf50efcf2c4a8610177b88843013f89e37a998a7e3081c2abfa9 Loading...

	unknown	Function	96 B	2023-12-06	2025-04-25
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-12-06 14:32 Last Seen2025-04-25 04:15 Times Seen2634 Hash 94361ed86ab9b2fbb8d805c2025df46a 3f428332f7a1c7196a85c93a373a966d75708c19 eee4d228a49a86625f29410cf9a23d145e821a09cbb1f7a4d7557d206872715a Loading...

	1xlite-252970.top/en/registration?type=fast	ScriptElement	433 B	2023-12-24	2024-08-20
Pretty URL 1xlite-252970.top/en/registration?type=fast IP 178.253.28.49 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-24 05:28 Last Seen2024-08-20 15:09 Times Seen11 Hash f2bb4c5045ca78f4e593aa4a8232a183 b6701d2ad19b82e104604ff1d0c72c73abf5105a b1aaedfeb12eddeaaec7fb689291103a8aa30ca0b99aca6243dc170ca7eeeb14 Loading...

	v3.traincdn.com/_nuxt/desktop/default/betting.media-a13e1aeb.js	ScriptElement	17 kB	2023-12-20	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/betting.media-a13e1aeb.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:56 Last Seen2024-08-20 15:24 Times Seen49 Hash efd237b82b084d0c0511e8f2dd5592f8 2ce93484eed63907270bbecea287a9a111dcb2eb 97b4cb16ed05b5eacd12a9cf40d3f2bd6e46c9199e9e007bc64d2f00a8f42c3d Loading...

	v3.traincdn.com/_nuxt/desktop/default/vendors/betting.media-4e962903.js	ScriptElement	58 kB	2023-12-20	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/vendors/betting.media-4e962903.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:56 Last Seen2024-08-20 15:24 Times Seen49 Hash dc2e5d023be20549f6bda126c6c03ddb 9fb77af84688b3b7db474f30743b2e4f8600dfc7 ea879db95c1d2b08adeea5603958e54fe74d5dc334c9592ae9087748349877ea Loading...

	v3.traincdn.com/_nuxt/desktop/default/date-fns-locale-21-8dc85660.js	ScriptElement	7.0 kB	2023-12-20	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/date-fns-locale-21-8dc85660.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:56 Last Seen2024-08-20 15:24 Times Seen48 Hash 799b42fcf7ef7bac1625b407ed50f954 a4a74c6723f81bd210cb7635c1930eecb25daeb1 fd05331bc90e116515682c1a6250f93ad37d5d76a34b6a1ff15dba7de50d5f46 Loading...

	v3.traincdn.com/_nuxt/desktop/default/analytics-4b4fff93.js	ScriptElement	4.2 kB	2023-12-20	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/analytics-4b4fff93.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:56 Last Seen2024-08-20 15:24 Times Seen74 Hash cfc3386cdc0fd8b16b85044cde81ceef ced6efd5e1ebb70340019afebf046ddc7fe815eb f9413df3798dc243a97aafe75dd9683e6f7ee09fcde92a742299f1328351054c Loading...

	widget.suphelper.top/_next/static/chunks/framework-49f1e091cbf6b261.js	ScriptElement	141 kB	2023-03-08	2025-03-11
Pretty URL widget.suphelper.top/_next/static/chunks/framework-49f1e091cbf6b261.js IP 104.18.39.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:26 Last Seen2025-03-11 19:05 Times Seen2992 Hash 896d1930437c1ab92b8a359c1d6fdaae 71e0e23d1af9722f356eb5d1c497d100ec8b0f7a 8c508636d885890bfb5c56bcd6dad1b8b64c498781d351b588a8de7f686774d4 Loading...

	1xlite-252970.top/en/registration?type=fast	ScriptElement	795 B	2023-03-08	2024-08-21
Pretty URL 1xlite-252970.top/en/registration?type=fast IP 178.253.28.49 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 15:10 Last Seen2024-08-21 09:44 Times Seen1414 Hash d142026b9af7316cb97a9331199c8cf2 4ffe70e80a10f689006b1e3a518019fdc077f2b2 519b6d15761517d0ecc72fb32c0e4c6479ed232c8cd01985a3bd963a26233a9f Loading...

	widget.suphelper.top/_next/static/chunks/0c294a17-47e02e0897fc1e03.js	ScriptElement	9.8 kB	2023-11-02	2024-08-20
Pretty URL widget.suphelper.top/_next/static/chunks/0c294a17-47e02e0897fc1e03.js IP 104.18.39.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 21:20 Last Seen2024-08-20 21:21 Times Seen1245 Hash a8d212f5dfb66e7f059f062cd9493229 d21d9741c71bbc64740708e24fba28398f8a79bf 2ce32ee8f610d50745b50342b28aa188014f72af49090f622b9fd45c7989fbe2 Loading...

	widget.suphelper.top/_next/static/5bf52df1/_ssgManifest.js	ScriptElement	77 B	2023-03-07	2025-04-25
Pretty URL widget.suphelper.top/_next/static/5bf52df1/_ssgManifest.js IP 104.18.39.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-04-25 22:28 Times Seen67310 Hash b6652df95db52feb4daf4eca35380933 65451d110137761b318c82d9071c042db80c4036 6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e Loading...

	unknown	Function	34 B	2023-04-14	2025-04-25
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 16:26 Last Seen2025-04-25 22:44 Times Seen4070 Hash 7bcdb973ab8af8e24ab11cb554a1ba6e 24e8a10f240f2b06f81d7c173cd0a90606641fc1 916ec4eb9b485eb47f43a17fe212e84e4b72600b45eb6d4588599ad495a57fcd Loading...

	1xlite-252970.top/polyfills.js	ScriptElement	0 B	0001-01-01	2025-04-25
Pretty URL 1xlite-252970.top/polyfills.js IP 178.253.28.49 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-04-25 22:48 Times Seen4534891 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	Function	44 B	2023-04-14	2025-04-25
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 16:26 Last Seen2025-04-25 22:44 Times Seen4062 Hash 00beb9884d0391b342eadd30744b539a 3124c0bd593822379d22f13d3e08e70a1bf5ea14 92394eec5690449a4f6cfc9a7f97497a69e926b2365cb9a9aad3507a844f835c Loading...

	widget.suphelper.top/injector.js	ScriptElement	208 kB	2023-12-17	2024-08-20
Pretty URL widget.suphelper.top/injector.js IP 104.18.39.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-17 15:23 Last Seen2024-08-20 15:42 Times Seen1165 Hash faa1c0b5a845868ac1a8071b6b87d458 71034e9bb2726a20b2afa197ff4e1b52c2ab976b d7585c13a4abd3b295a15b2bce2b2d7121a697f42ea85f89f40624ac26b075d0 Loading...

	widget.suphelper.top/_next/static/chunks/main-fa1d3b21fd97b583.js	ScriptElement	108 kB	2023-11-02	2024-08-20
Pretty URL widget.suphelper.top/_next/static/chunks/main-fa1d3b21fd97b583.js IP 104.18.39.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 21:20 Last Seen2024-08-20 21:21 Times Seen1820 Hash 83680ce862de40c43fc92e04b1ad0a3d 67eb6762545f4e1fee446794f4738d0f0577b6b4 e70f39978f08895aef6849daf891af65bff03e476eb9b1384dfb36cd4ac9fe75 Loading...

	widget.suphelper.top/_next/static/chunks/81.9c6562bba5669b47.js	ScriptElement	37 kB	2023-10-13	2025-03-11
Pretty URL widget.suphelper.top/_next/static/chunks/81.9c6562bba5669b47.js IP 104.18.39.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-13 06:04 Last Seen2025-03-11 19:05 Times Seen3457 Hash 6782c8abf3d14391f6ed5c805a973cf5 a08b255c0084e14d74199f5af64522ffaba14486 88331f3bf38157ecb0e64f22c08a582384dc74c8bae09d9f78b9eab5fe82cfa3 Loading...

	data:text/javascript,export const meta = import.meta;	ScriptElement	32 B	2023-12-06	2025-04-25
Pretty URL data:text/javascript,export const meta = import.meta; IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 14:32 Last Seen2025-04-25 04:15 Times Seen2634 Hash 6d772b7d405b447ecee54ab61cdd5108 dd65fb9cd5a7cb94a40fe161f4f72303a61eb3b7 b90ff694e492935b6036fb7e878d365dab51aafa46f0afb1e33414e7ecc3307b Loading...

	v3.traincdn.com/_nuxt/desktop/default/vendors/plugins.vue-notification-87397fea.js	ScriptElement	12 kB	2023-12-20	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/vendors/plugins.vue-notification-87397fea.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:56 Last Seen2024-08-20 15:24 Times Seen52 Hash 45ab02f30b9a0ae3fd6a8e1460c1a7b2 ef7482e4dc9dae5a40f64a3630a19c60e0422bbc c240e96bb7aa0ee773c27049f54ac8c77d138ebd61697370852f6d629a7215b2 Loading...

	v3.traincdn.com/_nuxt/desktop/default/vendors/plugins.vue-js-modal-8d3c2cfe.js	ScriptElement	27 kB	2023-12-20	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/vendors/plugins.vue-js-modal-8d3c2cfe.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:56 Last Seen2024-08-20 15:24 Times Seen49 Hash 5cc4fc5bfc5d87d974654306c96c4a28 f3a97d335373793fb415e4cfaf4ccbb148b4105d 5beed9896342ac4a1fcec0096abae05a4180bd2fdbb3280ed5ab641c928a98e5 Loading...

	v3.traincdn.com/_nuxt/desktop/default/vendors/Page.Betting.Main/Page.Betting.Main.Asian/registration.Main/user.userRegistration-0d620f73.js	ScriptElement	35 kB	2023-12-20	2024-08-20
Pretty URL v3.traincdn.com/_nuxt/desktop/default/vendors/Page.Betting.Main/Page.Betting.Main.Asian/registration.Main/user.userRegistration-0d620f73.js IP 185.244.209.62 ASN #58286 Electric-IT Business S.R.L. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-20 22:56 Last Seen2024-08-20 15:24 Times Seen47 Hash 174ee2456de33195c4c3218a939bfff1 ec68f47849ccf408841fbf7a8cdb4f9c6b273cc4 408b4641be52f8364a444098213af7c9b5c650af3ea8fde1fdf322e6f8e14195 Loading...

		Size	First Seen	Last Seen
	#1 Eval - bcd482bb927055ac0dd095479c40a96f	31 kB	2024-08-20 15:03	2024-08-20 15:03
Pretty Observations First Seen2024-08-20 15:03 Last Seen2024-08-20 15:03 Times Seen1 Hash bcd482bb927055ac0dd095479c40a96f 335459bab42c5e0accafec524441a817d386c3a9 58d974fb9e9e224e4ad58681178a7a5a571e134d666136aa7f72675472c64d71 Loading...

HTTP Transactions (99)

	URL	IP	Response	Size
	1xlite-252970.top/_nuxt/check-ob.js	178.253.28.49	200 OK	274 B
URL GET HTTP/2 1xlite-252970.top/_nuxt/check-ob.js IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type ASCII text, with very long lines (341) Size 274 B (274 bytes) Hash 51c38d7f8ad860f8b5bc7010ea8fdb7e d8800c25a96238ea8eb8a087b9285b7ebf617a01 9dc59b4e91c1aada81294c54029320042844fe6f142eb8ad393b97227db7f531 HTTP Headers GET /_nuxt/check-ob.js HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/en/registration?type=fast Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg== Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:35 GMT content-type: application/javascript; charset=utf-8 content-length: 274 last-modified: Fri, 22 Dec 2023 14:05:08 GMT vary: Accept-Encoding etag: "65859794-112" content-encoding: gzip expires: Mon, 25 Dec 2023 16:36:34 GMT cache-control: max-age=86400 access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubDomains; preload server-timing: wf-uht;dur= accept-ranges: bytes X-Firefox-Spdy: h2`

	1xlite-252970.top/polyfills.js	178.253.28.49	200 OK	0 B
URL GET HTTP/2 1xlite-252970.top/polyfills.js IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /polyfills.js HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/en/registration?type=fast Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg== Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:35 GMT content-type: text/javascript; charset=utf-8 content-length: 0 vary: user-agent cache-control: public, max-age=2678400, s-maxage=2678400 etag: W/"0-2jmj7l5rSw0yVb/vlWAYkK/YBwk" x-time-ng: 0.002 strict-transport-security: max-age=63072000; includeSubDomains; preload server-timing: wf-uht;dur=0.031 X-Firefox-Spdy: h2`

