1x-xredbet708793.top/
178.253.47.25301 Moved Permanently 162 B IP 178.253.47.25:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: 1x-xredbet708793.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 02:13:23 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://1x-xredbet708793.top/
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7708
Expires: Sat, 04 Feb 2023 04:21:51 GMT
Date: Sat, 04 Feb 2023 02:13:23 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ec47f9eed203ae063b9c210009de54a9
19ff156471b9cffbc2432c5b65543bdd18e36271
3974208ce1840f6c9467287b7e220379ed881d76db64939f411dbc500c103d48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3974208CE1840F6C9467287B7E220379ED881D76DB64939F411DBC500C103D48"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14382
Expires: Sat, 04 Feb 2023 06:13:05 GMT
Date: Sat, 04 Feb 2023 02:13:23 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 01:43:35 GMT
content-type: application/json
age: 1788
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2560
Expires: Sat, 04 Feb 2023 02:56:03 GMT
Date: Sat, 04 Feb 2023 02:13:23 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 3MGeKjXWoCuB/JLQrUMClMjPkw7YsMYKwB1AOHdG6QWCbKRX3SFdeoEQ8LjfIfBphZMzuvgdilI=
x-amz-request-id: SMQDSGRP4XX6R3W3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 01:52:39 GMT
age: 1244
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:23 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash bbb7d14d38a8959329287891f966e186
9c48d07e212d37016392ef14ef27fa73f2d06147
b4e89b61c9f870cd434fd200441db6d7241a24aa9a01ea6d6c9c20fbb850fe16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B4E89B61C9F870CD434FD200441DB6D7241A24AA9A01EA6D6C9C20FBB850FE16"
Last-Modified: Thu, 02 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19708
Expires: Sat, 04 Feb 2023 07:41:51 GMT
Date: Sat, 04 Feb 2023 02:13:23 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 01:49:07 GMT
age: 1457
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12711
Expires: Sat, 04 Feb 2023 05:45:15 GMT
Date: Sat, 04 Feb 2023 02:13:24 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b6575ab2d48f1828d572e7704f5b7e40
9fc0564dd4f4ad5d41f611542eda099d79e660b8
9c2e62a06020716a64a4eb80baf107a62e17dac282bc143c0e4df66f848bb9e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C2E62A06020716A64A4EB80BAF107A62E17DAC282BC143C0E4DF66F848BB9E0"
Last-Modified: Thu, 02 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4932
Expires: Sat, 04 Feb 2023 03:35:36 GMT
Date: Sat, 04 Feb 2023 02:13:24 GMT
Connection: keep-alive
push.services.mozilla.com/
35.165.197.103101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.197.103:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JLOOKhLEsOCxBiXL67K4Ig==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wFemWMRjZ1mbGj/X0h7eH32RQlI=
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6838
Expires: Sat, 04 Feb 2023 04:07:23 GMT
Date: Sat, 04 Feb 2023 02:13:25 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6838
Expires: Sat, 04 Feb 2023 04:07:23 GMT
Date: Sat, 04 Feb 2023 02:13:25 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6838
Expires: Sat, 04 Feb 2023 04:07:23 GMT
Date: Sat, 04 Feb 2023 02:13:25 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6838
Expires: Sat, 04 Feb 2023 04:07:23 GMT
Date: Sat, 04 Feb 2023 02:13:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F584e2763-154a-41f5-94f4-afe59c3b0984.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F584e2763-154a-41f5-94f4-afe59c3b0984.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a1356818f64ee520358098b40ccb11e6
234448cd9f2c28ee12a3499a17b45f0b8a2e5487
3035ce56cfd2ec24b2ce90f8f7c616a4a289827204750809bcf0c999d5de1dc9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F584e2763-154a-41f5-94f4-afe59c3b0984.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6038
x-amzn-requestid: 103f1040-29d7-429d-a082-b8ae7c9ee6f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GHKKoAMFx7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-484abba13338b7ad3238276f;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2TgFe6k_kwTq5n27VTzD6jhXpz3dHzlZ_2pvMe7fkui617bPixVNcA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:12:00 GMT
etag: "234448cd9f2c28ee12a3499a17b45f0b8a2e5487"
content-type: image/jpeg
age: 14485
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:44 GMT
age: 14861
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b7r7phj8i49RMSuWufxF1L34K9udWa0mJ4dY12izM9ofwAuCFBGEZQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:47:06 GMT
age: 15979
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45c6a062f8637e689819f505b019dc0e
61665688f1039c4fad848853a68e28d057718ad1
c9b14113eba535a2e1a6cbbf121a818ad0204fc6dd7b2ea9b592830ab927d6d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe387e59d-188b-44a0-b94c-033d7d635117.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6718
x-amzn-requestid: 662f889b-4c25-4dec-85d4-ea9dfa8b8974
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7DE5boAMF_cA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-33ca99fc7b6eac8d5486d6c1;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WvNs1hPPXHBJs5rTIBqH3DbqLLX6si9jHF46KrsuT9BFB2N2V3zeUA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:06:20 GMT
age: 14825
etag: "61665688f1039c4fad848853a68e28d057718ad1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 99bf0073acf75f9e04b52a96bf47797b
fa68da2c92fa89ed3dafe9915e064fca022af21f
961b77616486483e5767f214d2417275b9c995614128acab3521b6cd2f8866e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0567732b-c9d0-4bac-89d8-3dc6a16e522c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8267
x-amzn-requestid: 8bf1f9c3-4508-489e-9f45-3ce50df74b0b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEW0HM6IAMFXog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd80f8-2e7c768d54981cf1634830db;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:47:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ThTL_OlFd4yMELCmSzH4ziqxa8gdYgAAbxLY9VZPVaIldOUkvFVF_Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:12:43 GMT
age: 14442
etag: "fa68da2c92fa89ed3dafe9915e064fca022af21f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F043bf414-ba77-4973-9779-d0c124ae0baf.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F043bf414-ba77-4973-9779-d0c124ae0baf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 28099f5ad8a27e5a49a0d1c842486329
d47caba75b363a4c008e5a9a9d0b8e39d9fa4abd
1d798d35ceae594d86fa43aa0ef47b962c52bb1557e17dda9b294bd01f374b3a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F043bf414-ba77-4973-9779-d0c124ae0baf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8352
x-amzn-requestid: 80032cef-14cd-4f56-9830-8c74891ed00f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEqQFDJIAMFspQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8174-6d3310287fc74bb27e9b038a;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:49:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: byr2TaC2xnnUl56r2iGKZI0o8Ctsv0iy42h_F7-ezKpEijaH9rr5EQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:12:53 GMT
etag: "d47caba75b363a4c008e5a9a9d0b8e39d9fa4abd"
content-type: image/jpeg
age: 14432
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash dcd8c82da2ec392cc7fd83d81e5f415b
3e3420209787577f2b3b1203dc2bd049fc74728d
739e0053a05a04cd2113c3e3d84b6261a6f516cdcce21aeaa866243543f6db3c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 02:13:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 03:03:03 GMT
Expires: Thu, 09 Feb 2023 03:03:02 GMT
Etag: "3e3420209787577f2b3b1203dc2bd049fc74728d"
Cache-Control: max-age=434374,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793fe31cadeab521-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash dcd8c82da2ec392cc7fd83d81e5f415b
3e3420209787577f2b3b1203dc2bd049fc74728d
739e0053a05a04cd2113c3e3d84b6261a6f516cdcce21aeaa866243543f6db3c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 02:13:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 03:03:03 GMT
Expires: Thu, 09 Feb 2023 03:03:02 GMT
Etag: "3e3420209787577f2b3b1203dc2bd049fc74728d"
Cache-Control: max-age=434374,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793fe31ca897b4f1-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash dcd8c82da2ec392cc7fd83d81e5f415b
3e3420209787577f2b3b1203dc2bd049fc74728d
739e0053a05a04cd2113c3e3d84b6261a6f516cdcce21aeaa866243543f6db3c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 02:13:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 03:03:03 GMT
Expires: Thu, 09 Feb 2023 03:03:02 GMT
Etag: "3e3420209787577f2b3b1203dc2bd049fc74728d"
Cache-Control: max-age=434374,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793fe31caca8b50c-OSL
v3.traincdn.com/_nuxt/desktop/default/css/a1399e76.css
8.248.224.22200 OK 11 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/a1399e76.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 168ee6bd05eb94be9d7734d0b1441465
7f04281c7ff40715aaaa20ce05547ea61fa53a3d
afce4a132ac4578066b3a92bedb220499927eaea71bb3fa5bc057f65c9f30cda
GET /_nuxt/desktop/default/css/a1399e76.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: text/css
content-length: 10964
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb423-2ad4"
expires: Sat, 04 Feb 2023 12:28:16 GMT
last-modified: Fri, 03 Feb 2023 07:13:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 49511
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/9d6d1f35.css
8.248.224.22200 OK 2.1 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/9d6d1f35.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (11724), with no line terminators
Hash fa780afddf3575ee8f7697155efc472d
3e09109d3090ac0c96642f6b1a0b1286f24e8589
2bf347f64c849ef19e22f238b2efdc27bacac14a6626f748705aa8108988edab
GET /_nuxt/desktop/default/css/9d6d1f35.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: text/css
content-length: 2126
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb423-84e"
expires: Sat, 04 Feb 2023 12:28:16 GMT
last-modified: Fri, 03 Feb 2023 07:13:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 49511
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/Page.Betting.Main-8b83c7d5.js
8.248.224.22200 OK 84 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/Page.Betting.Main-8b83c7d5.js
IP 8.248.224.22:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (65402), with no line terminators
Hash f4e3b5e74cba763342481bde8c189e00
834156f557f630dc709d7807cf8f5f5c36f3267c
668360bd88c19caff9bcb333b9aa9d1a075d6e3d4d72a2468073cfcda0aec1a3
GET /_nuxt/desktop/default/Page.Betting.Main-8b83c7d5.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 83484
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-1461c"
expires: Sat, 04 Feb 2023 07:48:37 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66290
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/Footer/Layout.Information/Layout.Office/Page.Betting.Main/Page.Bonus/Page.Cyber.Calendar/Pag/f2c03efd-1f5ec38a.js
8.248.224.22200 OK 7.5 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/Footer/Layout.Information/Layout.Office/Page.Betting.Main/Page.Bonus/Page.Cyber.Calendar/Pag/f2c03efd-1f5ec38a.js
IP 8.248.224.22:0
File type Unicode text, UTF-8 text, with very long lines (29045), with no line terminators
Hash ccf59d4aec32ebaa0bc0806f0fdc4ed1
d9e435a2baccf9b5d8283fb59006e717d16334ba
3e5550b99b15f430e697f080ef43c63c666f3016fa27c69fbc155b7b5308816a
GET /_nuxt/desktop/default/vendors/Footer/Layout.Information/Layout.Office/Page.Betting.Main/Page.Bonus/Page.Cyber.Calendar/Pag/f2c03efd-1f5ec38a.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 7452
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-1d1c"
expires: Sat, 04 Feb 2023 07:48:55 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66290
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/Page.Betting.Main-88aa3d03.js
8.248.224.22200 OK 6.9 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/Page.Betting.Main-88aa3d03.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (27955), with no line terminators
Hash 6f226b8e38630d79f8b95cfef2dd3ba8
0f409d4dea1a10c3e548e9dec6fbb18edd8bd2f7
de13014587775b2ae51811f0da2ad47b5fbeb128c6a2c975c59bb6023295d996
GET /_nuxt/desktop/default/vendors/Page.Betting.Main-88aa3d03.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 6923
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-1b0b"
expires: Sat, 04 Feb 2023 07:48:47 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66281
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/Layout.Information/Page.Betting.Main/Page.Bonus/Page.Cyber.Calendar/Page.DesktopApps/Page.Game.Proje/1ffcb409-4b6d8859.js
8.248.224.22200 OK 2.7 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/Layout.Information/Page.Betting.Main/Page.Bonus/Page.Cyber.Calendar/Page.DesktopApps/Page.Game.Proje/1ffcb409-4b6d8859.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (9721), with no line terminators
Hash 84ae918cca8863110300af83f3231e70
c5a18a7d8a0113db74fdfb87b678ab33aeb210b9
2506757e4de6f6e9e9785f008bbb2d009deae385b7d9f066d2fcc19793492f08
GET /_nuxt/desktop/default/Layout.Information/Page.Betting.Main/Page.Bonus/Page.Cyber.Calendar/Page.DesktopApps/Page.Game.Proje/1ffcb409-4b6d8859.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 2717
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-a9d"
expires: Sat, 04 Feb 2023 07:49:00 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66281
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/Layout.Betting.ExpressDay/Layout.Office/Page.Betting.Main/Page.BlockAppeal.BetsHistory/Page.Office.B/8e0d2974-33e7c641.js
8.248.224.22200 OK 13 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/Layout.Betting.ExpressDay/Layout.Office/Page.Betting.Main/Page.BlockAppeal.BetsHistory/Page.Office.B/8e0d2974-33e7c641.js
IP 8.248.224.22:0
File type Unicode text, UTF-8 text, with very long lines (50239), with no line terminators
Hash 4422d30c3dc30303584cc87fc6dda9bb
d15c82c7f8e9c7fb0d2d63c50eea73a179228822
47594dd1ad0229250ff11f852e0179a41dcbe53e1970f48deab5712852d683cf
GET /_nuxt/desktop/default/Layout.Betting.ExpressDay/Layout.Office/Page.Betting.Main/Page.BlockAppeal.BetsHistory/Page.Office.B/8e0d2974-33e7c641.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 13115
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-333b"
expires: Sat, 04 Feb 2023 07:48:46 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66281
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/pg/285/images/e2e1a81329ec0acf4e446b6fc70e4cf1.svg
8.248.224.22200 OK 698 B URL HTTP/2 v3.traincdn.com/genfiles/cms/pg/285/images/e2e1a81329ec0acf4e446b6fc70e4cf1.svg
IP 8.248.224.22:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1224), with no line terminators
Hash baf96800254904a05eee2ff49c94a801
847efb3449a8d7857f004192310aa2164a71d530
0ba137aa5f655e712ac40a592f366d1bd3b53b0a6b71c2cff4e7e0090f440335
GET /genfiles/cms/pg/285/images/e2e1a81329ec0acf4e446b6fc70e4cf1.svg HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: image/svg+xml
content-length: 698
cache-control: public, max-age=120, s-maxage=600
content-encoding: gzip
etag: W/"7cca3986f7a5c4c164144ff11df71073"
expires: Sat, 04 Feb 2023 03:09:42 GMT
last-modified: Thu, 13 Jan 2022 14:28:56 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 83025
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/328d4387.css
8.248.224.22200 OK 2.2 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/328d4387.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (18385), with no line terminators
Hash 1b61f0f6040c14c8f7fae28e5996960e
56cf4f1e41616a0c8eacdbdc39d1de448e4d1393
03b010b97fd0e85e7452de83aa18b9f53cf704cfc75f65ed19aedfdb60dc58f4
GET /_nuxt/desktop/default/css/328d4387.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: text/css
content-length: 2197
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb423-895"
