| 1win.run/panel/registerSW.js | 190.115.19.210 | | 145 B |
URL 1win.run/panel/registerSW.js IP190.115.19.210:0
File typeASCII text, with no line terminators Hash2358dc48fdd170cb47adf83e153e2795 afac549ba8175a2495822c25198d64fc70312d5b b86872131a9b98231da7e3a2468f85fe4fb461fa7e708b5151adee8d6268b389
GET /panel/registerSW.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-maskable-512x512.png
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 145
accept-ranges: bytes
etag: "66190546-91"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/polyfills-BAnlvHOs.js | 190.115.19.210 | | 76 kB |
URL 1win.run/panel/assets/js/polyfills-BAnlvHOs.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hasha7ddfe85a1fa31c72d1f6b3badb1d088 cd4d91ec0d374320e62580be86ce45ecb817c854 7faae4b74b3b4a60c16a42c218c8f4f0f977a074db5594207f44aa1bcbe5a9b1
GET /panel/assets/js/polyfills-BAnlvHOs.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-maskable-512x512.png
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:33 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-6c50"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/css/index-DRUd4wTy.css | 190.115.19.210 | | 75 kB |
URL 1win.run/panel/assets/css/index-DRUd4wTy.css IP190.115.19.210:0
File typegzip compressed data, from Unix Hash7309b1a5af75f32f202a2903f571a617 65a801d4d3cfc8dc93ca08262d866a9cd4ccc0a9 eb5a482dc2bd5bc2d44b2849360ed9b46e17ee48a3d95224af4aedce550156eb
GET /panel/assets/css/index-DRUd4wTy.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-maskable-512x512.png
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:33 GMT
content-type: text/css
etag: W/"66190546-9623"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/useI18n-Bi7csTvq.js | 190.115.19.210 | | 88 B |
URL 1win.run/panel/assets/js/useI18n-Bi7csTvq.js IP190.115.19.210:0
Hash3a8ce1a247fc48523e2d31d470a0b3a0 1d8096164adcb0f918ae96440c5fa566fb31e427 7b9da847261516ba5b1c6d2507bcb23c1803661dcf5c2136b45bc7b5492ac3cb
GET /panel/assets/js/useI18n-Bi7csTvq.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1win.run/panel/img/icons/android-chrome-maskable-512x512.png
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 88
accept-ranges: bytes
etag: "66190546-58"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-XXB14W5Y91&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 100 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-XXB14W5Y91&l=dataLayer&cx=c IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size100 kB (100542 bytes) Hashe5df90efcb16c0005850da70f536eaff f1e3ee3937e3e5ffa019b0869c5f810ba8eba1a2 fc3fc86394d1f25454ca1a864311c335b441c5df1ca26db26f9595e136ce1aa0
GET /gtag/js?id=G-XXB14W5Y91&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 18 Apr 2024 12:49:33 GMT
expires: Thu, 18 Apr 2024 12:49:33 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100542
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/panel/assets/js/useI18n-Bi7csTvq.js | 190.115.19.210 | | 88 B |
URL 1win.run/panel/assets/js/useI18n-Bi7csTvq.js IP190.115.19.210:0
Hash3a8ce1a247fc48523e2d31d470a0b3a0 1d8096164adcb0f918ae96440c5fa566fb31e427 7b9da847261516ba5b1c6d2507bcb23c1803661dcf5c2136b45bc7b5492ac3cb
GET /panel/assets/js/useI18n-Bi7csTvq.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/js/index-B-TUTQ1z.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 88
accept-ranges: bytes
etag: "66190546-58"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/api/v2/user/info | 190.115.19.210 | | 73 B |
URL 1win.run/api/v2/user/info IP190.115.19.210:0
Hashd7e7b930ac12a073bc41fe9120350639 460e12b3ba04bbf222e9d35e85bcc99f3b47e219 95691a476dd7dca124c697c2447c12a4cc464ebd2e06397fdd9b42f0f94d3f3a
GET /api/v2/user/info HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Language: en
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-maskable-512x512.png
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 401 Unauthorized
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:33 GMT
content-type: application/json; charset=utf-8
content-length: 73
access-control-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/index-kQMR63e-.js | 190.115.19.210 | | 12 kB |
URL 1win.run/panel/assets/js/index-kQMR63e-.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hashd3b68aff15a29e3a0e81a5c096c1ab9d 532655f0fcdc51f5692acdb066e71c8d854722db 36448f7b3d5a301d610e097de0236c2fa898943f5ba004ffe9920c030c695c7d
GET /panel/assets/js/index-kQMR63e-.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1win.run/panel/img/icons/android-chrome-maskable-512x512.png
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:33 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-ffe"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/index-B-TUTQ1z.js | 190.115.19.210 | | 9.3 kB |
URL 1win.run/panel/assets/js/index-B-TUTQ1z.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hash0206f93775dfd65e6e26d41a1830c82a 0592cee8db08989f1afc50c666209947b8ca034f 3917080868c1edafa1996d030e45fe117a8ad0cd3e3f11f30d8b7ad44b588627
GET /panel/assets/js/index-B-TUTQ1z.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/js/index-Bo8vKEJS.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:33 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-29e1"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/Chat-DkJWJcao.js | 190.115.19.210 | | 18 kB |
URL 1win.run/panel/assets/js/Chat-DkJWJcao.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hashba50f1563590ce22f382f8ea50bf57ab 8d84c8a81ce5eed27699388529db184ab4ee5da9 d782a94f90590a2bd4f1651b4bf4b9c0b929223a6c27b5bd0a563d468b37a29a
GET /panel/assets/js/Chat-DkJWJcao.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/js/index-B-TUTQ1z.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:33 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-28f2"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/pageName-BYs_srUI.js | 190.115.19.210 | | 318 B |
URL 1win.run/panel/assets/js/pageName-BYs_srUI.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hashab3c3c39a125b389b5ec9fc83a739f07 b14900609e3412f4e7438b5ecc0feb736021a658 913e5377be64dd07d96cbd21b549d9855ff20fb443e4946c015af8918f970e4c
GET /panel/assets/js/pageName-BYs_srUI.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/js/index-B-TUTQ1z.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:33 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-16f"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/index-Bo8vKEJS.js | 190.115.19.210 | | 180 kB |
URL 1win.run/panel/assets/js/index-Bo8vKEJS.js IP190.115.19.210:0
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (42287) Size180 kB (180355 bytes) Hash80730cd5ed4d4bb6a1a80fb7a582fb5c 8530a272c06634b1b35c410c7d9b205c3792ce69 66a3ce5ce84f46ba254058e90c722e8604833b9fbebff9467ad7590f71391cef
GET /panel/assets/js/index-Bo8vKEJS.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-maskable-512x512.png
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:33 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-7eb1d"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/fonts/ProximaNova-Regular-DtAL0MTj.woff2 | 190.115.19.210 | | 64 kB |
URL 1win.run/panel/assets/fonts/ProximaNova-Regular-DtAL0MTj.woff2 IP190.115.19.210:0
File typeWeb Open Font Format (Version 2), TrueType, length 64200, version 3.786 Hash1c6d7cd6aac72f4b4177ab42729d2019 88c115adeb21277900d5fc7f204e7af616a51f24 1ad151f1bd25d86f257c75c6abfa3b8481dd6fd5829714db6464b4d8c5027b3a
GET /panel/assets/fonts/ProximaNova-Regular-DtAL0MTj.woff2 HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/css/index-DRUd4wTy.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:34 GMT
content-type: application/octet-stream
content-length: 64200
accept-ranges: bytes
etag: "66190546-fac8"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| api.fpjs.io/xridvya/qAo6p?q=dexBvYvoWDszTouzpRYc | 13.248.176.92 | 200 OK | 96 B |
URL GET HTTP/2api.fpjs.io/xridvya/qAo6p?q=dexBvYvoWDszTouzpRYc IP13.248.176.92:443
CertificateIssuerAmazon Subjectapi.fpjs.io Fingerprint3A:A1:7F:82:48:97:10:BA:48:C8:D9:C9:DE:56:D3:C6:F1:FE:A7:26 ValidityWed, 15 Nov 2023 00:00:00 GMT - Sat, 14 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash42c3f0cf9888f31412e9bd0af71ad31b aaf87d2e2d68be8e876c7aa9cd8d39eab2659f4c 78c88cd160daaa824a72afd1be8702aec5cc2ea25fe7cf13432bbe8eabc2960a