	v3.traincdn.com/version.json	185.244.209.62	200 OK	44 B
URL GET HTTP/2 v3.traincdn.com/version.json IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text Size 44 B (44 bytes) Hash b3ac7696f2e27082c22789e5e725321f c336f3a4a740dfa88708da454211d140df9add86 f9837cf94aab2c417e12d250a8c27743859ed1e30dc003a8a7fa161908059185 HTTP Headers `GET /version.json HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:35 GMT content-type: application/json content-length: 44 last-modified: Fri, 22 Dec 2023 14:07:40 GMT etag: "6585982c-2c" content-encoding: gzip expires: Fri, 22 Dec 2023 15:46:05 GMT cache-control: max-age=60, max-age=60, s-maxage=60 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-b21f67c2124e07da6684ce3c5372f3b1-070eca5a4d7213fe-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T15:45:05+00:00, 2023-12-25T05:56:00+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/css/2f7d1a00.css	185.244.209.62	200 OK	625 B
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/2f7d1a00.css IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (2725), with no line terminators Size 625 B (625 bytes) Hash 5e200490b8200ae5978c656de89d6e63 ad09a4e0c3973dd616890131484cfb924a4bc8f4 9953ec7fda94f134dfe10856c27a4dc2efdeef99868ed51c7828ca5dca8068fc HTTP Headers `GET /_nuxt/desktop/default/css/2f7d1a00.css HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:35 GMT content-type: text/css content-length: 625 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-271" content-encoding: gzip expires: Sat, 23 Dec 2023 19:57:26 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc88 traceparent: 00-f4dd97d9ea82882a35cf89155f1436fd-d4917f76454d1a9c-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T19:57:26+00:00, 2023-12-24T10:26:49+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	1xlite-252970.top/en/registration?type=fast	178.253.28.49	200 OK	361 kB
URL User Request GET HTTP/2 1xlite-252970.top/en/registration?type=fast IP 178.253.28.49:443 ASN #0 Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type HTML document, Unicode text, UTF-8 text, with very long lines (42617) Size 361 kB (361121 bytes) Hash a7aa24d8684809335dca3cb47a70a1bb f39158fcba0db4b1b190d319a62ea9b6335fe33f f2c0b5299a1371e0fe6008f2775d99edb6077ddcdbbe5e78fe5489edcfbde150 HTTP Headers `GET /en/registration?type=fast HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:34 GMT content-type: text/html; charset=utf-8 content-encoding: br server-timing: total;dur=353;desc="Nuxt Server Time", dt_total;dur=443.288, wf-uht;dur=0.505 set-cookie: platform_type=desktop; Path=/; Expires=Thu, 28 Dec 2023 05:56:34 GMT lng=en; Path=/ cookies_agree_type=3; Path=/ tzo=1; Path=/ is12h=0; Path=/ auid=sv0cMWWJGZIybfzVA2NPAg==; path=/; secure; httponly; samesite=lax vary: Accept-Encoding x-dt: 285 x-frame-options: SAMEORIGIN x-time-ng: 0.430 strict-transport-security: max-age=63072000; includeSubDomains; preload X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/Page.Registration-e4e4727f.js	185.244.209.62	200 OK	2.3 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/Page.Registration-e4e4727f.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (6509), with no line terminators Size 2.3 kB (2287 bytes) Hash d07a9ea34fc720ad00f15fa4ecb0caab 0aea178c2d9224b38e4fe477eb62e73063947c27 1ab3c8607d9ce75e0a1876b0df702a5342c94e96dc6628513685b67f42d5f2bf HTTP Headers `GET /_nuxt/desktop/default/Page.Registration-e4e4727f.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:35 GMT content-type: application/javascript; charset=utf-8 content-length: 2287 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-8ef" content-encoding: gzip expires: Sat, 23 Dec 2023 17:22:00 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-ef12623041f9c83d3d4341322c5d685a-b137b221e5975b4c-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:22:00+00:00, 2023-12-24T18:54:24+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/runtime-2e0ad923.js	185.244.209.62	200 OK	16 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/runtime-2e0ad923.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (50643), with no line terminators Size 16 kB (16020 bytes) Hash fe136a1b12adaf266e311f5e73add02d 066ef2761dd155a2be84e6e402a8ad9f9bc7fd70 bc08bd0e630298f40841ad63d9fea2976f5978a781ab310ac915442f1c5e98cd HTTP Headers `GET /_nuxt/desktop/default/runtime-2e0ad923.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:35 GMT content-type: application/javascript; charset=utf-8 content-length: 16020 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-3e94" content-encoding: gzip expires: Sat, 23 Dec 2023 15:47:25 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-a483194d8bff0f05ddeecc92817ab82d-b8be4c7bc6b9a74f-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T15:47:25+00:00, 2023-12-24T15:56:09+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/css/603ff00f.css	185.244.209.62	200 OK	76 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/603ff00f.css IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 76 kB (76421 bytes) Hash ff43d6d637cf6b2f0aa6e2795cd2513b 27786ca6695c4e5d34acd3e32dd59d19a3fd8ca1 1ff12d88d2c100143f0aa1a089a163c2d1a47922f5db7d0c40c79137afb573ad HTTP Headers `GET /_nuxt/desktop/default/css/603ff00f.css HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:35 GMT content-type: text/css content-length: 76421 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-12a85" content-encoding: gzip expires: Sun, 24 Dec 2023 07:54:16 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc89 traceparent: 00-68b957282424678848b3f0e1f051afa3-89b221f211cbd1d2-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-23T07:54:16+00:00, 2023-12-24T08:23:36+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/css/840576e0.css	185.244.209.62	200 OK	14 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/840576e0.css IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 14 kB (14445 bytes) Hash 289fef677303453eb1855070d19e0e2b 8a677fdd40e30d9924f5eeaff1811fdca0758d17 efd5b563a91f82228e2c72d57b1e52496566dfb8d26d0a0325b6e130c3dab818 HTTP Headers `GET /_nuxt/desktop/default/css/840576e0.css HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:35 GMT content-type: text/css content-length: 14445 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-386d" content-encoding: gzip expires: Sun, 24 Dec 2023 07:54:16 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc88 traceparent: 00-99cff2f759682c53b576ed549a068964-e69eaded6f27f27f-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-23T07:54:16+00:00, 2023-12-24T08:23:36+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/commons/app-b2c05717.js	185.244.209.62	200 OK	46 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/commons/app-b2c05717.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (65476) Size 46 kB (46096 bytes) Hash f00ab03089953aa145bd1d6be95f176e 7121e8981f65df9381f1d1696a422f837038450b 6e34afd10e988f9b5675b3f0bc69e4f6fb1d6d0594f8970c311dcb49ab27d36a HTTP Headers `GET /_nuxt/desktop/default/commons/app-b2c05717.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:35 GMT content-type: application/javascript; charset=utf-8 content-length: 46096 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-b410" content-encoding: gzip expires: Sat, 23 Dec 2023 17:20:34 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc89 traceparent: 00-b3ce4d3ccc72ed764242953560459cdd-602b6e00a1bd39bb-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:20:34+00:00, 2023-12-24T17:37:09+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/vendors/app-fc0b1985.js	185.244.209.62	200 OK	265 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/app-fc0b1985.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type Unicode text, UTF-8 text, with very long lines (61101) Size 265 kB (265062 bytes) Hash 0096ebf7cb736b6dbec9a0cb1edf323f 963f706fd412f17370d842795a55444e4ae224a0 a9aa1a4206c8657cf32adcb8528c9d465f5a58ac2a45b181e560be992dc5b98f HTTP Headers `GET /_nuxt/desktop/default/vendors/app-fc0b1985.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:35 GMT content-type: application/javascript; charset=utf-8 content-length: 265062 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-40b66" content-encoding: gzip expires: Sat, 23 Dec 2023 17:20:59 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-a9571b07cde88a8f20fcee1800a29b73-b178fe53dbffa28e-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:20:59+00:00, 2023-12-24T17:37:09+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Regular.woff2	185.244.209.62	200 OK	64 kB
URL GET HTTP/2 v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Regular.woff2 IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 63748, version 1.0 Size 64 kB (63748 bytes) Hash 6887b6f24414dbc612dbf42ccdc76b70 8068d3abfbc6cbf35b55919da45b1f4d2d136238 fc5c015fc32518f1ed810fa84ca28941eb9d5a3c81acc8df69a4dbbeedef7b0c HTTP Headers GET /genfiles/cms/1/desktop/fonts/Roboto/Roboto-Regular.woff2 HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Referer: https://v3.traincdn.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:35 GMT content-type: font/woff2 content-length: 63748 last-modified: Wed, 14 Jun 2023 09:49:53 GMT etag: "6887b6f24414dbc612dbf42ccdc76b70" x-time-ng: 0.000 cache-control: public,max-age=3600,s-maxage=3600 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc88 traceparent: 00-e61787ba46c20bba2e4f89ff6d69cc1a-e05a0182ac14f816-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-18T07:13:59+00:00, 2023-12-25T05:20:53+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Medium.woff2	185.244.209.62	200 OK	65 kB
URL GET HTTP/2 v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Medium.woff2 IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 64732, version 1.0 Size 65 kB (64732 bytes) Hash 3ac5d40d1b3966fc5eb09ecca74d9cbf a69f32357765dd321519889aeacba5e9ca893bb0 3310766b8f58538d07abded74a2babe1acbe1a3ee820d5b8c8265da666f4fb0c HTTP Headers GET /genfiles/cms/1/desktop/fonts/Roboto/Roboto-Medium.woff2 HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Referer: https://v3.traincdn.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:35 GMT content-type: font/woff2 content-length: 64732 last-modified: Wed, 14 Jun 2023 09:49:53 GMT etag: "3ac5d40d1b3966fc5eb09ecca74d9cbf" x-time-ng: 0.000 cache-control: public,max-age=3600,s-maxage=3600 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc89 traceparent: 00-d56187c884f52a02e22e2ca773c57fb5-9e09dcd9a56aba9e-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-18T07:56:30+00:00, 2023-12-25T05:22:31+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Bold.woff2	185.244.209.62	200 OK	64 kB
URL GET HTTP/2 v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Bold.woff2 IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 63920, version 1.0 Size 64 kB (63920 bytes) Hash a65527fcb58f66a7cfbc0e6b160538b4 45d260e7fa343401b5bb0df982a014f53e2d253b fb13c3a1cbac60649b76f7d7f85c1645d35ac69b85ce5f4eb0692505ecc2cd45 HTTP Headers GET /genfiles/cms/1/desktop/fonts/Roboto/Roboto-Bold.woff2 HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Referer: https://v3.traincdn.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: font/woff2 content-length: 63920 last-modified: Wed, 14 Jun 2023 09:49:53 GMT etag: "a65527fcb58f66a7cfbc0e6b160538b4" x-time-ng: 0.000 cache-control: public,max-age=3600,s-maxage=3600 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc88 traceparent: 00-c161666bfcc4963fb9301a9d159967af-a55da855d6b63a46-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-18T07:54:39+00:00, 2023-12-25T05:31:17+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/genfiles/cms/1-285/desktop/media_asset/1da51baa342984a84ca1ac8dd900998b.png	185.244.209.62	200 OK	653 B
URL GET HTTP/2 v3.traincdn.com/genfiles/cms/1-285/desktop/media_asset/1da51baa342984a84ca1ac8dd900998b.png IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced Size 653 B (653 bytes) Hash e6f0766cbd95db33da44e7a9140648f2 5f196b1bfe8c3f92bd2ebcd67124e72e81ae6aaf c0399d478788d5d483f104a2e8cb7c32f41cb40e9df0c22e831b2bfa2db63ec0 HTTP Headers `GET /genfiles/cms/1-285/desktop/media_asset/1da51baa342984a84ca1ac8dd900998b.png HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: image/png content-length: 653 last-modified: Tue, 25 Apr 2023 13:43:56 GMT etag: "e6f0766cbd95db33da44e7a9140648f2" x-time-ng: 0.000 cache-control: public,max-age=3600,s-maxage=3600 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc89 traceparent: 00-70b2ea97611bb65749ebebdb29f08df7-03f17e2edd1d5138-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-18T07:12:59+00:00, 2023-12-25T05:48:57+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/vendors/plugins.v-tooltip-4f30f919.js	185.244.209.62	200 OK	22 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/plugins.v-tooltip-4f30f919.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (65476) Size 22 kB (21898 bytes) Hash 44ee990529e581273921783695d86701 2e96e976428cf4f36dfd3f1abf7c876b7ff3d436 120eed41168dedc6b52afda6281c309a7ab32977fed7c218b3607a6e36271044 HTTP Headers `GET /_nuxt/desktop/default/vendors/plugins.v-tooltip-4f30f919.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/javascript; charset=utf-8 content-length: 21898 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-558a" content-encoding: gzip expires: Sat, 23 Dec 2023 17:21:02 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-e17c8a748d7e458afdadc61b58e26656-53f0100be355e851-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:21:02+00:00, 2023-12-24T17:37:10+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/vendors/plugins.vue-notification-87397fea.js	185.244.209.62	200 OK	4.6 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/plugins.vue-notification-87397fea.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (12527), with no line terminators Size 4.6 kB (4557 bytes) Hash 45ab02f30b9a0ae3fd6a8e1460c1a7b2 ef7482e4dc9dae5a40f64a3630a19c60e0422bbc c240e96bb7aa0ee773c27049f54ac8c77d138ebd61697370852f6d629a7215b2 HTTP Headers `GET /_nuxt/desktop/default/vendors/plugins.vue-notification-87397fea.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/javascript; charset=utf-8 content-length: 4557 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-11cd" content-encoding: gzip expires: Sat, 23 Dec 2023 17:21:00 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-211268d4ca45a077219a4d40ee6bcf7a-dd5750eaa3f8d543-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:21:00+00:00, 2023-12-24T17:37:10+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/css/e1ad5afb.css	185.244.209.62	200 OK	943 B
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/e1ad5afb.css IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (3303), with no line terminators Size 943 B (943 bytes) Hash cacc6d6ba45cf94ef4172d935ce1dc39 1ebd443b4446bb9d07e56deb39c88be4b67e0f16 dec9bcae0186bee94c16b3012dcc5379eb7ab98380875cedf2342baf66ba70e5 HTTP Headers `GET /_nuxt/desktop/default/css/e1ad5afb.css HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: text/css content-length: 943 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-3af" content-encoding: gzip expires: Sat, 23 Dec 2023 18:49:32 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc88 traceparent: 00-fbb1a6ed4117058a234655e22bc32409-9bacc09b3aa5b3a9-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T18:49:32+00:00, 2023-12-24T09:10:54+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/vendors/plugins.vue-js-modal-8d3c2cfe.js	185.244.209.62	200 OK	8.1 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/plugins.vue-js-modal-8d3c2cfe.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type HTML document, ASCII text, with very long lines (26717), with no line terminators Size 8.1 kB (8056 bytes) Hash 5cc4fc5bfc5d87d974654306c96c4a28 f3a97d335373793fb415e4cfaf4ccbb148b4105d 5beed9896342ac4a1fcec0096abae05a4180bd2fdbb3280ed5ab641c928a98e5 HTTP Headers `GET /_nuxt/desktop/default/vendors/plugins.vue-js-modal-8d3c2cfe.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/javascript; charset=utf-8 content-length: 8056 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-1f78" content-encoding: gzip expires: Sat, 23 Dec 2023 17:21:03 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-a029a9dbc47f30dfe87b7101b84eae91-319a2e73236d8863-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:21:03+00:00, 2023-12-24T17:37:10+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/date-fns-locale-21-8dc85660.js	185.244.209.62	200 OK	2.1 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/date-fns-locale-21-8dc85660.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (6960), with no line terminators Size 2.1 kB (2118 bytes) Hash 799b42fcf7ef7bac1625b407ed50f954 a4a74c6723f81bd210cb7635c1930eecb25daeb1 fd05331bc90e116515682c1a6250f93ad37d5d76a34b6a1ff15dba7de50d5f46 HTTP Headers `GET /_nuxt/desktop/default/date-fns-locale-21-8dc85660.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/javascript; charset=utf-8 content-length: 2118 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-846" content-encoding: gzip expires: Sat, 23 Dec 2023 17:20:46 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-6fe6f872f865c4915c3da3274efcc699-956d4b67b41373bb-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:20:46+00:00, 2023-12-24T17:40:50+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	1xlite-252970.top/genfiles/cms/1-285/desktop/media_asset/29ff8e35693b23d6fca06a6514cb28df.json	178.253.28.49	200 OK	668 B
URL GET HTTP/2 1xlite-252970.top/genfiles/cms/1-285/desktop/media_asset/29ff8e35693b23d6fca06a6514cb28df.json IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type JSON data Size 668 B (668 bytes) Hash b7b882bc87bd49ec0b19e15d62050091 7dd2f9242613b1d6453f8ea25f61f3c036c1c10a ea3b4c0c004ddc47d397140cb405c5934682606f1e0faeecf9308bfa30cf924e HTTP Headers GET /genfiles/cms/1-285/desktop/media_asset/29ff8e35693b23d6fca06a6514cb28df.json HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/en/registration?type=fast content-type: application/json x-requested-with: XMLHttpRequest DNT: 1 Connection: keep-alive Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/json content-length: 668 last-modified: Tue, 23 May 2023 10:24:59 GMT etag: "b7b882bc87bd49ec0b19e15d62050091" x-time-ng: 0.000 cache-control: public,max-age=3600,s-maxage=3600 strict-transport-security: max-age=63072000; includeSubDomains; preload server-timing: wf-uht;dur= accept-ranges: bytes X-Firefox-Spdy: h2`

	v3.traincdn.com/sys-icons/1.0.227/285/common.svg	185.244.209.62	200 OK	56 kB
URL GET HTTP/2 v3.traincdn.com/sys-icons/1.0.227/285/common.svg IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type SVG Scalable Vector Graphics image Size 56 kB (55873 bytes) Hash 1a64c0ce5953ac4fce9c924d0f6441ff 11af3403bf7a5e5bed36f40da4065e87275e5ddf edb91e0d09ec9f76a366eceba4c5996cca6854b0a23a633ae0fce660019acdec HTTP Headers `GET /sys-icons/1.0.227/285/common.svg HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: image/svg+xml last-modified: Thu, 14 Dec 2023 13:58:19 GMT etag: W/"fdc16dd5e461b29e6772855ff464b850" x-amz-meta-mtime: 1702562296.385632667 content-encoding: gzip expires: Thu, 21 Dec 2023 14:32:46 GMT cache-control: max-age=86400 x-time-ng: 0.002 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-0b48883efe4c5d7d5d71e4642d11c06b-a4512af5c542468b-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-20T14:32:46+00:00, 2023-12-24T14:51:14+00:00 x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/Betting.Core-6ca1ec0b.js	185.244.209.62	200 OK	1.5 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/Betting.Core-6ca1ec0b.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (2330), with no line terminators Size 1.5 kB (1502 bytes) Hash 47efb6f524b8ce117b6d2c9ada234ace af7b1112bacbe844a28e032b03bbb9a44a690c8d aa8d73b141ac838550755ac4e8e753c69f9e1b86f3d8522d7c4717fc90a575a7 HTTP Headers `GET /_nuxt/desktop/default/Betting.Core-6ca1ec0b.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/javascript; charset=utf-8 content-length: 1502 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-5de" content-encoding: gzip expires: Sat, 23 Dec 2023 15:47:35 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc89 traceparent: 00-4f75746b59b7bbc8d09ccc9d934cec82-db3f669897134be6-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T15:47:35+00:00, 2023-12-24T16:08:17+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	1xlite-252970.top/genfiles/cms/1/mobile/shortcuts/icon-512x512.png	178.253.28.49	200 OK	5.2 kB
URL GET HTTP/2 1xlite-252970.top/genfiles/cms/1/mobile/shortcuts/icon-512x512.png IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type PNG image data, 514 x 514, 8-bit colormap, non-interlaced Size 5.2 kB (5202 bytes) Hash b9a636eef54b2844b571fe7de49184a7 bf653690790ced40eb3189da075a275d951d1607 001bfcdd52b658d46543a1aec889d35b73b3909b47097cc011b95e96fc9e3743 HTTP Headers GET /genfiles/cms/1/mobile/shortcuts/icon-512x512.png HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/en/registration?type=fast Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1920; SESSION=0d2e47df81a7834659d0346171efef4e Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: image/png content-length: 5202 last-modified: Thu, 16 Nov 2023 13:34:54 GMT etag: "b9a636eef54b2844b571fe7de49184a7" x-time-ng: 0.000 cache-control: public,max-age=3600,s-maxage=3600 accept-ranges: bytes strict-transport-security: max-age=63072000; includeSubDomains; preload server-timing: wf-uht;dur=0.025 X-Firefox-Spdy: h2`