expires: Sat, 04 Feb 2023 12:28:15 GMT
last-modified: Fri, 03 Feb 2023 07:13:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 49512
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/d1370efa.css
8.248.224.22200 OK 42 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/d1370efa.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 93020230fd660609b2ef03867d5637db
056963616dff77d3c4c2a60ab1feb83c15390bf0
8290a910fd8a1e2b7ea33c0adb775587301e7931fe1620c5055931dc8e06158d
GET /_nuxt/desktop/default/css/d1370efa.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: text/css
content-length: 41552
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb423-a250"
expires: Sat, 04 Feb 2023 07:48:32 GMT
last-modified: Fri, 03 Feb 2023 07:13:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66310
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/app-c00bc33e.js
8.248.224.22200 OK 217 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/app-c00bc33e.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 217 kB (217359 bytes)
Hash c14cb3a1f3fe0c6468fac6c1686ff992
02c4ba3fcc5dda3c91443929da49168d03ff7e7f
621f8b0c4a1f4e39f8ae6a79ef988737630fe0ec8c762c5c6019ad0502e37606
GET /_nuxt/desktop/default/app-c00bc33e.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 217359
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcd938-3510f"
expires: Sat, 04 Feb 2023 13:04:08 GMT
last-modified: Fri, 03 Feb 2023 09:51:52 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 47359
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/runtime-ebdab388.js
8.248.224.22200 OK 13 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/runtime-ebdab388.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (40268), with no line terminators
Hash a284a58a2b4813ca143756bced7a3d3f
64e4509f36b03ed988539557c1c89ed7f62c7dc7
df4af33ce774498ea4e2a7c346a866125e1bc8e93a71ad9667f436afa6f6d303
GET /_nuxt/desktop/default/runtime-ebdab388.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 12821
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcd938-3215"
expires: Sat, 04 Feb 2023 13:04:08 GMT
last-modified: Fri, 03 Feb 2023 09:51:52 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 47359
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/5f146d7c.css
8.248.224.22200 OK 13 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/5f146d7c.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash d3104c9bbb148ad89a8b0ea6741a4b7f
f38b1b2521329ed77b1b5c9b60924026f816456b
f29dcbd29130e36acc2cb96364ccc39b015191b6d821f2c4dc8e5b76c9260c19
GET /_nuxt/desktop/default/css/5f146d7c.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: text/css
content-length: 12852
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb423-3234"
expires: Sat, 04 Feb 2023 12:28:15 GMT
last-modified: Fri, 03 Feb 2023 07:13:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 49512
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/commons/app-dc959e5e.js
8.248.224.22200 OK 96 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/commons/app-dc959e5e.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (65476)
Hash 81fc537e1afaf1dc0684ea9fe934e06b
6a76c0c5b5fd6e1ebe4b73136928424bcd533e21
3025d006df1a2953f21a8849990a4e2353b1976fbebdbe3e03ae639dc6ffbe1a
GET /_nuxt/desktop/default/commons/app-dc959e5e.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 96102
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcd938-17766"
expires: Sat, 04 Feb 2023 13:04:36 GMT
last-modified: Fri, 03 Feb 2023 09:51:52 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 47359
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash dcd8c82da2ec392cc7fd83d81e5f415b
3e3420209787577f2b3b1203dc2bd049fc74728d
739e0053a05a04cd2113c3e3d84b6261a6f516cdcce21aeaa866243543f6db3c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 02:13:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 03:03:03 GMT
Expires: Thu, 09 Feb 2023 03:03:02 GMT
Etag: "3e3420209787577f2b3b1203dc2bd049fc74728d"
Cache-Control: max-age=434374,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793fe31cadacb51e-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash dcd8c82da2ec392cc7fd83d81e5f415b
3e3420209787577f2b3b1203dc2bd049fc74728d
739e0053a05a04cd2113c3e3d84b6261a6f516cdcce21aeaa866243543f6db3c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 02:13:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 03:03:03 GMT
Expires: Thu, 09 Feb 2023 03:03:02 GMT
Etag: "3e3420209787577f2b3b1203dc2bd049fc74728d"
Cache-Control: max-age=434374,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793fe31ca8b9b527-OSL
v3.traincdn.com/_nuxt/desktop/default/vendors/app-5b90c9da.js
8.248.224.22200 OK 228 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/app-5b90c9da.js
IP 8.248.224.22:0
File type Unicode text, UTF-8 text, with very long lines (65396)
Size 228 kB (228195 bytes)
Hash 012b07f3587e81596f053bbab17b0fea
62181db5905daa9311d924e93228f6b7789e4d77
bd4dedbe2173015955dc80afef6e2567dff5b986f1afa3d790b5bf8ebbfcd618
GET /_nuxt/desktop/default/vendors/app-5b90c9da.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 228195
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcd938-37b63"
expires: Sat, 04 Feb 2023 13:04:08 GMT
last-modified: Fri, 03 Feb 2023 09:51:52 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 47359
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/version.json
8.248.224.22200 OK 44 B URL HTTP/2 v3.traincdn.com/version.json
IP 8.248.224.22:0
Hash 2ff0903e2cf1934343d552ae57e72026
4ba867a032cfd0e85d695429de231d14c4c4dd56
ffa5642106dbd12dea7a3bd3a05ec8c1a34a9ce87385221b32f65da552cd631d
GET /version.json HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1xlite-277345.top
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: application/json
content-length: 44
cache-control: max-age=60, s-maxage=60
content-encoding: gzip
etag: "63dd300c-2c"
expires: Sat, 04 Feb 2023 02:14:23 GMT
last-modified: Fri, 03 Feb 2023 16:02:20 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 5
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1xlite-277345.top
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 447087
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1xlite-277345.top
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 13:09:06 GMT
expires: Wed, 31 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 306261
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1xlite-277345.top
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 07:51:59 GMT
expires: Thu, 01 Feb 2024 07:51:59 GMT
cache-control: public, max-age=31536000
age: 238888
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:13:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1xlite-277345.top/genfiles/cms/pg/default/images/c6805d21f8fccbfc75df5c556571fc74.png
178.253.15.12200 OK 352 B URL HTTP/2 1xlite-277345.top/genfiles/cms/pg/default/images/c6805d21f8fccbfc75df5c556571fc74.png
IP 178.253.15.12:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 7dff72d4146e35a8262e6845d13a8df0
a291af970d3955b35c314e85712ceea3aca25d54
a467e6a3d8e443bbbade9f04324268de101625412c1135b4cec0864a55101a78
GET /genfiles/cms/pg/default/images/c6805d21f8fccbfc75df5c556571fc74.png HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: image/png
content-length: 352
last-modified: Wed, 10 Aug 2022 11:26:08 GMT
x-rgw-object-type: Normal
etag: "7dff72d4146e35a8262e6845d13a8df0"
x-amz-storage-class: STANDARD
expires: Fri, 03 Feb 2023 12:55:50 GMT
cache-control: max-age=86400, public
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-277345.top/_nuxt/desktop/default/vendors/plugins.vue-notification-856d8276.js
178.253.15.12200 OK 4.6 kB URL HTTP/2 1xlite-277345.top/_nuxt/desktop/default/vendors/plugins.vue-notification-856d8276.js
IP 178.253.15.12:0
File type ASCII text, with very long lines (12527), with no line terminators
Hash d18dada8884e99eed9e9ee49094a7ba9
cc651d11dd4316cda30145845bf472526f42f60c
d6d71b8849b124727f962c530286767e889447ab0ecfb804f60deb49c128620c
GET /_nuxt/desktop/default/vendors/plugins.vue-notification-856d8276.js HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 4556
last-modified: Fri, 03 Feb 2023 15:53:21 GMT
vary: Accept-Encoding
etag: "63dd2df1-11cc"
content-encoding: gzip
expires: Sat, 04 Feb 2023 03:13:27 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/_nuxt/desktop/default/vendors/plugins.v-tooltip-f08c35b9.js
178.253.15.12200 OK 22 kB URL HTTP/2 1xlite-277345.top/_nuxt/desktop/default/vendors/plugins.v-tooltip-f08c35b9.js
IP 178.253.15.12:0
File type ASCII text, with very long lines (65476)
Hash 09be7e79c548d5d90bf53ca8bb2a53c6
df20181ce54e2a278c55f29409f321f3bef26cdf
f49eae8bc902afdaa2899daa0b7dd539df8b6463ac7564c26fdaedd7337cd631
GET /_nuxt/desktop/default/vendors/plugins.v-tooltip-f08c35b9.js HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 21900
last-modified: Fri, 03 Feb 2023 15:53:21 GMT
vary: Accept-Encoding
etag: "63dd2df1-558c"
content-encoding: gzip
expires: Sat, 04 Feb 2023 03:13:27 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/_nuxt/desktop/default/css/9d6d1f35.css
178.253.15.12200 OK 2.1 kB URL HTTP/2 1xlite-277345.top/_nuxt/desktop/default/css/9d6d1f35.css
IP 178.253.15.12:0
File type ASCII text, with very long lines (11724), with no line terminators
Hash ccb90ebd451b962282357528d3d337c5
b9cbffdd5689522a2e34505dff3563cde46373c8
a60ae5d37149d5d644bfabcee1da360ee61efe46dc1dcadabb44ed7ed77e238b
GET /_nuxt/desktop/default/css/9d6d1f35.css HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: text/css
content-length: 2126
last-modified: Fri, 03 Feb 2023 15:58:17 GMT
vary: Accept-Encoding
etag: "63dd2f19-84e"
content-encoding: gzip
expires: Sat, 04 Feb 2023 03:13:27 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/_nuxt/desktop/default/css/328d4387.css
178.253.15.12200 OK 2.2 kB URL HTTP/2 1xlite-277345.top/_nuxt/desktop/default/css/328d4387.css
IP 178.253.15.12:0
File type ASCII text, with very long lines (18385), with no line terminators
Hash 929aca40e43201b0f3257a0ced9e8813
fd964d7adfac6b709cad92fdddb7d207fd57ec05
429c3d3ba9a039180694733cda6d2e09c5b6dc5b088c3acb252b46ca9f9c2baf
GET /_nuxt/desktop/default/css/328d4387.css HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: text/css
content-length: 2197
last-modified: Fri, 03 Feb 2023 15:58:17 GMT
vary: Accept-Encoding
etag: "63dd2f19-895"
content-encoding: gzip
expires: Sat, 04 Feb 2023 03:13:27 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/_nuxt/desktop/default/css/a1399e76.css
178.253.15.12200 OK 11 kB URL HTTP/2 1xlite-277345.top/_nuxt/desktop/default/css/a1399e76.css
IP 178.253.15.12:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5277ed52198aad35fb4ceb4df4404c33
c9352525a7ec8dcc9c03ca51e84be37493b69d3a
20ab4393e2b8801e02b2adc6f3c1c1621a566583a06554863a79325076256942
GET /_nuxt/desktop/default/css/a1399e76.css HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: text/css
content-length: 10964
last-modified: Fri, 03 Feb 2023 15:58:18 GMT
vary: Accept-Encoding
etag: "63dd2f1a-2ad4"
content-encoding: gzip
expires: Sat, 04 Feb 2023 03:13:27 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/genfiles/cms/maintenance_mode/settings.json?timestamp=1675476841439
178.253.15.12200 OK 145 B URL HTTP/2 1xlite-277345.top/genfiles/cms/maintenance_mode/settings.json?timestamp=1675476841439
IP 178.253.15.12:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 55385fdddab661013ad8f678cd75ac88
bd36ac4197e34b4d5022498bc319e6f51dff2329
d5af3be5580e1f59ebf83be6961804f2a1f09732719085c04ace46c76df2106b
GET /genfiles/cms/maintenance_mode/settings.json?timestamp=1675476841439 HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:27 GMT
content-type: application/json
content-length: 145
last-modified: Thu, 17 Nov 2022 07:57:48 GMT
x-rgw-object-type: Normal
etag: "55385fdddab661013ad8f678cd75ac88"
expires: Sun, 05 Feb 2023 02:13:27 GMT
cache-control: max-age=86400, public
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-277345.top/pwa
178.253.15.12200 OK 15 B IP 178.253.15.12:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0e4766fd1b2ba2e236fd9364587f99ab
eb98dec7af065d80a1a3ddb99cb3e3c0919aa852
4612305c0c6077857c88e831688c8bb34594e16c567ed45a3a330c14fa7c627b
GET /pwa HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1xlite-277345.top/en
Connection: keep-alive
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:28 GMT
content-type: application/json; charset=utf-8
content-length: 15
etag: W/"f-65jex68GXYCho925nLPjwJGaqFI"
server-timing: dt_285;dur=1
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/_nuxt/desktop/default/css/f9d99aa7.css
178.253.15.12200 OK 943 B URL HTTP/2 1xlite-277345.top/_nuxt/desktop/default/css/f9d99aa7.css
IP 178.253.15.12:0
File type ASCII text, with very long lines (3303), with no line terminators
Hash e4fd04067fd4cb615dafb76ce8c62729
1ba7bf93e0a2a8f316add4efd676d7268b4e7f6d
7dbd3f29a56002bfe747432dc14ef29fabf8556fc7998c85ee5a32b945d083f0
GET /_nuxt/desktop/default/css/f9d99aa7.css HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:28 GMT
content-type: text/css
content-length: 943
last-modified: Fri, 03 Feb 2023 15:58:18 GMT
vary: Accept-Encoding
etag: "63dd2f1a-3af"
content-encoding: gzip
expires: Sat, 04 Feb 2023 03:13:28 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/_nuxt/desktop/default/plugins.vue-js-modal-2bf97da2.js
178.253.15.12200 OK 7.5 kB URL HTTP/2 1xlite-277345.top/_nuxt/desktop/default/plugins.vue-js-modal-2bf97da2.js
IP 178.253.15.12:0
File type HTML document, ASCII text, with very long lines (25593), with no line terminators
Hash 5e13f43707c118ec0195fe1acdc75fd2
eb96aa7f501f38dd0240f01173f670e53e696793
b056cc51113f51fef71bd8a8e20aa3801635ad1aa6e02068f33aa90ab84749b2
GET /_nuxt/desktop/default/plugins.vue-js-modal-2bf97da2.js HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 7498
last-modified: Fri, 03 Feb 2023 15:53:21 GMT
vary: Accept-Encoding
etag: "63dd2df1-1d4a"
content-encoding: gzip
expires: Sat, 04 Feb 2023 03:13:28 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/_nuxt/desktop/default/date-fns-locale-21-897aa555.js
178.253.15.12200 OK 2.6 kB URL HTTP/2 1xlite-277345.top/_nuxt/desktop/default/date-fns-locale-21-897aa555.js
IP 178.253.15.12:0
File type ASCII text, with very long lines (9012), with no line terminators
Hash 8b3a72dea29e722f0ad296b72949e5b5
20332db2b9ad527574713c0185e4489e40c83045
babc5b71116daaf1d634399d014d82195b035afef15abd703b3b508677f0d7c0
GET /_nuxt/desktop/default/date-fns-locale-21-897aa555.js HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 2647
last-modified: Fri, 03 Feb 2023 15:53:21 GMT
vary: Accept-Encoding
etag: "63dd2df1-a57"
content-encoding: gzip
expires: Sat, 04 Feb 2023 03:13:28 GMT
cache-control: max-age=3600
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/DC-15c7897d.js
8.248.224.22200 OK 1.4 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/DC-15c7897d.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (3957), with no line terminators
Hash ea2672484e0f9bc38b1d61d683652210
30d120fdfa6acccfe9bd4c6102ba95c4ff08d585
e61acbf350d34521fdaa8519493cdabc36c8b89300b553f84fb6a5fa2610c44c
GET /_nuxt/desktop/default/DC-15c7897d.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 1366
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-556"
expires: Sat, 04 Feb 2023 07:50:19 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66276
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:13:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-178408567-1
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-178408567-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash db31b6ca022c3ec1e5296501848021dc
8533e4bcb75f58a0e60dabf8c2945cb0afa944b0
37b1a7c64384a17f68665e7f410b2a8579f3c12527b53384509d2830f6bab21f
GET /gtag/js?id=UA-178408567-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 Feb 2023 02:13:28 GMT
