www.refpafyqlz.top/
104.21.6.209303 See Other 0 B IP 104.21.6.209:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: www.refpafyqlz.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 303 See Other
Date: Sat, 28 Jan 2023 13:16:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Referrer-Policy: no-referrer
Location: https://1wswqf.top/?open=register&sub2=13349#79i6
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cA0qG08YG9JpaENkhcikVFhvgZHBC7ZNKIY12BxKiq8MJVhuRj%2Bu3cSOiT0R3kx7HZDncmxZAll0gv%2B3dHsm%2BOMUh2tIqPU8TGXgtNbpsyqiLCL5frHEki3FvJlt6J4T15JDoSQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 790a00dcbae8b50c-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15536
Expires: Sat, 28 Jan 2023 17:35:30 GMT
Date: Sat, 28 Jan 2023 13:16:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15431
Expires: Sat, 28 Jan 2023 17:33:45 GMT
Date: Sat, 28 Jan 2023 13:16:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9516
Expires: Sat, 28 Jan 2023 15:55:11 GMT
Date: Sat, 28 Jan 2023 13:16:35 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 12:35:29 GMT
content-type: application/json
age: 2466
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 55Q5qLkqP2GPrfpX+dyiJ2xgWKMoLn6+pC1hNjyB7aAC7uHaMaRpjo5IRgzWu46VWD+KAqi7m3A=
x-amz-request-id: ABZ85NBC2HT675FZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 12:49:53 GMT
age: 1602
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0b2aac5c313746dd0a375976f97de878
8d2c8bb96f19ffec0ab547a485b1e9f4c7ec8a53
c41d560248b0c489b59c1971324e42b717029f307844f38320d885bad29b27a6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41D560248B0C489B59C1971324E42B717029F307844F38320D885BAD29B27A6"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16369
Expires: Sat, 28 Jan 2023 17:49:24 GMT
Date: Sat, 28 Jan 2023 13:16:35 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 13:16:35 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/Qcxua71jizE
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Qcxua71jizE
IP 142.250.74.131:0
Hash ac8ae1e1afc08fc94bec68075e12f262
3225e8a1ffb74b0a77f18e9f551b4b32c7994baa
ad5fd1e56a763dc18cdbb36df1ed6ed9ac73e15c7b0b1b5763af3d005669c5d0
POST /s/gts1p5/Qcxua71jizE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:16:35 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/Qcxua71jizE
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Qcxua71jizE
IP 142.250.74.131:0
Hash ac8ae1e1afc08fc94bec68075e12f262
3225e8a1ffb74b0a77f18e9f551b4b32c7994baa
ad5fd1e56a763dc18cdbb36df1ed6ed9ac73e15c7b0b1b5763af3d005669c5d0
POST /s/gts1p5/Qcxua71jizE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:16:35 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/Qcxua71jizE
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Qcxua71jizE
IP 142.250.74.131:0
Hash ac8ae1e1afc08fc94bec68075e12f262
3225e8a1ffb74b0a77f18e9f551b4b32c7994baa
ad5fd1e56a763dc18cdbb36df1ed6ed9ac73e15c7b0b1b5763af3d005669c5d0
POST /s/gts1p5/Qcxua71jizE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:16:35 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1win-cdn.com/css/6610.4f034e44.css
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/css/6610.4f034e44.css
IP 172.67.71.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /css/6610.4f034e44.css HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:35 GMT
content-type: text/css
content-length: 0
cache-control: max-age=315360000
cf-bgj: minify
access-control-allow-origin: *
etag: "63c7c775-0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
cf-cache-status: HIT
age: 807056
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j2p%2BmdUYNl2eYkY9E9BfU0v5ygI2pTilf3pWJNKEUD3m1M8ISpQ2tskNluylMaQHYmoVGacXgn%2FWJNEuVBOudKQfdtLCNPw%2Bisu8abz%2BqJJU57SV1xwdojgccqJszQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00e1b942b4f3-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/Qcxua71jizE
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Qcxua71jizE
IP 142.250.74.131:0
Hash ac8ae1e1afc08fc94bec68075e12f262
3225e8a1ffb74b0a77f18e9f551b4b32c7994baa
ad5fd1e56a763dc18cdbb36df1ed6ed9ac73e15c7b0b1b5763af3d005669c5d0
POST /s/gts1p5/Qcxua71jizE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:16:35 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/Qcxua71jizE
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Qcxua71jizE
IP 142.250.74.131:0
Hash ac8ae1e1afc08fc94bec68075e12f262
3225e8a1ffb74b0a77f18e9f551b4b32c7994baa
ad5fd1e56a763dc18cdbb36df1ed6ed9ac73e15c7b0b1b5763af3d005669c5d0
POST /s/gts1p5/Qcxua71jizE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:16:35 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 12:49:03 GMT