	v3.traincdn.com/_nuxt/desktop/default/consultant.supHelperV2-063664df.js	185.244.209.62	200 OK	1.5 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/consultant.supHelperV2-063664df.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (3739), with no line terminators Size 1.5 kB (1494 bytes) Hash b3a82ab12d0b6db395b467cbf903fa8f a1b276288959177b113f05b4e3d8f07500fbf660 6fd57977c67413e704b7f2a0b8eb5dc545b2df1b8c2eb947e575f7bc3648a083 HTTP Headers `GET /_nuxt/desktop/default/consultant.supHelperV2-063664df.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/javascript; charset=utf-8 content-length: 1494 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-5d6" content-encoding: gzip expires: Sat, 23 Dec 2023 17:20:44 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-0c9ba9332dadf017c1d169388bdbb44a-707c441162f616e4-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:20:44+00:00, 2023-12-24T17:38:00+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	1xlite-252970.top/version.json?timestamp=1703483541938	178.253.28.49	200 OK	44 B
URL GET HTTP/2 1xlite-252970.top/version.json?timestamp=1703483541938 IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type ASCII text Size 44 B (44 bytes) Hash b3ac7696f2e27082c22789e5e725321f c336f3a4a740dfa88708da454211d140df9add86 f9837cf94aab2c417e12d250a8c27743859ed1e30dc003a8a7fa161908059185 HTTP Headers GET /version.json?timestamp=1703483541938 HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/en/registration?type=fast content-type: application/json x-requested-with: XMLHttpRequest DNT: 1 Connection: keep-alive Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1920; SESSION=0d2e47df81a7834659d0346171efef4e Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/json content-length: 44 last-modified: Fri, 22 Dec 2023 14:07:40 GMT vary: Accept-Encoding etag: "6585982c-2c" content-encoding: gzip expires: Mon, 25 Dec 2023 05:57:36 GMT access-control-allow-origin: * cache-control: max-age=60, max-age=60, s-maxage=60 accept-ranges: bytes strict-transport-security: max-age=63072000; includeSubDomains; preload server-timing: wf-uht;dur=0.027 X-Firefox-Spdy: h2`

	v3.traincdn.com/genfiles/site-admin/colors/13f2420925687a194e4c38472ae71214.css	185.244.209.62	200 OK	6.1 kB
URL GET HTTP/2 v3.traincdn.com/genfiles/site-admin/colors/13f2420925687a194e4c38472ae71214.css IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type gzip compressed data, max speed, from Unix Size 6.1 kB (6082 bytes) Hash b2736d9c75fe6a0c3677397d88fbfc58 d4d304f30fc61be20d1f9cda4bb2fb5984981c9e cc2de0f122840f062a9d9c45719b8c0532cf98e5b953a6dfe9d3fa5ef0ae3670 HTTP Headers `GET /genfiles/site-admin/colors/13f2420925687a194e4c38472ae71214.css HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:35 GMT content-type: text/css last-modified: Fri, 15 Dec 2023 07:12:10 GMT etag: W/"1b6d143969c94a502200a368f5be09b6" content-encoding: gzip x-time-ng: 0.000 cache-control: public,max-age=3600,s-maxage=3600 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc89 traceparent: 00-2a37014e0cc10c7a3d179d9b8506a6cc-cc4ee218ed2a3868-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-18T07:55:41+00:00, 2023-12-25T05:09:39+00:00 x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/vendors/Auth.Forms/Page.SiteUpdates/components/userControl.auth_form_extended/modal.RegistrationSucc/62f29d8c-c6c8fda6.js	185.244.209.62	200 OK	6.0 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/Auth.Forms/Page.SiteUpdates/components/userControl.auth_form_extended/modal.RegistrationSucc/62f29d8c-c6c8fda6.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (18474), with no line terminators Size 6.0 kB (5957 bytes) Hash 660c787a276d33e3b890d1f1ce38cf9e 647ddcb094638b4fef6db4e4a3bb034890aea94f 10a2ededa5ccd959fa3eae2a4780217c39730d0c7955fa1bdac2578f428415ed HTTP Headers GET /_nuxt/desktop/default/vendors/Auth.Forms/Page.SiteUpdates/components/userControl.auth_form_extended/modal.RegistrationSucc/62f29d8c-c6c8fda6.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/javascript; charset=utf-8 content-length: 5957 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-1745" content-encoding: gzip expires: Sat, 23 Dec 2023 17:22:03 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-26d9756761a054fbac854297ef0dcb48-3b1d89f5d258b632-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:22:03+00:00, 2023-12-24T18:51:29+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/vendors/Page.Betting.Main/Page.Betting.Main.Asian/registration.Main/user.userRegistration-0d620f73.js	185.244.209.62	200 OK	10 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/Page.Betting.Main/Page.Betting.Main.Asian/registration.Main/user.userRegistration-0d620f73.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type HTML document, Unicode text, UTF-8 text, with very long lines (34615), with no line terminators Size 10 kB (10119 bytes) Hash 174ee2456de33195c4c3218a939bfff1 ec68f47849ccf408841fbf7a8cdb4f9c6b273cc4 408b4641be52f8364a444098213af7c9b5c650af3ea8fde1fdf322e6f8e14195 HTTP Headers GET /_nuxt/desktop/default/vendors/Page.Betting.Main/Page.Betting.Main.Asian/registration.Main/user.userRegistration-0d620f73.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/javascript; charset=utf-8 content-length: 10119 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-2787" content-encoding: gzip expires: Sat, 23 Dec 2023 17:20:59 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc89 traceparent: 00-62c703d312b594b093fa857ac299a1cd-c58759f5693d34aa-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:20:59+00:00, 2023-12-24T17:38:00+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/css/15158b1d.css	185.244.209.62	200 OK	1.1 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/15158b1d.css IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (4319), with no line terminators Size 1.1 kB (1149 bytes) Hash a8ca6ad918662919832dfadf40101246 305ccd8daad4f79301ef418766f1aa6786cde6bc bb8d0ffe4dbc2c0f2615e5aa182699dc27c845701a9fa311366b52610261384a HTTP Headers `GET /_nuxt/desktop/default/css/15158b1d.css HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: text/css content-length: 1149 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-47d" content-encoding: gzip expires: Sun, 24 Dec 2023 07:54:43 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc89 traceparent: 00-07654d28b4067e87a7538574c93c9af9-34a9c1cf52e89361-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-23T07:54:43+00:00, 2023-12-24T08:24:02+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/vendors/RegistrationWidgetApp/registration.Main/user.userRegistration-cd171124.js	185.244.209.62	200 OK	19 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/RegistrationWidgetApp/registration.Main/user.userRegistration-cd171124.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 19 kB (19296 bytes) Hash 6239d85aaa2349efa608878fdcb6b2d2 7d327e77d0e7693dfe38c8fc47c611afdc128632 279db55fde02bf50efcf2c4a8610177b88843013f89e37a998a7e3081c2abfa9 HTTP Headers GET /_nuxt/desktop/default/vendors/RegistrationWidgetApp/registration.Main/user.userRegistration-cd171124.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/javascript; charset=utf-8 content-length: 19296 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-4b60" content-encoding: gzip expires: Sat, 23 Dec 2023 17:21:00 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-3612d5d99b28df945efae7da69fa8100-d6b9af182a447edd-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:21:00+00:00, 2023-12-24T17:38:00+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/css/db97d003.css	185.244.209.62	200 OK	2.3 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/db97d003.css IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (13875), with no line terminators Size 2.3 kB (2258 bytes) Hash 3a09edf339e77e5e69b36a8415d28c28 ee9f2e7e1a517a1e6bebd4fb7b271773a6c6a268 844c3e4318816f9447e9a3fa4769c1626f63419d902b75fd3bdab3daf96ba1fb HTTP Headers `GET /_nuxt/desktop/default/css/db97d003.css HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: text/css content-length: 2258 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-8d2" content-encoding: gzip expires: Sun, 24 Dec 2023 13:34:27 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc89 traceparent: 00-e58e401f1f30e21a770a9b2d052ab9e3-39d57e72a5e3b5e1-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-23T13:34:27+00:00, 2023-12-24T10:47:22+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/vendors/modal.RegistrationSuccessModalApp/registration.Main/user.userRegistration-fb4545c6.js	185.244.209.62	200 OK	13 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/modal.RegistrationSuccessModalApp/registration.Main/user.userRegistration-fb4545c6.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (52680), with no line terminators Size 13 kB (13097 bytes) Hash a90d2ab7291af295857417259ff99f7c 8cf437f37b42d83fdadefad89c5b4e4f525fe5b7 12721d4607829f44230f24ce4152019fd8086ae48310c8f7fc16a47c1e847001 HTTP Headers GET /_nuxt/desktop/default/vendors/modal.RegistrationSuccessModalApp/registration.Main/user.userRegistration-fb4545c6.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/javascript; charset=utf-8 content-length: 13097 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-3329" content-encoding: gzip expires: Sat, 23 Dec 2023 17:22:03 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-19c38841f70932cfeda54c3477bf7672-7bb638e566346c56-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:22:03+00:00, 2023-12-24T18:54:52+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/css/46daab30.css	185.244.209.62	200 OK	1.5 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/46daab30.css IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (7202), with no line terminators Size 1.5 kB (1455 bytes) Hash 28c9a5936907f93eba64fa7123779c9c b2725472a83dc95fe3f480d1858261475002348b 585403be8747d73f3c24ac5a2823fdb3815358fb9531f01ee7b0f3fecc253b0d HTTP Headers `GET /_nuxt/desktop/default/css/46daab30.css HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: text/css content-length: 1455 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-5af" content-encoding: gzip expires: Sun, 24 Dec 2023 10:01:26 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc88 traceparent: 00-bf989025636ed85ec7fdda5be16661a3-0fb616c256270bca-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-23T10:01:26+00:00, 2023-12-24T10:47:22+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/registration.Main-71259b6f.js	185.244.209.62	200 OK	6.4 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/registration.Main-71259b6f.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (22991), with no line terminators Size 6.4 kB (6440 bytes) Hash 255edce7ca3d84237009781cb5acdd13 93156ffcfb8e808f66bd7b7d00cc4e06dc7e1121 9402921be0e2b29f2d2f39998aaedf91855d229eae6c5c1552d8f18aef4ef5b2 HTTP Headers `GET /_nuxt/desktop/default/registration.Main-71259b6f.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/javascript; charset=utf-8 content-length: 6440 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-1928" content-encoding: gzip expires: Sat, 23 Dec 2023 17:22:02 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-1f15d393cce60f9cde554837eafe3c4e-c49892acb0bf082e-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:22:02+00:00, 2023-12-24T18:54:52+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/css/239b3a82.css	185.244.209.62	200 OK	454 B
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/239b3a82.css IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (1429), with no line terminators Size 454 B (454 bytes) Hash b5c7b6dfc9433384f5f222d67a6f4270 85e5cfc0284129c4428d2f7de5731e568da070cf 83e6033ea9bffc7dee6c4414ea5febb81b7900a3a3ddef58530780861b754730 HTTP Headers `GET /_nuxt/desktop/default/css/239b3a82.css HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: text/css content-length: 454 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-1c6" content-encoding: gzip expires: Sat, 23 Dec 2023 18:49:33 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc89 traceparent: 00-6f8e62e6690d8dd99baad03bf96e8030-a8680f10b287349d-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T18:49:33+00:00, 2023-12-24T09:10:54+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/vendors/betting.media-4e962903.js	185.244.209.62	200 OK	18 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/betting.media-4e962903.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type Unicode text, UTF-8 text, with very long lines (43362), with NEL line terminators Size 18 kB (17620 bytes) Hash dc2e5d023be20549f6bda126c6c03ddb 9fb77af84688b3b7db474f30743b2e4f8600dfc7 ea879db95c1d2b08adeea5603958e54fe74d5dc334c9592ae9087748349877ea HTTP Headers `GET /_nuxt/desktop/default/vendors/betting.media-4e962903.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/javascript; charset=utf-8 content-length: 17620 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-44d4" content-encoding: gzip expires: Sat, 23 Dec 2023 17:20:51 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc89 traceparent: 00-7720208fc676481fd65943708c088f8e-ef3c7072137ecfae-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:20:51+00:00, 2023-12-24T17:38:00+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/css/c9c3a732.css	185.244.209.62	200 OK	1.5 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/c9c3a732.css IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (6965), with no line terminators Size 1.5 kB (1465 bytes) Hash c3261a6037d1221987c9b251e4429e07 693c87ed3ed1beb223ec5c8759b878360bff7302 cd7281b8a85399d21797a5a57c4b00f5e34db24ac4f3c1239c762e2b54633ffb HTTP Headers `GET /_nuxt/desktop/default/css/c9c3a732.css HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: text/css content-length: 1465 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-5b9" content-encoding: gzip expires: Sun, 24 Dec 2023 07:54:19 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc88 traceparent: 00-f17739c35454a60bc900e6788888d688-c4b5ee5702122b67-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-23T07:54:19+00:00, 2023-12-24T08:23:48+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	1xlite-252970.top/service-api/gamespreview/getbanner?whence=55&ref=1&gr=285&lng=en&fCountry=137	178.253.28.49	200 OK	269 B
URL GET HTTP/2 1xlite-252970.top/service-api/gamespreview/getbanner?whence=55&ref=1&gr=285&lng=en&fCountry=137 IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type JSON data Size 269 B (269 bytes) Hash 1022f2175061286652efde2eb1852eab 6851f3e14f38817077f5f67cb197ce7e4d8f090b 7eb45ebd4bcd4035aeec982e3e9f0ad5534194461cb072121773c86fd8183aba HTTP Headers GET /service-api/gamespreview/getbanner?whence=55&ref=1&gr=285&lng=en&fCountry=137 HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/en/registration?type=fast content-type: application/json x-requested-with: XMLHttpRequest DNT: 1 Connection: keep-alive Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1280; SESSION=0d2e47df81a7834659d0346171efef4e Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/json; charset=utf-8 content-length: 269 x-time-ng: 0.003 strict-transport-security: max-age=63072000; includeSubDomains; preload server-timing: wf-uht;dur=0.032 X-Firefox-Spdy: h2`

	v3.traincdn.com/_nuxt/desktop/default/betting.media-a13e1aeb.js	185.244.209.62	200 OK	4.7 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/betting.media-a13e1aeb.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (16563), with no line terminators Size 4.7 kB (4698 bytes) Hash efd237b82b084d0c0511e8f2dd5592f8 2ce93484eed63907270bbecea287a9a111dcb2eb 97b4cb16ed05b5eacd12a9cf40d3f2bd6e46c9199e9e007bc64d2f00a8f42c3d HTTP Headers `GET /_nuxt/desktop/default/betting.media-a13e1aeb.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/javascript; charset=utf-8 content-length: 4698 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-125a" content-encoding: gzip expires: Sat, 23 Dec 2023 17:20:49 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-dca2c5987e77f555a0c03c4ae076f339-bdf5b9e6e231fd85-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:20:49+00:00, 2023-12-24T17:38:00+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	1xlite-252970.top/session-api/sessions/user	178.253.28.49	200 OK	16 B
URL GET HTTP/2 1xlite-252970.top/session-api/sessions/user IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type JSON data Size 16 B (16 bytes) Hash 646b2e82b65602d35f7aa6283c387e3a b163a70c5df8e4b0861a23a04f8a6f78393747f4 b68bf12405ee2cb5b76764df21dbc2df0953ddff4072ddc5281d1aab05e8c4ab HTTP Headers GET /session-api/sessions/user HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/en/registration?type=fast content-type: application/json x-requested-with: XMLHttpRequest DNT: 1 Connection: keep-alive Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1280; SESSION=0d2e47df81a7834659d0346171efef4e Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/json content-length: 16 cache-control: no-cache, private x-time-ng: 0.001 strict-transport-security: max-age=63072000; includeSubDomains; preload server-timing: p;dur=0.80108642578125, wf-uht;dur=0.029 X-Firefox-Spdy: h2`

