trackwin.net/go/b9f411f79e13426bcabae4242aaa9b3e365b64d1eb0a0b0b/
109.206.191.154302 Found 0 B URL HTTP/1.1 trackwin.net/go/b9f411f79e13426bcabae4242aaa9b3e365b64d1eb0a0b0b/
IP 109.206.191.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /go/b9f411f79e13426bcabae4242aaa9b3e365b64d1eb0a0b0b/ HTTP/1.1
Host: trackwin.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 11 Jan 2023 02:38:55 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: uid=b9f411f763be213fb5df1703281481; expires=Thu, 11-Jan-2024 02:38:55 GMT; Max-Age=31536000; path=/; domain=.trackwin.net
Location: https://aff-ads.locowin.com/v2/text/345/1/ef731dc3-0f3b-11ed-892d-a299aa2f2057/1?clickId=b9f411f763be213fb5df1703281481&subid1=185016
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e6b7a72139d0ef7688330456e9be9a4c
e130a94e7d531768300071764dd1e81fee5bbbcb
d3818afd1493030105341b4cfb91037acbf27085c96068b3ef91c5071277c8e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3818AFD1493030105341B4CFB91037ACBF27085C96068B3EF91C5071277C8E5"
Last-Modified: Mon, 09 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20824
Expires: Wed, 11 Jan 2023 08:25:59 GMT
Date: Wed, 11 Jan 2023 02:38:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash eecebe0566883e33558e8e67beaccb29
acdd8fd09e2066ed5ecfbc3f11c4a2d61218ecc7
65e21170242bf41eb529fa422385dbe5af65a61e374e6dd5669e7e5f927948af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65E21170242BF41EB529FA422385DBE5AF65A61E374E6DD5669E7E5F927948AF"
Last-Modified: Mon, 09 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4516
Expires: Wed, 11 Jan 2023 03:54:11 GMT
Date: Wed, 11 Jan 2023 02:38:55 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 11 Jan 2023 01:48:34 GMT
content-type: application/json
age: 3022
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d8ccb7b2b89aec333fabc04d37337892
c2a13a42c1bd0cf7ce68d9c13b3d6ba1044b5283
75fcc3ea090454e3489a131b70ab50798fec6a08664745027d7a1cf62c6aba28
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75FCC3EA090454E3489A131B70AB50798FEC6A08664745027D7A1CF62C6ABA28"
Last-Modified: Mon, 09 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2734
Expires: Wed, 11 Jan 2023 03:24:30 GMT
Date: Wed, 11 Jan 2023 02:38:56 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: gDfklE41xSiRCiONi2iPtQptVWK9aIhQ1CAJWZtv7nEGrmlxGVKyjW1nW1uDhPyAVA13ml9pM8I=
x-amz-request-id: KZES2RAFQM0JHBVN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 11 Jan 2023 02:01:53 GMT
age: 2223
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 11 Jan 2023 02:38:56 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 210a4fdfbc94244f2b68fb8b6b13a528
9bb8508d7e3360b1f1e8612a995a151fdcb04d07
4f57a2dd6c2c4020f760233c2b960d2d9232deb44c9bc9247ae96181666f5c19
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 02:38:56 GMT
Etag: "63bd563f-117"
Server: ECS (amb/6BAD)
Content-Length: 279
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 11 Jan 2023 02:17:24 GMT
age: 1292
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a831a999b5e598b4e9f4e31e8054ca7c
9971a4a806f48777ae6d9525085d16d0c6314c51
cdffa8dd48e75baa98670f82dfac2b3948667ca32dd93f469d2cd49d3a58581c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5683
Cache-Control: max-age=115357
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 02:38:56 GMT
Etag: "63bd2aaa-1d7"
Expires: Thu, 12 Jan 2023 10:41:33 GMT
Last-Modified: Tue, 10 Jan 2023 09:06:50 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.241.148.153101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.241.148.153:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: LIrGVenHW2ltGM/jDEz3OQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JT/6dciTByQo0/RcjCXPPmuF598=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8347
Expires: Wed, 11 Jan 2023 04:58:05 GMT
Date: Wed, 11 Jan 2023 02:38:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8347
Expires: Wed, 11 Jan 2023 04:58:05 GMT
Date: Wed, 11 Jan 2023 02:38:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8347
Expires: Wed, 11 Jan 2023 04:58:05 GMT
Date: Wed, 11 Jan 2023 02:38:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8347
Expires: Wed, 11 Jan 2023 04:58:05 GMT
Date: Wed, 11 Jan 2023 02:38:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8726105-cc11-4ded-a83e-841fadde759e.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8726105-cc11-4ded-a83e-841fadde759e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 17494b6e52ac7108f3ff324860bab717
9d71a025633cfaa02dcf9455603fd806f94be0b1
8214ab7d2f6ffaefa6539aced6c93782354ab15f92933b987d3aab8f3afd3bd6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8726105-cc11-4ded-a83e-841fadde759e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9860
x-amzn-requestid: d6287efc-acd0-44b1-a7f9-42e1b8d3b78a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ecfAoFnvoAMFnpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bb4537-1c74dde5429011e07f63c78e;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 22:35:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TZihK6hSHxfsOoVJ5fW-1u938ymcZg-EeglTU_CD2H6lTVTWiT1Yhg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 21:46:17 GMT
age: 17561
etag: "9d71a025633cfaa02dcf9455603fd806f94be0b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe834a7de-1ed4-4b8b-a3be-fce3151bd1b1.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe834a7de-1ed4-4b8b-a3be-fce3151bd1b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 68af9d9acdc08345ac38ae59f83a9a24
d3c0b7fa6ab4f421835acd595a75b5035d1ff9ee
1ae2e194f6bb20166d326002b39a4e3f44a9a97046e77ffd2a186eae384b7ce1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe834a7de-1ed4-4b8b-a3be-fce3151bd1b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10640
x-amzn-requestid: 0b0b6732-7692-4b35-9625-154dc39386dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ei745GEooAMFafA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bdd9d2-314dad90600e9d8c737adf05;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 21:34:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZR6BWnywdcRk5KkmuuMtlIgFKqD_IHiv9jSum7TsjPo5US-gkn7Z-w==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 21:43:43 GMT
etag: "d3c0b7fa6ab4f421835acd595a75b5035d1ff9ee"
content-type: image/jpeg
age: 17715