age: 1652
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
1win-cdn.com/css/desktop.31e6deb9.css
172.67.71.219200 OK 16 kB URL HTTP/2 1win-cdn.com/css/desktop.31e6deb9.css
IP 172.67.71.219:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7dee56b3220fc19e756aaf3234043d11
35d9056969a03423bbe1c8a7d5ab15dd952ab112
c958470e1459275ecfad7e75d8a0df0d767cdf783156dfa3851a0e0bb48a2f21
GET /css/desktop.31e6deb9.css HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:35 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=95906
access-control-allow-origin: *
etag: W/"63d124be-176a2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
cf-cache-status: HIT
age: 137167
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kLdb5nUMlgB%2F46ESDfBCmzXbmMoBz%2FSuyN0GD8BkSIlwHsiPs8VxMp4Th%2Bb5boejdVyh8%2BOzZfM79%2BNZxcZXX%2BRHz80v3lg5ONCuxgOKaiEci4fJgWFluiBfEDvD3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00e1b943b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/1895.e23540aa.js
172.67.71.219200 OK 396 kB URL HTTP/2 1win-cdn.com/js/1895.e23540aa.js
IP 172.67.71.219:0
File type ASCII text, with very long lines (60177), with no line terminators
Size 396 kB (396298 bytes)
Hash d1306b0336486d79bc75b38b6dd7059d
55c8ebbc50fa6f25de7340989b1f283100a863a4
7199c6bc5989906cdc16880c7b745d9811356b32eaec2161ce015a8bc5be308d
GET /js/1895.e23540aa.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:35 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=60219
access-control-allow-origin: *
etag: W/"63caa6b9-eb3b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 20 Jan 2023 14:35:37 GMT
cf-cache-status: HIT
age: 686352
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U93HlhMOHtIaX43xG3py2FVSQ362PSUttd4Xf5PP2wxurrX7%2FgGkBkwXp4LXibtJJurV2cDPgh5NCwHib2pfZZb6l4PlCR9x7yTgLoYK9tglaFbVFRm5RML0FWc2KQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00e31b0cb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1wswqf.top/affiliate:link_visit?partner_key=79i6&sub_ids=sub2%3D13349
190.115.19.101200 OK 15 B URL HTTP/2 1wswqf.top/affiliate:link_visit?partner_key=79i6&sub_ids=sub2%3D13349
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
File type JSON data\012- , ASCII text, with no line terminators
Hash 0f0479874bf6f4a7281099b15df27c27
55a490e280d48996e564d00492437eb17faadd28
a29ee2b15c494311c52521766e44af56a3ad2248e7a8ab465e5206463c13d288
GET /affiliate:link_visit?partner_key=79i6&sub_ids=sub2%3D13349 HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/?open=register&
Cookie: sub_ids=sub2=13349; visit_domain=1wswqf.top; partner_key=79i6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Sat, 28 Jan 2023 13:16:35 GMT
content-type: application/json; charset=utf-8
content-length: 15
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: undefined
access-control-expose-headers: Authorization
etag: W/"f-VaSQ4oDUiZblZNAEkkN+sX+q3Sg"
set-cookie: core-sticky=http://10.233.97.253:80; Path=/; HttpOnly
x-powered-by: Express
x-frame-options: DENY
X-Firefox-Spdy: h2
1wswqf.top/img/icons/apple-touch-icon-152x152.png
190.115.19.101200 OK 29 kB URL HTTP/2 1wswqf.top/img/icons/apple-touch-icon-152x152.png
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
File type PNG image data, 152 x 152, 8-bit/color RGBA, non-interlaced\012- data
Hash 0182e90098bff38de2e9e6e5d85edc95
d64a156fb3c8c98d09c8e178ec659124258534af
d047c554c99242545a47aee401fbf84bc037057653cb7a967e089ea0aa796a85
GET /img/icons/apple-touch-icon-152x152.png HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/?open=register&sub2=13349
Cookie: sub_ids=sub2=13349; visit_domain=1wswqf.top; partner_key=79i6; core-sticky=http://10.233.97.253:80
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Sat, 28 Jan 2023 13:16:35 GMT
content-type: image/png
content-length: 28672
last-modified: Fri, 27 Jan 2023 09:15:27 GMT
etag: "63d3962f-7000"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: DENY
accept-ranges: bytes
X-Firefox-Spdy: h2
1wswqf.top/img/icons/favicon-16x16-darkmode.png
190.115.19.101200 OK 410 B URL HTTP/2 1wswqf.top/img/icons/favicon-16x16-darkmode.png
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash c7a60b79929bf150e44e5ac28fcd0d4e
f1ecf72f71d7b4153b151e7a27d40bf0c926b09e
f2b53ffbd8af9378b2e1d160500d2a2f3fae9b963cf4d6a3e88108a765a548cf
GET /img/icons/favicon-16x16-darkmode.png HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/?open=register&sub2=13349
Cookie: sub_ids=sub2=13349; visit_domain=1wswqf.top; partner_key=79i6; core-sticky=http://10.233.97.253:80