	1xlite-252970.top/fatman-api/a6f69e4388362d761ee5bb073edb23ae3d9341fb/event.json	178.253.28.49	200 OK	462 B
URL POST HTTP/2 1xlite-252970.top/fatman-api/a6f69e4388362d761ee5bb073edb23ae3d9341fb/event.json IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type JSON data Size 462 B (462 bytes) Hash 55c4620e2bf5a05947b7ae3ed31ae608 4a3060bba49995523c6b3f033c1a01c4e350a9c1 e546f18bfc6200b0e2033e315448175d73d8533c8379cb613e0848c8ca6a6525 HTTP Headers POST /fatman-api/a6f69e4388362d761ee5bb073edb23ae3d9341fb/event.json HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/en/registration?type=fast Content-Type: application/json X-Lang: en X-Uuid: cc5bc019-0377-40c4-bcbb-ba1f4f6a6e4e Content-Length: 79 Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1920; SESSION=0d2e47df81a7834659d0346171efef4e Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/json vary: Accept-Encoding content-encoding: br x-time-ng: 0.001 strict-transport-security: max-age=63072000; includeSubDomains; preload server-timing: wf-uht;dur=0.026 X-Firefox-Spdy: h2`

	v3.traincdn.com/_nuxt/desktop/default/ioc.dependencies.30-53701a5f.js	185.244.209.62	200 OK	1.2 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/ioc.dependencies.30-53701a5f.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type Unicode text, UTF-8 text, with very long lines (2335), with no line terminators Size 1.2 kB (1157 bytes) Hash d5f2fcaac2e9f66cc82efd4624bce62d 6135721e0a175f4390c1fd743264c207444b514a fb4591b5f22d1c6895930da04d8db96ced5d17f6749ddf76ab6e223e74efe49b HTTP Headers `GET /_nuxt/desktop/default/ioc.dependencies.30-53701a5f.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/javascript; charset=utf-8 content-length: 1157 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-485" content-encoding: gzip expires: Sat, 23 Dec 2023 17:20:51 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-f7a032bcdab202b634b39164df73d4da-79459a50e6ed945e-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:20:51+00:00, 2023-12-24T17:38:00+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	1xlite-252970.top/genfiles/cms/maintenance_mode/settings.json?timestamp=1703483542556	178.253.28.49	200 OK	145 B
URL GET HTTP/2 1xlite-252970.top/genfiles/cms/maintenance_mode/settings.json?timestamp=1703483542556 IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type JSON data Size 145 B (145 bytes) Hash 0ba0d31eb708662ea0084322503447f5 6c1a9421f4328ce29f59a98191d02a8b1abc45d3 c968c7e207ad41002b8f5c1a77835fc7da5fe5e9ead6a4831a4c7be99c70c37d HTTP Headers GET /genfiles/cms/maintenance_mode/settings.json?timestamp=1703483542556 HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/en/registration?type=fast content-type: application/json x-requested-with: XMLHttpRequest DNT: 1 Connection: keep-alive Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1280; SESSION=0d2e47df81a7834659d0346171efef4e; che_g=56464e4b-d899-f5a5-7567-527530fdeb13 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/json content-length: 145 last-modified: Tue, 11 Apr 2023 22:54:53 GMT etag: "0ba0d31eb708662ea0084322503447f5" x-time-ng: 0.002 cache-control: public,max-age=60,s-maxage=60 accept-ranges: bytes strict-transport-security: max-age=63072000; includeSubDomains; preload server-timing: wf-uht;dur=0.027 X-Firefox-Spdy: h2`

	v3.traincdn.com/_nuxt/desktop/default/analytics-4b4fff93.js	185.244.209.62	200 OK	1.6 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/analytics-4b4fff93.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (4196), with no line terminators Size 1.6 kB (1555 bytes) Hash cfc3386cdc0fd8b16b85044cde81ceef ced6efd5e1ebb70340019afebf046ddc7fe815eb f9413df3798dc243a97aafe75dd9683e6f7ee09fcde92a742299f1328351054c HTTP Headers `GET /_nuxt/desktop/default/analytics-4b4fff93.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/javascript; charset=utf-8 content-length: 1555 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-613" content-encoding: gzip expires: Sat, 23 Dec 2023 17:21:17 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc89 traceparent: 00-802dcda6cbdf7eb98f5efdfe3905b998-15c6fb80d5c6588e-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:21:17+00:00, 2023-12-24T17:38:00+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	1xlite-252970.top/genfiles/cms/desktop/event-logo/a1c31f08a07e72b33f59de34fe70abdd.webp	178.253.28.49	200 OK	1.2 kB
URL GET HTTP/2 1xlite-252970.top/genfiles/cms/desktop/event-logo/a1c31f08a07e72b33f59de34fe70abdd.webp IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type RIFF (little-endian) data, Web/P image Size 1.2 kB (1236 bytes) Hash d0625f6c56220d0708f541759fe53254 4e6bd4b7081da46d1dcf08114c3d340c0b2f0a41 d55c5513c0232a0d7a1d6e8a7b02612e9fae30f53d608f9b4dd9b52d82ae94a0 HTTP Headers GET /genfiles/cms/desktop/event-logo/a1c31f08a07e72b33f59de34fe70abdd.webp HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/en/registration?type=fast Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1280; SESSION=0d2e47df81a7834659d0346171efef4e; che_g=56464e4b-d899-f5a5-7567-527530fdeb13 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:37 GMT content-type: image/webp content-length: 1236 last-modified: Tue, 19 Dec 2023 19:22:53 GMT etag: "d0625f6c56220d0708f541759fe53254" x-time-ng: 0.000 cache-control: public,max-age=3600,s-maxage=3600 strict-transport-security: max-age=63072000; includeSubDomains; preload server-timing: wf-uht;dur= accept-ranges: bytes X-Firefox-Spdy: h2`

	www.googletagmanager.com/gtag/js?id=G-7JGWL9SV66	142.250.74.168	200 OK	95 kB
URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-7JGWL9SV66 IP 142.250.74.168:443 ASN #15169 GOOGLE Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT File type Unicode text, UTF-8 text, with very long lines (10722) Size 95 kB (94585 bytes) Hash dac1ca78f5e58df9c82330acbf407238 6c72d9096f29fecd2ec95ff31ddff3be78f95bdc 15ac48a6bd690777198ac03eb30cc53933a9826d21f003874539ee4bd3e6ec1d HTTP Headers `GET /gtag/js?id=G-7JGWL9SV66 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Mon, 25 Dec 2023 05:56:37 GMT expires: Mon, 25 Dec 2023 05:56:37 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 94585 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	1xlite-252970.top/web-api/api/v3/bonuses/first-deposit	178.253.28.49	200 OK	574 B
URL GET HTTP/2 1xlite-252970.top/web-api/api/v3/bonuses/first-deposit IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type JSON data Size 574 B (574 bytes) Hash 932484d8872226316695d920e6e87455 a8812ae0ab7da10914caf0c97cb4ba2f04112e16 1ceb6f2561e906e3f88a436dfc6f6946f498ff7913a5d43abfa64a52a1460cd3 HTTP Headers GET /web-api/api/v3/bonuses/first-deposit HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/en/registration?type=fast content-type: application/json x-requested-with: XMLHttpRequest DNT: 1 Connection: keep-alive Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1280; SESSION=0d2e47df81a7834659d0346171efef4e Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/json cache-control: no-cache, private content-encoding: br server-timing: p;dur=39, dt_total;dur=40.178, wf-uht;dur=0.068 vary: Accept-Encoding x-dt: 285 x-time-ng: 0.040 strict-transport-security: max-age=63072000; includeSubDomains; preload X-Firefox-Spdy: h2`

	radar.cedexis.com/1/23802/radar.js	45.54.49.5	302 Moved Temporarily	154 B
URL GET HTTP/1.1 radar.cedexis.com/1/23802/radar.js IP 45.54.49.5:443 ASN #63911 NetActuate, Inc Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerDigiCert Inc Subjectradar.cedexis.com FingerprintC7:F6:9F:14:BA:D6:F0:96:22:D1:BD:25:43:8B:10:66:C3:B4:7C:56 ValidityWed, 26 Apr 2023 00:00:00 GMT - Thu, 25 Apr 2024 23:59:59 GMT File type HTML document, ASCII text, with CRLF line terminators Size 154 B (154 bytes) Hash cfbeaf604823f038b8b46f0ac862b98c 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319 HTTP Headers `GET /1/23802/radar.js HTTP/1.1 Host: radar.cedexis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 302 Moved Temporarily Server: nginx Date: Mon, 25 Dec 2023 05:56:37 GMT Content-Type: text/html Content-Length: 154 Connection: keep-alive Location: /1621860284/stub.js Expires: Mon, 25 Dec 2023 06:06:37 GMT Cache-Control: max-age=600 Vary: User-Agent,DNT`

	www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7JGWL9SV66&cid=1386404447.1703483543&gtm=45je3bt0v897130004&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1572533094	142.250.74.163	200 OK	42 B
URL GET HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7JGWL9SV66&cid=1386404447.1703483543&gtm=45je3bt0v897130004&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1572533094 IP 142.250.74.163:443 ASN #15169 GOOGLE Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerGoogle Trust Services LLC Subject.google.no FingerprintDB:33:6A:DD:DA:72:55:0D:55:09:60:6E:D1:5B:40:D8:2B:9B:4F:3C ValidityMon, 20 Nov 2023 08:12:16 GMT - Mon, 12 Feb 2024 08:12:15 GMT File type GIF image data, version 89a, 1 x 1 Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7JGWL9SV66&cid=1386404447.1703483543&gtm=45je3bt0v897130004&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1572533094 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Mon, 25 Dec 2023 05:56:37 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	radar.cedexis.com/1621860284/stub.js	45.54.49.5	200 OK	271 B
URL GET HTTP/1.1 radar.cedexis.com/1621860284/stub.js IP 45.54.49.5:443 ASN #63911 NetActuate, Inc Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerDigiCert Inc Subjectradar.cedexis.com FingerprintC7:F6:9F:14:BA:D6:F0:96:22:D1:BD:25:43:8B:10:66:C3:B4:7C:56 ValidityWed, 26 Apr 2023 00:00:00 GMT - Thu, 25 Apr 2024 23:59:59 GMT File type ASCII text Size 271 B (271 bytes) Hash cec7270f03f717f8feca31e994d894d6 470eb82c7e87dccb465562030ed6db7c1e2dd78c 40fceb327b96d3557153ea9feb76e426f85b52dda8fd6444e96134bc4ff5f594 HTTP Headers `GET /1621860284/stub.js HTTP/1.1 Host: radar.cedexis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Mon, 25 Dec 2023 05:56:37 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Last-Modified: Mon, 24 May 2021 13:00:45 GMT Vary: Accept-Encoding ETag: W/"60aba37d-186" Expires: Mon, 08 Jan 2024 05:56:37 GMT Cache-Control: max-age=1209600, public Content-Encoding: gzip`

	v3.traincdn.com/_nuxt/desktop/default/vendors/Page.Cyber.Game/Page.NewCyber.CyberApp/Page.NewCyber.CyberChamps/Page.NewCyber.CyberDashboar/611af4ca-1871d00c.js	185.244.209.62	200 OK	7.3 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/Page.Cyber.Game/Page.NewCyber.CyberApp/Page.NewCyber.CyberChamps/Page.NewCyber.CyberDashboar/611af4ca-1871d00c.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type Unicode text, UTF-8 text, with very long lines (31990), with no line terminators Size 7.3 kB (7291 bytes) Hash 589a5c4d0815dbde8799e68cba3b5ccc d405663f624f21fffc05f90f1c521d9703beb4e6 12f4466e1dc6cadd9eb9107740ad9127f5abff1bfb9c68512fa93f1d8dee5e2c HTTP Headers GET /_nuxt/desktop/default/vendors/Page.Cyber.Game/Page.NewCyber.CyberApp/Page.NewCyber.CyberChamps/Page.NewCyber.CyberDashboar/611af4ca-1871d00c.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/javascript; charset=utf-8 content-length: 7291 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-1c7b" content-encoding: gzip expires: Sat, 23 Dec 2023 17:21:08 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-f1009cc2bb0a446024ea44ee8b677c08-70664a89eebe7738-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:21:08+00:00, 2023-12-24T17:38:01+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/css/186f3e6d.css	185.244.209.62	200 OK	1.0 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/186f3e6d.css IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (5039), with no line terminators Size 1.0 kB (1023 bytes) Hash f23976a7e6b94a6b9a39b1199f401039 15c52c1527ad6ee131da6ece1337959282d1b047 eb5264353672aa3fed86cc552546081b54d3cb72f0aacac5fbb48ebb4f1c5712 HTTP Headers `GET /_nuxt/desktop/default/css/186f3e6d.css HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:37 GMT content-type: text/css content-length: 1023 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-3ff" content-encoding: gzip expires: Sun, 24 Dec 2023 13:27:41 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc88 traceparent: 00-c1ddd7f12dfaa63163271bef87b91b58-dc2b3624e260cbdc-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-23T13:27:41+00:00, 2023-12-24T09:51:22+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/vendors/Registration.Fields-eddb2493.js	185.244.209.62	200 OK	8.6 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/Registration.Fields-eddb2493.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (38824), with no line terminators Size 8.6 kB (8607 bytes) Hash 4213fa083384b52bddf13ac4b70630c8 db5c9ffabc6ba5811048a498867f980c116c186a 4808cc0a97531730191f7115db85fac702492075526633a683b3ad26658477a9 HTTP Headers `GET /_nuxt/desktop/default/vendors/Registration.Fields-eddb2493.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/javascript; charset=utf-8 content-length: 8607 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-219f" content-encoding: gzip expires: Sat, 23 Dec 2023 17:20:53 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-6d62246fb50590161f8357e72905dc5b-c29cd0fa64feef94-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:20:53+00:00, 2023-12-24T17:38:01+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	region1.analytics.google.com/g/collect?v=2&tid=G-7JGWL9SV66&gtm=45je3bt0v897130004&_p=1703483542697&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1386404447.1703483543&ul=en-us&sr=1280x1024&_s=1&sid=1703483542&sct=1&seg=0&dl=https%3A%2F%2F1xlite-252970.top%2Fen%2Fregistration%3Ftype%3Dfast&dt=1xBet%20Bookmaker.%20High%20Odds.%2024-Hour%20Customer%20Service&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.optimize_id=GTM-5R4MT54&tfd=3247	216.239.32.36	204 No Content	0 B
URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-7JGWL9SV66&gtm=45je3bt0v897130004&_p=1703483542697&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1386404447.1703483543&ul=en-us&sr=1280x1024&_s=1&sid=1703483542&sct=1&seg=0&dl=https%3A%2F%2F1xlite-252970.top%2Fen%2Fregistration%3Ftype%3Dfast&dt=1xBet%20Bookmaker.%20High%20Odds.%2024-Hour%20Customer%20Service&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.optimize_id=GTM-5R4MT54&tfd=3247 IP 216.239.32.36:443 ASN #15169 GOOGLE Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-7JGWL9SV66&gtm=45je3bt0v897130004&_p=1703483542697&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1386404447.1703483543&ul=en-us&sr=1280x1024&_s=1&sid=1703483542&sct=1&seg=0&dl=https%3A%2F%2F1xlite-252970.top%2Fen%2Fregistration%3Ftype%3Dfast&dt=1xBet%20Bookmaker.%20High%20Odds.%2024-Hour%20Customer%20Service&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.optimize_id=GTM-5R4MT54&tfd=3247 HTTP/1.1 Host: region1.analytics.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 `HTTP/2 204 No Content access-control-allow-origin: https://1xlite-252970.top date: Mon, 25 Dec 2023 05:56:38 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	widget.suphelper.top/services/widget/v2/most-required?projectId=5b61b42ffdf00b25dc78f342&credentials=%7B%22$type%22:%22GuestCredentials%22,%22id%22:%220e9e3455-bf1f-4faf-942c-b55241628736%22%7D	104.18.39.72	200 OK	30 kB
URL GET HTTP/2 widget.suphelper.top/services/widget/v2/most-required?projectId=5b61b42ffdf00b25dc78f342&credentials=%7B%22$type%22:%22GuestCredentials%22,%22id%22:%220e9e3455-bf1f-4faf-942c-b55241628736%22%7D IP 104.18.39.72:443 ASN #13335 CLOUDFLARENET Requested by https://widget.suphelper.top/ Certificate IssuerGoogle Trust Services LLC Subjectsuphelper.top Fingerprint1C:D4:4C:1C:DB:7D:59:7D:EE:39:59:B9:F7:76:9F:87:4C:EA:5E:01 ValidityWed, 29 Nov 2023 10:21:51 GMT - Tue, 27 Feb 2024 10:21:50 GMT File type gzip compressed data, from Unix Size 30 kB (30002 bytes) Hash 862441d562db0d1ed7f463e42c8e4f9e 5ab8cc39df5126f91fd29d1cf15a581e95df5f29 c3799e3edf81554bd8c0f497a0af366a3f409705d76d7806e4c3d75582107363 HTTP Headers GET /services/widget/v2/most-required?projectId=5b61b42ffdf00b25dc78f342&credentials=%7B%22$type%22:%22GuestCredentials%22,%22id%22:%220e9e3455-bf1f-4faf-942c-b55241628736%22%7D HTTP/1.1 Host: widget.suphelper.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Mon, 25 Dec 2023 05:56:38 GMT content-type: application/json; charset=utf-8 vary: Accept-Encoding strict-transport-security: max-age=2592000 content-encoding: gzip cf-cache-status: DYNAMIC server: cloudflare cf-ray: 83aed7897f07b527-OSL X-Firefox-Spdy: h2`