GET /xridvya/qAo6p?q=dexBvYvoWDszTouzpRYc HTTP/1.1
Host: api.fpjs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 12:49:34 GMT
content-type: text/plain; charset=utf-8
content-length: 96
access-control-allow-origin: *
access-control-expose-headers: Retry-After
cache-control: max-age=31536000, immutable, private
content-security-policy: default-src 'none'; frame-ancestors 'none'
referrer-policy: no-referrer
strict-transport-security: max-age=63072000
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: DENY
x-robots-tag: noindex
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/fonts/ProximaNova-Regular-DtAL0MTj.woff2 | 190.115.19.210 | | 64 kB |
URL 1win.run/panel/assets/fonts/ProximaNova-Regular-DtAL0MTj.woff2 IP190.115.19.210:0
File typeWeb Open Font Format (Version 2), TrueType, length 64200, version 3.786 Hash1c6d7cd6aac72f4b4177ab42729d2019 88c115adeb21277900d5fc7f204e7af616a51f24 1ad151f1bd25d86f257c75c6abfa3b8481dd6fd5829714db6464b4d8c5027b3a
GET /panel/assets/fonts/ProximaNova-Regular-DtAL0MTj.woff2 HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/css/index-DRUd4wTy.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:34 GMT
content-type: application/octet-stream
content-length: 64200
accept-ranges: bytes
etag: "66190546-fac8"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| api.fpjs.io/?ci=js/3.9.3&q=dexBvYvoWDszTouzpRYc | 13.248.176.92 | 200 OK | 965 B |
URL POST HTTP/2api.fpjs.io/?ci=js/3.9.3&q=dexBvYvoWDszTouzpRYc IP13.248.176.92:443
CertificateIssuerAmazon Subjectapi.fpjs.io Fingerprint3A:A1:7F:82:48:97:10:BA:48:C8:D9:C9:DE:56:D3:C6:F1:FE:A7:26 ValidityWed, 15 Nov 2023 00:00:00 GMT - Sat, 14 Dec 2024 23:59:59 GMT
Hash1f521a9dfa75040394e3386e70319984 a48e6d5f5e7c081a36586e17f679ba24243ef3dc 3756ed1dfb779bbeab325a80d183d118c9ec413043738486c8c5562e51108827
POST /?ci=js/3.9.3&q=dexBvYvoWDszTouzpRYc HTTP/1.1
Host: api.fpjs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 10677
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 12:49:36 GMT
content-type: text/plain
content-length: 965
access-control-allow-credentials: true
access-control-allow-origin: https://1win.run
access-control-expose-headers: Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'
referrer-policy: no-referrer
set-cookie: _iidt=y/cloBsC41n2I4k9NNWexu/sHbeFGpdXcYSqQUOHLjfuoMOD3xpAvFH3pQq6Rsa4JmQV3oKJurEWloZY5XgQaieNZuvaMEbgug==; Path=/; Domain=fpjs.io; Expires=Fri, 18 Apr 2025 12:49:36 GMT; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
X-Firefox-Spdy: h2
|
|
| 1win.run/api/v2/user/refresh-token | 190.115.19.210 | | 73 B |
URL 1win.run/api/v2/user/refresh-token IP190.115.19.210:0
Hashd7e7b930ac12a073bc41fe9120350639 460e12b3ba04bbf222e9d35e85bcc99f3b47e219 95691a476dd7dca124c697c2447c12a4cc464ebd2e06397fdd9b42f0f94d3f3a
POST /api/v2/user/refresh-token HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Language: en
Content-Length: 38
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-maskable-512x512.png
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 401 Unauthorized
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:36 GMT
content-type: application/json; charset=utf-8
content-length: 73
access-control-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2
|
|
| 1win.run/api/v2/user/logout | 190.115.19.210 | | 73 B |
URL 1win.run/api/v2/user/logout IP190.115.19.210:0
Hashd7e7b930ac12a073bc41fe9120350639 460e12b3ba04bbf222e9d35e85bcc99f3b47e219 95691a476dd7dca124c697c2447c12a4cc464ebd2e06397fdd9b42f0f94d3f3a
POST /api/v2/user/logout HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Language: en
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-maskable-512x512.png
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers
HTTP/2 401 Unauthorized
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:36 GMT
content-type: application/json; charset=utf-8
content-length: 73
access-control-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/fonts/ProximaNova-Bold-D2yrO9R2.woff2 | 190.115.19.210 | | 64 kB |
URL 1win.run/panel/assets/fonts/ProximaNova-Bold-D2yrO9R2.woff2 IP190.115.19.210:0
File typeWeb Open Font Format (Version 2), TrueType, length 64096, version 3.786 Hash5a816525aea1c9d0a8742e480c051290 acaca9eff7d44bb5542dae4a88f60eb9c6c99112 7bd5250e0b6072e36d85ed6bee0b506c37371af866f9d06a46ce6f8cc7640906
GET /panel/assets/fonts/ProximaNova-Bold-D2yrO9R2.woff2 HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/css/index-DRUd4wTy.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:36 GMT
content-type: application/octet-stream
content-length: 64096
accept-ranges: bytes
etag: "66190546-fa60"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/socket.io/?Language=en&EIO=4&transport=websocket | 190.115.19.210 | | 0 B |
URL 1win.run/socket.io/?Language=en&EIO=4&transport=websocket IP190.115.19.210:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?Language=en&EIO=4&transport=websocket HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://1win.run
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vPQKfRYY4zVa3XqAgTMKog==
DNT: 1
Connection: keep-alive, Upgrade
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx/1.22.0
Date: Thu, 18 Apr 2024 12:49:36 GMT
Connection: upgrade
Sec-Websocket-Accept: g/elFhQwHnq9B2sdmI7V/n5WUus=
Upgrade: websocket
|
|
| 1win.run/panel/assets/css/Chat-8T5rXPRs.css | 190.115.19.210 | | 23 kB |
URL 1win.run/panel/assets/css/Chat-8T5rXPRs.css IP190.115.19.210:0
File typegzip compressed data, from Unix Hash6f3bf9351217ab34442f1f8c5ef0fc00 bfa9fa1c3b34494c2908259b526a6b5e1a2cd20f 65b3f67bc524ee2de227ce66050a066d869691c9b89d3e0309d5f07fa819993b
GET /panel/assets/css/Chat-8T5rXPRs.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-maskable-512x512.png
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:33 GMT
content-type: text/css
etag: W/"66190546-1894"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/js/polyfills/globalThis.js | 190.115.19.210 | 200 OK | 699 B |
URL GET HTTP/21win.run/js/polyfills/globalThis.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Hash2b1c71688a11439948b55e0b95ecf307 1ceda562fce81572c0a98ee9e47f892bd995aca8 224e45a119cad7cda1800950d046c577c70bc68650f9b569cf75bfa96fd09640
GET /js/polyfills/globalThis.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/javascript; charset=utf-8
etag: W/"165-8omh0YR4Qo+qDF4EP7appG6skxs"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| | 190.115.19.210 | 200 OK | 101 kB |
URL User Request GET HTTP/2IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Size101 kB (101424 bytes) Hash5132e62e706e68caae1188d0ce3ee066 66abaa5c15552f3e868a1641ce842357b5cffdb2 27573a3d555e9910ffcfaf2d57b976838be5241a293ea1690cab80944d89cf9b
GET / HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-maskable-512x512.png
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:36 GMT
content-type: text/html;charset=utf-8
cache-control: no-cache
set-cookie: 1w_lang=en; Max-Age=604800; Path=/
vary: Accept-Encoding
x-powered-by: Nuxt
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/MenuEnum.b19d6b42.css | 190.115.19.210 | 200 OK | 1.5 kB |
URL GET HTTP/21win.run/_nuxt/MenuEnum.b19d6b42.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Hashb2cfb673c1fc1a4a3964e8135e3baba9 9c79e363c782424878f602ac18e2b749138459ba 2a67fb750bea848281343511eddfcce9580875d75b5b80408e9b5a41e0a919ee
GET /_nuxt/MenuEnum.b19d6b42.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"b91-dFWVSHYbOHdw1kgGEJkp0aTtoJg"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 | 142.250.74.99 | 200 OK | 30 kB |
URL GET HTTP/2fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 IP142.250.74.99:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 30096, version 1.0 Hash5e3a4044ee4a46b65e2289f76ea1ecda 1cd261cc685e2d003cbbbf6af1ffde0959934dce 7f0f781820c8de56bd6699ac9570ff90634de4eb5cca7ef4b573bb90619e5a5d
GET /s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 17:55:12 GMT
expires: Tue, 15 Apr 2025 17:55:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:18:56 GMT
content-type: font/woff2
age: 240865