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Sat, 28 Jan 2023 13:16:35 GMT
content-type: image/png
content-length: 410
last-modified: Fri, 27 Jan 2023 09:15:27 GMT
etag: "63d3962f-19a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: DENY
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 36147c185553851c38547798733a9fb2
912ec40237eae2ed558d09103c86c41f87896eca
a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:16:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
52.12.67.61101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.12.67.61:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: OhwiGT7rH/Lmdrquzr2xbQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: waXzf5B70bhc2uuBJnGFaoopg1Y=
1wswqf.top/get-authorization?random=1674911798678-0.39177119138667427
190.115.19.101200 OK 19 B URL HTTP/2 1wswqf.top/get-authorization?random=1674911798678-0.39177119138667427
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
File type JSON data\012- , ASCII text, with no line terminators
Hash 97816351479ac35375c10e73546c9459
b388abc5b856b3cb65032cf68d12cdee27073fc7
759315d5ae8c31136d2a7bc803e591554894987559325cdf7e0b5965bec0eaca
GET /get-authorization?random=1674911798678-0.39177119138667427 HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/?open=register&
Cookie: sub_ids=sub2=13349; visit_domain=1wswqf.top; partner_key=79i6; core-sticky=http://10.233.97.253:80; 1w_lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Sat, 28 Jan 2023 13:16:36 GMT
content-type: application/json; charset=utf-8
content-length: 19
access-control-allow-origin: https://1wswqf.top
access-control-allow-credentials: true
x-frame-options: DENY
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-KGKQDC7
142.250.74.168200 OK 57 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-KGKQDC7
IP 142.250.74.168:0
File type ASCII text, with very long lines (13682)
Hash 088ab0b13b841654ee358a336f3449c3
4da51abb42b55b6f8f22ccef89d308e83e7d43dd
f749747917b4317feecc741f572950209d2738f467b3eb88b626833f5ad8bdbe
GET /gtm.js?id=GTM-KGKQDC7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 13:16:36 GMT
expires: Sat, 28 Jan 2023 13:16:36 GMT
cache-control: private, max-age=900
last-modified: Sat, 28 Jan 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 57322
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 36147c185553851c38547798733a9fb2
912ec40237eae2ed558d09103c86c41f87896eca
a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:16:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
script.hotjar.com/modules.dcdf252a9a6cf097c357.js
54.230.111.73200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.dcdf252a9a6cf097c357.js
IP 54.230.111.73:0
File type Unicode text, UTF-8 text, with very long lines (48602)
Hash 4ab050de5a6437b8d1f5955ab1dbfb07
498e55a41dc3df84cf825bd946a1300a04b38677
87cbfe168c8537c46132cab67a16afe706796b7f301ac8dc5bd8f9ea847e4a72
GET /modules.dcdf252a9a6cf097c357.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
HTTP/2 200 OK
content-type: application/javascript
content-length: 68336
date: Fri, 27 Jan 2023 09:04:05 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "4ab050de5a6437b8d1f5955ab1dbfb07"
last-modified: Fri, 27 Jan 2023 09:03:53 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tx__mt3PMIFBWQO5LHGRUvfwhgLJnzeqN95bv5A6yuvpDPJBG_mEdg==
age: 101551
X-Firefox-Spdy: h2
cdn.amplitude.com/libs/amplitude-8.17.0-min.gz.js
54.230.245.209200 OK 27 kB URL HTTP/2 cdn.amplitude.com/libs/amplitude-8.17.0-min.gz.js
IP 54.230.245.209:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e5211b7cbee53b6912f07a1cd72a4582
097096657cc1484ad9509b2c990a81a48990efdc
008014793f2666c663f98c7a3405db81b2db301c6a3caf2c05e6e9556085aa78
GET /libs/amplitude-8.17.0-min.gz.js HTTP/1.1
Host: cdn.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wswqf.top
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
HTTP/2 200 OK
content-type: application/javascript
content-length: 27400
date: Sat, 14 Jan 2023 17:39:11 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Fri, 25 Mar 2022 19:53:18 GMT
etag: "e5211b7cbee53b6912f07a1cd72a4582"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: wr63ICD3duh0Opi8j2KDhI34Ow38BHG0
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iiUbrXG9zJJ5HGauFh5mBUMyL1k9vl3fifnWzX6tMURCyLuWTrIcwg==
age: 1193846
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash af1c521d29c662e208d80836c19fa58a
64e18dcf8f3ea43f6aeb1c66299bd37121cdfe14
57fe9c6dbb637c6090c7110234fb9d3aadb75850d6d5ed5c668376ebd121c1f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:16:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash af1c521d29c662e208d80836c19fa58a