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1180e9be-6c31-4bd3-86f4-ac36cdd4e746.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1180e9be-6c31-4bd3-86f4-ac36cdd4e746.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 74eafe3bfabac6843100686971153898
e9df2e14485c412107d742d4baab53aa36cd8ca4
46fcfba703552a587888b3c6e6a1deb01930e347192d05d95a5a5f46e9d0fea1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1180e9be-6c31-4bd3-86f4-ac36cdd4e746.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9301
x-amzn-requestid: 7f43eb13-8bca-4b2b-a6a4-325c6161608e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ei73_GVVIAMFn5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bdd9cc-3f5d8e784f0d806b6416138f;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 21:34:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Hm1d-3H7jqfp6ylCahEmI84jBVpJyIpJTw2rlDx0N1TaagFryNmpXg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 21:43:48 GMT
etag: "e9df2e14485c412107d742d4baab53aa36cd8ca4"
content-type: image/jpeg
age: 17710
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad96383c-d707-4b10-ad6c-110acc0ed5e3.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad96383c-d707-4b10-ad6c-110acc0ed5e3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 35ee3a36f2d56adfa27324f734f8f7fc
6ec36e85e464004c5e6255739e962e6dcc4c24c6
6cedd3770eb8879c837799d36ebca9d631789d972d3631d730829fc5d64abb25
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad96383c-d707-4b10-ad6c-110acc0ed5e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8024
x-amzn-requestid: b331ee66-c166-4fa6-b950-287134d07fa2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eWhZ6EM0oAMFQFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8e2a5-39ff669b44e3dd9339daa56b;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 03:10:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Fk214iXw9pGVhIOu0uwvDOrqHR-pOjicJOttxjMb0JDhxXbfpyRncg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 07:47:06 GMT
age: 67912
etag: "6ec36e85e464004c5e6255739e962e6dcc4c24c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faabf1f2c-deb1-4d58-9ee6-5dd522512882.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faabf1f2c-deb1-4d58-9ee6-5dd522512882.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 56de8a53fb494855ff7717eeb39c1fed
438999ac8d0853e235a2c0e0f404291961c891ab
357db338b2f6fcf434bdd9c2561f91d3fc7e5d42a92e5068402ce3eeb6fba412
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faabf1f2c-deb1-4d58-9ee6-5dd522512882.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6400
x-amzn-requestid: f76c3961-a118-4639-a943-2ffbd3d28537
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eaD7hEEdoAMFs5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ba4d16-3881379864dcae085aa4fd4d;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 04:56:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mYQfpwVDSCnen6utBvdBBOmlxS0gGhOqIg8YZ1D0Bt2Ii9O07L9G9A==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 08:06:44 GMT
age: 66734
etag: "438999ac8d0853e235a2c0e0f404291961c891ab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febe61553-0d3d-4c00-8e9b-da1405590a9b.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febe61553-0d3d-4c00-8e9b-da1405590a9b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a708649e0d6b128eb599b221445a8e06
59f9b06ee8e4c9608e29e7b19832fb925789f373
b4e17cfdee53b56ac33cb5a86253e4839ed7bd9bb1604209834bb22d881472f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febe61553-0d3d-4c00-8e9b-da1405590a9b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7140
x-amzn-requestid: 96450c55-6068-4946-9e5f-650c19d2772a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ei739GoJIAMF0lA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bdd9cc-2bf965d47a10fd61619d945f;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 21:34:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pURlX7y10G8YZmmDErWlZPJoW6evZ716B3NVZXafQRDpZ3Ei1ixeWA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 21:43:26 GMT
age: 17732
etag: "59f9b06ee8e4c9608e29e7b19832fb925789f373"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.locowin.com/css/ext_chat.css?v=1.8.3
104.18.2.195200 OK 0 B URL HTTP/2 www.locowin.com/css/ext_chat.css?v=1.8.3
IP 104.18.2.195:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /css/ext_chat.css?v=1.8.3 HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: text/css
content-length: 0
cache-control: public, max-age=1296000
cf-bgj: minify
expires: Thu, 26 Jan 2023 02:39:01 GMT
etag: "0-572fc3d1f24c3"
last-modified: Thu, 09 Aug 2018 08:16:06 GMT
cf-cache-status: HIT
age: 417936
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 787a479009bab509-OSL
X-Firefox-Spdy: h2
www.locowin.com/img/mga.png
104.18.2.195200 OK 5.0 kB URL HTTP/2 www.locowin.com/img/mga.png
IP 104.18.2.195:0
File type PNG image data, 650 x 128, 8-bit colormap, non-interlaced\012- data
Hash 656b2de8e4ba13a06538de6d2b74639d
28f38f8b474ea6c61434417b1e71da00e69389de
2691d86408e19b6492e7c7fb43102db19df453d91e2ee3c4035a644199a771fa
GET /img/mga.png HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/png
content-length: 4982
cache-control: public, max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=9091
expires: Fri, 10 Feb 2023 02:39:01 GMT
etag: "2383-572fc3b82d91f"
last-modified: Thu, 09 Aug 2018 08:15:39 GMT
cf-cache-status: HIT
age: 1730136
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 787a479019c8b509-OSL
X-Firefox-Spdy: h2
www.locowin.com/img/footer-placeholder.png
104.18.2.195200 OK 86 B URL HTTP/2 www.locowin.com/img/footer-placeholder.png
IP 104.18.2.195:0
File type PNG image data, 70 x 45, 8-bit gray+alpha, non-interlaced\012- data
Hash 515901defb5ee1b832fb0d7221566dda
7cb2c8e3536d9ba64c146b47cf2ba2e849512854
bb8c2236dc1ff9d80daeface62f2e771e535dea3668db659ba5492a7ec8af835
GET /img/footer-placeholder.png HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/png
content-length: 86
cache-control: public, max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=995
expires: Fri, 10 Feb 2023 02:39:01 GMT
etag: "3e3-572fc3b8e71e5"
last-modified: Thu, 09 Aug 2018 08:15:40 GMT
cf-cache-status: HIT
age: 1730136
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 787a479019c9b509-OSL
X-Firefox-Spdy: h2
www.locowin.com/img/registration-success-modal.png
104.18.2.195200 OK 963 B URL HTTP/2 www.locowin.com/img/registration-success-modal.png
IP 104.18.2.195:0
File type PNG image data, 60 x 60, 8-bit colormap, non-interlaced\012- data