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/_locale_.4c218f9a.css | 190.115.19.210 | 200 OK | 90 kB |
URL GET HTTP/21win.run/_nuxt/_locale_.4c218f9a.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Hashc36d94928588e473536cb7cc2836b7e5 c247138f48251939c8173deaaf9113a2e0f87d0d 2ea968a9e37e3c7b86f518290272a8360a86c0c0558b32a3e48cb3950678fd53
GET /_nuxt/_locale_.4c218f9a.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"c23c-YeFcaf0xknPJ+1XJVEJFxw2FzAk"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/icons/512x512.maskable.708b580c.png | 190.115.19.210 | 200 OK | 124 kB |
URL GET HTTP/21win.run/_nuxt/icons/512x512.maskable.708b580c.png IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typePNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced Size124 kB (123529 bytes) Hash8861ea68e979f98002d972996bd97030 be5fa93dad7acdc83a1dd7130c5014b8ec2e3154 80a28328628ebb0727154b8f25b85f304088764a3bc66b2bba97d5c47d3cbd75
GET /_nuxt/icons/512x512.maskable.708b580c.png HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: image/png
content-length: 123529
cache-control: public, max-age=31536000, immutable
etag: "1e289-vl+pPa16zcg6HdcTDFAUuOwuMVQ"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/GoogleAnalyticsService-C2ORRdB5.js | 190.115.19.210 | | 2.6 kB |
URL 1win.run/panel/assets/js/GoogleAnalyticsService-C2ORRdB5.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hashe633b32f1cee884544f119191d84b46e 65e5c01c9878c9406946d42abe7cd45a8ae2a3a4 4c2a0eba121a3e3dc15f4cb8698989b00b474516edf0c1e7bbb8e15d95374d74
GET /panel/assets/js/GoogleAnalyticsService-C2ORRdB5.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1win.run/panel/img/icons/android-chrome-maskable-512x512.png
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:33 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-2037"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/builds/meta/f2255aec-1c02-4818-ad5f-e65dd2cac8be.json | 190.115.19.210 | 200 OK | 139 B |
URL GET HTTP/21win.run/_nuxt/builds/meta/f2255aec-1c02-4818-ad5f-e65dd2cac8be.json IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
Hasha3a6b92f9515f73633f95664839f7926 d819e48f36678608f74566139539ca28f59b5538 b7831a58b90b368d6543e5c0e70c7d9396f99655a79bc278f5ee2bbb32fe6992
GET /_nuxt/builds/meta/f2255aec-1c02-4818-ad5f-e65dd2cac8be.json HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1win.run/
DNT: 1
Connection: keep-alive
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/json
content-length: 139
cache-control: public, max-age=31536000, immutable
etag: "8b-2BnkjzZnhgj3RWYTlTnKKPWbVTg"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-KRTK33G | 142.250.74.168 | 200 OK | 68 kB |
URL GET HTTP/3www.googletagmanager.com/gtm.js?id=GTM-KRTK33G IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (2202) Hash459723b5df1720ec013dda9b2b1a6433 d6f425fc747b555e87489833832ccb83baaf2226 599abd655052f4ba4522e474bad2695444994dcaab328dc1145ecc60f115e9b3
GET /gtm.js?id=GTM-KRTK33G HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 18 Apr 2024 12:49:37 GMT
expires: Thu, 18 Apr 2024 12:49:37 GMT
cache-control: private, max-age=900
last-modified: Thu, 18 Apr 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 67744
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020za200&_p=1713444573530&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=766957566.1713444574&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713444573&sct=1&seg=0&dl=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-maskable-512x512.png&dt=1win&en=scroll&epn.percent_scrolled=90&tfd=3919 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020za200&_p=1713444573530&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=766957566.1713444574&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713444573&sct=1&seg=0&dl=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-maskable-512x512.png&dt=1win&en=scroll&epn.percent_scrolled=90&tfd=3919 IP216.239.32.36:443
Requested byhttps://1win.run/panel/img/icons/android-chrome-maskable-512x512.png CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020za200&_p=1713444573530&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=766957566.1713444574&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713444573&sct=1&seg=0&dl=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-maskable-512x512.png&dt=1win&en=scroll&epn.percent_scrolled=90&tfd=3919 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://1win.run
date: Thu, 18 Apr 2024 12:49:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=G-XXB14W5Y91&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 100 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-XXB14W5Y91&l=dataLayer&cx=c IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size100 kB (100542 bytes) Hashe5df90efcb16c0005850da70f536eaff f1e3ee3937e3e5ffa019b0869c5f810ba8eba1a2 fc3fc86394d1f25454ca1a864311c335b441c5df1ca26db26f9595e136ce1aa0
GET /gtag/js?id=G-XXB14W5Y91&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 18 Apr 2024 12:49:37 GMT
expires: Thu, 18 Apr 2024 12:49:37 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100542
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 | 142.250.74.99 | 200 OK | 30 kB |
URL GET HTTP/2fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 IP142.250.74.99:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 30096, version 1.0 Hash5e3a4044ee4a46b65e2289f76ea1ecda 1cd261cc685e2d003cbbbf6af1ffde0959934dce 7f0f781820c8de56bd6699ac9570ff90634de4eb5cca7ef4b573bb90619e5a5d
GET /s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 17:55:12 GMT
expires: Tue, 15 Apr 2025 17:55:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:18:56 GMT
content-type: font/woff2
age: 240866
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 | 142.250.74.99 | 200 OK | 30 kB |
URL GET HTTP/2fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 IP142.250.74.99:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 30096, version 1.0 Hash5e3a4044ee4a46b65e2289f76ea1ecda 1cd261cc685e2d003cbbbf6af1ffde0959934dce 7f0f781820c8de56bd6699ac9570ff90634de4eb5cca7ef4b573bb90619e5a5d
GET /s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 17:55:12 GMT
expires: Tue, 15 Apr 2025 17:55:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:18:56 GMT
content-type: font/woff2
age: 240866
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 | 142.250.74.99 | 200 OK | 30 kB |
URL GET HTTP/2fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 IP142.250.74.99:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 30096, version 1.0 Hash5e3a4044ee4a46b65e2289f76ea1ecda 1cd261cc685e2d003cbbbf6af1ffde0959934dce 7f0f781820c8de56bd6699ac9570ff90634de4eb5cca7ef4b573bb90619e5a5d
GET /s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 17:55:12 GMT
expires: Tue, 15 Apr 2025 17:55:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:18:56 GMT
content-type: font/woff2
age: 240866
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/bg.5725d1ad.webp | 190.115.19.210 | 200 OK | 6.5 kB |
URL GET HTTP/21win.run/_nuxt/bg.5725d1ad.webp IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeRIFF (little-endian) data, Web/P image Hash187f40302084c28df9291dfc561150f4 8ae7b69ae4237e0c0675fdbee0feb7b2c539b84b 5725d1ade623473e8c09dd6b54af63561c26a9f7d681e5bb58fcee1b431549ed
GET /_nuxt/bg.5725d1ad.webp HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.4c218f9a.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:38 GMT
content-type: image/webp
content-length: 6540
cache-control: public, max-age=31536000, immutable
etag: "198c-iue2muQjfgwGdf2+4P63ssU5uEs"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/useVuelidateForm.9350eb9e.js | 190.115.19.210 | 200 OK | 40 kB |
URL GET HTTP/21win.run/_nuxt/useVuelidateForm.9350eb9e.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Hashf2071bbb50061e70594ec027fbb1d37e 0410d7c95d8c25a75beef36e4a0b9fc59e8f488f d5f55b325e0ff50e31bc14168d0320aabdb8280659a9764b2dc71857f39edb32
GET /_nuxt/useVuelidateForm.9350eb9e.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"4ca3-/ggD6a9k5aQkvuDFso7rL20z+10"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk2wotcqA.woff2 | 142.250.74.99 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk2wotcqA.woff2 IP142.250.74.99:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15840, version 1.0 Hash1f0187afc748a458d0951bc370c0a8d2 9a07290922c93eb7f85ee8583d2eedad96a042fb 85cc62cf3b13c6166fea632307afcf5688c0a7239cb79db6582736fb5413ffe4