	region1.analytics.google.com/g/collect?v=2&tid=G-7JGWL9SV66&gtm=45je3bt0v897130004&_p=1703483542697&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1386404447.1703483543&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1703483542&sct=1&seg=0&dl=https%3A%2F%2F1xlite-252970.top%2Fen%2Fregistration%3Ftype%3Dfast&dt=1xBet%20Bookmaker.%20High%20Odds.%2024-Hour%20Customer%20Service&en=scroll&ep.optimize_id=GTM-5R4MT54&epn.percent_scrolled=90&tfd=8264	216.239.32.36	204 No Content	0 B
URL POST HTTP/3 region1.analytics.google.com/g/collect?v=2&tid=G-7JGWL9SV66&gtm=45je3bt0v897130004&_p=1703483542697&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1386404447.1703483543&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1703483542&sct=1&seg=0&dl=https%3A%2F%2F1xlite-252970.top%2Fen%2Fregistration%3Ftype%3Dfast&dt=1xBet%20Bookmaker.%20High%20Odds.%2024-Hour%20Customer%20Service&en=scroll&ep.optimize_id=GTM-5R4MT54&epn.percent_scrolled=90&tfd=8264 IP 216.239.32.36:443 ASN #15169 GOOGLE Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com FingerprintC1:58:7C:BF:5A:61:79:08:CB:C2:00:63:60:07:86:BD:EA:0A:45:8A ValidityMon, 20 Nov 2023 08:02:50 GMT - Mon, 12 Feb 2024 08:02:49 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-7JGWL9SV66&gtm=45je3bt0v897130004&_p=1703483542697&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1386404447.1703483543&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1703483542&sct=1&seg=0&dl=https%3A%2F%2F1xlite-252970.top%2Fen%2Fregistration%3Ftype%3Dfast&dt=1xBet%20Bookmaker.%20High%20Odds.%2024-Hour%20Customer%20Service&en=scroll&ep.optimize_id=GTM-5R4MT54&epn.percent_scrolled=90&tfd=8264 HTTP/1.1 Host: region1.analytics.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 TE: trailers `HTTP/3 204 No Content access-control-allow-origin: https://1xlite-252970.top date: Mon, 25 Dec 2023 05:56:43 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000`

	1xlite-252970.top/web-api/session	178.253.28.49	204 No Content	0 B
URL GET HTTP/2 1xlite-252970.top/web-api/session IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /web-api/session HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/en/registration?type=fast content-type: application/json x-requested-with: XMLHttpRequest DNT: 1 Connection: keep-alive Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1280; SESSION=0d2e47df81a7834659d0346171efef4e; che_g=56464e4b-d899-f5a5-7567-527530fdeb13; _glhf=1703501573; sh.session.id=0e9e3455-bf1f-4faf-942c-b55241628736; ggru=174; _ga_7JGWL9SV66=GS1.1.1703483542.1.0.1703483543.59.0.0; _ga=GA1.1.1386404447.1703483543 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 204 No Content server: nginx date: Mon, 25 Dec 2023 05:56:44 GMT cache-control: no-cache, private server-timing: p;dur=15, dt_total;dur=20.528, wf-uht;dur=0.045 x-dt: 285 x-time-ng: 0.020 strict-transport-security: max-age=63072000; includeSubDomains; preload X-Firefox-Spdy: h2`

	1xlite-252970.top/web-api/user/secure	178.253.28.49	200 OK	59 kB
URL POST HTTP/2 1xlite-252970.top/web-api/user/secure IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type JSON data Size 59 kB (59264 bytes) Hash d0b1266fc81ed5b502166d129cb6ef58 9ffa18a579af62267c512ab8ea84123830bdbc00 030256e8b5a581abcecf5009be57f6e0c7e3a22fcc6e658eb32fde1166b36221 HTTP Headers POST /web-api/user/secure HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/en/registration?type=fast content-type: application/json x-requested-with: XMLHttpRequest Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1280; SESSION=0d2e47df81a7834659d0346171efef4e; che_g=56464e4b-d899-f5a5-7567-527530fdeb13 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache Content-Length: 0 TE: trailers `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/json cache-control: no-cache, private content-encoding: br server-timing: p;dur=16, dt_total;dur=17.710, wf-uht;dur=0.054 set-cookie: _glhf=1703501573; expires=Mon, 25-Dec-2023 06:56:37 GMT; Max-Age=3600; path=/ vary: Accept-Encoding x-dt: 285 x-time-ng: 0.018 strict-transport-security: max-age=63072000; includeSubDomains; preload X-Firefox-Spdy: h2`

	v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Regular.woff2	185.244.209.62	200 OK	64 kB
URL GET HTTP/2 v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Regular.woff2 IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 63748, version 1.0 Size 64 kB (63748 bytes) Hash 6887b6f24414dbc612dbf42ccdc76b70 8068d3abfbc6cbf35b55919da45b1f4d2d136238 fc5c015fc32518f1ed810fa84ca28941eb9d5a3c81acc8df69a4dbbeedef7b0c HTTP Headers GET /genfiles/cms/1/desktop/fonts/Roboto/Roboto-Regular.woff2 HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Referer: https://v3.traincdn.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:45 GMT content-type: font/woff2 content-length: 63748 last-modified: Wed, 14 Jun 2023 09:49:53 GMT etag: "6887b6f24414dbc612dbf42ccdc76b70" x-time-ng: 0.000 cache-control: public,max-age=3600,s-maxage=3600 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc88 traceparent: 00-aa5bae48a30b52a1d03f840b9f99e127-60f343f02f8b3f03-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-18T07:13:59+00:00, 2023-12-25T05:20:53+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Medium.woff2	185.244.209.62	200 OK	65 kB
URL GET HTTP/2 v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Medium.woff2 IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 64732, version 1.0 Size 65 kB (64732 bytes) Hash 3ac5d40d1b3966fc5eb09ecca74d9cbf a69f32357765dd321519889aeacba5e9ca893bb0 3310766b8f58538d07abded74a2babe1acbe1a3ee820d5b8c8265da666f4fb0c HTTP Headers GET /genfiles/cms/1/desktop/fonts/Roboto/Roboto-Medium.woff2 HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Referer: https://v3.traincdn.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:45 GMT content-type: font/woff2 content-length: 64732 last-modified: Wed, 14 Jun 2023 09:49:53 GMT etag: "3ac5d40d1b3966fc5eb09ecca74d9cbf" x-time-ng: 0.000 cache-control: public,max-age=3600,s-maxage=3600 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc89 traceparent: 00-78373cf6012d2dee76257b933e415a9f-6eca101b7a84ef46-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-18T07:56:30+00:00, 2023-12-25T05:22:31+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Bold.woff2	185.244.209.62	200 OK	64 kB
URL GET HTTP/2 v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Bold.woff2 IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 63920, version 1.0 Size 64 kB (63920 bytes) Hash a65527fcb58f66a7cfbc0e6b160538b4 45d260e7fa343401b5bb0df982a014f53e2d253b fb13c3a1cbac60649b76f7d7f85c1645d35ac69b85ce5f4eb0692505ecc2cd45 HTTP Headers GET /genfiles/cms/1/desktop/fonts/Roboto/Roboto-Bold.woff2 HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Referer: https://v3.traincdn.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:45 GMT content-type: font/woff2 content-length: 63920 last-modified: Wed, 14 Jun 2023 09:49:53 GMT etag: "a65527fcb58f66a7cfbc0e6b160538b4" x-time-ng: 0.000 cache-control: public,max-age=3600,s-maxage=3600 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc88 traceparent: 00-fe67ac7d87607a759f985cd0f3645e40-080566f84a9c3619-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-18T07:54:39+00:00, 2023-12-25T05:31:17+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Regular.woff2	185.244.209.62	200 OK	64 kB
URL GET HTTP/2 v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Regular.woff2 IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 63748, version 1.0 Size 64 kB (63748 bytes) Hash 6887b6f24414dbc612dbf42ccdc76b70 8068d3abfbc6cbf35b55919da45b1f4d2d136238 fc5c015fc32518f1ed810fa84ca28941eb9d5a3c81acc8df69a4dbbeedef7b0c HTTP Headers GET /genfiles/cms/1/desktop/fonts/Roboto/Roboto-Regular.woff2 HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Referer: https://v3.traincdn.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:46 GMT content-type: font/woff2 content-length: 63748 last-modified: Wed, 14 Jun 2023 09:49:53 GMT etag: "6887b6f24414dbc612dbf42ccdc76b70" x-time-ng: 0.000 cache-control: public,max-age=3600,s-maxage=3600 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc88 traceparent: 00-a6fc252c885b5f12f960f830b338575f-a59d7ce5d0486ff0-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-18T07:13:59+00:00, 2023-12-25T05:20:53+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Medium.woff2	185.244.209.62	200 OK	65 kB
URL GET HTTP/2 v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Medium.woff2 IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 64732, version 1.0 Size 65 kB (64732 bytes) Hash 3ac5d40d1b3966fc5eb09ecca74d9cbf a69f32357765dd321519889aeacba5e9ca893bb0 3310766b8f58538d07abded74a2babe1acbe1a3ee820d5b8c8265da666f4fb0c HTTP Headers GET /genfiles/cms/1/desktop/fonts/Roboto/Roboto-Medium.woff2 HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Referer: https://v3.traincdn.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:46 GMT content-type: font/woff2 content-length: 64732 last-modified: Wed, 14 Jun 2023 09:49:53 GMT etag: "3ac5d40d1b3966fc5eb09ecca74d9cbf" x-time-ng: 0.000 cache-control: public,max-age=3600,s-maxage=3600 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc89 traceparent: 00-f376bfffb6724152a280b62c54141c42-13ecc7632d98cdda-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-18T07:56:30+00:00, 2023-12-25T05:22:31+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Bold.woff2	185.244.209.62	200 OK	64 kB
URL GET HTTP/2 v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Bold.woff2 IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 63920, version 1.0 Size 64 kB (63920 bytes) Hash a65527fcb58f66a7cfbc0e6b160538b4 45d260e7fa343401b5bb0df982a014f53e2d253b fb13c3a1cbac60649b76f7d7f85c1645d35ac69b85ce5f4eb0692505ecc2cd45 HTTP Headers GET /genfiles/cms/1/desktop/fonts/Roboto/Roboto-Bold.woff2 HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Referer: https://v3.traincdn.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:46 GMT content-type: font/woff2 content-length: 63920 last-modified: Wed, 14 Jun 2023 09:49:53 GMT etag: "a65527fcb58f66a7cfbc0e6b160538b4" x-time-ng: 0.000 cache-control: public,max-age=3600,s-maxage=3600 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc88 traceparent: 00-fb19a3993d1254102e319b69a8cce41f-ed2fab162a5d0047-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-18T07:54:39+00:00, 2023-12-25T05:31:17+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Regular.woff2	185.244.209.62	200 OK	64 kB
URL GET HTTP/2 v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Regular.woff2 IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 63748, version 1.0 Size 64 kB (63748 bytes) Hash 6887b6f24414dbc612dbf42ccdc76b70 8068d3abfbc6cbf35b55919da45b1f4d2d136238 fc5c015fc32518f1ed810fa84ca28941eb9d5a3c81acc8df69a4dbbeedef7b0c HTTP Headers GET /genfiles/cms/1/desktop/fonts/Roboto/Roboto-Regular.woff2 HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Referer: https://v3.traincdn.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:46 GMT content-type: font/woff2 content-length: 63748 last-modified: Wed, 14 Jun 2023 09:49:53 GMT etag: "6887b6f24414dbc612dbf42ccdc76b70" x-time-ng: 0.000 cache-control: public,max-age=3600,s-maxage=3600 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc88 traceparent: 00-3ad31947eb83baa4178ac3badf2c453f-2ba023a3239291f9-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-18T07:13:59+00:00, 2023-12-25T05:20:53+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Medium.woff2	185.244.209.62	200 OK	65 kB
URL GET HTTP/2 v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Medium.woff2 IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 64732, version 1.0 Size 65 kB (64732 bytes) Hash 3ac5d40d1b3966fc5eb09ecca74d9cbf a69f32357765dd321519889aeacba5e9ca893bb0 3310766b8f58538d07abded74a2babe1acbe1a3ee820d5b8c8265da666f4fb0c HTTP Headers GET /genfiles/cms/1/desktop/fonts/Roboto/Roboto-Medium.woff2 HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Referer: https://v3.traincdn.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:46 GMT content-type: font/woff2 content-length: 64732 last-modified: Wed, 14 Jun 2023 09:49:53 GMT etag: "3ac5d40d1b3966fc5eb09ecca74d9cbf" x-time-ng: 0.000 cache-control: public,max-age=3600,s-maxage=3600 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc89 traceparent: 00-010c90b0ad48b47a6d405caa815be06a-2887538246ac0de5-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-18T07:56:30+00:00, 2023-12-25T05:22:31+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Bold.woff2	185.244.209.62	200 OK	64 kB
URL GET HTTP/2 v3.traincdn.com/genfiles/cms/1/desktop/fonts/Roboto/Roboto-Bold.woff2 IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type Web Open Font Format (Version 2), TrueType, length 63920, version 1.0 Size 64 kB (63920 bytes) Hash a65527fcb58f66a7cfbc0e6b160538b4 45d260e7fa343401b5bb0df982a014f53e2d253b fb13c3a1cbac60649b76f7d7f85c1645d35ac69b85ce5f4eb0692505ecc2cd45 HTTP Headers GET /genfiles/cms/1/desktop/fonts/Roboto/Roboto-Bold.woff2 HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Referer: https://v3.traincdn.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:46 GMT content-type: font/woff2 content-length: 63920 last-modified: Wed, 14 Jun 2023 09:49:53 GMT etag: "a65527fcb58f66a7cfbc0e6b160538b4" x-time-ng: 0.000 cache-control: public,max-age=3600,s-maxage=3600 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: x-id-shield: am3-hw-edge-gc88 traceparent: 00-b3bfe528268c2e0267d31549ae4bde35-89e84bba53061277-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-18T07:54:39+00:00, 2023-12-25T05:31:17+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	widget.suphelper.top/	104.18.39.72	200 OK	460 kB
URL GET HTTP/2 widget.suphelper.top/ IP 104.18.39.72:443 ASN #13335 CLOUDFLARENET Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerGoogle Trust Services LLC Subjectsuphelper.top Fingerprint1C:D4:4C:1C:DB:7D:59:7D:EE:39:59:B9:F7:76:9F:87:4C:EA:5E:01 ValidityWed, 29 Nov 2023 10:21:51 GMT - Tue, 27 Feb 2024 10:21:50 GMT File type Size 460 kB (460377 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: widget.suphelper.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Mon, 25 Dec 2023 05:56:37 GMT content-type: text/html; charset=utf-8 content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';img-src 'self' data: blob: https://cons-suph.com/file-hosting https://cons-suph.com/file-hosting/;object-src 'none';script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.google.com/recaptcha/ 'report-sample' https://www.gstatic.com/recaptcha/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';frame-src 'self' https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/;connect-src 'self' wss: ws: https://cons-suph.com/file-hosting/ x-dns-prefetch-control: off expect-ct: max-age=0 strict-transport-security: max-age=15724800; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 cache-control: public, max-age=60, stale-while-revalidate=30 vary: Accept-Encoding cf-cache-status: DYNAMIC server: cloudflare cf-ray: 83aed7848d9db527-OSL content-encoding: gzip X-Firefox-Spdy: h2