expires: Sat, 04 Feb 2023 02:13:28 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44899
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1xlite-277345.top/version.json?timestamp=1675476841700
178.253.15.12200 OK 44 B URL HTTP/2 1xlite-277345.top/version.json?timestamp=1675476841700
IP 178.253.15.12:0
Hash 2ff0903e2cf1934343d552ae57e72026
4ba867a032cfd0e85d695429de231d14c4c4dd56
ffa5642106dbd12dea7a3bd3a05ec8c1a34a9ce87385221b32f65da552cd631d
GET /version.json?timestamp=1675476841700 HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:28 GMT
content-type: application/json
content-length: 44
last-modified: Fri, 03 Feb 2023 16:02:20 GMT
vary: Accept-Encoding
etag: "63dd300c-2c"
content-encoding: gzip
expires: Sat, 04 Feb 2023 02:14:28 GMT
access-control-allow-origin: *
cache-control: max-age=60, max-age=60, s-maxage=60
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:13:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
radar.cedexis.com/1593429750/radar.js
45.54.49.5200 OK 19 kB URL HTTP/1.1 radar.cedexis.com/1593429750/radar.js
IP 45.54.49.5:0
ASN #63911 NetActuate, Inc
File type ASCII text, with very long lines (1782)
Hash 2acb3c3179b2646943d1a8f5166743cc
56aa31a4027fec3dd8cc78114c6b0f3604716c14
0ac8b27ab0fd5f6440f4fc51e98694a417ae1402a3ca4feb224643327c079595
GET /1593429750/radar.js HTTP/1.1
Host: radar.cedexis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 02:13:28 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Jun 2020 11:30:33 GMT
Vary: Accept-Encoding
ETag: W/"5ef9d0d9-af5c"
Expires: Sat, 18 Feb 2023 02:13:28 GMT
Cache-Control: max-age=1209600, public
Content-Encoding: gzip
v3.traincdn.com/_nuxt/desktop/default/ioc.dependencies.22-dbb8c55a.js
8.248.224.22200 OK 1.4 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/ioc.dependencies.22-dbb8c55a.js
IP 8.248.224.22:0
File type Unicode text, UTF-8 text, with very long lines (3769), with no line terminators
Hash a7406488705c91f8562890a47d57e5e5
f44a28a14b6638930d24e1e372298d2fd351c2dd
0c5a4e4701645b80a701741ea5c0f87128a69633e9182898e45dc11fcb9a91d2
GET /_nuxt/desktop/default/ioc.dependencies.22-dbb8c55a.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 1397
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-575"
expires: Sat, 04 Feb 2023 07:49:24 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66245
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-277345.top/_nuxt/Desktop/Default/svg-sprites/common-2000139.svg
178.253.15.12200 OK 54 kB URL HTTP/2 1xlite-277345.top/_nuxt/Desktop/Default/svg-sprites/common-2000139.svg
IP 178.253.15.12:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65536), with no line terminators
Hash a0f477c2b7f2b6deb1b39cff13993f77
38e29150ffd435a1febda2e09e4a0efb367906fa
c5c2022e6c75dbf0185d3b675737296c9202c07301727cfba21b06ab1bffa787
GET /_nuxt/Desktop/Default/svg-sprites/common-2000139.svg HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Fri, 03 Feb 2023 15:58:18 GMT
etag: W/"63dd2f1a-1b712"
expires: Sun, 05 Feb 2023 00:50:52 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/036bac5ccd2222d5c0bcab450545dae6.png
8.248.224.22200 OK 6.0 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/036bac5ccd2222d5c0bcab450545dae6.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash ae77caddd1c5f1dadc117d71057e8023
c329dfa7456343a109deaebe8bf00fab8ed988ff
1654c03af6de286a42c355dac0a2a8f07262a0c4358545d965f2c3fda9e64f96
GET /sfiles/logo_teams/036bac5ccd2222d5c0bcab450545dae6.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 6033
etag: "ae77caddd1c5f1dadc117d71057e8023"
last-modified: Tue, 31 Mar 2020 09:00:50 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4350747
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-277345.top/_nuxt/Desktop/Default/svg-sprites/country-2000139.svg
178.253.15.12200 OK 55 kB URL HTTP/2 1xlite-277345.top/_nuxt/Desktop/Default/svg-sprites/country-2000139.svg
IP 178.253.15.12:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65536), with no line terminators
Hash c6c2a4b805cfdc8267608242cb29affd
76ea9b76419d919bb5d611987698d1ad2987bffe
47dbe599be3555c2c713847d253e33a4c4caeec677cf5871036793db18af01a6
GET /_nuxt/Desktop/Default/svg-sprites/country-2000139.svg HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Fri, 03 Feb 2023 15:58:18 GMT
etag: W/"63dd2f1a-26280"
expires: Sun, 05 Feb 2023 02:01:06 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/6854.png
8.248.224.22200 OK 14 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/6854.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash c0182965a1f2e044a0adce40f40f3ed5
34010c62483d9b6b7e8662c2352b0d0daa5f9b43
89b9711a3ef4ef9c6116c01f7e2836261977109b90c5d02a65505b47e77412d6
GET /sfiles/logo_teams/6854.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 14244
etag: "c0182965a1f2e044a0adce40f40f3ed5"
last-modified: Tue, 13 Aug 2019 15:10:21 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4282738
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-277345.top/_nuxt/Desktop/Default/svg-sprites/sports-2000139.svg
178.253.15.12200 OK 151 kB URL HTTP/2 1xlite-277345.top/_nuxt/Desktop/Default/svg-sprites/sports-2000139.svg
IP 178.253.15.12:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65536), with no line terminators
Size 151 kB (150943 bytes)
Hash a7c29f4041ea89747805ad32bc93bd1a
8a51075212618ef18a54c29346cb5b02d2c28fda
9587f60f9887612f07acc5998d99536a048e594d01c6c625890662d5e9bcd3d0
GET /_nuxt/Desktop/Default/svg-sprites/sports-2000139.svg HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Fri, 03 Feb 2023 15:58:18 GMT
etag: W/"63dd2f1a-573c1"
expires: Sun, 05 Feb 2023 02:01:06 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/be3dbfb428546c98d390c33af33005fc.png
8.248.224.22200 OK 31 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/be3dbfb428546c98d390c33af33005fc.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 014e77b1f6e5868ecddf9279c891c89d
86abfd4b77a88b18dbeddee0b17474ba6dc2058d
2e350864254da817875741bab81c09a7a6666deaac6d3e3efc2097e2c640b044
GET /sfiles/logo_teams/be3dbfb428546c98d390c33af33005fc.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 30698
etag: "014e77b1f6e5868ecddf9279c891c89d"
last-modified: Mon, 06 Jan 2020 22:11:58 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4279623
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/95487b44065316a9e6bb8f53d57a9010.png
8.248.224.22200 OK 31 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/95487b44065316a9e6bb8f53d57a9010.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 95487b44065316a9e6bb8f53d57a9010
c6903c44c775ffe8e5fb79b68a1a6e79d6404219
b32639903e46c36f6b1a3fd13eee1ba4798fa7bb3ed3c203c160f2d966f01b98
GET /sfiles/logo_teams/95487b44065316a9e6bb8f53d57a9010.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 31016
etag: "95487b44065316a9e6bb8f53d57a9010"
last-modified: Fri, 22 Nov 2019 06:36:37 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4279624
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/6860.png
8.248.224.22200 OK 11 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/6860.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 7f93a68bd279df6028e56e01bba0dbce
e7ec384f5666e4d3b057dcdf1c84707223f56d1b
924a47670201b6becbe91f32e2d7a129944f349614490ed4e80b5801492ef5e4
GET /sfiles/logo_teams/6860.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 11341
etag: "7f93a68bd279df6028e56e01bba0dbce"
last-modified: Tue, 13 Aug 2019 15:10:21 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4282737
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/6896.png
8.248.224.22200 OK 6.9 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/6896.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d4c46a89fb287b2f0a361d105b6bcf89
681a2b1bf575c1e3a3c07c35698e72c0213cc6b5
146044c3df755d86704829deb02fa57f45a825bd2edf4d9f48ce51a5deb04f6a
GET /sfiles/logo_teams/6896.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 6914
etag: "d4c46a89fb287b2f0a361d105b6bcf89"
last-modified: Tue, 13 Aug 2019 15:10:24 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4279623
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/6872.png
8.248.224.22200 OK 13 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/6872.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 185e10fbaadadaea795229138e0bfdb9
eb4c2acf185bd86600a489975268639cee848003
2ab58b16556412abc2b7b748c2220a20f165caedc319d9c49ce6dcddd8138559
GET /sfiles/logo_teams/6872.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 12995
cache-control: public, max-age=86400
etag: "185e10fbaadadaea795229138e0bfdb9"
expires: Sat, 04 Feb 2023 18:24:32 GMT
last-modified: Thu, 19 Jan 2023 14:27:34 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 28137
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/f620f698f9b2c4e2b7def10be5960ecd.png
8.248.224.22200 OK 10 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/f620f698f9b2c4e2b7def10be5960ecd.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash dcbde4f5fb75fea4aeda05d589fd6252
d1be995391a94c09c3b15cb424c7bf732641febc
b94a49f1d83ee4046af1740fd11a1b446055f26e18c4d70ad611eb9ef95cc404
GET /sfiles/logo_teams/f620f698f9b2c4e2b7def10be5960ecd.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 10246
etag: "dcbde4f5fb75fea4aeda05d589fd6252"
last-modified: Sat, 08 Aug 2020 02:39:08 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4279405
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/6856.png
8.248.224.22200 OK 11 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/6856.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 377c503c846f39d6e05c51bf4cdfb9cd
f1b4af24e28ad851ba9bde04a7105debf10516e6
2c041dbd479b43017a1b8473fc72f03c86538b99ad75719d45c0eda1a56b867a
GET /sfiles/logo_teams/6856.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 10680
etag: "377c503c846f39d6e05c51bf4cdfb9cd"
last-modified: Tue, 13 Aug 2019 15:10:21 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4282738
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/6906.png
8.248.224.22200 OK 8.7 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/6906.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 920ebe7b4ebf58bfdbdea39461c456d7
d02b10b43f8b38a22a7d7d8c6122871115ea9194
7eb23e17f14e81efaecfc10e6e3ea57fc4de32ab4bf6cbc52231b104b8da6d2d
GET /sfiles/logo_teams/6906.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 8692
etag: "920ebe7b4ebf58bfdbdea39461c456d7"
last-modified: Tue, 13 Aug 2019 15:10:25 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4191809
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/6908.png
8.248.224.22200 OK 6.1 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/6908.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 8b7168fdf265273f3fe4cd6d30ccecad
db736e411a65392ddd60e25d45a572b5df3b2277
66c9cb63646a2f1299845f103bfe105a17e149c2c5bfa2ad931615df3c032e6a
GET /sfiles/logo_teams/6908.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 6144
etag: "8b7168fdf265273f3fe4cd6d30ccecad"
last-modified: Tue, 13 Aug 2019 15:10:25 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4352702
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/6858.png
8.248.224.22200 OK 10 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/6858.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 4b7969f585ea3c7f471f48158ec56725
692e0acb205887191e7c8a9c94c54f26e91d7249
02c430e4a3e42bca06dbbc0fd391d1e06035273e365110f8e13b18380c8f179c
GET /sfiles/logo_teams/6858.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 10272
etag: "4b7969f585ea3c7f471f48158ec56725"
last-modified: Tue, 13 Aug 2019 15:10:21 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4282738
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/6882.png
8.248.224.22200 OK 16 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/6882.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash f77013ae77b815d7657c112c51dde031
c17e33fcfe8b742b65de87e26df7c49664fa9aee
bd5e5c5654a0618800601e757c01a7926bb002fffdd4df6fe010939ae879b8ee
GET /sfiles/logo_teams/6882.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 16103
etag: "f77013ae77b815d7657c112c51dde031"
last-modified: Tue, 13 Aug 2019 15:10:23 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4279623
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/6876.png
8.248.224.22200 OK 7.8 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/6876.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 328c31f23b877b9b3bf2c0ea96b35463
ce400774e00d9315d5badd80314e0cb53e999a63
0dce4839b907810dabf408d10671463dd91d4de92334dcad3eda4c13aec16f41
GET /sfiles/logo_teams/6876.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 7792
etag: "328c31f23b877b9b3bf2c0ea96b35463"
last-modified: Tue, 13 Aug 2019 15:10:23 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4282738
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/24a303cdc0a24b99485aebc26ff13f55.png
8.248.224.22200 OK 24 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/24a303cdc0a24b99485aebc26ff13f55.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 8683ee8a97cd4b64d93d200cb885d11b
7f1e88a6f880e1862b4f86b8a72eb9aca7d46342
71fc134c67214fd856fd878fdb399d717748a018347935dafe646cd3ecb4c540
GET /sfiles/logo_teams/24a303cdc0a24b99485aebc26ff13f55.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 23527
etag: "8683ee8a97cd4b64d93d200cb885d11b"
last-modified: Tue, 16 Jun 2020 18:15:46 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 5906034
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/3470.png
8.248.224.22200 OK 8.9 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/3470.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 70c0734771866c00152841861d100de2
2b850d647ea0e5b67a85d05830b406f1d270fd47
d254f0a5a5e936b3eaed4a211059a60b7e8e440f97ad0dd5bb097e3fc474de34
GET /sfiles/logo_teams/3470.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 8900
etag: "70c0734771866c00152841861d100de2"
last-modified: Tue, 13 Aug 2019 15:04:51 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 5906033
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/3482.png
8.248.224.22200 OK 10 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/3482.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 23d8acd7604eff8778f21fadfd27e04a
73c6217db54f5226e386272f9ef7bc1817749d5a
416e217e432bd3459538b45c371306dc6e9ad18ed1e90856bbe6dd1a68eb5864
GET /sfiles/logo_teams/3482.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 10363
etag: "23d8acd7604eff8778f21fadfd27e04a"
last-modified: Tue, 13 Aug 2019 15:04:52 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 5906032
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/3488.png
8.248.224.22200 OK 11 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/3488.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 2d8f1289246627583edd18ab6f409e47
00b8cd65e503158a9246b718222a259eaa0267d2
8102d15f631d817da05e9767e384cb29ee44d79f9582742b51966c4b88a8fb3b
GET /sfiles/logo_teams/3488.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 10981
etag: "2d8f1289246627583edd18ab6f409e47"
last-modified: Tue, 13 Aug 2019 15:04:53 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 5906034
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/11551.png
8.248.224.22200 OK 7.3 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/11551.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 9053575eeeec35a60c4077056a0a0906
3914bc4ce844170725b6289afbfbcc3738cc93c3
95627c70d59370dd3a00923a1aa0298047f2fe45d10805527a1c04a349aa6b82
GET /sfiles/logo_teams/11551.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 7252
etag: "9053575eeeec35a60c4077056a0a0906"
last-modified: Tue, 13 Aug 2019 14:52:01 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 5906034
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/3456.png
8.248.224.22200 OK 21 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/3456.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 08290d4252abce7c80c8ca0148a91680