GET /s/mulish/v13/1Ptvg83HX_SGhgqk2wotcqA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:39:37 GMT
expires: Fri, 18 Apr 2025 02:39:37 GMT
cache-control: public, max-age=31536000
age: 36601
last-modified: Thu, 14 Sep 2023 00:51:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/Registration.21e083b5.js | 190.115.19.210 | 200 OK | 215 kB |
URL GET HTTP/21win.run/_nuxt/Registration.21e083b5.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Size215 kB (215070 bytes) Hash1ec8b429f06c9a9e225dc44a28339c60 21e31def8c7008a0c988a011454ea51b3d64a03d a345e310892e09a1e809e3d02bf46b00af0d51afaf2834a6aad7751d93357567
GET /_nuxt/Registration.21e083b5.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"460a8-zudH7ufSbob96TCrDPd41x+n8lk"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/product-image.931b1f66.avif | 190.115.19.210 | 200 OK | 14 kB |
URL GET HTTP/21win.run/_nuxt/product-image.931b1f66.avif IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
Hashde4d804a6a51cb2cb8c76ac101fd811b 9413fcab3e345c13e642a44aa87a40696568b2ba 931b1f66ce72a22323cff5264a7da7cf1e0a673b124b1600839db0c8f4109ab4
GET /_nuxt/product-image.931b1f66.avif HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.1.1713444578.55.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:38 GMT
content-type: image/avif
content-length: 14178
cache-control: public, max-age=31536000, immutable
etag: "3762-lBP8qz40XBPmQqRKqHpAaWVosro"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| api.fpjs.io/xridvya/qAo6p?q=dexBvYvoWDszTouzpRYc | 13.248.176.92 | 200 OK | 96 B |
URL GET HTTP/2api.fpjs.io/xridvya/qAo6p?q=dexBvYvoWDszTouzpRYc IP13.248.176.92:443
CertificateIssuerAmazon Subjectapi.fpjs.io Fingerprint3A:A1:7F:82:48:97:10:BA:48:C8:D9:C9:DE:56:D3:C6:F1:FE:A7:26 ValidityWed, 15 Nov 2023 00:00:00 GMT - Sat, 14 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashdf14eb22ef8eb14c8cd45a90e203a2f5 b2b30432163e34f0416fe09054f51692f780470e 24386adf35875092f09f2b43a92827c46099470e420f11cde09eceddc3ff8598
GET /xridvya/qAo6p?q=dexBvYvoWDszTouzpRYc HTTP/1.1
Host: api.fpjs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 12:49:38 GMT
content-type: text/plain; charset=utf-8
content-length: 96
access-control-allow-origin: *
access-control-expose-headers: Retry-After
cache-control: max-age=31536000, immutable, private
content-security-policy: default-src 'none'; frame-ancestors 'none'
referrer-policy: no-referrer
strict-transport-security: max-age=63072000
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: DENY
x-robots-tag: noindex
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.163 | 200 OK | 203 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 15:10:08 GMT
expires: Sat, 12 Apr 2025 15:10:08 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 509970
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=n7fbvg4f7yrn | 142.250.74.164 | 200 OK | 53 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=n7fbvg4f7yrn IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeHTML document, ASCII text, with very long lines (36718) Hash993d083062cf783f7b2bc9cd98c41c93 255a63245e778a9a4f504ea790548d9cd351918e 0846ebe2f5643e3c630392cd8773beab53636a84af6cd3f715ab33d689b5b5c2
GET /recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=n7fbvg4f7yrn HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 18 Apr 2024 12:49:38 GMT
content-security-policy: script-src 'nonce-Ju69LTithtZM7q6FT995gA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.163 | 200 OK | 203 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 15:10:08 GMT
expires: Sat, 12 Apr 2025 15:10:08 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 509971
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.99 | 200 OK | 15 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=n7fbvg4f7yrn CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 06:43:51 GMT
expires: Wed, 16 Apr 2025 06:43:51 GMT
cache-control: public, max-age=31536000
age: 194748
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.99 | 200 OK | 16 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=n7fbvg4f7yrn CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 22:10:11 GMT
expires: Tue, 15 Apr 2025 22:10:11 GMT
cache-control: public, max-age=31536000
age: 225568
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js | 142.250.74.164 | 200 OK | 7.4 kB |
URL GET HTTP/3www.google.com/js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (17636) Hashb38e10fee62caf0053645e3116660cce 2259de80ed88610f583a830443c604877466194b 3c1aaa03c8c58f4c0b10459a47b71834ee35e84cd3b82d025f639cfbf8fba9bf
GET /js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=n7fbvg4f7yrn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7423
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 09:54:39 GMT
expires: Wed, 16 Apr 2025 09:54:39 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 183300
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/logo_48.png | 142.250.74.163 | 200 OK | 2.2 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/logo_48.png IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=n7fbvg4f7yrn CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hashef9941290c50cd3866e2ba6b793f010d 4736508c795667dcea21f8d864233031223b7832 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:35:26 GMT
expires: Thu, 18 Apr 2024 17:35:26 GMT
cache-control: public, max-age=604800
age: 587653
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/panel/img/icons/android-chrome-maskable-512x512.png | 190.115.19.210 | | 207 kB |
URL 1win.run/panel/img/icons/android-chrome-maskable-512x512.png IP190.115.19.210:0
File typeHTML document, ASCII text, with very long lines (1316) Size207 kB (207168 bytes) Hash8bfb1131a16378ec5c4c2f8ea7b11c6a 3ef7146b55992e4da2179ebb742500dfdc679a3d 9028b2394b03d23c2f62fdedbaf4a02d6f37ce69c0117cee09d59147f8c3a7bd
GET /panel/img/icons/android-chrome-maskable-512x512.png HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:33 GMT
content-type: text/html; charset=utf-8
cache-control: no-cache, no-cache
etag: W/"66190546-1af6"
expires: Thu, 18 Apr 2024 12:49:26 GMT
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/Modal.2a0b0849.css | 190.115.19.210 | 200 OK | 25 kB |
URL GET HTTP/21win.run/_nuxt/Modal.2a0b0849.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (56398) Hash4a00293452faf89924de7da259ab514a dbfd9fad917dd79aa2311fdfa6b6b773f494ecf2 5782565a237e0aedb543023a41fedcfd1f26e47a8be385c21b67668a89e2ccd7
GET /_nuxt/Modal.2a0b0849.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.1.1713444578.55.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:39 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"20c-3X+ZaNqBlviUelP/iAiiNO0JtI8"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.163 | 200 OK | 203 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 15:10:08 GMT
expires: Sat, 12 Apr 2025 15:10:08 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 509971
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.99 | 200 OK | 15 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=n7fbvg4f7yrn CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 06:43:51 GMT
expires: Wed, 16 Apr 2025 06:43:51 GMT
cache-control: public, max-age=31536000
age: 194749
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/panel/assets/js/index-B-TUTQ1z.js | 190.115.19.210 | | 34 kB |
URL 1win.run/panel/assets/js/index-B-TUTQ1z.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hashba1274263485e16ef923092f392899c4 a84e7ef8f6b49a2d0bb47c85650cb123ab63cb77 390aad96891237899f35547398edc00fc08403554b3402bb1677595d7d9da7a7
GET /panel/assets/js/index-B-TUTQ1z.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1win.run/panel/img/icons/android-chrome-maskable-512x512.png
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:34 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-29e1"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.99 | 200 OK | 16 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=n7fbvg4f7yrn CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 22:10:11 GMT