	1xlite-252970.top/web-api/q/878h5i059d4l5i5f0730ae77af166995c3523e59dcfa8c74ad7a	178.253.28.49	200 OK	2 B
URL POST HTTP/2 1xlite-252970.top/web-api/q/878h5i059d4l5i5f0730ae77af166995c3523e59dcfa8c74ad7a IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type JSON data Size 2 B (2 bytes) Hash 99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a HTTP Headers POST /web-api/q/878h5i059d4l5i5f0730ae77af166995c3523e59dcfa8c74ad7a HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/en/registration?type=fast X-Requested-With: XMLHttpRequest Content-Type: application/json Content-Length: 102845 Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1280; SESSION=0d2e47df81a7834659d0346171efef4e; che_g=56464e4b-d899-f5a5-7567-527530fdeb13; _glhf=1703501573; sh.session.id=0e9e3455-bf1f-4faf-942c-b55241628736; ggru=174; _ga_7JGWL9SV66=GS1.1.1703483542.1.0.1703483543.59.0.0; _ga=GA1.1.1386404447.1703483543 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:47 GMT content-type: application/json cache-control: no-cache, private content-encoding: br server-timing: p;dur=23, dt_total;dur=24.788, wf-uht;dur=0.133 vary: Accept-Encoding x-dt: 285 x-time-ng: 0.024 strict-transport-security: max-age=63072000; includeSubDomains; preload X-Firefox-Spdy: h2`

	1xlite-252970.top/bff-api/event-logo/suitable.json?lang=en	178.253.28.49	200 OK	435 B
URL GET HTTP/2 1xlite-252970.top/bff-api/event-logo/suitable.json?lang=en IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type troff or preprocessor input, ASCII text, with very long lines (484), with no line terminators Size 435 B (435 bytes) Hash d4c270e86e1b5d4d3eed9f53b362a8be c51392b6cc0f22b3b690d8163d2f213d56c2bfec 9e81e44ec57d5e111d2428ddeba8ea7f574d0f2a1027dae09f458480adc4aeb9 HTTP Headers GET /bff-api/event-logo/suitable.json?lang=en HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/en/registration?type=fast content-type: application/json x-requested-with: XMLHttpRequest DNT: 1 Connection: keep-alive Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1280; SESSION=0d2e47df81a7834659d0346171efef4e Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/json content-length: 435 cache-control: no-cache, private server-timing: bff;dur=9.60, dt_total;dur=11.123, wf-uht;dur=0.038 x-dt: 285 x-time-ng: 0.011 strict-transport-security: max-age=63072000; includeSubDomains; preload X-Firefox-Spdy: h2`

	1xlite-252970.top/checker/redirect/stat/run/	178.253.28.49	200 OK	39 B
URL GET HTTP/2 1xlite-252970.top/checker/redirect/stat/run/ IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 39 B (39 bytes) Hash 707d1409c3bc866c2bd94b52e048cfdd 432f3c72735b57a536f35445d1624ee315a0a220 5ed7154ab7ab63d366f7afcc197630b9f88b931b542df69660823973f35549ad HTTP Headers GET /checker/redirect/stat/run/ HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/en/registration?type=fast content-type: application/json x-requested-with: XMLHttpRequest DNT: 1 Connection: keep-alive Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1280; SESSION=0d2e47df81a7834659d0346171efef4e; che_g=56464e4b-d899-f5a5-7567-527530fdeb13 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/json; charset=utf-8 vary: Accept-Encoding x-time-ng: 0.001 content-encoding: br strict-transport-security: max-age=63072000; includeSubDomains; preload server-timing: wf-uht;dur=0.026 X-Firefox-Spdy: h2`

	1xlite-252970.top/web-api/api/v3/bonuses/welcome-bonuses	178.253.28.49	200 OK	618 B
URL GET HTTP/2 1xlite-252970.top/web-api/api/v3/bonuses/welcome-bonuses IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type troff or preprocessor input, ASCII text, with very long lines (706), with no line terminators Size 618 B (618 bytes) Hash 0a619cd349d56137a06e0c799875a630 766df2e8f6a93eb6f8b86b47d9d71b1bc7434b34 10200dd044f2e0c48cfcfe7c8672959cfcc4bad7ffd29d6bcc6a5dad0ca7dd32 HTTP Headers GET /web-api/api/v3/bonuses/welcome-bonuses HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/en/registration?type=fast content-type: application/json x-requested-with: XMLHttpRequest DNT: 1 Connection: keep-alive Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1280; SESSION=0d2e47df81a7834659d0346171efef4e; che_g=56464e4b-d899-f5a5-7567-527530fdeb13 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/vnd.api+json vary: Accept-Encoding cache-control: no-cache, private server-timing: p;dur=20, dt_total;dur=33.666, wf-uht;dur=0.067 x-dt: 285 x-time-ng: 0.030 content-encoding: br strict-transport-security: max-age=63072000; includeSubDomains; preload X-Firefox-Spdy: h2`

	widget.suphelper.top/_next/static/chunks/pages/index-b7d46b0d02cf400d.js	104.18.39.72	200 OK	112 kB
URL GET HTTP/2 widget.suphelper.top/_next/static/chunks/pages/index-b7d46b0d02cf400d.js IP 104.18.39.72:443 ASN #13335 CLOUDFLARENET Requested by https://widget.suphelper.top/ Certificate IssuerGoogle Trust Services LLC Subjectsuphelper.top Fingerprint1C:D4:4C:1C:DB:7D:59:7D:EE:39:59:B9:F7:76:9F:87:4C:EA:5E:01 ValidityWed, 29 Nov 2023 10:21:51 GMT - Tue, 27 Feb 2024 10:21:50 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 112 kB (112321 bytes) Hash e244696c9d4560de7ac48bfa5c74bb1f e6b079de13fb0dfb215a4c8a7b942a7783e1be45 dbea852a59ec7f82e0dc6af05016aa715224fda48873a6510a18b949aaaad2ee HTTP Headers `GET /_next/static/chunks/pages/index-b7d46b0d02cf400d.js HTTP/1.1 Host: widget.suphelper.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/javascript; charset=UTF-8 content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';img-src 'self' data: blob: https://cons-suph.com/file-hosting https://cons-suph.com/file-hosting/;object-src 'none';script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.google.com/recaptcha/ 'report-sample' https://www.gstatic.com/recaptcha/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';frame-src 'self' https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/;connect-src 'self' wss: ws: https://cons-suph.com/file-hosting/ x-dns-prefetch-control: off expect-ct: max-age=0 strict-transport-security: max-age=15724800; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 cache-control: public, max-age=31536000 last-modified: Fri, 15 Dec 2023 06:10:19 GMT etag: W/"1b6c1-18c6c18e241" vary: Accept-Encoding content-encoding: gzip cf-cache-status: HIT age: 862815 expires: Tue, 24 Dec 2024 05:56:37 GMT server: cloudflare cf-ray: 83aed7866dfdb527-OSL X-Firefox-Spdy: h2

	v3.traincdn.com/sys-icons/1.0.227/285/country.svg	185.244.209.62	200 OK	178 kB
URL GET HTTP/2 v3.traincdn.com/sys-icons/1.0.227/285/country.svg IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type SVG Scalable Vector Graphics image Size 178 kB (178396 bytes) Hash 392c1bb51f69d1b06c15dd9083e78d47 4752ad2289bee900a23cc0afe3e7782eef087e0d a5ce266ff578729cecad90142ca1ea186f168e0ca3ef2acaf6f46140f565aa2a HTTP Headers `GET /sys-icons/1.0.227/285/country.svg HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:37 GMT content-type: image/svg+xml last-modified: Thu, 14 Dec 2023 13:58:19 GMT etag: W/"392c1bb51f69d1b06c15dd9083e78d47" x-amz-meta-mtime: 1702562296.385632667 content-encoding: gzip expires: Thu, 21 Dec 2023 14:32:48 GMT cache-control: max-age=86400 x-time-ng: 0.001 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-6c0dad77e8f2056ce6cc9a01f77bcf01-515921a4b788c99d-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-20T14:32:48+00:00, 2023-12-24T15:22:25+00:00 x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	1xlite-252970.top/web-api/registration	178.253.28.49	200 OK	3.8 kB
URL POST HTTP/2 1xlite-252970.top/web-api/registration IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type Unicode text, UTF-8 text, with very long lines (4038), with no line terminators Size 3.8 kB (3752 bytes) Hash 974bc9104fb72edac715b3de090d2a76 a2c72ccf566c0bf4f39073a5759efee52adac97b d31b909c54c7ae732bbdbf3ab9828f5d3b59014dd657098e7106214ca7e86027 HTTP Headers POST /web-api/registration HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/en/registration?type=fast content-type: application/json x-requested-with: XMLHttpRequest Content-Length: 18 Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1280; SESSION=0d2e47df81a7834659d0346171efef4e; che_g=56464e4b-d899-f5a5-7567-527530fdeb13; _glhf=1703501573; sh.session.id=0e9e3455-bf1f-4faf-942c-b55241628736; ggru=174 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/vnd.api+json vary: Accept-Encoding cache-control: no-cache, private server-timing: p;dur=31, dt_total;dur=32.420, wf-uht;dur=0.082 x-dt: 285 x-time-ng: 0.032 content-encoding: br strict-transport-security: max-age=63072000; includeSubDomains; preload X-Firefox-Spdy: h2`

	widget.suphelper.top/_next/static/chunks/webpack-fb94d2f19425a3e3.js	104.18.39.72	200 OK	3.8 kB
URL GET HTTP/2 widget.suphelper.top/_next/static/chunks/webpack-fb94d2f19425a3e3.js IP 104.18.39.72:443 ASN #13335 CLOUDFLARENET Requested by https://widget.suphelper.top/ Certificate IssuerGoogle Trust Services LLC Subjectsuphelper.top Fingerprint1C:D4:4C:1C:DB:7D:59:7D:EE:39:59:B9:F7:76:9F:87:4C:EA:5E:01 ValidityWed, 29 Nov 2023 10:21:51 GMT - Tue, 27 Feb 2024 10:21:50 GMT File type ASCII text, with very long lines (3855), with no line terminators Size 3.8 kB (3792 bytes) Hash 7288e202ab8e4cf1b7f60eed709e0986 c10effeb29bf129a7c81688b9f3a7d5485272e87 56e695b4675b50d55a92f006109771a67da822050f5ae03fd2ad02c1a9565b58 HTTP Headers `GET /_next/static/chunks/webpack-fb94d2f19425a3e3.js HTTP/1.1 Host: widget.suphelper.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/javascript; charset=UTF-8 content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';img-src 'self' data: blob: https://cons-suph.com/file-hosting https://file-hosting-api-stage.kube.prod.cons.lan https://cons-suph.com/file-hosting/;object-src 'none';script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.google.com/recaptcha/ 'report-sample' https://www.gstatic.com/recaptcha/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';frame-src 'self' https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/;connect-src 'self' wss: ws: https://cons-suph.com/file-hosting/ x-dns-prefetch-control: off expect-ct: max-age=0 strict-transport-security: max-age=15724800; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 cache-control: public, max-age=31536000 last-modified: Thu, 09 Nov 2023 06:03:45 GMT etag: W/"ed0-18bb2adf0eb" vary: Accept-Encoding content-encoding: gzip cf-cache-status: HIT age: 2858386 expires: Tue, 24 Dec 2024 05:56:37 GMT server: cloudflare cf-ray: 83aed7864df4b527-OSL X-Firefox-Spdy: h2

	widget.suphelper.top/_next/static/chunks/framework-49f1e091cbf6b261.js	104.18.39.72	200 OK	141 kB
URL GET HTTP/2 widget.suphelper.top/_next/static/chunks/framework-49f1e091cbf6b261.js IP 104.18.39.72:443 ASN #13335 CLOUDFLARENET Requested by https://widget.suphelper.top/ Certificate IssuerGoogle Trust Services LLC Subjectsuphelper.top Fingerprint1C:D4:4C:1C:DB:7D:59:7D:EE:39:59:B9:F7:76:9F:87:4C:EA:5E:01 ValidityWed, 29 Nov 2023 10:21:51 GMT - Tue, 27 Feb 2024 10:21:50 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 141 kB (140949 bytes) Hash 896d1930437c1ab92b8a359c1d6fdaae 71e0e23d1af9722f356eb5d1c497d100ec8b0f7a 8c508636d885890bfb5c56bcd6dad1b8b64c498781d351b588a8de7f686774d4 HTTP Headers `GET /_next/static/chunks/framework-49f1e091cbf6b261.js HTTP/1.1 Host: widget.suphelper.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/javascript; charset=UTF-8 content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';img-src 'self' data: blob: https://cons-suph.com/file-hosting https://cons-suph.com/file-hosting/;object-src 'none';script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.google.com/recaptcha/ 'report-sample' https://www.gstatic.com/recaptcha/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';frame-src 'self' https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/;connect-src 'self' wss: ws: https://cons-suph.com/file-hosting/ x-dns-prefetch-control: off expect-ct: max-age=0 strict-transport-security: max-age=15724800; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 cache-control: public, max-age=31536000 last-modified: Thu, 02 Nov 2023 12:45:49 GMT etag: W/"22695-18b9011853a" vary: Accept-Encoding content-encoding: gzip cf-cache-status: HIT age: 2858386 expires: Tue, 24 Dec 2024 05:56:37 GMT server: cloudflare cf-ray: 83aed7865df6b527-OSL X-Firefox-Spdy: h2

	widget.suphelper.top/sounds/new-message.mp3	104.18.39.72	200 OK	30 kB
URL GET HTTP/2 widget.suphelper.top/sounds/new-message.mp3 IP 104.18.39.72:443 ASN #13335 CLOUDFLARENET Requested by https://widget.suphelper.top/ Certificate IssuerGoogle Trust Services LLC Subjectsuphelper.top Fingerprint1C:D4:4C:1C:DB:7D:59:7D:EE:39:59:B9:F7:76:9F:87:4C:EA:5E:01 ValidityWed, 29 Nov 2023 10:21:51 GMT - Tue, 27 Feb 2024 10:21:50 GMT File type MPEG ADTS, layer III, v1, 192 kbps, 48 kHz, JntStereo Size 30 kB (29952 bytes) Hash ef9af24dc7dbd24ffd99c832e1300351 f78744a5013038446c468de14f205f2d52373fd6 5049d7fe87a7327a291441181d1a328a15f46a21081b970502c540406011c9b9 HTTP Headers `GET /sounds/new-message.mp3 HTTP/1.1 Host: widget.suphelper.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 25 Dec 2023 05:56:38 GMT content-type: audio/mpeg content-length: 29952 content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';img-src 'self' data: blob: https://cons-suph.com/file-hosting https://cons-suph.com/file-hosting/;object-src 'none';script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.google.com/recaptcha/ 'report-sample' https://www.gstatic.com/recaptcha/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';frame-src 'self' https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/;connect-src 'self' wss: ws: https://cons-suph.com/file-hosting/ x-dns-prefetch-control: off expect-ct: max-age=0 strict-transport-security: max-age=15724800; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 cache-control: public, max-age=14400 last-modified: Fri, 15 Dec 2023 06:10:19 GMT etag: W/"7500-18c6c18e1b9" cf-cache-status: HIT age: 1407 expires: Mon, 25 Dec 2023 09:56:38 GMT accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 83aed78a4f45b527-OSL X-Firefox-Spdy: h2