70f51d1155a34bdaea5676901514f9b9aa1a4188
a6d07b0693f4a384377321e2fac90ea77c471ce090dedd8596ddb4e39227f70b
GET /sfiles/logo_teams/3456.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 21164
etag: "08290d4252abce7c80c8ca0148a91680"
last-modified: Tue, 13 Aug 2019 15:04:49 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 5906034
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/3454.png
8.248.224.22200 OK 8.0 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/3454.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash dad35830c622b46e2cf0dfba78d511ee
68b4828cba061a355c72f494d17173174fd7b83c
f00c1d7e8d8a33a3bc2ed85ee9fe95dd02e4b9da4d9b1801cc718bdba779e5ea
GET /sfiles/logo_teams/3454.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 8020
etag: "dad35830c622b46e2cf0dfba78d511ee"
last-modified: Tue, 13 Aug 2019 15:04:48 GMT
server: Footprint Distributor V6.1.1162
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 6010679
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/fadddef16fb3f0768be2989065e9be6b.png
8.248.224.22200 OK 6.3 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/fadddef16fb3f0768be2989065e9be6b.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 0a0f1a78e969f7b10f359024cbabfc89
1c36c2a1ca623cad66ccfc792a45c8169dd139e7
71b04ac184524920291f01b852806e90fc66c4803b6a4a00b4d568026dc7af1d
GET /sfiles/logo_teams/fadddef16fb3f0768be2989065e9be6b.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 6341
etag: "0a0f1a78e969f7b10f359024cbabfc89"
last-modified: Tue, 29 Nov 2022 11:04:01 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 5710143
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/defaultlogo.png
8.248.224.22200 OK 2.7 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/defaultlogo.png
IP 8.248.224.22:0
File type PNG image data, 55 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 72c91e676105dc1628e8a636554bfcfd
c0162ae779e4000be14b99e96981ff309a41b0ee
d10053f91feb4cd1a54f46fdcb8eb5193e4396a09e6341458edcf2f38ada718b
GET /sfiles/logo_teams/defaultlogo.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 2713
etag: "72c91e676105dc1628e8a636554bfcfd"
last-modified: Tue, 13 Aug 2019 15:13:43 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 5820490
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/e7401d0a426df1a90e60c6c0040fd6a2.png
8.248.224.22200 OK 34 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/e7401d0a426df1a90e60c6c0040fd6a2.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 0ce01187dedf43262750b74bb1b0b57f
b134d40ba5d5901ccd67e901c5aa6930242f714a
eb476eac50b554768e8f44215dfb2804e6c73da9779bddadc7f1a05527232c50
GET /sfiles/logo_teams/e7401d0a426df1a90e60c6c0040fd6a2.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 33698
etag: "0ce01187dedf43262750b74bb1b0b57f"
last-modified: Sat, 30 May 2020 06:37:46 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4189082
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/32217.png
8.248.224.22200 OK 11 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/32217.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d0699b88175613730114f457c1cd6a4f
2825c001855a7af8df68322c7987edfe5465b557
4b42fa3535f21d5e5f8e12010c4ecaf81fe0c65dc9e42f4574c01127fa09a864
GET /sfiles/logo_teams/32217.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 11203
etag: "d0699b88175613730114f457c1cd6a4f"
last-modified: Tue, 13 Aug 2019 15:04:19 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4274470
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/5036.png
8.248.224.22200 OK 5.6 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/5036.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d4c6fa909fcbd648502d05a4b5491925
30e1d34e23fc909e8524f9f95d324d6e03be047b
78eba7a65436dfba8060240abd82f6d4f47960178182d362ca5303866a3efa02
GET /sfiles/logo_teams/5036.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 5556
etag: "d4c6fa909fcbd648502d05a4b5491925"
last-modified: Tue, 13 Aug 2019 15:07:45 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4189082
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/5022.png
8.248.224.22200 OK 6.6 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/5022.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 241d6053ecb74971444f8855d4921c1e
de70abbcea249eeb25909f56a2a3b4624e20c5ff
6907da9e46632f3586af018eea9fb7f247ee14e1580430d9585eaad7db1c6a2d
GET /sfiles/logo_teams/5022.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 6568
etag: "241d6053ecb74971444f8855d4921c1e"
last-modified: Tue, 13 Aug 2019 15:07:43 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4371657
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo-champ/9af23e42915f10afd2be47b9ca3db017.png
8.248.224.22200 OK 8.3 kB URL HTTP/2 v3.traincdn.com/sfiles/logo-champ/9af23e42915f10afd2be47b9ca3db017.png
IP 8.248.224.22:0
File type PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash 9af23e42915f10afd2be47b9ca3db017
56afc9db0c826e232b365aa21c60e70412673704
0332637f5419c56213f0bdebd54c2340a90f3c0f47bda8c5ddf742b7b4a5396d
GET /sfiles/logo-champ/9af23e42915f10afd2be47b9ca3db017.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 8279
etag: "9af23e42915f10afd2be47b9ca3db017"
last-modified: Wed, 18 Dec 2019 11:39:02 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4191893
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/8294.png
8.248.224.22200 OK 14 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/8294.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 4678a53059a69a8377a62299a46c8424
ca243551bc4d1383e4f06823ad08bd60b6aecb8e
b781ddf404d3851c35ccd3f10ba824f07e6ca36ccb67f7030c561c9737e398b6
GET /sfiles/logo_teams/8294.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 14452
etag: "4678a53059a69a8377a62299a46c8424"
last-modified: Tue, 13 Aug 2019 15:11:54 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4191892
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/8292.png
8.248.224.22200 OK 8.0 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/8292.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash bf7f68f1182f7eab77c4c466906415ed
d98e8d1d2ee0bf1ab5380dc2d26d8734f86a966e
c4a87bed1f47e6ff04983b6fcd1992eb7172818475b5206d9d49ec524c7d6d93
GET /sfiles/logo_teams/8292.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 7958
etag: "bf7f68f1182f7eab77c4c466906415ed"
last-modified: Tue, 13 Aug 2019 15:11:54 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4191893
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/8276.png
8.248.224.22200 OK 12 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/8276.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e6697e7c8bb871bae376b44e748bcf6b
2e0628a9a1adc89a2f3cb8113e7827cea7c69f71
fdaacf26653f97e43461d9c78938532c69c7c293416942e4fec0b7da4c4c64a3
GET /sfiles/logo_teams/8276.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 11501
etag: "e6697e7c8bb871bae376b44e748bcf6b"
last-modified: Tue, 13 Aug 2019 15:11:53 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4191890
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/cae52e19a12daf03beb54b87a7ae6bcb.png
8.248.224.22200 OK 8.7 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/cae52e19a12daf03beb54b87a7ae6bcb.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash cae52e19a12daf03beb54b87a7ae6bcb
685c316cf3a263fbfa710274abe82187df1b4277
3413f503cd5e8d06adeae4a8f9e2ed244483bf19f3c249802c455662fa602a39
GET /sfiles/logo_teams/cae52e19a12daf03beb54b87a7ae6bcb.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: image/png
content-length: 8669
etag: "cae52e19a12daf03beb54b87a7ae6bcb"
last-modified: Mon, 02 Sep 2019 17:43:59 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4191891
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/45a3de2a.css
8.248.224.22200 OK 2.2 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/45a3de2a.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (17112), with no line terminators
Hash d110efcccc60c10b62b3dbbc8ced9147
379c4233b716642331c207e1857e0caea42026fb
6265ff90d969f26b5651acb056668c3a1510d54407618c03b67c4c82ea546729
GET /_nuxt/desktop/default/css/45a3de2a.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: text/css
content-length: 2166
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb423-876"
expires: Sat, 04 Feb 2023 12:28:24 GMT
last-modified: Fri, 03 Feb 2023 07:13:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 49505
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/Page.Betting.ChampResults/betting.SportMenuApp-03df2490.js
8.248.224.22200 OK 2.7 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/Page.Betting.ChampResults/betting.SportMenuApp-03df2490.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (10320), with no line terminators
Hash 3d47834ed527aa6d35798515f185dcfe
ee02fc114c1d578e7cec989b0965aad5b4d0585e
56a46fee62ae44cb32cf7082325c8a0d6fcb7918b91fe68eeb6a0db016800711
GET /_nuxt/desktop/default/Page.Betting.ChampResults/betting.SportMenuApp-03df2490.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 2742
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-ab6"
expires: Sat, 04 Feb 2023 07:53:11 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66244
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/5645e90a.css
8.248.224.22200 OK 4.4 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/5645e90a.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (36151), with no line terminators
Hash 333de9c81712c93a12f392a04d77df44
d35e03d8cc101800801ca298d2855c143ddbe69a
d55a2d9ef870977345d9bdbb32df19bfe614e25718bd28cd7f0a99cac12cb954
GET /_nuxt/desktop/default/css/5645e90a.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: text/css
content-length: 4416
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb423-1140"
expires: Sat, 04 Feb 2023 12:28:50 GMT
last-modified: Fri, 03 Feb 2023 07:13:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 49498
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/betting.SportMenuApp-57f0de4e.js
8.248.224.22200 OK 37 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/betting.SportMenuApp-57f0de4e.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash eece878237cbdf6255ee706899dea2ea
9d8cbb2dffb52b1a1f27baa779821f1e22bc7e19
120d036128bb1246ed589858bfecb5b6c3da32f1183e1806725aef580bf47ade
GET /_nuxt/desktop/default/betting.SportMenuApp-57f0de4e.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 37341
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-91dd"
expires: Sat, 04 Feb 2023 07:50:22 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66245
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/GameProvider/Page.Betting.Game/Page.Betting.MultiLive/Page.BlockAppeal.BetsHistory/Page.Cybe/1f9bd3f9-42b8a652.js
8.248.224.22200 OK 6.4 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/GameProvider/Page.Betting.Game/Page.Betting.MultiLive/Page.BlockAppeal.BetsHistory/Page.Cybe/1f9bd3f9-42b8a652.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (24968), with no line terminators
Hash 4331a16398b3cc4fadbf7d2819d86d63
658185469f33555bda21171501d5bce14ec3cf84
db3e3667b5f879171f5ac5e34915abd0595c5874b0c5098cb659bb5c8307cc5e
GET /_nuxt/desktop/default/vendors/GameProvider/Page.Betting.Game/Page.Betting.MultiLive/Page.BlockAppeal.BetsHistory/Page.Cybe/1f9bd3f9-42b8a652.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 6421
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-1915"
expires: Sat, 04 Feb 2023 07:50:23 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66291
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/Page.BlockAppeal.BetsHistory/Page.Office.Account/Page.Office.AdminRequest/Page.Office.BetsHi/963f8409-3d6c5006.js
8.248.224.22200 OK 15 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/Page.BlockAppeal.BetsHistory/Page.Office.Account/Page.Office.AdminRequest/Page.Office.BetsHi/963f8409-3d6c5006.js
IP 8.248.224.22:0
File type Unicode text, UTF-8 text, with very long lines (57574), with no line terminators
Hash 768e55f6a9913f3d3d7d458d01e3dcba
fd91493a8d409386d62db6f254f53f6fb383f350
49e16f56cbc517477d9dde7abd74e73d8990e4b101bf10915e948e52cefa0d0e
GET /_nuxt/desktop/default/vendors/Page.BlockAppeal.BetsHistory/Page.Office.Account/Page.Office.AdminRequest/Page.Office.BetsHi/963f8409-3d6c5006.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 14675
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-3953"
expires: Sat, 04 Feb 2023 07:49:25 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66244
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/betting.CentralMenuApp-8e0d4bf0.js
8.248.224.22200 OK 2.2 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/betting.CentralMenuApp-8e0d4bf0.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (8045), with no line terminators
Hash 16bf494e889dba96cd551ebe9f497c78
06534583b669b7e92a44c2447014a88ee4bd72db
cae52991d2e280e9b288dd24e39c74779c334bfb4e89eba97786c2a8a3c02c3d
GET /_nuxt/desktop/default/vendors/betting.CentralMenuApp-8e0d4bf0.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 2207
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-89f"
expires: Sat, 04 Feb 2023 07:50:00 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66245
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/0b8e2f10.css
8.248.224.22200 OK 2.4 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/0b8e2f10.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (14721), with no line terminators
Hash 4d3f454f405d9b48c8e30b2cffe02997
64cffad33f875d7a229573ac22d04d4a8a7f6826
2dbc48a442a11e0a952d62a5a4a3ded713a0fbb4060c31b6e576437665d6254b
GET /_nuxt/desktop/default/css/0b8e2f10.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: text/css
content-length: 2404
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb423-964"
expires: Sat, 04 Feb 2023 12:28:31 GMT
last-modified: Fri, 03 Feb 2023 07:13:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 49502
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/betting.CentralMenuApp-421014e2.js
8.248.224.22200 OK 14 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/betting.CentralMenuApp-421014e2.js
IP 8.248.224.22:0
File type Unicode text, UTF-8 text, with very long lines (60039), with no line terminators
Hash 43009cb14c281aa42171364e2fa4063c
cc9519b75dcbe5941b46d04d63f85fae0c7973e3
696c8a7ec6159221d628fef4b2fc67644a5918ee0dd7c8c0bb7bc7f298255e87
GET /_nuxt/desktop/default/betting.CentralMenuApp-421014e2.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 13778
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-35d2"
expires: Sat, 04 Feb 2023 07:53:31 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66244
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/3d6a92a8.css
8.248.224.22200 OK 2.5 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/3d6a92a8.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (19574), with no line terminators
Hash 12e37d885a05938cfb87e6476d17c26f
3ffe825cfbb0809304f375a6d809a0acf39c7119
830094273d8515ddba5c936787a7c102b930b1a07803510d2507aef24c8d9b8d
GET /_nuxt/desktop/default/css/3d6a92a8.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: text/css
content-length: 2549
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb423-9f5"
expires: Sat, 04 Feb 2023 12:29:03 GMT
last-modified: Fri, 03 Feb 2023 07:13:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 49500
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/Layout.Betting.ExpressDay-18431414.js
8.248.224.22200 OK 8.7 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/Layout.Betting.ExpressDay-18431414.js
IP 8.248.224.22:0
File type Unicode text, UTF-8 text, with very long lines (33112), with no line terminators
Hash 199510c727b0c1e1c4c02a338f4cb25c
bc2198e93596f791c30b80d0edbd60df360a0c18
ae72d25201d343239301ad186472068eb3ecc7bda453be6db76aa710ca789d3b
GET /_nuxt/desktop/default/Layout.Betting.ExpressDay-18431414.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 8669