expires: Tue, 15 Apr 2025 22:10:11 GMT
cache-control: public, max-age=31536000
age: 225569
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js | 142.250.74.164 | 200 OK | 7.4 kB |
URL GET HTTP/3www.google.com/js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (17636) Hashb38e10fee62caf0053645e3116660cce 2259de80ed88610f583a830443c604877466194b 3c1aaa03c8c58f4c0b10459a47b71834ee35e84cd3b82d025f639cfbf8fba9bf
GET /js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7423
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 09:54:39 GMT
expires: Wed, 16 Apr 2025 09:54:39 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 183301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/recaptcha/api2/payload?p=06AFcWeA5ER6i1GBIJ74EV0hXj4f3qaa2tRO72vkGvOWOGiEXjbbO3Mq4RmGk_vaTo8Gc8uvFOyDRJvOoqbWR3ZiujEmRjc_an78JlOpbNWA8VKZymMM_cA42g8JIZwQUX-eNsWDD_5D0SElTYXt28Iw_LbnpTThxt9X2DogIDXiytzngVhRIedwN-kYpvf4Fa2V9gKV42lrFv&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX | 142.250.74.164 | 200 OK | 52 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/payload?p=06AFcWeA5ER6i1GBIJ74EV0hXj4f3qaa2tRO72vkGvOWOGiEXjbbO3Mq4RmGk_vaTo8Gc8uvFOyDRJvOoqbWR3ZiujEmRjc_an78JlOpbNWA8VKZymMM_cA42g8JIZwQUX-eNsWDD_5D0SElTYXt28Iw_LbnpTThxt9X2DogIDXiytzngVhRIedwN-kYpvf4Fa2V9gKV42lrFv&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 450x450, components 3 Hash8880b734d28884ea9e352b1dc5648ab2 8d9100e64d35a86b8d690cba86809a45893d33d0 bf244e4525208b3d6da7772349937ab61e942423af51ca2a17078d1842b76d20
GET /recaptcha/api2/payload?p=06AFcWeA5ER6i1GBIJ74EV0hXj4f3qaa2tRO72vkGvOWOGiEXjbbO3Mq4RmGk_vaTo8Gc8uvFOyDRJvOoqbWR3ZiujEmRjc_an78JlOpbNWA8VKZymMM_cA42g8JIZwQUX-eNsWDD_5D0SElTYXt28Iw_LbnpTThxt9X2DogIDXiytzngVhRIedwN-kYpvf4Fa2V9gKV42lrFv&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX
Cookie: _GRECAPTCHA=09AH0dGfTTBpQ0DJ4CMfY0o2CADcSqEH2PLF4KqxwiwmmW_0rQtqfvouGSJSbTToZzqis8ipN9XLzXmbrnxCUu7b4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
expires: Thu, 18 Apr 2024 12:49:40 GMT
date: Thu, 18 Apr 2024 12:49:40 GMT
cache-control: private, max-age=30
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/info_2x.png | 142.250.74.163 | 200 OK | 665 B |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/info_2x.png IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced Hash07bf314aab04047b9e9a959ee6f63da3 17bef6602672e2fd9956381e01356245144003e5 55eaf62cb05da20088dc12b39d7d254d046cb1fd61ddf3ae641f1439efd0a5ee
GET /recaptcha/api2/info_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 665
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:20:08 GMT
expires: Tue, 23 Apr 2024 07:20:08 GMT
cache-control: public, max-age=604800
age: 192572
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| api.fpjs.io/?ci=js/3.9.3&q=dexBvYvoWDszTouzpRYc | 13.248.176.92 | 200 OK | 1.0 kB |
URL POST HTTP/2api.fpjs.io/?ci=js/3.9.3&q=dexBvYvoWDszTouzpRYc IP13.248.176.92:443
CertificateIssuerAmazon Subjectapi.fpjs.io Fingerprint3A:A1:7F:82:48:97:10:BA:48:C8:D9:C9:DE:56:D3:C6:F1:FE:A7:26 ValidityWed, 15 Nov 2023 00:00:00 GMT - Sat, 14 Dec 2024 23:59:59 GMT
Hashc348c5c2100f09aabe8f48c3380e9d3a f6f82972caa1ef6875a471f607689ad55dbbbb8a 3384b3ffabccc8c8e4840429b715ab06f1ab45f33fd4943a086c488e212ee7b0
POST /?ci=js/3.9.3&q=dexBvYvoWDszTouzpRYc HTTP/1.1
Host: api.fpjs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 14071
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _iidt=y/cloBsC41n2I4k9NNWexu/sHbeFGpdXcYSqQUOHLjfuoMOD3xpAvFH3pQq6Rsa4JmQV3oKJurEWloZY5XgQaieNZuvaMEbgug==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 12:49:40 GMT
content-type: text/plain
content-length: 1020
access-control-allow-credentials: true
access-control-allow-origin: https://1win.run
access-control-expose-headers: Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'
referrer-policy: no-referrer
set-cookie: _iidt=6yG6W06tkbne+uTaDRm9l6b0J5QaYwQErDfdDPwjC6Xnk20Lwz71AQDniEVzxoRn5JuVsmJrTTzVi/DDpqqyHub96zqHf/oOVw==; Path=/; Domain=fpjs.io; Expires=Fri, 18 Apr 2025 12:49:40 GMT; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX | 142.250.74.164 | 200 OK | 8.6 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash334725b09244443363ec184b44cdf3db 6383ff865d41b786f91b6903f2cb0bce0c67662f a732fb8bbf50f70eaa72919ff028c0425fa79708d8b654eaad1a57fe11f484d6
GET /recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 18 Apr 2024 12:49:39 GMT
content-security-policy: script-src 'nonce--ygidPS93HZpLOXWJGdG4w' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020z89132822158za200&_p=1713444577557&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=766957566.1713444574&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713444573&sct=1&seg=1&dl=https%3A%2F%2F1win.run%2F&dr=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-maskable-512x512.png&dt=1win%20Affiliate%20Program&en=page_view&tfd=6502 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020z89132822158za200&_p=1713444577557&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=766957566.1713444574&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713444573&sct=1&seg=1&dl=https%3A%2F%2F1win.run%2F&dr=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-maskable-512x512.png&dt=1win%20Affiliate%20Program&en=page_view&tfd=6502 IP216.239.32.36:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020z89132822158za200&_p=1713444577557&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=766957566.1713444574&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713444573&sct=1&seg=1&dl=https%3A%2F%2F1win.run%2F&dr=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-maskable-512x512.png&dt=1win%20Affiliate%20Program&en=page_view&tfd=6502 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://1win.run
date: Thu, 18 Apr 2024 12:49:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/MenuEnum.3c40e0da.js | 190.115.19.210 | 200 OK | 6.5 kB |
URL GET HTTP/21win.run/_nuxt/MenuEnum.3c40e0da.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (6774), with no line terminators Hash55f98e14af952beef5432a5bf2c69f1e eb541c759a0fb099ec86733a31249209e01cea01 646be9d6ec083613e01945302360c3692d0a4d8b4a3624cc0ab245858acc7319
GET /_nuxt/MenuEnum.3c40e0da.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/default.4dc7ed4f.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"1939-1f5DCD7/1APaVJ/RC+Z9jQKQnB0"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/tslib.es6.de9fe4f9.js | 190.115.19.210 | 200 OK | 2.2 kB |
URL GET HTTP/21win.run/_nuxt/tslib.es6.de9fe4f9.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeJavaScript source, ASCII text, with very long lines (2182), with no line terminators Hashd27f44826ccf8a7eb791db00368e0853 394cb6128f8e5b7aaa681c3dbabdb15c68a282df d1dd502d71a9ad9da86d86f7b19406e0e7f62e74416c3c023f21a4062f61ad16
GET /_nuxt/tslib.es6.de9fe4f9.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/fp.esm.min.c7c919a5.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.1.1713444578.55.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:38 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"87f-rBtiMCIPl2tpLnoUntStYPWGThk"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/polyfills.1635f540.js | 190.115.19.210 | 200 OK | 28 kB |
URL GET HTTP/21win.run/_nuxt/polyfills.1635f540.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_nuxt/polyfills.1635f540.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"6bd9-oSlLJ9QswYK0TmGO/vLUPbyrgvc"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/Registration.f7bbad2c.css | 190.115.19.210 | 200 OK | 5.7 kB |
URL GET HTTP/21win.run/_nuxt/Registration.f7bbad2c.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (5677), with no line terminators Hash2a944aee37dccb8c6fe31bbe4c887662 2c64c89511ff5685a7ad1f37395915a77d544ec8 d45d0d3bfcc1d4f3c4ee4aa7d5cc653f006d25c50d8e181e3a17e0fad021f6ba
GET /_nuxt/Registration.f7bbad2c.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"162c-93PArW7Cb9DcNfGjIGvciekE3zk"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/icons/64x64.708b580c.png | 190.115.19.210 | 200 OK | 4.9 kB |