Hash 43a652955e491638f5b2ebb299da668e
5f19a6c56e02c384290490194157151216097a37
10a74373b6d543e733e13c38ffe2e9adee55f19127a5600e52dc43c3d5d603ea
GET /img/registration-success-modal.png HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/png
content-length: 963
cache-control: public, max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1931
expires: Fri, 10 Feb 2023 02:39:01 GMT
etag: "78b-572fc3b81621f"
last-modified: Thu, 09 Aug 2018 08:15:39 GMT
cf-cache-status: HIT
age: 158761
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 787a479019cdb509-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 8810f174697f3e81d7bbc68195169289
cb744e3d823e75527da980c6b57b7812c699e79e
38c3fd5a36d607d746294b99ff5f0f48bb1732f43f744639425dd2b9b6bd2b8a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6273
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 02:39:01 GMT
Last-Modified: Wed, 11 Jan 2023 00:54:28 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 280
www.locowin.com/img/header-logo.svg
104.18.2.195200 OK 5.4 kB URL HTTP/2 www.locowin.com/img/header-logo.svg
IP 104.18.2.195:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 093cb276ae0becb74df5c5a3e9813b50
9929ce19e45212268eae8cbad7326e4ff431aba6
7b3fa57dd2e84aba6f6e86c086b05439a46d7e02464ece15bf9c9e05d8af01b6
GET /img/header-logo.svg HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Fri, 23 Nov 2018 09:44:08 GMT
etag: W/"42a5-57b51d32a9779"
expires: Fri, 10 Feb 2023 02:39:01 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 1730136
server: cloudflare
cf-ray: 787a479009c1b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/img/footer/livesupport-icon.svg
104.18.2.195200 OK 682 B URL HTTP/2 www.locowin.com/img/footer/livesupport-icon.svg
IP 104.18.2.195:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (719), with no line terminators
Hash 73776c69ec070d939b4b22adb4d0e7bd
816f7f1512ad65dfdd3976362b9877b8f4b3cdca
85deef1bb3f651889651fe714dce70a4232e99d789652501d5ed4ced05348447
GET /img/footer/livesupport-icon.svg HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Thu, 09 Aug 2018 08:15:39 GMT
etag: W/"2cf-572fc3b83c380"
expires: Fri, 10 Feb 2023 02:39:01 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 364826
server: cloudflare
cf-ray: 787a479019c7b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/img/footer/mail-icon.svg
104.18.2.195200 OK 996 B URL HTTP/2 www.locowin.com/img/footer/mail-icon.svg
IP 104.18.2.195:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (966), with no line terminators
Hash 03689b05b709cc0a194597d32c2cb3d5
fdab2a9d8edfa1617968b05222a7354e6933a0cd
300a819982cafab63983abf4994069a0670331d2b65dcbf8658b93cd38a902c4
GET /img/footer/mail-icon.svg HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Thu, 09 Aug 2018 08:15:39 GMT
etag: W/"3c6-572fc3b8365c0"
expires: Fri, 10 Feb 2023 02:39:01 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 364826
server: cloudflare
cf-ray: 787a479019c6b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/js/polyfills.min.js
104.18.2.195200 OK 5.2 kB URL HTTP/2 www.locowin.com/js/polyfills.min.js
IP 104.18.2.195:0
File type ASCII text, with very long lines (7100), with CRLF line terminators
Hash 8a65b05f3cebef2d23582654c3f8bae5
79e0a668674e43cb243ea6783abb1f8f0aa6f2b3
f62e7e4f4b457f2162f045f0ec832762387087630b74e67f4624780814fd540c
GET /js/polyfills.min.js HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: application/javascript
last-modified: Thu, 09 Aug 2018 08:16:05 GMT
etag: W/"33f3-572fc3d165abe-gzip"
vary: Accept-Encoding
expires: Thu, 26 Jan 2023 02:39:01 GMT
cache-control: public, max-age=1296000
cf-cache-status: HIT
age: 417936
server: cloudflare
cf-ray: 787a479029cfb509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/js/validatedform.js?v=6.4.51
104.18.2.195200 OK 959 B URL HTTP/2 www.locowin.com/js/validatedform.js?v=6.4.51
IP 104.18.2.195:0
File type ASCII text, with very long lines (432)
Hash 07f2f4e798c4d80105a287ba1b77c734
2e8c1ba58ea9a231d68ef5e1fc773c00c41ffe07
0ab31c39088ca231321a0e27efbf3a2c0f993d1a648a2063ff22f37ccb85f4d8
GET /js/validatedform.js?v=6.4.51 HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: application/javascript
cache-control: public, max-age=1296000
cf-bgj: minify
cf-polished: origSize=2104
expires: Thu, 26 Jan 2023 02:39:01 GMT
etag: W/"838-5b1b2b3bf3b09-gzip"
last-modified: Thu, 15 Oct 2020 09:59:21 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 417936
server: cloudflare
cf-ray: 787a479029d4b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/img/sidebar-icon.svg
104.18.2.195200 OK 783 B URL HTTP/2 www.locowin.com/img/sidebar-icon.svg
IP 104.18.2.195:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (793)
Hash 441becf14f4d089fde565082ae44e474
cbe7d2fc16f63a8d51482e134efe63d317bc66e5
3b9fecd4510a5cbb753bc8c9df30fc07d15d9ec3f2b808e728494ce5f40cc248
GET /img/sidebar-icon.svg HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Thu, 09 Aug 2018 08:15:39 GMT
etag: W/"375-572fc3b89fd43"
expires: Fri, 10 Feb 2023 02:39:01 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 1730136
server: cloudflare
cf-ray: 787a479019ccb509-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 8810f174697f3e81d7bbc68195169289
cb744e3d823e75527da980c6b57b7812c699e79e
38c3fd5a36d607d746294b99ff5f0f48bb1732f43f744639425dd2b9b6bd2b8a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6199
Cache-Control: max-age=93213
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 02:39:01 GMT
Etag: "63bcd22b-118"
Expires: Thu, 12 Jan 2023 04:32:34 GMT
Last-Modified: Tue, 10 Jan 2023 02:49:15 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 280
ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js
142.250.74.138200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (32341)
Hash 856f85cc1b07156fa844b44a10c236c2
7cef457c0e1cd0c20f4e699564ea8997f0332021
c61aa9ce7b32f93630abac1a4b27382f9333e0ff69477c9d9099070ae0742b01
GET /ajax/libs/jquery/1.11.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33576
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 04 Jan 2023 21:00:26 GMT
expires: Thu, 04 Jan 2024 21:00:26 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 538715
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-123910785-8
172.217.21.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-123910785-8
IP 172.217.21.168:0
File type ASCII text, with very long lines (1759)
Hash 9d703d7ccb93d1130421c1ddf260fa6b