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-21dd"
expires: Sat, 04 Feb 2023 07:49:58 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66244
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/betting.media-20642b93.js
8.248.224.22200 OK 18 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/betting.media-20642b93.js
IP 8.248.224.22:0
File type Unicode text, UTF-8 text, with very long lines (43855), with NEL line terminators
Hash a3c4d302d6a7b9f303e7a358fb0d2063
c3cf730084ae263de5a2fda33f3ac2dce8c73935
09f512558edac37eed61e5ac013ba5d99bbbbc0285d7a402cf0e0ebf1c911bd8
GET /_nuxt/desktop/default/vendors/betting.media-20642b93.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 17787
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-457b"
expires: Sat, 04 Feb 2023 07:49:58 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66242
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/c2b74bc7.css
8.248.224.22200 OK 454 B URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/c2b74bc7.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (1429), with no line terminators
Hash 82df7c7083c34e002b143a716a58ceef
c0e8797a407b4e5fa58174eb6bcfb2389b0eaa54
b88a6aef23e4aff4e561c56d50461adedd159665438ad873c424d32686bdab97
GET /_nuxt/desktop/default/css/c2b74bc7.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: text/css
content-length: 454
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb423-1c6"
expires: Sat, 04 Feb 2023 08:30:51 GMT
last-modified: Fri, 03 Feb 2023 07:13:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 63760
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/398badd9.css
8.248.224.22200 OK 1.2 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/398badd9.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (5498), with no line terminators
Hash e9fe80081f8e6b03985e386f14d16575
2b63c820a05a92fe0cccdddc08209103ad5e99ac
bdec2ce66815b4ac700af86b51f84f0a74e890069d2ff9a4a35fe5b7dcf1f98f
GET /_nuxt/desktop/default/css/398badd9.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: text/css
content-length: 1238
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb423-4d6"
expires: Sat, 04 Feb 2023 12:28:21 GMT
last-modified: Fri, 03 Feb 2023 07:13:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 49508
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/betting.media-2bc0ce84.js
8.248.224.22200 OK 4.8 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/betting.media-2bc0ce84.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (20219), with no line terminators
Hash a2386e68daa986e088f02c61e328d912
fbd15c7f73e2147c1ba79d66fabe3f18e5c06f6b
8a9df89205d324eee25cb8764097da6c214c6187e3c89f445e91cdf9b7a22270
GET /_nuxt/desktop/default/betting.media-2bc0ce84.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 4777
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-12a9"
expires: Sat, 04 Feb 2023 07:50:41 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66244
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/237e5674.css
8.248.224.22200 OK 213 B URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/237e5674.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (369), with no line terminators
Hash b965069e58547552b9bd49a78a2f944c
d08430581dbd5e68aad34a89d9f147735184225f
0811182be811bd097388f76623d75aa86dfe79c080d8280206a23608725988c8
GET /_nuxt/desktop/default/css/237e5674.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: text/css
content-length: 213
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb423-d5"
expires: Sat, 04 Feb 2023 07:48:45 GMT
last-modified: Fri, 03 Feb 2023 07:13:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66289
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/Auth.Forms/GameProvider/Information.Feedback/Page.Betting.Game/Page.Betting.MultiLive/Page.C/cd316887-55b529b1.js
8.248.224.22200 OK 6.7 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/Auth.Forms/GameProvider/Information.Feedback/Page.Betting.Game/Page.Betting.MultiLive/Page.C/cd316887-55b529b1.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (21874)
Hash af67982f0a5efd008d8f82b4f630edc6
8ac9362aba42162090b9d66c6e895ed4653eda36
78264fe17e18e54bd6c4a0a43889bd0024d6f9ab6c26f2a7d843397f8a057686
GET /_nuxt/desktop/default/vendors/Auth.Forms/GameProvider/Information.Feedback/Page.Betting.Game/Page.Betting.MultiLive/Page.C/cd316887-55b529b1.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 6689
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-1a21"
expires: Sat, 04 Feb 2023 07:48:38 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66291
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/6ddcb708.css
8.248.224.22200 OK 464 B URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/6ddcb708.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (1665), with no line terminators
Hash e60f0af212982332fba91a7e7c9c3ffa
f395f93cefe642f8651b447e70d4fa1d4fc7ec3b
a5bfe665bb576fabb8fe9e20eb78e7979219e738d3f085381986878f9902371c
GET /_nuxt/desktop/default/css/6ddcb708.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: text/css
content-length: 464
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcda92-1d0"
expires: Sat, 04 Feb 2023 14:14:37 GMT
last-modified: Fri, 03 Feb 2023 09:57:38 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43134
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/Auth.Forms/Page.BlockAppeal.BetsHistory/Page.Information.Rules/Page.MobileApps/Page.Office.B/9ec65dba-17ae83a2.js
8.248.224.22200 OK 8.1 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/Auth.Forms/Page.BlockAppeal.BetsHistory/Page.Information.Rules/Page.MobileApps/Page.Office.B/9ec65dba-17ae83a2.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (25020), with no line terminators
Hash 36bcd1c439b855fe25844739ab8493f3
96d3a060eb0b74b620c8034f47fb4eb8f4774186
b484006d70f5a46b618d94452fef2f93cdc8c24bb32965460293eca67639b0ed
GET /_nuxt/desktop/default/vendors/Auth.Forms/Page.BlockAppeal.BetsHistory/Page.Information.Rules/Page.MobileApps/Page.Office.B/9ec65dba-17ae83a2.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 8112
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-1fb0"
expires: Sat, 04 Feb 2023 07:50:24 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66244
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/f9e66861.css
8.248.224.22200 OK 1.6 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/f9e66861.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (11175), with no line terminators
Hash b23808ea09d1a31a395bdf1b4a06c924
98ea9afb65c5ca266219d6dbbe60a97ab6c301d2
0ce3c46abc2386dc0da2ceeed07e25bbe291be1ed27c1b32f090e5603722d33c
GET /_nuxt/desktop/default/css/f9e66861.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: text/css
content-length: 1626
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-65a"
expires: Sat, 04 Feb 2023 12:29:53 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 49439
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/Auth.Forms/Information.Feedback/Page.Office.Account/Page.Office.AdminRequest/Page.Office.Support/Reg/3523e018-61ff67e2.js
8.248.224.22200 OK 2.8 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/Auth.Forms/Information.Feedback/Page.Office.Account/Page.Office.AdminRequest/Page.Office.Support/Reg/3523e018-61ff67e2.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (8700), with no line terminators
Hash 0bc9227544fd4a6e06ac0cfe99f7eb85
379c374d6ebb3a63a928d36296ec1b6cf83ca0ff
8a4848af5699cac3021fb6427b55cf84539bc2ace1904be25073a9fe7a8b21d7
GET /_nuxt/desktop/default/Auth.Forms/Information.Feedback/Page.Office.Account/Page.Office.AdminRequest/Page.Office.Support/Reg/3523e018-61ff67e2.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 2754
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-ac2"
expires: Sat, 04 Feb 2023 07:50:24 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66244
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/betting.coupon2/vuedraggable-9388d347.js
8.248.224.22200 OK 24 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/betting.coupon2/vuedraggable-9388d347.js
IP 8.248.224.22:0
File type Unicode text, UTF-8 text, with very long lines (65472)
Hash 52eded57b943834e1ae137a1ee38b04d
9d99db41fbf96d1802114949d68d627c0c03c057
4d66401739cd9f1c6f355db41ebf50c52e89b61012ddc85f46081680d72f140b
GET /_nuxt/desktop/default/vendors/betting.coupon2/vuedraggable-9388d347.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 23575
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-5c17"
expires: Sat, 04 Feb 2023 07:49:25 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66244
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/2e30a051.css
8.248.224.22200 OK 2.1 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/2e30a051.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (20144), with no line terminators
Hash 4881b487bdbbac4b58a133c42c8cb4ec
7245633004e75e2b47405c71b7444a14d7b06481
59f5f74fbd7c5dc8d6ab4e5ca0196b0dceadf5c97120c13657b19b53f8c11f78
GET /_nuxt/desktop/default/css/2e30a051.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: text/css
content-length: 2079
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb423-81f"
expires: Sat, 04 Feb 2023 12:28:47 GMT
last-modified: Fri, 03 Feb 2023 07:13:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 49483
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-277345.top/en
178.253.15.12200 OK 109 kB IP 178.253.15.12:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (14399)
Size 109 kB (109385 bytes)
Hash 1accd5df381d4276f80e58d991b6882b
232e952664e508d0f9782ccdd01e1ed1a3ffcc7e
5d81abbcbb3ab364ec845351eb089665d0df58651c8189ab7bc6319cc5d00ed8
GET /en HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:26 GMT
content-type: text/html; charset=utf-8
accept-ranges: none
content-encoding: gzip
server-timing: total;dur=2200;desc="Nuxt Server Time", dt_285;dur=2211
set-cookie: SESSION=bd6895c412c781fc5826285fc806b6d8; Path=/; HttpOnly; Secure; SameSite=Lax
lng=en; Path=/
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/betting.coupon2/modal.CouponInsuranceModal/modal.CouponSellModal-2cbdfc8a.js
8.248.224.22200 OK 1.1 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/betting.coupon2/modal.CouponInsuranceModal/modal.CouponSellModal-2cbdfc8a.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (3795), with no line terminators
Hash aa3afa6bddba53b98964c7b056cf35ec
ab650e36c33fe9cf59e66f72026a85786a982d5f
b808afa97dea86ae0a93e9a5b138ecef031ccca307352a71b52a2acb577909da
GET /_nuxt/desktop/default/betting.coupon2/modal.CouponInsuranceModal/modal.CouponSellModal-2cbdfc8a.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 1127
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-467"
expires: Sat, 04 Feb 2023 07:49:25 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66244
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/RegistrationWidgetApp-faf5ccda.js
8.248.224.22200 OK 18 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/RegistrationWidgetApp-faf5ccda.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash dda1067d110fab6ff986b07b4fb5b96c
5fc9bc350ac191c38f8fcbef3714209a059e079e
412cdaff7aa3fb5e94cd39f490f3d6977ab796243f8bb053b6215ff8a703fd65
GET /_nuxt/desktop/default/RegistrationWidgetApp-faf5ccda.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 18515
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-4853"
expires: Sat, 04 Feb 2023 07:49:58 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66240
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/851419d3.css
8.248.224.22200 OK 2.0 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/851419d3.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (9913), with no line terminators
Hash e8f23192908be875c15c81ddffd1e074
2c09d9be34f149543b4601a85a2ea30a39694815
82263fecaa6c95ac8acfb763f09c3b3c47625716ad2f8f730d71261b86c77e26
GET /_nuxt/desktop/default/css/851419d3.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: text/css
content-length: 1977
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-7b9"
expires: Sat, 04 Feb 2023 12:29:53 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 49416
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/betting.coupon2-1285dbf6.js
8.248.224.22200 OK 26 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/betting.coupon2-1285dbf6.js
IP 8.248.224.22:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 2b5897520c4c7c9c7325a1d4edf65c59
9408b2ebff5c8f891b005cd86f3a1938942a6f10
d8d2634dc7443f3dcea11d599302762d2a87b5fed38c23280d76800734b73188
GET /_nuxt/desktop/default/betting.coupon2-1285dbf6.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 25848
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-64f8"
expires: Sat, 04 Feb 2023 07:50:24 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66242
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-277345.top/genfiles/cms/pg/285/css/value/42ba9774b8aea778d6717e7c99850e83.css
178.253.15.12200 OK 6.8 kB URL HTTP/2 1xlite-277345.top/genfiles/cms/pg/285/css/value/42ba9774b8aea778d6717e7c99850e83.css
IP 178.253.15.12:0
File type ASCII text, with very long lines (36504), with no line terminators
Hash a5a35c1e806c60890413c8520ea92206
e9a4c6ca6abe7ea580d033ee81a9f1aa9abc509f
579d0c6e739e2e596a02964bf7a649df9e6088b880d01ae6528715d5ba8306e7
GET /genfiles/cms/pg/285/css/value/42ba9774b8aea778d6717e7c99850e83.css HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:26 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 03 Feb 2023 11:44:04 GMT
x-rgw-object-type: Normal
etag: W/"d932a4ba154cc5607da3166fdb676f78"
content-encoding: br
expires: Sat, 04 Feb 2023 03:13:26 GMT
cache-control: max-age=3600
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/2a409fe7.css
8.248.224.22200 OK 1.0 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/2a409fe7.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (5354), with no line terminators
Hash b11145d3fa195f3a9bf77ea9529b4ed9
04ea31edf0123c331b71776653abb5f06a003135
108dd29d077295063e8e083c2a36223ae69e2e75d9f16f68b2e5b91c5cbbafb8
GET /_nuxt/desktop/default/css/2a409fe7.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:30 GMT
content-type: text/css
content-length: 1035
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb423-40b"
expires: Sat, 04 Feb 2023 12:28:32 GMT
last-modified: Fri, 03 Feb 2023 07:13:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 49498
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/betting.HomeSliderComponent-a15d581e.js
8.248.224.22200 OK 13 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/betting.HomeSliderComponent-a15d581e.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (47702), with no line terminators
Hash fe5de9d924b0e714ffd5cf50fa5e241a
12568d4f06d20131ca4b0753e618182e7532bb78
f7617dde3c7a195de5cea1fd000066bed4d76b1462a6035cac86f96e836649f8
GET /_nuxt/desktop/default/betting.HomeSliderComponent-a15d581e.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 13018
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-32da"
expires: Sat, 04 Feb 2023 07:50:26 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66245
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
216.58.207.227200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 9628, version 1.0\012- data
Hash d9ac47c7e500fb7083b8d595eaf6fe12
112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933
495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1xlite-277345.top
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 12:24:15 GMT
expires: Thu, 01 Feb 2024 12:24:15 GMT
cache-control: public, max-age=31536000
age: 222555
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/ioc.dependencies.32-cf63f8c6.js
8.248.224.22200 OK 1.4 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/ioc.dependencies.32-cf63f8c6.js
IP 8.248.224.22:0
File type Unicode text, UTF-8 text, with very long lines (3462), with no line terminators