URL GET HTTP/21win.run/_nuxt/icons/64x64.708b580c.png IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typePNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced Hash3edbb690b0420ca031ad65703d24e233 3c3fc02a3ed8c68482fd02456762f705cd79dde0 60a3fe40eea18a1ef677239aec61a56d29065ac7d241aea673363291a1761024
GET /_nuxt/icons/64x64.708b580c.png HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: image/png
content-length: 4936
cache-control: public, max-age=31536000, immutable
etag: "1348-PD/AKj7YxoSC/QJFZ2L3Bc153eA"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/envelope.4ddbfd6f.js | 190.115.19.210 | 200 OK | 799 B |
URL GET HTTP/21win.run/_nuxt/envelope.4ddbfd6f.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (826), with no line terminators Hash9913538352c939d8f87065ca8e7a9044 93b725aa60f40c22a8f74983c6ac7d117c78fe41 dc70717a39b20b664eabe6d9b8d28237b1b5265e4093e162afedb11bb259305a
GET /_nuxt/envelope.4ddbfd6f.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"31f-vSDWCSj/zjZHuynMvRskpWkAaE8"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/en.458e6464.svg | 190.115.19.210 | 200 OK | 2.2 kB |
URL GET HTTP/21win.run/_nuxt/en.458e6464.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hash79e4258317717cae7d54221d403e28d4 85a14a9c6aa03cf4c9ec9e942a06e5987cb61d0a 0b0d98ecb898886bc24f0a6859a7a76034f960374c9914370e69d3ac7467a697
GET /_nuxt/en.458e6464.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/MenuEnum.b19d6b42.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:39 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"8ae-uUSpGKGRbU+pvTTrdQBVFuoZ76g"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/Link.aee80935.js | 190.115.19.210 | 200 OK | 4.3 kB |
URL GET HTTP/21win.run/_nuxt/Link.aee80935.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeJavaScript source, ASCII text, with very long lines (4340), with no line terminators Hash23049b9ed52ab0a252a677f7bd97b54b b848b9e7a63d6bdcc14d681beeafc7f9a88b99ff b62d7645a1d6af4ecb14d6b30059123e435322731b5d97c213659568658840b7
GET /_nuxt/Link.aee80935.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"10c3-j0Hl9oZyzKc6Uk9dmjIYgn+Ge70"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css | 142.250.74.163 | 200 OK | 56 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeASCII text, with very long lines (56398), with no line terminators Hasheb4bc511f79f7a1573b45f5775b3a99b d910fb51ad7316aa54f055079374574698e74b35 7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 11:39:42 GMT
expires: Sat, 12 Apr 2025 11:39:42 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/css
vary: Accept-Encoding
age: 522597
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css2?family=Mulish:wght@400;500;600;700&display=swap | 216.58.207.234 | 200 OK | 7.1 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Mulish:wght@400;500;600;700&display=swap IP216.58.207.234:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeASCII text, with very long lines (7236), with no line terminators Hashe6a296e1d014601568e1c3992aac5999 fa1b62f443797e745e5a030c3408f4c6546aed26 535d801dc12a9f9ed8a28d00f350c1ecd6079c184a7bf4f07c844fca8441470e
GET /css2?family=Mulish:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 12:49:37 GMT
date: Thu, 18 Apr 2024 12:49:37 GMT
cache-control: private, max-age=86400
content-security-policy-report-only: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/bcfae741e379a885f2ab2cf83ebe6d32/mr
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/useImages.c52ffa7b.css | 190.115.19.210 | 200 OK | 6.6 kB |
URL GET HTTP/21win.run/_nuxt/useImages.c52ffa7b.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (6650), with no line terminators Hash4d40ced86b47cf6536628e7c60049d38 6970a96d8558322158409c88e353add8f0d1f7f6 0609816e1506c9c4c8abea8c956d5e5c46566fcb38901ef2ac5a4b0038992ab2
GET /_nuxt/useImages.c52ffa7b.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"19f6-TCmyZTMWn7Tm2p3UXo7wx6sxyCI"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/socials.523c3f64.js | 190.115.19.210 | 200 OK | 1.2 kB |
URL GET HTTP/21win.run/_nuxt/socials.523c3f64.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (1274), with no line terminators Hashd2ac3a331c5665c3a61561129db18a36 681cb44d889dbe307d3349db25c0aa76ce9f163f 56fae6d486d8a6cb446b1091dec8b6f471347cfa0879e3ee3ccd940578c1508e
GET /_nuxt/socials.523c3f64.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"4cb-wzAVlSO1uPRGFyV8e/nSKpRK3lQ"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/instagram.c07adbe3.svg | 190.115.19.210 | 200 OK | 2.7 kB |
URL GET HTTP/21win.run/_nuxt/instagram.c07adbe3.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hashed97fc31cec55005d747f09f3ce3fb32 2d1362c78ad0198ab14dde343dc11f45e9433e4a 9d9e2c73550ffd716b1eeffd9c831f9c043b659edf615ac6c4c0098dc5a26b10
GET /_nuxt/instagram.c07adbe3.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.1.1713444578.55.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:38 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"a61-/4cXQyQQLFA/LZs9FMa2Fqbe3HQ"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/Button.b6a71541.js | 190.115.19.210 | 200 OK | 1.1 kB |
URL GET HTTP/21win.run/_nuxt/Button.b6a71541.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (1116), with no line terminators Hash109349f2b5460ab57804fce29e14150a c799d5537d66d0ab2dda467bd8090cad2a32a0c9 5b16e0a1973b99bccb744e5741ddfabaac0d7a6a9fa1f9ea2d234bda6c267042
GET /_nuxt/Button.b6a71541.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"42b-hPnpZw6xfIu5v+D7s7+LXsxzbYA"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/default.4dc7ed4f.js | 190.115.19.210 | 200 OK | 2.2 kB |
URL GET HTTP/21win.run/_nuxt/default.4dc7ed4f.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeC source, Unicode text, UTF-8 text, with very long lines (2349), with no line terminators Hash51db02ce88205c02cb6882799eca7f0d 310303b574d7d51829f87c23bfc6cde0088bc61f 828cef238f669df45ffacb055ffbeaaf139d034987dc91c64715bd3528bbc49f
GET /_nuxt/default.4dc7ed4f.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/entry.af293afb.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"8c9-+AGzm1BF1NgawTuJzXNGJYzviKQ"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/reload?k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX | 142.250.74.164 | 200 OK | 20 kB |
URL POST HTTP/3www.google.com/recaptcha/api2/reload?k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeASCII text, with very long lines (19816) Hasha5a744d4575c4ee8f3a0cc7a4e29e9bd b6e5fd00b471422cb010f5bb1e809fd31a34ddc8 88b65ea1dd07862feb4a0c5c5938f4a66bf2f317349527ef90f29c6eae4151cb
POST /recaptcha/api2/reload?k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 8484
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Thu, 18 Apr 2024 12:49:40 GMT
expires: Thu, 18 Apr 2024 12:49:40 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
set-cookie: _GRECAPTCHA=09AH0dGfTTBpQ0DJ4CMfY0o2CADcSqEH2PLF4KqxwiwmmW_0rQtqfvouGSJSbTToZzqis8ipN9XLzXmbrnxCUu7b4;Path=/recaptcha;Expires=Tue, 15-Oct-2024 12:49:40 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/phone.f034de8d.avif | 190.115.19.210 | 200 OK | 21 kB |
URL GET HTTP/21win.run/_nuxt/phone.f034de8d.avif IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
Hashc269023bce498d4a6d4e3230bf7031ff 1f74c2a77291a0e78808fecf26c2d1bf8078be71 f034de8dd61b831ad493266e668a146905276a416fd60c6011ec23e4449313c1
GET /_nuxt/phone.f034de8d.avif HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: image/avif
content-length: 21263
cache-control: public, max-age=31536000, immutable
etag: "530f-H3TCp3KRoOeICP7PJsLRv4B4vnE"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/AppHeader.0d40d81c.js | 190.115.19.210 | 200 OK | 2.6 kB |
URL GET HTTP/21win.run/_nuxt/AppHeader.0d40d81c.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeC source, ASCII text, with very long lines (2727), with no line terminators Hashaa4d37463e3b27e71fe3ac9edf184d62 c3889530eede7992b67901737a187d28286b9f76 acd2a0b5d4d4cb2e569fce12882662d7f81e6508694efd93ef440aa3f99f305a
GET /_nuxt/AppHeader.0d40d81c.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/default.4dc7ed4f.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"a34-T0dSK4SsifEnB1j1/g3yLpuxHas"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/button.1da91cc6.webp | 190.115.19.210 | 200 OK | 32 kB |