03f1123e66613bc64e0d187ff046c4027197458d
62ac3a9af022f2c3fe27e70967132f40c937b9ed13591c2e0e8aea65e3aa63d4
GET /gtag/js?id=UA-123910785-8 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 11 Jan 2023 02:39:01 GMT
expires: Wed, 11 Jan 2023 02:39:01 GMT
cache-control: private, max-age=900
last-modified: Wed, 11 Jan 2023 01:25:22 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44798
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b6814de21e79e28c4a59b9bef50020cb
5d6fcbdd6b70933b9367226523ce68364a1f0f1b
49821c9c4c570ff4e089276c96b05cef53c725e77e34f6c772d2b932e7c81c2d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 02:39:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.locowin.com/js/cookie.min.js
104.18.2.195200 OK 1.3 kB URL HTTP/2 www.locowin.com/js/cookie.min.js
IP 104.18.2.195:0
File type ASCII text, with very long lines (1709), with no line terminators
Hash 5962711dc242e172febdd93dca024c5c
8a604ee0b7cd593648414556566bbf548ddd5d44
2d6db2f5fcc3fa3e3f3b8ad331a4ae87d661fd80a5578563fac209fb9f631db9
GET /js/cookie.min.js HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: application/javascript
last-modified: Thu, 09 Aug 2018 08:16:05 GMT
etag: W/"6ad-572fc3d166a5e-gzip"
vary: Accept-Encoding
expires: Thu, 26 Jan 2023 02:39:01 GMT
cache-control: public, max-age=1296000
cf-cache-status: HIT
age: 391864
server: cloudflare
cf-ray: 787a479029d1b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/img/homepage/facebook.svg
104.18.2.195200 OK 829 B URL HTTP/2 www.locowin.com/img/homepage/facebook.svg
IP 104.18.2.195:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (316)
Hash 12e1c5391d94f417b1b58c3f4216a693
f4088f5ed2124036dcd37ff51ecd8d407db8000a
cb3b33997b5c3ccd17f9e04db39e8bf97f30dfe7f26143f661e84a3510f3914e
GET /img/homepage/facebook.svg HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Tue, 18 Jan 2022 14:32:59 GMT
etag: W/"219-5d5dc255c5dc8"
expires: Fri, 10 Feb 2023 02:39:01 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 131188
server: cloudflare
cf-ray: 787a479009c2b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
104.18.2.195200 OK 1.1 kB URL HTTP/2 www.locowin.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 104.18.2.195:0
Hash 2a5e39f2a4fbb53094c12b65b2c48376
d4f2a8eae5807b7b21e4292e5958bae877043d12
fbe38a94cf50a249f9be63846d01174c45a9c7fca328bb253ccbdf1229d2845d
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: application/javascript
last-modified: Tue, 10 Jan 2023 10:27:05 GMT
etag: W/"63bd3d79-4d7"
vary: Accept-Encoding
server: cloudflare
cf-ray: 787a479019cab509-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 13 Jan 2023 02:39:01 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
www.locowin.com/img/header/clubloco-icon.png
104.18.2.195200 OK 3.3 kB URL HTTP/2 www.locowin.com/img/header/clubloco-icon.png
IP 104.18.2.195:0
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 657f30aad9de966019ab435c52ab304c
7f8e285885627d8fa52883e2b0fc3a6c2159541f
d738928b79295c1a3e8c78197dacd2d952763171c37b7b9011518b183a1dece0
GET /img/header/clubloco-icon.png HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/css/style.css?v=1.8.3
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/png
content-length: 3274
cache-control: public, max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: status=not_needed
expires: Fri, 10 Feb 2023 02:39:01 GMT
etag: "cca-57f2ba98a4d35"
last-modified: Fri, 11 Jan 2019 09:53:08 GMT
cf-cache-status: HIT
age: 1730135
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 787a47927afeb509-OSL
X-Firefox-Spdy: h2
www.locowin.com/img/header/cashback-icon.png
104.18.2.195200 OK 2.3 kB URL HTTP/2 www.locowin.com/img/header/cashback-icon.png
IP 104.18.2.195:0
File type PNG image data, 192 x 192, 8-bit gray+alpha, non-interlaced\012- data
Hash 04223b8ac3c8b8ade033fb87c6d46958
1fc8ede2329be88d4437c2916294000c751c43bb
6f0bf0ae87f465474187fc95e5c56b3d06d299df477cb63e52190d6cf41133e6
GET /img/header/cashback-icon.png HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/css/style.css?v=1.8.3
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/png
content-length: 2311
cache-control: public, max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=4550
expires: Fri, 10 Feb 2023 02:39:01 GMT
etag: "11c6-5d32d2a978fae"
last-modified: Wed, 15 Dec 2021 10:57:05 GMT
cf-cache-status: HIT
age: 1730135
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 787a47927affb509-OSL
X-Firefox-Spdy: h2
www.locowin.com/img/close-button.svg
104.18.2.195200 OK 4.1 kB URL HTTP/2 www.locowin.com/img/close-button.svg
IP 104.18.2.195:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (316)
Hash dba561ce2cf21da3d1554ccbbf7e5b86
44e691a7cfeb988146511651bf045ff1bc18eb61
10033d0cf2580f9e72b57c4517ac546caae525562cc2d48143549723e64cd8a3
GET /img/close-button.svg HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/svg+xml
last-modified: Thu, 09 Aug 2018 08:15:39 GMT
etag: W/"198-572fc3b866361"
expires: Fri, 10 Feb 2023 02:39:01 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 1730136
vary: Accept-Encoding
server: cloudflare
cf-ray: 787a479029ceb509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/img/homepage/locowin-character.png
104.18.2.195200 OK 31 kB URL HTTP/2 www.locowin.com/img/homepage/locowin-character.png
IP 104.18.2.195:0
File type PNG image data, 200 x 366, 8-bit/color RGBA, non-interlaced\012- data
Hash 53b8fe6ad09d9798733a74de65162435
fe9a326f1e8e924a6ef47182517b0b8c66ace016
dabf685a5c325580a9fe1223f1501df95713126ef23a677e6d3653703c69325d
GET /img/homepage/locowin-character.png HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/css/style.css?v=1.8.3
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/png
content-length: 30980
cache-control: public, max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=43703
expires: Fri, 10 Feb 2023 02:39:01 GMT
etag: "aab7-5d5db0d1f25c3"
last-modified: Tue, 18 Jan 2022 13:14:38 GMT
cf-cache-status: HIT
age: 131188
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 787a47927b02b509-OSL
X-Firefox-Spdy: h2
www.locowin.com/img/legal-sprites.png?v=2
104.18.2.195200 OK 22 kB URL HTTP/2 www.locowin.com/img/legal-sprites.png?v=2
IP 104.18.2.195:0
File type PNG image data, 852 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash 72128c1780f96337422cca3ce97a2d45
bca6d48e7eaeafa16281d105ca7ea42f43aca880
7b5cb92d5b56a2e0930eab5a8582d383df74fb6f3758276f84ea21b1e59ddf6f