	1xlite-252970.top/seo-module-api/api/public/v1/analytics-counters?url=https:%2F%2F1xlite-252970.top%2Fen%2Fregistration&projectId=285	178.253.28.49	200 OK	72 B
URL GET HTTP/2 1xlite-252970.top/seo-module-api/api/public/v1/analytics-counters?url=https:%2F%2F1xlite-252970.top%2Fen%2Fregistration&projectId=285 IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 72 B (72 bytes) Hash 7175e64cb7818432c35616b4737d54ef e744e5969b836afc48d437272f0123408390508a add108d292ed089bc2380a6743cb620a18fffdc30fa62dbd380c565d772afc21 HTTP Headers GET /seo-module-api/api/public/v1/analytics-counters?url=https:%2F%2F1xlite-252970.top%2Fen%2Fregistration&projectId=285 HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/en/registration?type=fast content-type: application/json x-requested-with: XMLHttpRequest DNT: 1 Connection: keep-alive Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1920; SESSION=0d2e47df81a7834659d0346171efef4e Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/json content-length: 72 cache-control: max-age=1200, must-revalidate, public x-request-id: e93dd400cd024cfe535c7e0f046d43ac x-request-guid: 4b49e8fb296196f3ba5e1e76427cfef3 x-content-digest: ence9703551e00917684b735143455d1e7 age: 469 x-time-ng: 0.004, 0.004 strict-transport-security: max-age=63072000; includeSubDomains; preload server-timing: p;dur=15.578031539917, wf-uht;dur=0.031 X-Firefox-Spdy: h2`

	widget.suphelper.top/_next/static/5bf52df1/_middlewareManifest.js	104.18.39.72	200 OK	92 B
URL GET HTTP/2 widget.suphelper.top/_next/static/5bf52df1/_middlewareManifest.js IP 104.18.39.72:443 ASN #13335 CLOUDFLARENET Requested by https://widget.suphelper.top/ Certificate IssuerGoogle Trust Services LLC Subjectsuphelper.top Fingerprint1C:D4:4C:1C:DB:7D:59:7D:EE:39:59:B9:F7:76:9F:87:4C:EA:5E:01 ValidityWed, 29 Nov 2023 10:21:51 GMT - Tue, 27 Feb 2024 10:21:50 GMT File type ASCII text, with no line terminators Size 92 B (92 bytes) Hash 7c3f7e060745668041278118c0bb3d6d e639f56695b3cc30d78dce7a0084aa8299a1311a de5341313a4dc5d982ca50ae4a491e84bc5e80b0f439d87f05fc3973c1b7e59a HTTP Headers `GET /_next/static/5bf52df1/_middlewareManifest.js HTTP/1.1 Host: widget.suphelper.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/javascript; charset=UTF-8 content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';img-src 'self' data: blob: https://cons-suph.com/file-hosting https://cons-suph.com/file-hosting/;object-src 'none';script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.google.com/recaptcha/ 'report-sample' https://www.gstatic.com/recaptcha/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';frame-src 'self' https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/;connect-src 'self' wss: ws: https://cons-suph.com/file-hosting/ x-dns-prefetch-control: off expect-ct: max-age=0 strict-transport-security: max-age=15724800; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 cache-control: public, max-age=31536000 last-modified: Fri, 15 Dec 2023 06:10:19 GMT etag: W/"5c-18c6c18e241" vary: Accept-Encoding cf-cache-status: HIT age: 862815 expires: Tue, 24 Dec 2024 05:56:37 GMT server: cloudflare cf-ray: 83aed7866e00b527-OSL content-encoding: gzip X-Firefox-Spdy: h2

	1xlite-252970.top/web-api/api/converslon/load	178.253.28.49	200 OK	37 kB
URL GET HTTP/2 1xlite-252970.top/web-api/api/converslon/load IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type JSON data Size 37 kB (37291 bytes) Hash 22a371ec47eff2f5150af823139a466e 43bb97f26edfb6ee69e51e1a7c2dd6c7f90928a2 2d022dbe32a1a20b821fcab67d05c0d1b8e4d2f994070608fa635a4704529449 HTTP Headers GET /web-api/api/converslon/load HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/en/registration?type=fast content-type: application/json x-requested-with: XMLHttpRequest DNT: 1 Connection: keep-alive Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1280; SESSION=0d2e47df81a7834659d0346171efef4e; che_g=56464e4b-d899-f5a5-7567-527530fdeb13; _glhf=1703501573; sh.session.id=0e9e3455-bf1f-4faf-942c-b55241628736; ggru=174; _ga_7JGWL9SV66=GS1.1.1703483542.1.0.1703483543.59.0.0; _ga=GA1.1.1386404447.1703483543 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:44 GMT content-type: application/json cache-control: no-cache, private content-encoding: br server-timing: p;dur=19, dt_total;dur=20.911, wf-uht;dur=0.057 vary: Accept-Encoding x-dt: 285 x-time-ng: 0.020 strict-transport-security: max-age=63072000; includeSubDomains; preload X-Firefox-Spdy: h2`

	v3.traincdn.com/genfiles/cms/pg/default/images/548a34b4562689cfb30cafaf70f07c9b.svg	185.244.209.62	200 OK	2.6 kB
URL GET HTTP/2 v3.traincdn.com/genfiles/cms/pg/default/images/548a34b4562689cfb30cafaf70f07c9b.svg IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type SVG Scalable Vector Graphics image Size 2.6 kB (2627 bytes) Hash 445b381c98653a7bc472dd2692b2d6d3 89e55175f010f21c68bfd211534702679223fbfc 81b0ba29774c2a326a1525e230d933495aa4ad3f944ed05e0e0eb60e0ccccccf HTTP Headers `GET /genfiles/cms/pg/default/images/548a34b4562689cfb30cafaf70f07c9b.svg HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: image/svg+xml last-modified: Thu, 30 Nov 2023 14:01:19 GMT etag: W/"61833bbdb33e69864e296d79abcd3f95" content-encoding: gzip x-time-ng: 0.002 cache-control: public,max-age=3600,s-maxage=3600 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-235a8abced93b45289e76626eb62b04b-36a7ffaa09dc2409-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-19T12:35:59+00:00, 2023-12-25T04:57:55+00:00 x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/vendors/conversion-3ea97863.js	185.244.209.62	200 OK	172 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/conversion-3ea97863.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type Size 172 kB (172180 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /_nuxt/desktop/default/vendors/conversion-3ea97863.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:44 GMT content-type: application/javascript; charset=utf-8 content-length: 59207 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-e747" content-encoding: gzip expires: Sat, 23 Dec 2023 17:21:20 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc89 traceparent: 00-2294012e4f4b2144f96db6a12e3bc104-e5f244654ecd7d49-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:21:20+00:00, 2023-12-24T17:50:21+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/genfiles/cms/1-285/desktop/media_asset/0191c6f6365533eb59ec1a26711a801a.svg	185.244.209.62	200 OK	4.4 kB
URL GET HTTP/2 v3.traincdn.com/genfiles/cms/1-285/desktop/media_asset/0191c6f6365533eb59ec1a26711a801a.svg IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type SVG Scalable Vector Graphics image Size 4.4 kB (4388 bytes) Hash c985aab86c06784cfd1842e7779ddfbf a4cc4b76ce6a36f3b9f1086d61704b63fbadec05 fb19354c87b8ac9290703e153be9e169ee726a8453805f7958b3310fd2c934e6 HTTP Headers `GET /genfiles/cms/1-285/desktop/media_asset/0191c6f6365533eb59ec1a26711a801a.svg HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:35 GMT content-type: image/svg+xml last-modified: Mon, 18 Dec 2023 14:19:04 GMT etag: W/"f3f9d19dbeb655d6bad81e19818fe075" content-encoding: gzip x-time-ng: 0.114 cache-control: public,max-age=3600,s-maxage=3600 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc89 traceparent: 00-e47f056f3a75cf301c4fc45a3407930a-dcc77835abdcbe85-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-23T09:33:07+00:00, 2023-12-25T05:35:02+00:00 x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	1xlite-252970.top/web-api/registration/fields	178.253.28.49	200 OK	32 kB
URL POST HTTP/2 1xlite-252970.top/web-api/registration/fields IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type JSON data Size 32 kB (31539 bytes) Hash ad6af1786762c05dbcd17bfe1f8dcaf0 3137e12f443a33802715a208a5334ba977d51fb5 e61481cb87a4e94e170f0bd0a28527af96ee30338b165d14117764fa450f40e3 HTTP Headers POST /web-api/registration/fields HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/en/registration?type=fast content-type: application/json x-requested-with: XMLHttpRequest Content-Length: 19 Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1280; SESSION=0d2e47df81a7834659d0346171efef4e; che_g=56464e4b-d899-f5a5-7567-527530fdeb13; _glhf=1703501573; sh.session.id=0e9e3455-bf1f-4faf-942c-b55241628736; ggru=174; _ga_7JGWL9SV66=GS1.1.1703483542.1.0.1703483543.59.0.0; _ga=GA1.1.1386404447.1703483543 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/json cache-control: no-cache, private content-encoding: br server-timing: p;dur=63, dt_total;dur=84.777, wf-uht;dur=0.123 vary: Accept-Encoding x-dt: 285 x-time-ng: 0.075 strict-transport-security: max-age=63072000; includeSubDomains; preload X-Firefox-Spdy: h2`

	widget.suphelper.top/_next/static/chunks/main-fa1d3b21fd97b583.js	104.18.39.72	200 OK	108 kB
URL GET HTTP/2 widget.suphelper.top/_next/static/chunks/main-fa1d3b21fd97b583.js IP 104.18.39.72:443 ASN #13335 CLOUDFLARENET Requested by https://widget.suphelper.top/ Certificate IssuerGoogle Trust Services LLC Subjectsuphelper.top Fingerprint1C:D4:4C:1C:DB:7D:59:7D:EE:39:59:B9:F7:76:9F:87:4C:EA:5E:01 ValidityWed, 29 Nov 2023 10:21:51 GMT - Tue, 27 Feb 2024 10:21:50 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 108 kB (107844 bytes) Hash 83680ce862de40c43fc92e04b1ad0a3d 67eb6762545f4e1fee446794f4738d0f0577b6b4 e70f39978f08895aef6849daf891af65bff03e476eb9b1384dfb36cd4ac9fe75 HTTP Headers `GET /_next/static/chunks/main-fa1d3b21fd97b583.js HTTP/1.1 Host: widget.suphelper.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/javascript; charset=UTF-8 content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';img-src 'self' data: blob: https://cons-suph.com/file-hosting https://file-hosting-api-stage.kube.prod.cons.lan https://cons-suph.com/file-hosting/;object-src 'none';script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.google.com/recaptcha/ 'report-sample' https://www.gstatic.com/recaptcha/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';frame-src 'self' https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/;connect-src 'self' wss: ws: https://cons-suph.com/file-hosting/ x-dns-prefetch-control: off expect-ct: max-age=0 strict-transport-security: max-age=15724800; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 cache-control: public, max-age=31536000 last-modified: Thu, 09 Nov 2023 06:03:45 GMT etag: W/"1a544-18bb2adf0eb" vary: Accept-Encoding content-encoding: gzip cf-cache-status: HIT age: 2767264 expires: Tue, 24 Dec 2024 05:56:37 GMT server: cloudflare cf-ray: 83aed7865df7b527-OSL X-Firefox-Spdy: h2

	v3.traincdn.com/sys-icons/1.0.227/285/bonusSelect.svg	185.244.209.62	200 OK	17 kB
URL GET HTTP/2 v3.traincdn.com/sys-icons/1.0.227/285/bonusSelect.svg IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type SVG Scalable Vector Graphics image Size 17 kB (16905 bytes) Hash 2d4832d2b9f031c8b93f332d308466a0 7531d7016b0aed426bdeb274700395ece4a2b943 d58b6e57392fafcd925cb66dc9d4f69f2a73497cc900fd05cb0a21fc6ceba3ea HTTP Headers `GET /sys-icons/1.0.227/285/bonusSelect.svg HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://1xlite-252970.top DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:37 GMT content-type: image/svg+xml last-modified: Thu, 14 Dec 2023 13:58:19 GMT etag: W/"2d4832d2b9f031c8b93f332d308466a0" x-amz-meta-mtime: 1702562296.38163263 content-encoding: gzip expires: Thu, 21 Dec 2023 14:33:17 GMT cache-control: max-age=86400 x-time-ng: 0.002 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-77f4f4fcef8d7ba907e18bed0d8dd3e1-2fc22b49fa89fe9d-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-20T14:33:17+00:00, 2023-12-24T15:57:11+00:00 x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/app-d680f897.js	185.244.209.62	200 OK	855 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/app-d680f897.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type Size 855 kB (855354 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /_nuxt/desktop/default/app-d680f897.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:35 GMT content-type: application/javascript; charset=utf-8 content-length: 224101 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-36b65" content-encoding: gzip expires: Sun, 24 Dec 2023 13:48:47 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc89 traceparent: 00-3eb931835d108e08d913f7ada3dc151f-62b04592caaff31d-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-23T13:48:47+00:00, 2023-12-24T13:55:41+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	widget.suphelper.top/_next/static/chunks/0c294a17-47e02e0897fc1e03.js	104.18.39.72	200 OK	9.8 kB
URL GET HTTP/2 widget.suphelper.top/_next/static/chunks/0c294a17-47e02e0897fc1e03.js IP 104.18.39.72:443 ASN #13335 CLOUDFLARENET Requested by https://widget.suphelper.top/ Certificate IssuerGoogle Trust Services LLC Subjectsuphelper.top Fingerprint1C:D4:4C:1C:DB:7D:59:7D:EE:39:59:B9:F7:76:9F:87:4C:EA:5E:01 ValidityWed, 29 Nov 2023 10:21:51 GMT - Tue, 27 Feb 2024 10:21:50 GMT File type troff or preprocessor input, ASCII text, with very long lines (10375), with no line terminators Size 9.8 kB (9839 bytes) Hash bd7ec2af6a070c99fb7714f553485d57 dd8f253197efd1b7e134a8264f23cebd93d3645d 08cba9072ecc88e4a67bba8f4a4ad54425db95d75dba53fc34531ccb8a91729e HTTP Headers `GET /_next/static/chunks/0c294a17-47e02e0897fc1e03.js HTTP/1.1 Host: widget.suphelper.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/javascript; charset=UTF-8 content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';img-src 'self' data: blob: https://cons-suph.com/file-hosting https://file-hosting-api-stage.kube.prod.cons.lan https://cons-suph.com/file-hosting/;object-src 'none';script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.google.com/recaptcha/ 'report-sample' https://www.gstatic.com/recaptcha/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';frame-src 'self' https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/;connect-src 'self' wss: ws: https://cons-suph.com/file-hosting/ x-dns-prefetch-control: off expect-ct: max-age=0 strict-transport-security: max-age=15724800; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 cache-control: public, max-age=31536000 last-modified: Thu, 09 Nov 2023 06:03:45 GMT etag: W/"266f-18bb2adf0eb" vary: Accept-Encoding content-encoding: gzip cf-cache-status: HIT age: 2410726 expires: Tue, 24 Dec 2024 05:56:37 GMT server: cloudflare cf-ray: 83aed7865dfbb527-OSL X-Firefox-Spdy: h2