Hash d122e6054e12fb6983460091029bb3ea
7ec71e628585cd08cc6e17abe1a77461fda21555
a40cd6288df831bf6757bcf0cf078b05240496c6a2ffcd420a75b53365d8b55a
GET /_nuxt/desktop/default/ioc.dependencies.32-cf63f8c6.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 1444
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-5a4"
expires: Sat, 04 Feb 2023 07:50:26 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66245
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-277345.top/domain-api/api/v1/domains/1xlite-277345.top
178.253.15.12200 OK 84 B URL HTTP/2 1xlite-277345.top/domain-api/api/v1/domains/1xlite-277345.top
IP 178.253.15.12:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d04a6797f03d7f5bd2988b15ab7ebb24
18bd0fe1fe44e78db59d4f853969762a61065704
53b2acde0c844bb480636038b55685ab9848987ec6bf719a0eacb5eff43a6849
GET /domain-api/api/v1/domains/1xlite-277345.top HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:30 GMT
content-type: application/vnd.api+json
content-length: 84
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/web-api/api/v3/bonuses/first-deposit
178.253.15.12200 OK 27 kB URL HTTP/2 1xlite-277345.top/web-api/api/v3/bonuses/first-deposit
IP 178.253.15.12:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash c59310a5a62a1b9d8f32646543a84010
148e9712980c9d15ea91a0a8d7df0c9a4ed308f2
3bb3c6327463ada9ca1bc835c543bbd79d0198a05587b41ba8fc47efe84e6c03
GET /web-api/api/v3/bonuses/first-deposit HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:30 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=18, dt_285;dur=21
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/service-api/LiveFeed/WebGetTopChampsZip?lng=en&gr=285&country=137
178.253.15.12200 OK 248 B URL HTTP/2 1xlite-277345.top/service-api/LiveFeed/WebGetTopChampsZip?lng=en&gr=285&country=137
IP 178.253.15.12:0
File type JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Hash c7c05ad51afa37a438a42c6b76def24c
70b8b56f7f93483d5a0630e81bf5cbde1650484d
400797d8addc0512055fd6cfa33e06d6d7c6f68d263922007cc1515cd760f5ae
GET /service-api/LiveFeed/WebGetTopChampsZip?lng=en&gr=285&country=137 HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:30 GMT
content-type: application/json; charset=utf-8
content-length: 248
cache-control: no-cache
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/commons/conversion/modal.RegistrationSuccessModalApp/registration.Main/user.userRegistration-a1a0a01a.js
8.248.224.22200 OK 6.4 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/commons/conversion/modal.RegistrationSuccessModalApp/registration.Main/user.userRegistration-a1a0a01a.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (18518), with no line terminators
Hash cf72959e79db81317920032c56bb2ccd
a89a2ba7ad017779b8072e1162493bea12dc5957
fbd8b8e70e5582436422a02a22c111ccbcd690006ff65529fc6231b0497e74b1
GET /_nuxt/desktop/default/commons/conversion/modal.RegistrationSuccessModalApp/registration.Main/user.userRegistration-a1a0a01a.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 6446
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcd937-192e"
expires: Sat, 04 Feb 2023 13:23:03 GMT
last-modified: Fri, 03 Feb 2023 09:51:51 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 46227
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-277345.top/service-api/LiveFeed/Get1x2_VZip?count=20&lng=en&gr=285&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true
178.253.15.12200 OK 6.8 kB URL HTTP/2 1xlite-277345.top/service-api/LiveFeed/Get1x2_VZip?count=20&lng=en&gr=285&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true
IP 178.253.15.12:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (41055), with no line terminators
Hash 416ea36589a5f10a09b9e45985529bec
61ca041e3762ae94e6fd2da2ca2f3b28a374af63
a195f9dae4c8f222178c24439cb7db55df788f6b3753d8278019e4c6f0629f49
GET /service-api/LiveFeed/Get1x2_VZip?count=20&lng=en&gr=285&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:30 GMT
content-type: application/json; charset=utf-8
content-length: 6765
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/checker/redirect/stat/run/
178.253.15.12200 OK 49 B URL HTTP/2 1xlite-277345.top/checker/redirect/stat/run/
IP 178.253.15.12:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b7a9075de81cdb1a9fa74fa71b5126dd
9d651f649e1c5eab95d3b0ca7cc9b02dec41df61
86877f86c7d18d59e54d73c43e6709a91a7f0a6a86980cada7f4b7e69c13cf20
GET /checker/redirect/stat/run/ HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280; che_g=664f59c9-fdd3-2fbe-2bd1-8793170ec785
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:30 GMT
content-type: application/json; charset=utf-8
content-length: 49
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/web-api/user/secure
178.253.15.12200 OK 58 B URL HTTP/2 1xlite-277345.top/web-api/user/secure
IP 178.253.15.12:0
File type JSON data\012- , ASCII text, with no line terminators
Hash ba7b9584bc257bdd13107c9c7168675c
dd50c32e89b380b9e4d465ca95876a690f3e8aee
aa2963389885f6dcb49b2f83f2d8b3f1161e5ee6d1586e8571397714a418939e
POST /web-api/user/secure HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Origin: https://1xlite-277345.top
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:30 GMT
content-type: application/json; charset=utf-8
content-length: 58
server-timing: dt_285;dur=74
set-cookie: is_rtl=1; expires=Sun, 04-Feb-2024 02:13:30 GMT; Max-Age=31536000; path=/; HttpOnly
disallow_sport=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; HttpOnly
fast_coupon=true; expires=Sat, 11-Feb-2023 02:13:30 GMT; Max-Age=604800; path=/
v3fr=1; expires=Tue, 07-Feb-2023 02:13:30 GMT; Max-Age=259200; path=/; HttpOnly; SameSite=lax
_glhf=1675494586; expires=Sat, 04-Feb-2023 03:13:30 GMT; Max-Age=3600; path=/
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/service-api/LineFeed/Get1x2_VZip?count=20&lng=en&tz=3&mode=4&country=137&virtualSports=true
178.253.15.12200 OK 8.0 kB URL HTTP/2 1xlite-277345.top/service-api/LineFeed/Get1x2_VZip?count=20&lng=en&tz=3&mode=4&country=137&virtualSports=true
IP 178.253.15.12:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (39907), with no line terminators
Hash 49bab1442b0389f88b577aaea74d3b59
a5c3dc0ae356e83b09cb6e3356b53af5a15a272a
055896e937776961b2618c207beac9487398fae08861f82c61ebb5d078f086ab
GET /service-api/LineFeed/Get1x2_VZip?count=20&lng=en&tz=3&mode=4&country=137&virtualSports=true HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:30 GMT
content-type: application/json; charset=utf-8
content-length: 8005
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/vendors/DownloadAppWidget/modal.apps.AppsModalQr-2a080593.js
8.248.224.22200 OK 5.6 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/vendors/DownloadAppWidget/modal.apps.AppsModalQr-2a080593.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (16094)
Hash ca304062b558fabfb4a1c4e40b694643
8a73cfc39a4fa07934fb05fed1d3a86824f9fa45
494f37d2f1460783c4fb28f99951c561767a58ba50b83ab5f89302b4a4cfb1d5
GET /_nuxt/desktop/default/vendors/DownloadAppWidget/modal.apps.AppsModalQr-2a080593.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 5556
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-15b4"
expires: Sat, 04 Feb 2023 07:49:58 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66244
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/467c56a0.css
8.248.224.22200 OK 1.0 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/467c56a0.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (4348), with no line terminators
Hash 5a8972f3217fd70b0167864686de15cb
7f6b447727d83e1a355e1ab6643c0e2122407001
56d58b4f7504e7788075037b2102f60b1784fb8ba0ca1a8af4bc9073daf970c5
GET /_nuxt/desktop/default/css/467c56a0.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:30 GMT
content-type: text/css
content-length: 1011
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb423-3f3"
expires: Sat, 04 Feb 2023 12:29:06 GMT
last-modified: Fri, 03 Feb 2023 07:13:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 49496
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/DownloadAppWidget-47a0fc0d.js
8.248.224.22200 OK 3.4 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/DownloadAppWidget-47a0fc0d.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (9655), with no line terminators
Hash 12ad39a9c9b77a69ff978e5de344b7e1
21dadb3558c79bf9253863fa4c490d85a66f8abf
b6fe8963ac825a8fa1e5caebd596b0b9eb745fcde04c39adeb583077e453123e
GET /_nuxt/desktop/default/DownloadAppWidget-47a0fc0d.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 3448
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-d78"
expires: Sat, 04 Feb 2023 07:50:27 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66244
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/betstemplates/bets_model_full_en_0.js
8.248.224.22200 OK 4.6 kB URL HTTP/2 v3.traincdn.com/genfiles/cms/betstemplates/bets_model_full_en_0.js
IP 8.248.224.22:0
File type Unicode text, UTF-8 text, with very long lines (21746), with no line terminators
Hash 8279b1f64bf54a007c742357ef6cd95c
e58b18c19bf034cd7675d55306514140fb8c0354
9ff2365e6f45ddddbdac4951d229681ac5682327b8ac516767d89f7c56e57c0d
GET /genfiles/cms/betstemplates/bets_model_full_en_0.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:30 GMT
content-type: text/javascript
content-length: 4554
cache-control: public, max-age=86400
content-encoding: gzip
etag: W/"7231e7d64b96fb3be8cfbaf1f3543d90"
expires: Sat, 04 Feb 2023 03:11:37 GMT
last-modified: Tue, 31 Jan 2023 13:09:45 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 82919
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/betstemplates/bets_model_short_en_0.js
8.248.224.22200 OK 3.8 kB URL HTTP/2 v3.traincdn.com/genfiles/cms/betstemplates/bets_model_short_en_0.js
IP 8.248.224.22:0
File type Unicode text, UTF-8 text, with very long lines (14037), with no line terminators
Hash a06e759be32439e5bf821384a10a580e
128e1d0c5e6e170be8cca8e3f70c94c1834678ad
d9c521a2bd4e4dcaab52521d85b0b412814c3bf5056e547ff540e5a4165238f9
GET /genfiles/cms/betstemplates/bets_model_short_en_0.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:31 GMT
content-type: text/javascript
content-length: 3797
cache-control: public, max-age=86400
content-encoding: gzip
etag: W/"7568df2701121909969ebea701c7f8c0"
expires: Sat, 04 Feb 2023 03:11:39 GMT
last-modified: Tue, 31 Jan 2023 13:09:41 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 82912
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/3ac2f36a68d1496b5ea542a504ce7920.png
8.248.224.22200 OK 10 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/3ac2f36a68d1496b5ea542a504ce7920.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 8136a8efada33b4d55cc130cbe197dce
b5f24431dc8aca30df4423dc092644b71242b920
e36a24dd7bc92675e6352f6992535403ddba6054c80ba22d8ee0ac0d6809f9fd
GET /sfiles/logo_teams/3ac2f36a68d1496b5ea542a504ce7920.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:31 GMT
content-type: image/png
content-length: 10174
etag: "8136a8efada33b4d55cc130cbe197dce"
last-modified: Wed, 12 Jan 2022 20:16:35 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4191185
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/c5b930f169476db8aa0b91d4c9a5de64.png
8.248.224.22200 OK 17 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/c5b930f169476db8aa0b91d4c9a5de64.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 2053c46cb788fcb1b47f4a3d5e7e56c9
f25c564cecdc0ca90de30fd03b899776e353b1ca
4f7fd29bb57647cc641660a98def3253c6220a9d5007b1e89d2f13a596a1fc0d
GET /sfiles/logo_teams/c5b930f169476db8aa0b91d4c9a5de64.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:31 GMT
content-type: image/png
content-length: 17163
etag: "2053c46cb788fcb1b47f4a3d5e7e56c9"
last-modified: Fri, 13 Nov 2020 19:47:30 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4191184
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-277345.top/web-api/external-api/config/getVideoAccessConfig
178.253.15.12200 OK 5.6 kB URL HTTP/2 1xlite-277345.top/web-api/external-api/config/getVideoAccessConfig
IP 178.253.15.12:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (32057), with no line terminators
Hash 6d89dd674d0724fd6c837337652deea3
140dd2fea78d12bf89325319674d9fa84aebab42
7a94dd629af3932efa715bcfc21c34efd63e59ae60548443560cf3e1816ccc66
GET /web-api/external-api/config/getVideoAccessConfig HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280; che_g=664f59c9-fdd3-2fbe-2bd1-8793170ec785; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1675494586
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:30 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=57, dt_285;dur=58
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/service-api/LiveFeed/Get1x2_VZip?count=20&lng=en&gr=285&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true
178.253.15.12200 OK 6.8 kB URL HTTP/2 1xlite-277345.top/service-api/LiveFeed/Get1x2_VZip?count=20&lng=en&gr=285&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true
IP 178.253.15.12:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (41055), with no line terminators
Hash 416ea36589a5f10a09b9e45985529bec
61ca041e3762ae94e6fd2da2ca2f3b28a374af63
a195f9dae4c8f222178c24439cb7db55df788f6b3753d8278019e4c6f0629f49
GET /service-api/LiveFeed/Get1x2_VZip?count=20&lng=en&gr=285&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280; che_g=664f59c9-fdd3-2fbe-2bd1-8793170ec785; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1675494586; ggru=146; tzo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:31 GMT
content-type: application/json; charset=utf-8
content-length: 6765
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/web-api/api/internal/v1/proof_of_age
178.253.15.12204 No Content 0 B URL HTTP/2 1xlite-277345.top/web-api/api/internal/v1/proof_of_age
IP 178.253.15.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /web-api/api/internal/v1/proof_of_age HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/vnd.api+json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280; che_g=664f59c9-fdd3-2fbe-2bd1-8793170ec785; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1675494586; ggru=146; tzo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 04 Feb 2023 02:13:31 GMT
cache-control: no-cache, private
server-timing: p;dur=30, dt_285;dur=224
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 04 Feb 2023 01:44:08 GMT
expires: Sat, 04 Feb 2023 03:44:08 GMT
cache-control: public, max-age=7200
age: 1763
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/24739.png
8.248.224.22200 OK 15 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/24739.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 5f53493cea05709c61dce62ef874747b
9c08ad61ed18f715380bc6af0df841b472f9e03a
d0f0d573a6f84426e5d98a726eb345749862762573d826f9997dbc1c781a04a2
GET /sfiles/logo_teams/24739.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:31 GMT
content-type: image/png
content-length: 14749
etag: "5f53493cea05709c61dce62ef874747b"
last-modified: Tue, 13 Aug 2019 15:00:51 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4353144
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/4114.png
8.248.224.22200 OK 10 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/4114.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash f128d5f8fa5f7b1bb41085f1ef67c56f
382df7f25bc27ef198ec08a79cd8043aecfe4655
e2bc75149e5dfed213e30e525031ec7fda69610189c3be9ac223a28217509e5e
GET /sfiles/logo_teams/4114.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:31 GMT
content-type: image/png
content-length: 10436
etag: "f128d5f8fa5f7b1bb41085f1ef67c56f"
last-modified: Tue, 13 Aug 2019 15:06:01 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 3931453
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/1a9d14481ba01b5831b5ffc269fcd44a.png
8.248.224.22200 OK 16 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/1a9d14481ba01b5831b5ffc269fcd44a.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 95d6703dabea18b50430ac302178b55d