GET /img/legal-sprites.png?v=2 HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/css/style.css?v=1.8.3
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/png
content-length: 21639
cache-control: public, max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=30967
expires: Fri, 10 Feb 2023 02:39:01 GMT
etag: "78f7-5c0df866e2b49"
last-modified: Mon, 26 Apr 2021 12:45:49 GMT
cf-cache-status: HIT
age: 1730135
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 787a47927b07b509-OSL
X-Firefox-Spdy: h2
www.locowin.com/img/social-sprites.png
104.18.2.195200 OK 6.7 kB URL HTTP/2 www.locowin.com/img/social-sprites.png
IP 104.18.2.195:0
File type PNG image data, 126 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash ec180b4eb1748b4eb764d0e8be167334
56de75ba01bfe354ce484c17c28e6df1d5a7acd3
5777e247aa3adb2cf5689e36ee2d0fdc6b73179756ac3ac6f22b456dad452bd1
GET /img/social-sprites.png HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/css/style.css?v=1.8.3
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/png
content-length: 6713
cache-control: public, max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=9960
expires: Fri, 10 Feb 2023 02:39:01 GMT
etag: "26e8-572fc3b821d9f"
last-modified: Thu, 09 Aug 2018 08:15:39 GMT
cf-cache-status: HIT
age: 1730135
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 787a47927b06b509-OSL
X-Firefox-Spdy: h2
consent.cookiebot.com/e26487f7-255c-4047-9118-c4c74c4552a1/cc.js?renew=false&referer=www.locowin.com&dnt=false&init=false
95.101.10.153200 OK 56 kB URL HTTP/2 consent.cookiebot.com/e26487f7-255c-4047-9118-c4c74c4552a1/cc.js?renew=false&referer=www.locowin.com&dnt=false&init=false
IP 95.101.10.153:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65499)
Hash 202be465b8543b2a6b425e17a6ddd71f
dc9186b2d5ae80936978e10e068a394736d41087
891f52c0e763216f8335b49db2244629841c85cd10cd46a4fe7b010b015dcfe4
GET /e26487f7-255c-4047-9118-c4c74c4552a1/cc.js?renew=false&referer=www.locowin.com&dnt=false&init=false HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, max-age=1200
content-type: application/x-javascript; charset=utf-8
content-encoding: gzip
last-modified: Wed, 11 Jan 2023 02:39:01 GMT
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 55470
date: Wed, 11 Jan 2023 02:39:01 GMT
X-Firefox-Spdy: h2
www.locowin.com/js/experience-cashier.min.js?v=6.4.51
104.18.2.195200 OK 250 kB URL HTTP/2 www.locowin.com/js/experience-cashier.min.js?v=6.4.51
IP 104.18.2.195:0
File type ASCII text, with very long lines (32020)
Size 250 kB (249451 bytes)
Hash 538636abab023778a7a6d96c32af2a2c
cfd54fffbc97445c128947af7fdcb478946ea82b
dade60fa7d756e6d702f249ad98107a7de4fc735796f4be971ed8c0cd085d2a6
GET /js/experience-cashier.min.js?v=6.4.51 HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 08:07:54 GMT
etag: W/"a9b47-5ee32e6f9cd90-gzip"
vary: Accept-Encoding
expires: Thu, 26 Jan 2023 02:39:01 GMT
cache-control: public, max-age=1296000
cf-cache-status: HIT
age: 417936
server: cloudflare
cf-ray: 787a479029d5b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/img/header/games-icon.svg
104.18.2.195200 OK 4.9 kB URL HTTP/2 www.locowin.com/img/header/games-icon.svg
IP 104.18.2.195:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1170), with no line terminators
Hash a1deb1837162d7d81d82889aa98fe44b
e64e9506027f38c3239c51c8a2cd03aaaae2af26
319847ae65a6d0da000dab9a3397b2c8957dc7c4f88e411284a3ba1c407cb9d9
GET /img/header/games-icon.svg HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/css/style.css?v=1.8.3
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Thu, 09 Aug 2018 08:15:39 GMT
etag: W/"492-572fc3b854a21"
expires: Fri, 10 Feb 2023 02:39:01 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 364826
server: cloudflare
cf-ray: 787a47926af2b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/img/languages-sprites.png?v=2
104.18.2.195200 OK 16 kB URL HTTP/2 www.locowin.com/img/languages-sprites.png?v=2
IP 104.18.2.195:0
Hash 02867aa5d60e1ec6c4c82f12b0c958ba
25506a01257b4aa77bc208001c51ea281e89fb7a
f42ed35ade4e100ddbbae7123f194ac519f15ee3c0492a29873f462d70922cc9
GET /img/languages-sprites.png?v=2 HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/css/style.css?v=1.8.3
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/png
content-length: 9277
cache-control: public, max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=11915
expires: Fri, 10 Feb 2023 02:39:01 GMT
etag: "2e8b-5e2690955e1c0"
last-modified: Mon, 27 Jun 2022 07:40:39 GMT
cf-cache-status: HIT
age: 1730135
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 787a47928b0db509-OSL
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
104.18.11.207200 OK 77 kB URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 104.18.11.207:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.locowin.com
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 601, 617, 718
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 2021-08-02 20:43:32
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 0354fe21f4a852dd02b5097bc442b4f9
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 5189667
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 787a47935a58b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9a4ba4ab27cd47ead09d38283f795198
cf1d1e13fa427879530cb912e495012a42312b7d
8c0178a28c92e029ad04c5dbb4b8515117303e64cb3df9f3902a10f151ee1aab
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 02:39:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
netdna.bootstrapcdn.com/bootstrap/3.2.0/css/bootstrap.min.css
104.18.11.207200 OK 471 B URL HTTP/2 netdna.bootstrapcdn.com/bootstrap/3.2.0/css/bootstrap.min.css
IP 104.18.11.207:0
Hash 9a4ba4ab27cd47ead09d38283f795198
cf1d1e13fa427879530cb912e495012a42312b7d
8c0178a28c92e029ad04c5dbb4b8515117303e64cb3df9f3902a10f151ee1aab
GET /bootstrap/3.2.0/css/bootstrap.min.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 752, 617, 617
last-modified: Mon, 25 Jan 2021 22:03:57 GMT
cdn-cachedat: 2021-08-02 15:14:19
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 150daf1be933c8719b905f480a36d6f4
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 16447519
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 787a4790af26b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
netdna.bootstrapcdn.com/bootstrap/3.0.2/js/bootstrap.min.js
104.18.11.207200 OK 52 kB URL HTTP/2 netdna.bootstrapcdn.com/bootstrap/3.0.2/js/bootstrap.min.js