URL GET HTTP/21win.run/_nuxt/button.1da91cc6.webp IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeRIFF (little-endian) data, Web/P image Hash1bbfa4e88f075f941e2aa38dc3b9d8c5 ef438ac3a426410fcc9c006beb35ec28db98cb5d 1da91cc6cd748172fc940cb7bf0281338cb4481e0c57d32b32884f835090a2c9
GET /_nuxt/button.1da91cc6.webp HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.4c218f9a.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:38 GMT
content-type: image/webp
content-length: 32082
cache-control: public, max-age=31536000, immutable
etag: "7d52-70OKw6QmQQ/MnABr6zXsKNuYy10"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/useDisableAuth.49c83f5d.js | 190.115.19.210 | 200 OK | 322 B |
URL GET HTTP/21win.run/_nuxt/useDisableAuth.49c83f5d.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (329), with no line terminators Hash2ecfc2b18417228519ee55048bb354b7 4794f37633480f4bfdd4f2f6dc1f8d6f69ddb380 0ddce885e18b5dfa3a528e689d98dd6f2e35660dd91fb2629dce8bf0bc7173b2
GET /_nuxt/useDisableAuth.49c83f5d.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"142-RA7SrTWwwPkeokcDir+mqpzODE0"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/api2/audio_2x.png | 142.250.74.163 | 200 OK | 530 B |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/audio_2x.png IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced Hash88e0f42c9fa4f94aa8bcd54d1685c180 5ad9d47a49b82718baa3be88550a0b3350270c42 89c62095126fca89ea1511cf35b49b8306162946b0c26d6f60c5506c51d85992
GET /recaptcha/api2/audio_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 530
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 01:43:57 GMT
expires: Tue, 23 Apr 2024 01:43:57 GMT
cache-control: public, max-age=604800
age: 212743
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/useImages.713b2a79.js | 190.115.19.210 | 200 OK | 93 kB |
URL GET HTTP/21win.run/_nuxt/useImages.713b2a79.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash24454691db0583e68c13c7124c0be069 6441d69096ddff03388d69b3cd6ef28de97e8e89 a18e76d10b557b27ac7727ffa9ae7a33a7725226e7343733d8eb777a29371790
GET /_nuxt/useImages.713b2a79.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"16a03-ZEHWkJbd/wM4jWmzzW7yjel+jok"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api.js?onload=vueRecaptchaApiLoaded&render=explicit&hl= | 142.250.74.164 | 200 OK | 916 B |
URL GET HTTP/2www.google.com/recaptcha/api.js?onload=vueRecaptchaApiLoaded&render=explicit&hl= IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
File typeJavaScript source, ASCII text, with very long lines (916), with no line terminators Hash7f3d42b7a3a44de639b879809d3a412a 89d598ef5e1dfbd96e2491370a442abcea280ee6 83437b46b8870ed8bcdc3f1ae29a43409efefd4f09507bbab4e2bbb3f091d0ef
GET /recaptcha/api.js?onload=vueRecaptchaApiLoaded&render=explicit&hl= HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Thu, 18 Apr 2024 12:49:38 GMT
date: Thu, 18 Apr 2024 12:49:38 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/phone-bg.6388017c.webp | 190.115.19.210 | 200 OK | 130 kB |
URL GET HTTP/21win.run/_nuxt/phone-bg.6388017c.webp IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeRIFF (little-endian) data, Web/P image Size130 kB (130074 bytes) Hashf6a774e285b4d276a1c196dcd69ac199 bbb25280c76b014fa86b238ee56717c9576c589d 6388017c44e2188941647d4ccd0f1e2aaf10dea0525fc92c683adff80f32377a
GET /_nuxt/phone-bg.6388017c.webp HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.4c218f9a.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:38 GMT
content-type: image/webp
content-length: 130074
cache-control: public, max-age=31536000, immutable
etag: "1fc1a-u7JSgMdrAU+oayOO5WcXyVdsWJ0"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/arrowRight.ac4d9640.js | 190.115.19.210 | 200 OK | 452 B |
URL GET HTTP/21win.run/_nuxt/arrowRight.ac4d9640.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (481), with no line terminators Hash929dedb2e51df5e3f372093bf4679d91 8f298f333f25db02946ad1f6e4b9a5cfea8b73af 7814099953fa401d9c659da0d29cc4facdd3d836653ad2aa02173f0b1fffd03c
GET /_nuxt/arrowRight.ac4d9640.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"1c4-banY43+/tcBUHtE3sh3EIjrdpyU"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/fp.esm.8130da25.js | 190.115.19.210 | 200 OK | 33 kB |
URL GET HTTP/21win.run/_nuxt/fp.esm.8130da25.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_nuxt/fp.esm.8130da25.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/entry.af293afb.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:38 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"817d-/pW2dYhGPlj7SU+lSchuxTq90IY"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/fp.esm.min.c7c919a5.js | 190.115.19.210 | 200 OK | 5.4 kB |
URL GET HTTP/21win.run/_nuxt/fp.esm.min.c7c919a5.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeJavaScript source, ASCII text, with very long lines (5528), with no line terminators Hash2325dab7ffa05f0c1b2e78c9bba9b584 8c51ce147b4f30c2097ee24fdd4c873e4ddbd938 3406e94faf09f96b5de46de1fbd3eabbcee4a2f4592e2838898f4f2fe0f9a1e4
GET /_nuxt/fp.esm.min.c7c919a5.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/entry.af293afb.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:38 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"153d-QNMNvco4V7hDUOEKcgiqIoXx+gk"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css | 142.250.74.163 | 200 OK | 56 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=n7fbvg4f7yrn CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeASCII text, with very long lines (56398), with no line terminators Hasheb4bc511f79f7a1573b45f5775b3a99b d910fb51ad7316aa54f055079374574698e74b35 7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 11:39:42 GMT
expires: Sat, 12 Apr 2025 11:39:42 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/css
vary: Accept-Encoding
age: 522597
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/entry.91b902a6.css | 190.115.19.210 | 200 OK | 2.1 kB |
URL GET HTTP/21win.run/_nuxt/entry.91b902a6.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (2140), with no line terminators Hash53de1691d47f426695bb4a48ee009a12 6555109e0542ea171ad83a8f1ae4b8773d32d2a6 ee26091d9875f9765bbf3756550fdb07324f4d7f87eaad9dfa7b539770db56d4
GET /_nuxt/entry.91b902a6.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"859-jj6nPwfQ4ofBRtCmiNVBZBXol7E"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/useVuelidateForm.01d66fe9.css | 190.115.19.210 | 200 OK | 1.2 kB |
URL GET HTTP/21win.run/_nuxt/useVuelidateForm.01d66fe9.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (1184), with no line terminators Hash7aa5c2d65e99b3b88a95721a8a26f0c0 c599406b1bccbf1fe752add6c77468e64e87d7ce ad7d78c0d0db490967dceb1d4eb827b73f8eaa5dd16f8145e393053d0754a40f
GET /_nuxt/useVuelidateForm.01d66fe9.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"49f-gAoabq/RDTeBUg3ADpNXpt2dToE"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fpnpmcdn.net/v3/dexBvYvoWDszTouzpRYc/loader_v3.8.3.js | 54.230.111.110 | 200 OK | 132 kB |
URL GET HTTP/3fpnpmcdn.net/v3/dexBvYvoWDszTouzpRYc/loader_v3.8.3.js IP54.230.111.110:443
CertificateIssuerAmazon Subjectfpcdn.io Fingerprint50:73:A9:9D:5E:A5:A2:57:0B:73:8F:D2:B2:1E:8A:5D:A7:FF:F8:16 ValidityTue, 10 Oct 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT
Size132 kB (132180 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/dexBvYvoWDszTouzpRYc/loader_v3.8.3.js HTTP/1.1
Host: fpnpmcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
alt-svc: h3=":443"; ma=86400
age: 109234
server: CloudFront
date: Wed, 17 Apr 2024 06:29:04 GMT
cache-control: public, max-age=3729, s-maxage=617146
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
etag: W/"k5aiGxGijreb1jCJ0YNtCoRJLCc"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7DtnUZrX82DUZ-drCRvEMgPFQYrbUvTu5yj5CM7e9qt5zgU1fncjiw==
|
|
| 1win.run/_nuxt/useOpenModals.1c37ecf0.js | 190.115.19.210 | 200 OK | 501 B |
URL GET HTTP/21win.run/_nuxt/useOpenModals.1c37ecf0.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (508), with no line terminators Hashafe74ff8007718e6abaa86a853deef79 0c9c8db0db6966a0424d446c845be1856028b061 b6161fb67fbb9a6485fb4623ca32fe02214ec9bb1128d582abe4944720e57048