e6d0341a1c805f2c73585efb947c4740ad3606f7
db03f96f23e52ccb84d9f3d8c8a8910f1b24316e6c42e1d784cc1d671edfa2f7
GET /sfiles/logo_teams/1a9d14481ba01b5831b5ffc269fcd44a.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:31 GMT
content-type: image/png
content-length: 16327
etag: "95d6703dabea18b50430ac302178b55d"
last-modified: Fri, 08 Oct 2021 08:58:03 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4187763
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/d4af762cafd4ed77ed9acecd64986d73.png
8.248.224.22200 OK 11 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/d4af762cafd4ed77ed9acecd64986d73.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 71f6248fec716b63b4efecc7c4bdfa69
431a0937b3cd627396a6c56e14760898f0371866
dd60f998ed24b1dcda4cbbbce0ad3b9c417b6e608bc3a9ddcf4684d726091313
GET /sfiles/logo_teams/d4af762cafd4ed77ed9acecd64986d73.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:31 GMT
content-type: image/png
content-length: 11161
etag: "71f6248fec716b63b4efecc7c4bdfa69"
last-modified: Fri, 17 Jan 2020 07:06:24 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4187763
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/8548.png
8.248.224.22200 OK 11 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/8548.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash fa2bc88be9bc69fb30e379451384360c
71514d7b5d764b7f54d7aa7d2be133888dcbaf46
a6afcb2962219e14d6596ccdeccba6c7243ed6dfcd039d9c080cdc5b3e1a8658
GET /sfiles/logo_teams/8548.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 10586
etag: "fa2bc88be9bc69fb30e379451384360c"
last-modified: Tue, 13 Aug 2019 15:12:06 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4353070
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/8582.png
8.248.224.22200 OK 15 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/8582.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash a092c4acd21d52cf7bed5c366b9befa9
382c30521552e95fea77c52a70cc70e645ca0d03
88312cbfbc7475d40040a242e69ccddd391bf55fd6ad4edfdfcc7cbc8f579dfd
GET /sfiles/logo_teams/8582.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 14567
etag: "a092c4acd21d52cf7bed5c366b9befa9"
last-modified: Tue, 13 Aug 2019 15:12:08 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4187764
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/8550.png
8.248.224.22200 OK 3.6 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/8550.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 1da70d575ce90864cb77c165459d74e9
ee55d8b854073bf01cd6811fe110cabc4c6d41d8
977d6736f6114e36db9a1206f16a450f6b8fbbaf71fbf00f27c0d6a43a69a1d7
GET /sfiles/logo_teams/8550.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 3642
etag: "1da70d575ce90864cb77c165459d74e9"
last-modified: Tue, 13 Aug 2019 15:12:06 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4187764
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo-champ/129bbe8d33c79f8a994632b6f95e2494.png
8.248.224.22200 OK 7.3 kB URL HTTP/2 v3.traincdn.com/sfiles/logo-champ/129bbe8d33c79f8a994632b6f95e2494.png
IP 8.248.224.22:0
File type PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash 2aec28444ed529496afa6289e9b5e55e
1a95a7396f487c1d0c0c64171eaf9bced7aa036c
5833ed97d15a8186372119274aa926770a4a0b56e00c67a0e9c0bce813683455
GET /sfiles/logo-champ/129bbe8d33c79f8a994632b6f95e2494.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 7298
cache-control: public, max-age=86400
etag: "2aec28444ed529496afa6289e9b5e55e"
expires: Sat, 04 Feb 2023 20:43:05 GMT
last-modified: Tue, 03 Jan 2023 16:50:46 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 19971
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/afc5e9659f7854ccf9c5abde768f72ca.png
8.248.224.22200 OK 12 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/afc5e9659f7854ccf9c5abde768f72ca.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash a313e896037d538bde5123f8fe881070
22d2a914bc27988a7373a4193ecf0713e588847e
9c2354878a70352e89054989dcaafd9030fde0c2e756c7c57b41c7bddf9870e0
GET /sfiles/logo_teams/afc5e9659f7854ccf9c5abde768f72ca.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 11788
cache-control: public, max-age=86400
etag: "a313e896037d538bde5123f8fe881070"
expires: Sat, 04 Feb 2023 16:03:25 GMT
last-modified: Tue, 17 Jan 2023 08:57:11 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 44892
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/747741.png
8.248.224.22200 OK 24 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/747741.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 7b1a0f77f489b6e20b029745d81dc998
164e2ef4949ce75ad7e9254451a4192502c4ea92
5540c81328f270095ba075d39b0300932d5e1329d4359052f2dc31c28f7d2446
GET /sfiles/logo_teams/747741.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 23845
cache-control: public, max-age=86400
etag: "7b1a0f77f489b6e20b029745d81dc998"
expires: Sat, 04 Feb 2023 14:34:00 GMT
last-modified: Tue, 17 Jan 2023 09:35:25 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 44892
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/a7eb11ef2d67f908728613592e545d95.png
8.248.224.22200 OK 12 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/a7eb11ef2d67f908728613592e545d95.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash a7eb11ef2d67f908728613592e545d95
486b63ada3b1aa0c7dcd0f64a92d3a8e744d9554
cbd8b9153705f34bbca15910a018ac22e14aef8d6869211a2bbae6599ca654f9
GET /sfiles/logo_teams/a7eb11ef2d67f908728613592e545d95.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 12020
cache-control: public, max-age=86400
etag: "a7eb11ef2d67f908728613592e545d95"
expires: Sun, 05 Feb 2023 02:13:32 GMT
last-modified: Tue, 13 Aug 2019 15:13:18 GMT
server: Footprint Distributor V6.1.1162
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4187767
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/6f5ff035a277ef02ff14f7db4b5c36ad.png
8.248.224.22200 OK 15 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/6f5ff035a277ef02ff14f7db4b5c36ad.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 865eceb54d2872afe154456712243d28
ec22df79342b7b50c113e265a298f9fcb24802e8
93d4f4bf0dcedd55ab835622fc6fed8aad70c75939fc13a5002551b6c0c65fed
GET /sfiles/logo_teams/6f5ff035a277ef02ff14f7db4b5c36ad.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 15017
cache-control: public, max-age=86400
etag: "865eceb54d2872afe154456712243d28"
expires: Sat, 04 Feb 2023 14:34:00 GMT
last-modified: Tue, 17 Jan 2023 11:32:23 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 44892
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/411593.png
8.248.224.22200 OK 25 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/411593.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 54cd68e98e7b1474fc5754da08c4f143
a17b90f9c93c4e72b0e4f9762c654ce49dab01c2
8281a872ea05fb53453157ccb2acf06382761ca06741882cefaaccb05dee6e65
GET /sfiles/logo_teams/411593.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 25211
cache-control: public, max-age=86400
etag: "54cd68e98e7b1474fc5754da08c4f143"
expires: Sat, 04 Feb 2023 09:09:40 GMT
last-modified: Tue, 17 Jan 2023 10:21:18 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 61432
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/17903.png
8.248.224.22200 OK 17 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/17903.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 06461bb87841028f6d502bf79eb6ed76
abbf936a1454e146e4fc85fdc85809b719e03f98
c1f8239b166d5a89f9d440e8b6b1546a203daddf1e5d79e54d82b241f6a247c9
GET /sfiles/logo_teams/17903.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 17284
cache-control: public, max-age=86400
etag: "06461bb87841028f6d502bf79eb6ed76"
expires: Sat, 04 Feb 2023 14:34:00 GMT
last-modified: Tue, 17 Jan 2023 13:28:51 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 44892
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-277345.top/web-api/api/v3/users/popular-events/params
178.253.15.12200 OK 14 kB URL HTTP/2 1xlite-277345.top/web-api/api/v3/users/popular-events/params
IP 178.253.15.12:0
Hash 8611ace7dbdbfd33c1e5b8d8cbab6fbf
f8911d0813e832c092c1cb43adea54bae6e1f863
6eda425cf2aa4a27b5fbee84146eaff05304e9a817dd1b3a332e165a6972fac3
GET /web-api/api/v3/users/popular-events/params HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280; che_g=664f59c9-fdd3-2fbe-2bd1-8793170ec785; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1675494586; ggru=146; tzo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:31 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=22, dt_285;dur=24
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/70717.png
8.248.224.22200 OK 18 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/70717.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash be20db76cc465e3408a759def7c36c8a
505cb86a20369d19cc7e11181ba415a5fefc87e8
dde81809f20aaf45eef4fdb318dfdfc2fb4a5567e0e80425fc5001370b8a522e
GET /sfiles/logo_teams/70717.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 18068
cache-control: public, max-age=86400
etag: "be20db76cc465e3408a759def7c36c8a"
expires: Sat, 04 Feb 2023 16:05:39 GMT
last-modified: Tue, 17 Jan 2023 13:55:51 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 44892
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/503559.png
8.248.224.22200 OK 17 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/503559.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash a96bccd0b0e67c3f685a972545c18ae3
3b38365c67c9b69bb77bca868c9474e43ff53b4e
cb08f667d2c3e7384dfc801ee729fcb4d8ffc7712e4902c9b02d2331e6b49a65
GET /sfiles/logo_teams/503559.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 17350
cache-control: public, max-age=86400
etag: "a96bccd0b0e67c3f685a972545c18ae3"
expires: Sat, 04 Feb 2023 17:31:31 GMT
last-modified: Sat, 14 Jan 2023 14:30:40 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 31321
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/5921b4988ddf220fe76924a22d7c68f1.png
8.248.224.22200 OK 17 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/5921b4988ddf220fe76924a22d7c68f1.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash bc1cbb398731e9bbd0200ce43da9da85
ebce12954c9d107c1223c2bfa10a3aa2546761cc
8b45449aad03e543ca5122a47feefb2fd241d04df66d54cfc61ac5f861edfd61
GET /sfiles/logo_teams/5921b4988ddf220fe76924a22d7c68f1.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 17446
cache-control: public, max-age=86400
etag: "bc1cbb398731e9bbd0200ce43da9da85"
expires: Sat, 04 Feb 2023 09:09:40 GMT
last-modified: Tue, 17 Jan 2023 10:22:37 GMT
server: Footprint Distributor V6.1.1162
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 61432
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/411577.png
8.248.224.22200 OK 21 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/411577.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 7ed6df903c6bebb50d8c33709fe1ca3a
10a08d1db21c7833d0689e45e0f6422cb32d27aa
4a5ccdb6d2819c6c446342e63bdb22e13aad633e06f9b14184e2e9d6fe6fcc85
GET /sfiles/logo_teams/411577.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 20890
cache-control: public, max-age=86400
etag: "7ed6df903c6bebb50d8c33709fe1ca3a"
expires: Sat, 04 Feb 2023 10:14:38 GMT
last-modified: Tue, 17 Jan 2023 10:21:20 GMT
server: Footprint Distributor V6.1.1162
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 60270
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/d4e0444e7093159ad6717b12c48c3c98.png
8.248.224.22200 OK 12 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/d4e0444e7093159ad6717b12c48c3c98.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 0639725bb2daa5711bcba848ff423690
8954e3bcab1eaedeb12ab86e1b9e089152dcc1a5
d0275558c546cacbf934c8a3bdfde4929006a002d61fb53986882f5bb046fe73
GET /sfiles/logo_teams/d4e0444e7093159ad6717b12c48c3c98.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 12297
cache-control: public, max-age=86400
etag: "0639725bb2daa5711bcba848ff423690"
expires: Sat, 04 Feb 2023 14:34:00 GMT
last-modified: Tue, 17 Jan 2023 08:35:36 GMT
server: Footprint Distributor V6.1.1162
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 44892
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/cf194108eb2994b93fee1699e24592bc.png
8.248.224.22200 OK 20 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/cf194108eb2994b93fee1699e24592bc.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash c49fa194ab4bd915d34bd7087f471f78
9fa9974fe85fe97150e7c92f91c0492c48b84c66
fe263f9744e145138dc743d1564f2ba9315267a1d55ef57493aef4e2b7cf3b59
GET /sfiles/logo_teams/cf194108eb2994b93fee1699e24592bc.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 19848
cache-control: public, max-age=86400
etag: "c49fa194ab4bd915d34bd7087f471f78"
expires: Sat, 04 Feb 2023 15:44:25 GMT
last-modified: Sat, 14 Jan 2023 15:55:14 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37747
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/b70395740a582bd4b1305de395bd7f48.png
8.248.224.22200 OK 20 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/b70395740a582bd4b1305de395bd7f48.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash c1ba22d5fe8668cb6d9d14670b7fdeaa
cf9af5be1d5c45fe72153becba1a126a2f4ca665
d21547fedb993ad820d85f1e93c9f3e02292d8e0edf24bf539a6fcd18848e9de
GET /sfiles/logo_teams/b70395740a582bd4b1305de395bd7f48.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 20184
cache-control: public, max-age=86400
etag: "c1ba22d5fe8668cb6d9d14670b7fdeaa"
expires: Sat, 04 Feb 2023 13:55:07 GMT
last-modified: Tue, 17 Jan 2023 08:26:09 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 44306
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/bfa7f54deeced18aa02fc27fd976fbf2.png
8.248.224.22200 OK 16 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/bfa7f54deeced18aa02fc27fd976fbf2.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 3b5862732ba4cc8c259166fccab2cf9e
1062d01b1992a78168380ba4a500b707a0c99b85
afa8999ea602d026e894ef13c2f086b7c0d76045b24025dc565ee93697ae77e9
GET /sfiles/logo_teams/bfa7f54deeced18aa02fc27fd976fbf2.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 15608
etag: "3b5862732ba4cc8c259166fccab2cf9e"
last-modified: Thu, 23 Jan 2020 13:31:40 GMT
server: Footprint Distributor V6.1.1162
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 4282740
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/170123.png
8.248.224.22200 OK 25 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/170123.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a4051d5d43b12ad4c92267d153f681d
5355a02a45e94a69ffcf6e1200741d86fd04b1a9
de9a025e451d73980795115b82794ae486b46439c35f4d35602185fe88d4268d
GET /sfiles/logo_teams/170123.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 24943
cache-control: public, max-age=86400
etag: "9a4051d5d43b12ad4c92267d153f681d"
expires: Sat, 04 Feb 2023 14:34:00 GMT
last-modified: Tue, 17 Jan 2023 11:56:24 GMT
server: Footprint Distributor V6.1.1162
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 44892
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/sfiles/logo_teams/1026763.png
8.248.224.22200 OK 26 kB URL HTTP/2 v3.traincdn.com/sfiles/logo_teams/1026763.png
IP 8.248.224.22:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash c02e4799494b9b5fc2f2190d802ae1a3
5b47ace1f4586c55d8cf6086270bf0db966cbaa6
de24fb6b21b347783584c0a2b20e2721c657d19872a324ef2152137cac4f7dd9
GET /sfiles/logo_teams/1026763.png HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: image/png
content-length: 26138
cache-control: public, max-age=86400
etag: "c02e4799494b9b5fc2f2190d802ae1a3"
expires: Sat, 04 Feb 2023 17:31:32 GMT
last-modified: Tue, 17 Jan 2023 09:14:50 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37465
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 90877d51dd1f35d51dd42b32516eacab
c36cf8450c6364dffb4abf65459aa511c7487f85
9bb2324fc0fba4718db5feb89820d1b870f309ca965808ed2b5dbe24c4db0c2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 751