IP 104.18.11.207:0
File type ASCII text, with very long lines (27535)
Hash 14a904a941bfcd03562ac104a00bd52a
4d6ba5dc0b09595399a1f6befc19fc73eab58c4e
f5a2175c28347acb2b75b3a24265a85414df0fd490eb8956652741c7414a7850
GET /bootstrap/3.0.2/js/bootstrap.min.js HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 722, 718, 718
last-modified: Mon, 25 Jan 2021 22:03:56 GMT
cdn-cachedat: 2021-04-23 00:08:56
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: d080d6376b705cd530fa1005fffedb9b
cdn-cache: HIT
cf-cache-status: HIT
age: 21514805
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 787a4790bf29b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9a4ba4ab27cd47ead09d38283f795198
cf1d1e13fa427879530cb912e495012a42312b7d
8c0178a28c92e029ad04c5dbb4b8515117303e64cb3df9f3902a10f151ee1aab
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 02:39:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.locowin.com/img/homepage/homepage-background.jpg
104.18.2.195200 OK 1.2 MB URL HTTP/2 www.locowin.com/img/homepage/homepage-background.jpg
IP 104.18.2.195:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2776x1110, components 3\012- data
Size 1.2 MB (1165699 bytes)
Hash cae72e00234ccc4c674f4ee429a3e7ad
bec4d3c46d69e57afbcdf429810a7fe85bc72455
faafb019b0c557e54514cb272d8988c83bf1a8b344a90c1b2892a40253287550
GET /img/homepage/homepage-background.jpg HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/css/style.css?v=1.8.3
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/jpeg
content-length: 1165699
cache-control: public, max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1227824
expires: Fri, 10 Feb 2023 02:39:01 GMT
etag: "12bc30-5d5c8ca8a9de1"
last-modified: Mon, 17 Jan 2022 15:27:31 GMT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 787a47927b04b509-OSL
X-Firefox-Spdy: h2
consentcdn.cookiebot.com/sdk/bc-v4.min.html
104.110.3.72200 OK 392 B URL HTTP/2 consentcdn.cookiebot.com/sdk/bc-v4.min.html
IP 104.110.3.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (627), with no line terminators
Hash e7268eccad39bd651697fa793a52cc5c
47299cefa2397b0c1d0c5bf232390a5cf1bcc4d3
907e16c84d35556e4ed841a3511915e6d4bb4e9d68cfca178a740e90b4d80e35
GET /sdk/bc-v4.min.html HTTP/1.1
Host: consentcdn.cookiebot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: text/html
etag: "3d08665fa4c7bcf9fa2dcbbc7efe1d0f:1649057029.895163"
last-modified: Mon, 04 Apr 2022 07:23:49 GMT
server: AkamaiNetStorage
x-akamai-transformed: 9 - 0 pmb=mRUM,1
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=29771517
expires: Thu, 21 Dec 2023 16:30:58 GMT
date: Wed, 11 Jan 2023 02:39:01 GMT
content-length: 392
server-timing: cdn-cache; desc=HIT, edge; dur=1
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 9e1793fc3bdc3d93cb8efb7d45f9e59c
6712f98a8b87dfab27441c6c1cfdc9a65b6241d0
ea2d02722fd53416d93adff4c0838cf33d8c63421808d1490160e048c627b630
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2657
Cache-Control: max-age=96156
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 02:39:01 GMT
Etag: "63bceb80-117"
Expires: Thu, 12 Jan 2023 05:21:37 GMT
Last-Modified: Tue, 10 Jan 2023 04:37:20 GMT
Server: ECS (amb/6BAD)
X-Cache: HIT
Content-Length: 279
www.locowin.com/api/status
104.18.2.195400 Bad Request 910 B URL HTTP/2 www.locowin.com/api/status
IP 104.18.2.195:0
File type JSON data\012- , ASCII text, with very long lines (910), with no line terminators
Hash 9f172bf612be6a1e5e1baf9122b17910
c44fca7c499b31e7a702b40e5c1261ac1b91bf3b
f996de4b903a158125c8f38e3c7a34fcc9431fccbe3fdc6b430e8d6f49389d8b
GET /api/status HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
content-type: application/json
Connection: keep-alive
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 400 Bad Request
date: Wed, 11 Jan 2023 02:39:02 GMT
content-type: application/json
content-length: 910
x-powered-by: PHP/7.0.10
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 787a47948be6b509-OSL
X-Firefox-Spdy: h2
www.locowin.com/apple-touch-icon.png
104.18.2.195200 OK 5.2 kB URL HTTP/2 www.locowin.com/apple-touch-icon.png
IP 104.18.2.195:0
File type PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Hash dba0ec395e92a03917befb92032a9075
b0554b7846e4de06885d16892c4b5d40f5ca6547
2ea5e47698c51f5e2bd5f34fd3b3112fe21d81d16e2952de7b1b03b2637cf4df
GET /apple-touch-icon.png HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:02 GMT
content-type: image/png
content-length: 5244
cache-control: public, max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=5343
expires: Fri, 10 Feb 2023 02:39:02 GMT
etag: "14df-572fc3ccacadb"
last-modified: Thu, 09 Aug 2018 08:16:00 GMT
cf-cache-status: HIT
age: 1730136
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 787a47963c9bb509-OSL
X-Firefox-Spdy: h2
www.locowin.com/favicon-16x16.png
104.18.2.195200 OK 513 B URL HTTP/2 www.locowin.com/favicon-16x16.png
IP 104.18.2.195:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash b8ec5f1d84c6275fec8762b9c7b4cdbf
690faf1da7be5bf3eea150415f2772494cf19776
fedba04b18a4e305bf6449564c103781291b853b048c03acc29efed019a3cd8f
GET /favicon-16x16.png HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:02 GMT
content-type: image/png
content-length: 513
cache-control: public, max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=635
expires: Fri, 10 Feb 2023 02:39:02 GMT
etag: "27b-572fc3d1f72e3"
last-modified: Thu, 09 Aug 2018 08:16:06 GMT
cf-cache-status: HIT
age: 1730136
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 787a47963c9cb509-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 6b11b6253aaf522320ab85bcb5a7ae3e
12caaeaf823a0ce97549d4bf2cc727c135313b22
6539b16feab0102e166ffb63e5a5f8dc2e917053d430f093f4e99687ce716324
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 02:39:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 11 Jan 2023 00:41:08 GMT
expires: Wed, 11 Jan 2023 02:41:08 GMT
cache-control: public, max-age=7200
age: 7074
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 6b11b6253aaf522320ab85bcb5a7ae3e
12caaeaf823a0ce97549d4bf2cc727c135313b22
6539b16feab0102e166ffb63e5a5f8dc2e917053d430f093f4e99687ce716324
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 02:39:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j98&a=1226988180&t=pageview&_s=1&dl=https%3A%2F%2Fwww.locowin.com%2F%3FaffiliateId%3D218c4a46-211e-47c7-95db-9e16d0c594c4%26clickId%3Db9f411f763be213fb5df1703281481%26subid1%3D185016&ul=en-us&de=UTF-8&dt=Casino%20%7C%20Locowin&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=768220105&gjid=542997431&cid=819138101.1673404728&tid=UA-123910785-8&_gid=1163577570.1673404728&_r=1>m=2ou190&z=1350190864