	1xlite-252970.top/web-api/default/img/icons/pixels2.svg?v=1703483542	178.253.28.49	200 OK	90 B
URL GET HTTP/2 1xlite-252970.top/web-api/default/img/icons/pixels2.svg?v=1703483542 IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type PNG image data, 1 x 1, 8-bit/color RGB, non-interlaced Size 90 B (90 bytes) Hash e45f90dcbe718dea3476c4b69b501a4e e9af26a93c467a77e4733ec537f4f5ce7a4ba089 a439dd8761d9fd4ff88e82e83200877703594491065880dbd4e59ddf4ce1b204 HTTP Headers GET /web-api/default/img/icons/pixels2.svg?v=1703483542 HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/en/registration?type=fast Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg==; window_width=1280; SESSION=0d2e47df81a7834659d0346171efef4e; che_g=56464e4b-d899-f5a5-7567-527530fdeb13 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:37 GMT content-type: image/png cache-control: no-cache, private server-timing: p;dur=14, dt_total;dur=48.578, wf-uht;dur=0.077 x-dt: 285 x-time-ng: 0.028 strict-transport-security: max-age=63072000; includeSubDomains; preload X-Firefox-Spdy: h2`

	widget.suphelper.top/_next/static/5bf52df1/_buildManifest.js	104.18.39.72	200 OK	429 B
URL GET HTTP/2 widget.suphelper.top/_next/static/5bf52df1/_buildManifest.js IP 104.18.39.72:443 ASN #13335 CLOUDFLARENET Requested by https://widget.suphelper.top/ Certificate IssuerGoogle Trust Services LLC Subjectsuphelper.top Fingerprint1C:D4:4C:1C:DB:7D:59:7D:EE:39:59:B9:F7:76:9F:87:4C:EA:5E:01 ValidityWed, 29 Nov 2023 10:21:51 GMT - Tue, 27 Feb 2024 10:21:50 GMT File type ASCII text, with very long lines (453), with no line terminators Size 429 B (429 bytes) Hash 4fe2b447322007997e647073a13d6f53 8f9efbc6a06992e6e5250b03eddeff24196d6597 51eae0ef579a22c0f74cb86ab0d8d64d53bfe50c453afe17e146569f2e6acfbf HTTP Headers `GET /_next/static/5bf52df1/_buildManifest.js HTTP/1.1 Host: widget.suphelper.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/javascript; charset=UTF-8 content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';img-src 'self' data: blob: https://cons-suph.com/file-hosting https://cons-suph.com/file-hosting/;object-src 'none';script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.google.com/recaptcha/ 'report-sample' https://www.gstatic.com/recaptcha/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';frame-src 'self' https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/;connect-src 'self' wss: ws: https://cons-suph.com/file-hosting/ x-dns-prefetch-control: off expect-ct: max-age=0 strict-transport-security: max-age=15724800; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 cache-control: public, max-age=31536000 last-modified: Fri, 15 Dec 2023 06:10:19 GMT etag: W/"1ad-18c6c18e241" vary: Accept-Encoding cf-cache-status: HIT age: 862815 expires: Tue, 24 Dec 2024 05:56:37 GMT server: cloudflare cf-ray: 83aed7866dfeb527-OSL content-encoding: gzip X-Firefox-Spdy: h2

	widget.suphelper.top/_next/static/chunks/970-fdfa7a3a1558183b.js	104.18.39.72	200 OK	433 kB
URL GET HTTP/2 widget.suphelper.top/_next/static/chunks/970-fdfa7a3a1558183b.js IP 104.18.39.72:443 ASN #13335 CLOUDFLARENET Requested by https://widget.suphelper.top/ Certificate IssuerGoogle Trust Services LLC Subjectsuphelper.top Fingerprint1C:D4:4C:1C:DB:7D:59:7D:EE:39:59:B9:F7:76:9F:87:4C:EA:5E:01 ValidityWed, 29 Nov 2023 10:21:51 GMT - Tue, 27 Feb 2024 10:21:50 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 433 kB (433087 bytes) Hash a54d9af8352dcb0beae14fa400b1e102 5b7e60a2b7a322019a17aedf4795ef0671277d16 55509bd61579f4622a8f8d116542c5d5984857201a5bf3504fdf618511b67a4a HTTP Headers `GET /_next/static/chunks/970-fdfa7a3a1558183b.js HTTP/1.1 Host: widget.suphelper.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/javascript; charset=UTF-8 content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';img-src 'self' data: blob: https://cons-suph.com/file-hosting https://cons-suph.com/file-hosting/;object-src 'none';script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.google.com/recaptcha/ 'report-sample' https://www.gstatic.com/recaptcha/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';frame-src 'self' https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/;connect-src 'self' wss: ws: https://cons-suph.com/file-hosting/ x-dns-prefetch-control: off expect-ct: max-age=0 strict-transport-security: max-age=15724800; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 cache-control: public, max-age=31536000 last-modified: Thu, 07 Dec 2023 06:22:59 GMT etag: W/"69bbf-18c42f19a97" vary: Accept-Encoding content-encoding: gzip cf-cache-status: HIT age: 1553434 expires: Tue, 24 Dec 2024 05:56:37 GMT server: cloudflare cf-ray: 83aed7865dfcb527-OSL X-Firefox-Spdy: h2

	widget.suphelper.top/_next/static/5bf52df1/_ssgManifest.js	104.18.39.72	200 OK	77 B
URL GET HTTP/2 widget.suphelper.top/_next/static/5bf52df1/_ssgManifest.js IP 104.18.39.72:443 ASN #13335 CLOUDFLARENET Requested by https://widget.suphelper.top/ Certificate IssuerGoogle Trust Services LLC Subjectsuphelper.top Fingerprint1C:D4:4C:1C:DB:7D:59:7D:EE:39:59:B9:F7:76:9F:87:4C:EA:5E:01 ValidityWed, 29 Nov 2023 10:21:51 GMT - Tue, 27 Feb 2024 10:21:50 GMT File type ASCII text, with no line terminators Size 77 B (77 bytes) Hash b6652df95db52feb4daf4eca35380933 65451d110137761b318c82d9071c042db80c4036 6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e HTTP Headers `GET /_next/static/5bf52df1/_ssgManifest.js HTTP/1.1 Host: widget.suphelper.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/javascript; charset=UTF-8 content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';img-src 'self' data: blob: https://cons-suph.com/file-hosting https://cons-suph.com/file-hosting/;object-src 'none';script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.google.com/recaptcha/ 'report-sample' https://www.gstatic.com/recaptcha/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';frame-src 'self' https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/;connect-src 'self' wss: ws: https://cons-suph.com/file-hosting/ x-dns-prefetch-control: off expect-ct: max-age=0 strict-transport-security: max-age=15724800; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 cache-control: public, max-age=31536000 last-modified: Fri, 15 Dec 2023 06:10:19 GMT etag: W/"4d-18c6c18e241" vary: Accept-Encoding cf-cache-status: HIT age: 862815 expires: Tue, 24 Dec 2024 05:56:37 GMT server: cloudflare cf-ray: 83aed7866dffb527-OSL content-encoding: gzip X-Firefox-Spdy: h2

	v3.traincdn.com/_nuxt/desktop/default/DC-ef71a866.js	185.244.209.62	200 OK	2.3 kB
URL GET HTTP/2 v3.traincdn.com/_nuxt/desktop/default/DC-ef71a866.js IP 185.244.209.62:443 ASN #58286 Electric-IT Business S.R.L. Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerSectigo Limited Subject.traincdn.com FingerprintC8:8E:2A:E6:0A:C8:1B:3E:56:D0:F0:37:75:5F:40:9B:EF:44:C8:73 ValidityThu, 02 Nov 2023 00:00:00 GMT - Mon, 02 Dec 2024 23:59:59 GMT File type ASCII text, with very long lines (2354), with no line terminators Size 2.3 kB (2336 bytes) Hash 099b4d3e93edd57a2e22732ad870fdbd 273f8d50c85010022a51ccaacffde9e645b89b4e 9b2d550903676daf12025ea8906ecb39a5b8c7897d27a56c9e7a4f0f3a7e39aa HTTP Headers `GET /_nuxt/desktop/default/DC-ef71a866.js HTTP/1.1 Host: v3.traincdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/javascript; charset=utf-8 content-length: 999 last-modified: Fri, 22 Dec 2023 14:06:07 GMT etag: "658597cf-3e7" content-encoding: gzip expires: Sat, 23 Dec 2023 17:20:46 GMT cache-control: max-age=86400 strict-transport-security: max-age=15724800; includeSubDomains access-control-allow-origin: * x-id-shield: am3-hw-edge-gc88 traceparent: 00-08cd40fbb93f111c68adc3ee557117c5-b2e605569fdab1ce-01 x-id: osix-hw-edge-gc4 cache: HIT, HIT x-cached-since: 2023-12-22T17:20:46+00:00, 2023-12-24T17:38:00+00:00 accept-ranges: bytes x-shard: osix-shard0-default_443 X-Firefox-Spdy: h2

	widget.suphelper.top/_next/static/chunks/81.9c6562bba5669b47.js	104.18.39.72	200 OK	37 kB
URL GET HTTP/2 widget.suphelper.top/_next/static/chunks/81.9c6562bba5669b47.js IP 104.18.39.72:443 ASN #13335 CLOUDFLARENET Requested by https://widget.suphelper.top/ Certificate IssuerGoogle Trust Services LLC Subjectsuphelper.top Fingerprint1C:D4:4C:1C:DB:7D:59:7D:EE:39:59:B9:F7:76:9F:87:4C:EA:5E:01 ValidityWed, 29 Nov 2023 10:21:51 GMT - Tue, 27 Feb 2024 10:21:50 GMT File type ASCII text, with very long lines (36674), with no line terminators Size 37 kB (36674 bytes) Hash 6782c8abf3d14391f6ed5c805a973cf5 a08b255c0084e14d74199f5af64522ffaba14486 88331f3bf38157ecb0e64f22c08a582384dc74c8bae09d9f78b9eab5fe82cfa3 HTTP Headers `GET /_next/static/chunks/81.9c6562bba5669b47.js HTTP/1.1 Host: widget.suphelper.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 25 Dec 2023 05:56:38 GMT content-type: application/javascript; charset=UTF-8 content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';img-src 'self' data: blob: https://cons-suph.com/file-hosting https://file-hosting-api-stage.kube.prod.cons.lan https://cons-suph.com/file-hosting/;object-src 'none';script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.google.com/recaptcha/ 'report-sample' https://www.gstatic.com/recaptcha/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';frame-src 'self' https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/;connect-src 'self' wss: ws: https://cons-suph.com/file-hosting/ x-dns-prefetch-control: off expect-ct: max-age=0 strict-transport-security: max-age=15724800; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 cache-control: public, max-age=31536000 last-modified: Thu, 09 Nov 2023 06:03:45 GMT etag: W/"8f42-18bb2adf0eb" vary: Accept-Encoding content-encoding: gzip cf-cache-status: HIT age: 2856540 expires: Tue, 24 Dec 2024 05:56:38 GMT server: cloudflare cf-ray: 83aed789af1bb527-OSL X-Firefox-Spdy: h2

	widget.suphelper.top/injector.js	104.18.39.72	200 OK	208 kB
URL GET HTTP/2 widget.suphelper.top/injector.js IP 104.18.39.72:443 ASN #13335 CLOUDFLARENET Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerGoogle Trust Services LLC Subjectsuphelper.top Fingerprint1C:D4:4C:1C:DB:7D:59:7D:EE:39:59:B9:F7:76:9F:87:4C:EA:5E:01 ValidityWed, 29 Nov 2023 10:21:51 GMT - Tue, 27 Feb 2024 10:21:50 GMT File type Size 208 kB (208506 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /injector.js HTTP/1.1 Host: widget.suphelper.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://1xlite-252970.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/javascript; charset=UTF-8 content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';img-src 'self' data: blob: https://cons-suph.com/file-hosting https://cons-suph.com/file-hosting/;object-src 'none';script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.google.com/recaptcha/ 'report-sample' https://www.gstatic.com/recaptcha/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';frame-src 'self' https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/;connect-src 'self' wss: ws: https://cons-suph.com/file-hosting/ x-dns-prefetch-control: off expect-ct: max-age=0 strict-transport-security: max-age=15724800; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 cache-control: public, max-age=14400 last-modified: Fri, 15 Dec 2023 06:10:19 GMT etag: W/"32e7a-18c6c18e1ad" vary: Accept-Encoding content-encoding: gzip cf-cache-status: HIT age: 32 expires: Mon, 25 Dec 2023 09:56:37 GMT server: cloudflare cf-ray: 83aed7836d47b527-OSL X-Firefox-Spdy: h2

	1xlite-252970.top/web-api/api/web/v1/config/actualDomain	178.253.28.49	200 OK	269 B
URL GET HTTP/2 1xlite-252970.top/web-api/api/web/v1/config/actualDomain IP 178.253.28.49:443 ASN #0 Requested by https://1xlite-252970.top/en/registration?type=fast Certificate IssuerLet's Encrypt Subject1xlite-252970.top FingerprintA3:C1:53:C6:4D:50:3F:29:2E:B8:D6:6D:A4:A8:60:A7:29:EA:47:23 ValidityWed, 20 Dec 2023 09:34:41 GMT - Tue, 19 Mar 2024 09:34:40 GMT File type ASCII text, with very long lines (309), with no line terminators Size 269 B (269 bytes) Hash bd5db0e5d6e35e46d7a7d59df9d04237 8e47e7e01d43ff95ca2f8b322e8e088fe07c74d6 491db9f4edba86b37a64a0d4e51cf468e7f3395b7266b65dff8f547f4be5e071 HTTP Headers GET /web-api/api/web/v1/config/actualDomain HTTP/1.1 Host: 1xlite-252970.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://1xlite-252970.top/en/registration?type=fast content-type: application/json x-requested-with: XMLHttpRequest DNT: 1 Connection: keep-alive Cookie: platform_type=desktop; lng=en; cookies_agree_type=3; tzo=1; is12h=0; auid=sv0cMWWJGZIybfzVA2NPAg== Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK server: nginx date: Mon, 25 Dec 2023 05:56:36 GMT content-type: application/vnd.api+json vary: Accept-Encoding cache-control: no-cache, private server-timing: p;dur=25, dt_total;dur=44.622, wf-uht;dur=0.072 set-cookie: SESSION=0d2e47df81a7834659d0346171efef4e; path=/; secure; HttpOnly; SameSite=Lax ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/ x-dt: 285 x-time-ng: 0.040 content-encoding: br strict-transport-security: max-age=63072000; includeSubDomains; preload X-Firefox-Spdy: h2

	widget.suphelper.top/_next/static/chunks/pages/_app-69a0aff2a4fc316d.js	104.18.39.72	200 OK	1.0 MB
URL GET HTTP/2 widget.suphelper.top/_next/static/chunks/pages/_app-69a0aff2a4fc316d.js IP 104.18.39.72:443 ASN #13335 CLOUDFLARENET Requested by https://widget.suphelper.top/ Certificate IssuerGoogle Trust Services LLC Subjectsuphelper.top Fingerprint1C:D4:4C:1C:DB:7D:59:7D:EE:39:59:B9:F7:76:9F:87:4C:EA:5E:01 ValidityWed, 29 Nov 2023 10:21:51 GMT - Tue, 27 Feb 2024 10:21:50 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 1.0 MB (1017636 bytes) Hash 4a655178cab18128578f96dea89a0f10 57cc96a64264b20701f3e0bfd20b242ccc6fc2d6 f34b04f1dc831cdd77450fef4a34f9e272f7de96de3377948954b2101f40f35e HTTP Headers `GET /_next/static/chunks/pages/_app-69a0aff2a4fc316d.js HTTP/1.1 Host: widget.suphelper.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Mon, 25 Dec 2023 05:56:37 GMT content-type: application/javascript; charset=UTF-8 content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';img-src 'self' data: blob: https://cons-suph.com/file-hosting https://cons-suph.com/file-hosting/;object-src 'none';script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.google.com/recaptcha/ 'report-sample' https://www.gstatic.com/recaptcha/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';frame-src 'self' https://www.google.com/recaptcha/ https://recaptcha.google.com/recaptcha/;connect-src 'self' wss: ws: https://cons-suph.com/file-hosting/ x-dns-prefetch-control: off expect-ct: max-age=0 strict-transport-security: max-age=15724800; includeSubDomains x-download-options: noopen x-content-type-options: nosniff origin-agent-cluster: ?1 x-permitted-cross-domain-policies: none referrer-policy: no-referrer x-xss-protection: 0 cache-control: public, max-age=31536000 last-modified: Fri, 15 Dec 2023 06:10:19 GMT etag: W/"f8724-18c6c18e241" vary: Accept-Encoding content-encoding: gzip cf-cache-status: HIT age: 862815 expires: Tue, 24 Dec 2024 05:56:37 GMT server: cloudflare cf-ray: 83aed7865df8b527-OSL X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (53)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by