Cache-Control: max-age=118409
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:13:32 GMT
Etag: "63dce7e6-117"
Expires: Sun, 05 Feb 2023 11:07:01 GMT
Last-Modified: Fri, 03 Feb 2023 10:54:30 GMT
Server: ECS (amb/6B9D)
X-Cache: HIT
Content-Length: 279
1xlite-277345.top/service-api/LiveFeed/Get1x2_VZip?sports=1,2,3,4,6,8,10,40,66,85&champs=11113,12821,13589,28787,30619,67559,88637,110163,118663,127733&count=10&lng=en&mode=4&country=137&getEmpty=true&isRecommendations=true
178.253.15.12200 OK 4.0 kB URL HTTP/2 1xlite-277345.top/service-api/LiveFeed/Get1x2_VZip?sports=1,2,3,4,6,8,10,40,66,85&champs=11113,12821,13589,28787,30619,67559,88637,110163,118663,127733&count=10&lng=en&mode=4&country=137&getEmpty=true&isRecommendations=true
IP 178.253.15.12:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (22077), with no line terminators
Hash aec94768a30966fb49c657fb680c8d92
fa06705ba154491bf5fb9678787c3a139f74be2d
da26623d6fdc26131f8a8bea6796bdeed5cac3d2d8a68adddb6a315a6a455b83
GET /service-api/LiveFeed/Get1x2_VZip?sports=1,2,3,4,6,8,10,40,66,85&champs=11113,12821,13589,28787,30619,67559,88637,110163,118663,127733&count=10&lng=en&mode=4&country=137&getEmpty=true&isRecommendations=true HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280; che_g=664f59c9-fdd3-2fbe-2bd1-8793170ec785; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1675494586; ggru=146; tzo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: application/json; charset=utf-8
content-length: 4040
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 90877d51dd1f35d51dd42b32516eacab
c36cf8450c6364dffb4abf65459aa511c7487f85
9bb2324fc0fba4718db5feb89820d1b870f309ca965808ed2b5dbe24c4db0c2b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 751
Cache-Control: max-age=118409
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 02:13:32 GMT
Etag: "63dce7e6-117"
Expires: Sun, 05 Feb 2023 11:07:01 GMT
Last-Modified: Fri, 03 Feb 2023 10:54:30 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a517af0-06bb-4ad2-b66e-3627ca6b60a3.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a517af0-06bb-4ad2-b66e-3627ca6b60a3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 518bba9a8770e8ff15229a68be5bddc3
139f944b3f4279e640901f7a6b993f1a49b51a22
0591e73dec2190752677f06525bc993dc8c7a5aa20984a5eda64c323188e2b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a517af0-06bb-4ad2-b66e-3627ca6b60a3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9743
x-amzn-requestid: b6c1caa9-72e4-476f-9c3d-4a746c410ba3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EHLJoAMF_TA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-1289ef383fbad59621eda6d0;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i7ZNMlYetTGgoM0beS97MTxveM1H7CI4JdAvPhYdqe9pyCCQugjgNg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:58:58 GMT
age: 15274
etag: "139f944b3f4279e640901f7a6b993f1a49b51a22"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/c22cfef9.css
8.248.224.22200 OK 415 B URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/c22cfef9.css
IP 8.248.224.22:0
File type ASCII text, with very long lines (1183), with no line terminators
Hash ecc3f2d16534676a986173d34bf99598
43f686a5b86a67d13dea17e428569ea61eb7e49f
4aa9998d401b96fcdd5c28d8bc0d476beea4422bb6f63635a0483d7bfb212761
GET /_nuxt/desktop/default/css/c22cfef9.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: text/css
content-length: 415
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb423-19f"
expires: Sat, 04 Feb 2023 12:28:50 GMT
last-modified: Fri, 03 Feb 2023 07:13:39 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 49498
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/betting.SportsMenuCompact-a65715d5.js
8.248.224.22200 OK 654 B URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/betting.SportsMenuCompact-a65715d5.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (1329), with no line terminators
Hash 96d41dab78b18595738fe3a6936f0b01
67dae78b5d3b749c58f81018f6e76d6d5316117f
1afc2e601778557712fc333a5c5019babd7e73772a92fd831a648184dfd7f7bb
GET /_nuxt/desktop/default/betting.SportsMenuCompact-a65715d5.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: application/javascript; charset=utf-8
content-length: 654
cache-control: max-age=86400
content-encoding: gzip
etag: "63dcb312-28e"
expires: Sat, 04 Feb 2023 07:50:27 GMT
last-modified: Fri, 03 Feb 2023 07:09:06 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 66185
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-277345.top/service-api/LiveFeed/GetSportsShortZip?lng=en&gr=285&country=137&virtualSports=true&groupChamps=true
178.253.15.12200 OK 2.6 kB URL HTTP/2 1xlite-277345.top/service-api/LiveFeed/GetSportsShortZip?lng=en&gr=285&country=137&virtualSports=true&groupChamps=true
IP 178.253.15.12:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (9848), with no line terminators
Hash b5ec527261b9a353df42627a06c5c265
e6aa86da5f24e6ef14a1e184550b74d1d2f945d0
4dd9255f7a66cfea85dd006c0d7613b809469668bc560157f60c31888b24246f
GET /service-api/LiveFeed/GetSportsShortZip?lng=en&gr=285&country=137&virtualSports=true&groupChamps=true HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280; che_g=664f59c9-fdd3-2fbe-2bd1-8793170ec785; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1675494586; ggru=146; tzo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: application/json; charset=utf-8
content-length: 2573
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
suphelper.com/widget/injector.js
104.16.43.72200 OK 47 kB URL HTTP/2 suphelper.com/widget/injector.js
IP 104.16.43.72:0
File type Unicode text, UTF-8 text, with very long lines (38365)
Hash 32cfe6dea1936bb4d96a708c415399f2
8e714e6dfcf50b2780fd340f0819e63fd2f8f9d3
bb044622ec3a97bd33f5fe75f9f1572ac7816636a03348f52c2df04a27895c28
GET /widget/injector.js HTTP/1.1
Host: suphelper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:32 GMT
content-type: application/javascript; charset=UTF-8
x-dns-prefetch-control: off
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'strict-dynamic' 'nonce-d49403fd-098b-41ec-b2fa-70a24447f25c' https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com; img-src 'self' https: data:; font-src 'self' https://fonts.gstatic.com data:; connect-src 'self' ws://localhost:8085 https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://mc.yandex.ru https://api.github.com http://192.168.208.23:11999 https://suphelper.com wss://suphelper.com *.suphelper.com https://suphelper.ru wss://suphelper.ru *.suphelper.ru https://cons.insystem.su wss://cons.insystem.su *.cons.insystem.su wss://chat.insystem.su https://chat.insystem.su *.chat.insystem.su; frame-src 'self' https://www.google.com https://www.google.com/recaptcha/; report-uri /widget/api/report-csp/
cache-control: public, max-age=300
last-modified: Tue, 03 Jan 2023 09:24:23 GMT
etag: W/"28e6c-18576f23558"
vary: Accept-Encoding
cf-cache-status: HIT
age: 152
server: cloudflare
cf-ray: 793fe33deac195e5-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10253
x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GGv5IAMFu8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jBxNmhfAeUgxg8w4XpQHZ1QoN9GatdUV7V7r2tHd7YePJYPHpesd2Q==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:21 GMT
age: 14892
etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
1xlite-277345.top/service-api/LineFeed/GetExpressDayExtendedZip?lng=en
178.253.15.12200 OK 724 B URL HTTP/2 1xlite-277345.top/service-api/LineFeed/GetExpressDayExtendedZip?lng=en
IP 178.253.15.12:0
File type JSON data\012- , ASCII text, with very long lines (1834), with no line terminators
Hash f1f1d0486747f99a71ca0af383cd9303
8e02d81808905ca60853c1f6c93a0df49dc81728
6806b04fc3598c91ef57f9fca9343fd2c78fc94f946747527ba75542fd4dba96
GET /service-api/LineFeed/GetExpressDayExtendedZip?lng=en HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280; che_g=664f59c9-fdd3-2fbe-2bd1-8793170ec785; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1675494586; ggru=146; tzo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:34 GMT
content-type: application/json; charset=utf-8
content-length: 724
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7101f6e43855cb76ce48271a847ffbd
8e674830a97d8ce3818132fda197db4f0289d316
e78a83a4024e238bcdec3b9c4d5c12a99f49aabd57e34952f6a4cc8ed4422f55
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9141
x-amzn-requestid: ed7db574-6bca-4f3e-8879-c3e836549339
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD8zE5lIAMF1HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8051-4480112f11d4ced0037d1ad8;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: aKr85ooofBPeKkeJIDO5W_X5Rn6xnJlRHmVrs8tgBMYe3HQhobsm3w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:56:07 GMT
age: 15447
etag: "8e674830a97d8ce3818132fda197db4f0289d316"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
1xlite-277345.top/web-api/external-api/v3/banners?project_id=285&country_code=ID&language=en&platform=2§ion=6&is_auth=false&limit=100
178.253.15.12200 OK 22 kB URL HTTP/2 1xlite-277345.top/web-api/external-api/v3/banners?project_id=285&country_code=ID&language=en&platform=2§ion=6&is_auth=false&limit=100
IP 178.253.15.12:0
Hash 0dd0b53bf20366e840a41fe61cf2288b
8f0dafa80a3a988505e2edf34dc892ab7eeb2005
f26d46540fc19066b5559cedfad8230457c5d8490d73c345ff609b67a4079de8
GET /web-api/external-api/v3/banners?project_id=285&country_code=ID&language=en&platform=2§ion=6&is_auth=false&limit=100 HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280; che_g=664f59c9-fdd3-2fbe-2bd1-8793170ec785; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1675494586; ggru=146; tzo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:34 GMT
content-type: application/vnd.api+json
cache-control: no-cache, private
server-timing: p;dur=36, dt_285;dur=38
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/web-api/default/img/icons/pixels2.svg?v=1675476847
178.253.15.12200 OK 90 B URL HTTP/2 1xlite-277345.top/web-api/default/img/icons/pixels2.svg?v=1675476847
IP 178.253.15.12:0
File type PNG image data, 1 x 1, 8-bit/color RGB, non-interlaced\012- data
Hash e45f90dcbe718dea3476c4b69b501a4e
e9af26a93c467a77e4733ec537f4f5ce7a4ba089
a439dd8761d9fd4ff88e82e83200877703594491065880dbd4e59ddf4ce1b204
GET /web-api/default/img/icons/pixels2.svg?v=1675476847 HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280; che_g=664f59c9-fdd3-2fbe-2bd1-8793170ec785; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1675494586; ggru=146; tzo=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:34 GMT
content-type: image/png
cache-control: no-cache, private
server-timing: p;dur=30, dt_285;dur=33
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/betstemplates/bets_model_map_short_en.js
8.248.224.22200 OK 538 B URL HTTP/2 v3.traincdn.com/genfiles/cms/betstemplates/bets_model_map_short_en.js
IP 8.248.224.22:0
File type ASCII text, with very long lines (1178), with no line terminators
Hash 04f0ed5df614c4c4937ba3e7ed17d4af
e7b1b4ef1bc2dccb0da04b6d0bf86a7687e616c4
eb76423eaf8cfb9c2d81639498fac9679e5daae652f64ca7febb0276446b61cd
GET /genfiles/cms/betstemplates/bets_model_map_short_en.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:35 GMT
content-type: text/javascript
content-length: 538
cache-control: public, max-age=86400
content-encoding: gzip
etag: W/"45e0685767607caaef34312ef989c44c"
expires: Sat, 04 Feb 2023 03:19:11 GMT
last-modified: Tue, 31 Jan 2023 13:09:43 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 82480
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/pg/285/images/fb3c42518642087febce0489211e4e3b.svg
8.248.224.22200 OK 694 B URL HTTP/2 v3.traincdn.com/genfiles/cms/pg/285/images/fb3c42518642087febce0489211e4e3b.svg
IP 8.248.224.22:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1220), with no line terminators
Hash a699de039c0638e5c6ebeaad243be4c4
9a619e308c67ecdec7aa74c269fa2949bd11e4a5
7786275801b6d2eaa49de8906f9e8e2934b2f700f42ff61a4cc8ce96d2cdef73
GET /genfiles/cms/pg/285/images/fb3c42518642087febce0489211e4e3b.svg HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1xlite-277345.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 02:13:35 GMT
content-type: image/svg+xml
content-length: 694
cache-control: public, max-age=120, s-maxage=600
content-encoding: gzip
etag: W/"3ae81b002dca46d3b732ce3e03ae35c6"
expires: Sat, 04 Feb 2023 03:11:12 GMT
last-modified: Fri, 24 Dec 2021 11:54:08 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 82964
accept-ranges: bytes
X-Firefox-Spdy: h2
1xlite-277345.top/web-api/external-api/games/banner?whence=55&ref=1&gr=285&lng=en&fCountry=137
178.253.15.12200 OK 0 B URL HTTP/2 1xlite-277345.top/web-api/external-api/games/banner?whence=55&ref=1&gr=285&lng=en&fCountry=137
IP 178.253.15.12:0
GET /web-api/external-api/games/banner?whence=55&ref=1&gr=285&lng=en&fCountry=137 HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:30 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=76, dt_285;dur=79
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/web-api/api/v3/bonuses/welcome-bonuses
178.253.15.12200 OK 0 B URL HTTP/2 1xlite-277345.top/web-api/api/v3/bonuses/welcome-bonuses
IP 178.253.15.12:0
GET /web-api/api/v3/bonuses/welcome-bonuses HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280; che_g=664f59c9-fdd3-2fbe-2bd1-8793170ec785; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1675494586; ggru=146; tzo=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:34 GMT
content-type: application/vnd.api+json
cache-control: no-cache, private
server-timing: p;dur=19, dt_285;dur=20
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1x-xredbet708793.top/
178.253.47.25307 Temporary Redirect 0 B IP 178.253.47.25:0
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: 1x-xredbet708793.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 307 Temporary Redirect
server: nginx
date: Sat, 04 Feb 2023 02:13:23 GMT
content-type: text/html; charset=utf-8
location: https://1xlite-277345.top/
x-frame-options: SAMEORIGIN
set-cookie: SESSION=fd4d51eb7f6fb0211781224e49ff07fb; path=/; secure; HttpOnly; SameSite=Lax
_glhf=1675494579; expires=Sat, 04-Feb-2023 03:13:23 GMT; Max-Age=3600; path=/
v3fr=1; expires=Tue, 07-Feb-2023 02:13:23 GMT; Max-Age=259200; path=/; httponly; samesite=lax
auid=sv0vGWPdv0OzwYNTA7cFAg==; path=/; secure; httponly; samesite=lax
x-reason: 1080,1078,1074,1026
cache-control: no-cache, private
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/
178.253.15.12302 Found 0 B IP 178.253.15.12:0
GET / HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 02:13:24 GMT
location: /en
reason-v3: empty_lang
server-timing: total;dur=0;desc="Nuxt Server Time", dt_285;dur=82
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains; preload
set-cookie: platform_type=desktop; Path=/; Expires=Tue, 07 Feb 2023 02:13:24 GMT
auid=sv0PDGPdv0Qn3TWlA8AqAg==; path=/; secure; httponly; samesite=lax
X-Firefox-Spdy: h2
1xlite-277345.top/web-api/api/internal/v1/sessions/user
178.253.15.12200 OK 0 B URL HTTP/2 1xlite-277345.top/web-api/api/internal/v1/sessions/user
IP 178.253.15.12:0
GET /web-api/api/internal/v1/sessions/user HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:30 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=29, dt_285;dur=30
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1xlite-277345.top/web-api/api/converslon/load
178.253.15.12200 OK 0 B URL HTTP/2 1xlite-277345.top/web-api/api/converslon/load
IP 178.253.15.12:0
GET /web-api/api/converslon/load HTTP/1.1
Host: 1xlite-277345.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://1xlite-277345.top/en
Cookie: platform_type=desktop; auid=sv0PDGPdv0Qn3TWlA8AqAg==; SESSION=bd6895c412c781fc5826285fc806b6d8; lng=en; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 02:13:28 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=19, dt_285;dur=21
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2