142.250.74.110200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=1226988180&t=pageview&_s=1&dl=https%3A%2F%2Fwww.locowin.com%2F%3FaffiliateId%3D218c4a46-211e-47c7-95db-9e16d0c594c4%26clickId%3Db9f411f763be213fb5df1703281481%26subid1%3D185016&ul=en-us&de=UTF-8&dt=Casino%20%7C%20Locowin&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=768220105&gjid=542997431&cid=819138101.1673404728&tid=UA-123910785-8&_gid=1163577570.1673404728&_r=1>m=2ou190&z=1350190864
IP 142.250.74.110:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j98&a=1226988180&t=pageview&_s=1&dl=https%3A%2F%2Fwww.locowin.com%2F%3FaffiliateId%3D218c4a46-211e-47c7-95db-9e16d0c594c4%26clickId%3Db9f411f763be213fb5df1703281481%26subid1%3D185016&ul=en-us&de=UTF-8&dt=Casino%20%7C%20Locowin&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=768220105&gjid=542997431&cid=819138101.1673404728&tid=UA-123910785-8&_gid=1163577570.1673404728&_r=1>m=2ou190&z=1350190864 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.locowin.com
Connection: keep-alive
Referer: https://www.locowin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.locowin.com
date: Wed, 11 Jan 2023 02:39:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mt-spapi.igp.cloud/socket.io/?x-igp-session=anonymous&EIO=3&transport=websocket
104.18.31.79101 Switching Protocols 0 B URL HTTP/1.1 mt-spapi.igp.cloud/socket.io/?x-igp-session=anonymous&EIO=3&transport=websocket
IP 104.18.31.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?x-igp-session=anonymous&EIO=3&transport=websocket HTTP/1.1
Host: mt-spapi.igp.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.locowin.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0fpDvrWEtGsNaotWhrwL3w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Wed, 11 Jan 2023 02:39:02 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: H3zzDOs5W+A/mKU1ifPJOAfiu8o=
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 787a47954a28b4fa-OSL
www.locowin.com/ajax/broadcasts/1
104.18.2.195200 OK 2 B URL HTTP/2 www.locowin.com/ajax/broadcasts/1
IP 104.18.2.195:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
POST /ajax/broadcasts/1 HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://www.locowin.com
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:02 GMT
content-type: application/json
content-length: 2
x-powered-by: PHP/7.0.10
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; expires=Wed, 11-Jan-2023 03:39:02 GMT; Max-Age=3600; path=/; domain=.locowin.com; HttpOnly
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 787a47963ca0b509-OSL
X-Firefox-Spdy: h2
mt-spapi.igp.cloud/socket.io/?x-igp-session=anonymous&EIO=3&transport=websocket
104.18.30.79101 Switching Protocols 0 B URL HTTP/1.1 mt-spapi.igp.cloud/socket.io/?x-igp-session=anonymous&EIO=3&transport=websocket
IP 104.18.30.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?x-igp-session=anonymous&EIO=3&transport=websocket HTTP/1.1
Host: mt-spapi.igp.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.locowin.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NaKlAdxpb/kOAuS+bQf3HQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Wed, 11 Jan 2023 02:39:02 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dwtlnGy0FzGuSTNji/ekv+01bE0=
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 787a4797dfd1b4fd-OSL
www.locowin.com/css/style.css?v=1.8.3
104.18.2.195200 OK 0 B URL HTTP/2 www.locowin.com/css/style.css?v=1.8.3
IP 104.18.2.195:0
GET /css/style.css?v=1.8.3 HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: text/css
cache-control: public, max-age=1296000
cf-bgj: minify
cf-polished: origSize=295790
expires: Thu, 26 Jan 2023 02:39:01 GMT
etag: W/"4836e-5efdae0020c26-gzip"
last-modified: Thu, 15 Dec 2022 09:57:03 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 417936
server: cloudflare
cf-ray: 787a479009c0b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/img/homepage/twitter.svg
104.18.2.195200 OK 0 B URL HTTP/2 www.locowin.com/img/homepage/twitter.svg
IP 104.18.2.195:0
GET /img/homepage/twitter.svg HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Tue, 18 Jan 2022 14:32:59 GMT
etag: W/"34b-5d5dc255cbcc7"
expires: Fri, 10 Feb 2023 02:39:01 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
server: cloudflare
cf-ray: 787a479019c4b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
xlang.locowin.com/desktop/www.locowin.com_en.js
104.18.2.195200 OK 0 B URL HTTP/2 xlang.locowin.com/desktop/www.locowin.com_en.js
IP 104.18.2.195:0
GET /desktop/www.locowin.com_en.js HTTP/1.1
Host: xlang.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=135626
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Credentials
access-control-allow-origin: *
cache-control: public, max-age=1800
etag: W/"211ca-5f1f37076b196-gzip"
last-modified: Wed, 11 Jan 2023 02:05:49 GMT
vary: Accept-Encoding
cf-cache-status: HIT
expires: Wed, 11 Jan 2023 03:09:01 GMT
server: cloudflare
cf-ray: 787a47907a2ab509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/js/socket.io.slim.js
104.18.2.195200 OK 0 B URL HTTP/2 www.locowin.com/js/socket.io.slim.js
IP 104.18.2.195:0
GET /js/socket.io.slim.js HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: application/javascript
cache-control: public, max-age=1296000
cf-bgj: minify
cf-polished: origSize=52808
expires: Thu, 26 Jan 2023 02:39:01 GMT
etag: W/"ce48-572fc3d15be7e-gzip"
last-modified: Thu, 09 Aug 2018 08:16:05 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 417936
server: cloudflare
cf-ray: 787a479029d3b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/js/portal.js?v=6.4.51
104.18.2.195200 OK 0 B URL HTTP/2 www.locowin.com/js/portal.js?v=6.4.51
IP 104.18.2.195:0
GET /js/portal.js?v=6.4.51 HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: application/javascript
cache-control: public, max-age=1296000
cf-bgj: minify
cf-polished: origSize=14566
expires: Thu, 26 Jan 2023 02:39:01 GMT
etag: W/"38e6-5c3b0274509eb-gzip"
last-modified: Tue, 01 Jun 2021 08:30:24 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 417936
server: cloudflare
cf-ray: 787a479049f5b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/js/scripts.js?v=6.4.51