GET /_nuxt/useOpenModals.1c37ecf0.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"1f5-QyhAF9tcPfvgU/+JnUXWK+t2mH8"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/telegram.747c2948.svg | 190.115.19.210 | 200 OK | 1.6 kB |
URL GET HTTP/21win.run/_nuxt/telegram.747c2948.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hash98722fa743187c4ad093a9248a4c97f8 8779f43e47a10b577796877ab877f4a64dc77b37 4cf166ff4807a95c10a98df131f5b934796ed7eb0e49283cecee0c7df8fe0679
GET /_nuxt/telegram.747c2948.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.1.1713444578.55.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:38 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"60f-qsCb+t+JaE5lXYzWT+EMc2mdPyA"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 | 142.250.74.99 | 200 OK | 15 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15340, version 1.0 Hash19b7a0adfdd4f808b53af7e2ce2ad4e5 81d5d4c7b5035ad10cce63cf7100295e0c51fdda c912a9ce0c3122d4b2b29ad26bfe06b0390d1a5bdaa5d6128692c0befd1dfbbd
GET /s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 23:58:18 GMT
expires: Tue, 15 Apr 2025 23:58:18 GMT
cache-control: public, max-age=31536000
age: 219082
last-modified: Mon, 16 Oct 2017 17:33:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/entry.af293afb.js | 190.115.19.210 | 200 OK | 355 kB |
URL GET HTTP/21win.run/_nuxt/entry.af293afb.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
Size355 kB (354634 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_nuxt/entry.af293afb.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"5694a-rODNF4sdoE5A96Q5/8ImKs4riPE"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/linkedin.bf69fa96.svg | 190.115.19.210 | 200 OK | 1.8 kB |
URL GET HTTP/21win.run/_nuxt/linkedin.bf69fa96.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hashdccb77298aa7974f25b27e960c8c831b f85a73a2e8bd0e860de25d7df2d601089d6b8313 099a8920f322bc1a891483162471bddcb3ab16a8a8e8fb7a302c888a194108cd
GET /_nuxt/linkedin.bf69fa96.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.1.1713444578.55.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:38 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"6ff-L8YL3SQ4O3IkQQ9kAyKsngIDSr4"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/api2/refresh_2x.png | 142.250.74.163 | 200 OK | 600 B |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/refresh_2x.png IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced Hash0f2a4639b8a4cb30c76e8333c00d30a6 57e273a270bb864970d747c74b3f0a7c8e515b13 44b988703019cd6bfa86c91840fecf2a42b611b364e3eea2f4eb63bf62714e98
GET /recaptcha/api2/refresh_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 12:26:13 GMT
expires: Tue, 23 Apr 2024 12:26:13 GMT
cache-control: public, max-age=604800
age: 174207
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- | 142.250.74.164 | 200 OK | 102 B |
URL GET HTTP/3www.google.com/recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=n7fbvg4f7yrn CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeASCII text, with no line terminators Hash701c50fe2f9d8cfca61542dee7684552 952a04f81a291e11f5d4ecd7364a3840412ba65e 9fc5dfc54de18e9c98733bbea6ebdcbc1f01c0b23f985556f24684ee96dc0582
GET /recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=n7fbvg4f7yrn
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Thu, 18 Apr 2024 12:49:39 GMT
date: Thu, 18 Apr 2024 12:49:39 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/Button.437b53e3.css | 190.115.19.210 | 200 OK | 763 B |
URL GET HTTP/21win.run/_nuxt/Button.437b53e3.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (764), with no line terminators Hash4dc507051374bddea78c2902ca420b6a e73723e44b4979f115925f8b0badd4823568c39f fdaf0960107f7dc4a5d7544cc59fd27b5c4a9e4279dd5c48f9f6b0212e9036c2
GET /_nuxt/Button.437b53e3.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"2fb-SxGjHHzIBiKgTgtWqTRccPPX7uc"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/AppHeader.3d817507.css | 190.115.19.210 | 200 OK | 2.9 kB |
URL GET HTTP/21win.run/_nuxt/AppHeader.3d817507.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (2950), with no line terminators Hasha4b07b448a26d1ae862a9be4fa1c5e4e 0dbf35066d8b29323a7b463c68aee693e1229f79 82179db6fd817521483c0943001c62e9f914f65314ff4e1e117c259d212784a3
GET /_nuxt/AppHeader.3d817507.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"b83-YJ2EiEhWyOJ3H9t/FTXjxGyLTD8"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/bg-vector.367614b4.svg | 190.115.19.210 | 200 OK | 15 kB |
URL GET HTTP/21win.run/_nuxt/bg-vector.367614b4.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hashc5dcb0ad782b6e7eb1804fff9491e894 723fe8e611dcd096697c73b0108805819c049290 367614b4959e418ff8367bab5d5aea6e6c52dbf0a78a25bce6ff47913473cd85
GET /_nuxt/bg-vector.367614b4.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.4c218f9a.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:38 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"3953-cj/o5hHc0JZpfHOwEIgFgZwEkpA"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/logo.3bb310f6.svg | 190.115.19.210 | 200 OK | 9.5 kB |
URL GET HTTP/21win.run/_nuxt/logo.3bb310f6.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hashb09c616e91b67a1295ab7f3389e09dff 7e97c59c01c62cdffbf3bbf4b80faf5fc4108bfa 2a260ec9052540ebbd8b7d1422e2582829f4dc33183ef9ecfec209ea10f1f1d5
GET /_nuxt/logo.3bb310f6.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"24ed-rb4HsgHTwI1xpXf1BlL7enApCCI"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/_locale_.342f1ac3.js | 190.115.19.210 | 200 OK | 201 kB |
URL GET HTTP/21win.run/_nuxt/_locale_.342f1ac3.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeC source, ASCII text, with very long lines (65536), with no line terminators Size201 kB (201399 bytes) Hashff43a624b69870ee93e5568de98d4246 8fc9aa7f0475cbd3ca9fc1c2711b25f6a0932648 7a77a966240f76b3198bc903d4b9c1437bf606bf3ecaca0a8b4ba88d867e327f
GET /_nuxt/_locale_.342f1ac3.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/entry.af293afb.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"312b7-j8mqfwR1y9PKn8HCcRsl9qCTJkg"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/changeKeysImportGlob.9d744f95.js | 190.115.19.210 | 200 OK | 647 B |
URL GET HTTP/21win.run/_nuxt/changeKeysImportGlob.9d744f95.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (680), with no line terminators Hashbbe9e5b75b13fc3e52a23b13166ea1d7 9e8fd8b0a218073124a6a27022687af9db517e7f 76bc872d372d2f293dc72a0962f3ac2e9f7a5f9a7f68ff8b7fb111fc0d3906e9
GET /_nuxt/changeKeysImportGlob.9d744f95.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"287-FlX0vWOcD0CU4vyPXMFz7QfY8Ms"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/default.21f0dd30.css | 190.115.19.210 | 200 OK | 1.7 kB |
URL GET HTTP/21win.run/_nuxt/default.21f0dd30.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (1655), with no line terminators Hashe5c4d5ed8b9b0ffa6d21db0eff61025c 9732b744a7a0f2b681bb049f07646f352349032d 3d1ac42e234901621f5b81f8788f9b8052c3f19ae14e3b3a278323055fd657f8
GET /_nuxt/default.21f0dd30.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:37 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"674-QYOq82Z3GohzsV7pyYFvoy5aWPM"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/statistic-s.83e5a909.svg | 190.115.19.210 | 200 OK | 2.1 kB |
URL GET HTTP/21win.run/_nuxt/statistic-s.83e5a909.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hashf32492bf932dda87c5554d26eae93fa8 8843fd797d367efcaf91c340a4f74f050c1537a5 dce99b1ba2c99dda37076cd9b3177da2660fcd590b26c1dfdb745e778c8c25fa
GET /_nuxt/statistic-s.83e5a909.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.4c218f9a.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444573.1.0.1713444573.60.0.0; _ga=GA1.1.766957566.1713444574; _vid_t=tyVzI+DzMJshMF1sg04zaMZOAdNp70hvx7LGwxLeXfujYdtwkF3+m9dHiAH+wCp5+suCJ3PryXRx/pXXnYxpwKS9xzALQOgg5A==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:38 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"860-appgy6jHOflD6FOmVY+ths2CWbE"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|