104.18.2.195200 OK 0 B URL HTTP/2 www.locowin.com/js/scripts.js?v=6.4.51
IP 104.18.2.195:0
GET /js/scripts.js?v=6.4.51 HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: application/javascript
cache-control: public, max-age=1296000
cf-bgj: minify
cf-polished: origSize=207679
expires: Thu, 26 Jan 2023 02:39:01 GMT
etag: W/"32b3f-5ef9fb1f000ba-gzip"
last-modified: Mon, 12 Dec 2022 11:20:47 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 417936
server: cloudflare
cf-ray: 787a47907a29b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/css/toastr.min.css
104.18.2.195200 OK 0 B URL HTTP/2 www.locowin.com/css/toastr.min.css
IP 104.18.2.195:0
GET /css/toastr.min.css HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: text/css
last-modified: Thu, 09 Aug 2018 08:16:05 GMT
etag: W/"1a55-572fc3d188d3f-gzip"
vary: Accept-Encoding
expires: Thu, 26 Jan 2023 02:39:01 GMT
cache-control: public, max-age=1296000
cf-cache-status: HIT
age: 361155
server: cloudflare
cf-ray: 787a479009b9b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/img/homepage/instagram.svg
104.18.2.195200 OK 0 B URL HTTP/2 www.locowin.com/img/homepage/instagram.svg
IP 104.18.2.195:0
GET /img/homepage/instagram.svg HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Tue, 18 Jan 2022 14:32:59 GMT
etag: W/"794-5d5dc255bbd8c"
expires: Fri, 10 Feb 2023 02:39:01 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 131188
server: cloudflare
cf-ray: 787a479019c5b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
104.18.2.195200 OK 0 B URL HTTP/2 www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
IP 104.18.2.195:0
GET /?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016 HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:00 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.0.10
set-cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; expires=Wed, 11-Jan-2023 03:38:59 GMT; Max-Age=3600; path=/; domain=.locowin.com; HttpOnly
xigpsid=anonymous; expires=Thu, 12-Jan-2023 02:39:00 GMT; Max-Age=86400; path=/; domain=.locowin.com; secure
xigpsid=anonymous; expires=Thu, 12-Jan-2023 02:39:00 GMT; Max-Age=86400; path=/; domain=.locowin.com; secure
returningVisitor=returningVisitor; expires=Wed, 18-Jan-2023 02:39:00 GMT; Max-Age=604800; path=/; domain=locowin.com
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 787a47854c73b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
internal-chat.igp.cloud//ext_chat.min.js
185.187.138.150200 OK 0 B URL HTTP/2 internal-chat.igp.cloud//ext_chat.min.js
IP 185.187.138.150:0
ASN #43023 iGP Tech d.o.o.
GET //ext_chat.min.js HTTP/1.1
Host: internal-chat.igp.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
last-modified: Tue, 29 Nov 2022 13:19:14 GMT
etag: W/"638606d2-4daa6"
x-version: Preview
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,500,700
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,500,700
IP 216.58.207.202:0
GET /css?family=Open+Sans:400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 11 Jan 2023 02:39:01 GMT
date: Wed, 11 Jan 2023 02:39:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.locowin.com/js/experiencehub.js?v=6.4.51
104.18.2.195200 OK 0 B URL HTTP/2 www.locowin.com/js/experiencehub.js?v=6.4.51
IP 104.18.2.195:0
GET /js/experiencehub.js?v=6.4.51 HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: application/javascript
cache-control: public, max-age=1296000
cf-bgj: minify
cf-polished: origSize=150574
expires: Thu, 26 Jan 2023 02:39:01 GMT
etag: W/"24c2e-5ef3895bccd03-gzip"
last-modified: Wed, 07 Dec 2022 08:19:52 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 391864
server: cloudflare
cf-ray: 787a479029d7b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/js/tournamenthub-helper.js
104.18.2.195200 OK 0 B URL HTTP/2 www.locowin.com/js/tournamenthub-helper.js
IP 104.18.2.195:0
GET /js/tournamenthub-helper.js HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: application/javascript
cache-control: public, max-age=1296000
cf-bgj: minify
cf-polished: origSize=360
expires: Thu, 26 Jan 2023 02:39:01 GMT
etag: W/"168-572fc3d161c3e-gzip"
last-modified: Thu, 09 Aug 2018 08:16:05 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 417936
server: cloudflare
cf-ray: 787a47907a28b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
aff-ads.locowin.com/v2/text/345/1/ef731dc3-0f3b-11ed-892d-a299aa2f2057/1?clickId=b9f411f763be213fb5df1703281481&subid1=185016
104.18.2.195302 Found 0 B URL HTTP/2 aff-ads.locowin.com/v2/text/345/1/ef731dc3-0f3b-11ed-892d-a299aa2f2057/1?clickId=b9f411f763be213fb5df1703281481&subid1=185016
IP 104.18.2.195:0
GET /v2/text/345/1/ef731dc3-0f3b-11ed-892d-a299aa2f2057/1?clickId=b9f411f763be213fb5df1703281481&subid1=185016 HTTP/1.1
Host: aff-ads.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Wed, 11 Jan 2023 02:38:59 GMT
content-type: text/html; charset=UTF-8
location: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 787a47719b6ab509-OSL
X-Firefox-Spdy: h2
www.locowin.com/js/jquery-ui-1.10.4.custom.min.js
104.18.2.195200 OK 0 B URL HTTP/2 www.locowin.com/js/jquery-ui-1.10.4.custom.min.js
IP 104.18.2.195:0
GET /js/jquery-ui-1.10.4.custom.min.js HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: application/javascript
last-modified: Thu, 09 Aug 2018 08:16:05 GMT
etag: W/"854c-572fc3d164b1e-gzip"
vary: Accept-Encoding
expires: Thu, 26 Jan 2023 02:39:01 GMT
cache-control: public, max-age=1296000
cf-cache-status: HIT
age: 417936
server: cloudflare
cf-ray: 787a479029d8b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.locowin.com/js/toastr.min.js
104.18.2.195200 OK 0 B URL HTTP/2 www.locowin.com/js/toastr.min.js
IP 104.18.2.195:0
GET /js/toastr.min.js HTTP/1.1
Host: www.locowin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.locowin.com/?affiliateId=218c4a46-211e-47c7-95db-9e16d0c594c4&clickId=b9f411f763be213fb5df1703281481&subid1=185016
Cookie: locosession=f2524ad692ee704d7553ca8d260fec2273b47822; xigpsid=anonymous; returningVisitor=returningVisitor
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 11 Jan 2023 02:39:01 GMT
content-type: application/javascript
last-modified: Thu, 09 Aug 2018 08:16:05 GMT
etag: W/"15a1-572fc3d161c3e-gzip"
vary: Accept-Encoding
expires: Thu, 26 Jan 2023 02:39:01 GMT
cache-control: public, max-age=1296000
cf-cache-status: HIT
age: 417936
server: cloudflare
cf-ray: 787a479029e3b509-OSL
content-encoding: br
X-Firefox-Spdy: h2