64e18dcf8f3ea43f6aeb1c66299bd37121cdfe14
57fe9c6dbb637c6090c7110234fb9d3aadb75850d6d5ed5c668376ebd121c1f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:16:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vars.hotjar.com/box-fc6c0cda90900662e5160cde908b3e86.html
54.230.111.94200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-fc6c0cda90900662e5160cde908b3e86.html
IP 54.230.111.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash c34915675a9e912c93dac934322be7d1
1d0c20a805821d76fdef8b95eace30ac659a9454
091ab4e6d3f86a5e7bc8c7c3e9805df420c13f77627902dd204abc1f28b6336d
GET /box-fc6c0cda90900662e5160cde908b3e86.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 27 Jan 2023 09:04:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "c34915675a9e912c93dac934322be7d1"
last-modified: Fri, 27 Jan 2023 09:03:53 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QWltsyDCJiZalzG7tQEqCcFRpoJBeGa9MIpZKzbH4ruZtKckeOQo8A==
age: 101550
X-Firefox-Spdy: h2
12688802.fls.doubleclick.net/activityi;src=12688802;type=actio0;cat=allpa0;ord=1;num=5776111754266;gtm=2wg1p0;auiddc=1276546432.1674911799;~oref=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26?
142.250.74.70200 OK 244 B URL HTTP/2 12688802.fls.doubleclick.net/activityi;src=12688802;type=actio0;cat=allpa0;ord=1;num=5776111754266;gtm=2wg1p0;auiddc=1276546432.1674911799;~oref=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26?
IP 142.250.74.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (469), with no line terminators
Hash 0a75ef742f3e5d5d02bdab537de3fbed
2c5ceb038a30867e363c7429c896e1f293e14724
4838500f1cf72ee2ece7aeaee890b3698f271ec1adfa366b6bec39af75af875c
GET /activityi;src=12688802;type=actio0;cat=allpa0;ord=1;num=5776111754266;gtm=2wg1p0;auiddc=1276546432.1674911799;~oref=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26? HTTP/1.1
Host: 12688802.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 13:16:36 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 244
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 28-Jan-2023 13:31:36 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
12572451.fls.doubleclick.net/activityi;src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=7834785675589.16?
142.250.74.70200 OK 272 B URL HTTP/2 12572451.fls.doubleclick.net/activityi;src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=7834785675589.16?
IP 142.250.74.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (519), with no line terminators
Hash 109cf34c5155053fb5a14a5d24c2977d
3c45e12c22adf762e8870c46388db2601bc3df26
5368325792cf8043d65b7a63bce1942ffd51256421ca78f187a3f1b69116fe1d
GET /activityi;src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=7834785675589.16? HTTP/1.1
Host: 12572451.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 13:16:36 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 272
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 28-Jan-2023 13:31:36 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash af1c521d29c662e208d80836c19fa58a
64e18dcf8f3ea43f6aeb1c66299bd37121cdfe14
57fe9c6dbb637c6090c7110234fb9d3aadb75850d6d5ed5c668376ebd121c1f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:16:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash af1c521d29c662e208d80836c19fa58a
64e18dcf8f3ea43f6aeb1c66299bd37121cdfe14
57fe9c6dbb637c6090c7110234fb9d3aadb75850d6d5ed5c668376ebd121c1f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:16:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:16:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.lab.amplitude.com/sdk/vardata
151.101.2.132200 OK 2 B URL HTTP/2 api.lab.amplitude.com/sdk/vardata
IP 151.101.2.132:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /sdk/vardata HTTP/1.1
Host: api.lab.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1wswqf.top/
Authorization: Api-Key client-Ss5BFx7UDrTj948TJHfc5ZUoTW67EjvZ
X-Amp-Exp-User: eyJsaWJyYXJ5IjoiZXhwZXJpbWVudC1qcy1jbGllbnQvMS41LjUiLCJsYW5ndWFnZSI6ImVuLVVTIiwicGxhdGZvcm0iOiJXZWIiLCJvcyI6IkZpcmVmb3ggMTA1IiwiZGV2aWNlX21vZGVsIjoiV2luZG93cyIsInVzZXJfcHJvcGVydGllcyI6e319
Origin: https://1wswqf.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json;charset=utf-8
access-control-allow-origin: https://1wswqf.top
access-control-allow-credentials: true
x-amzn-trace-id: Root=1-63d52034-597082ef238727b26c8ac51d
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 13:16:36 GMT
age: 0
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674911796.219270,VS0,VE181
vary: Origin, Origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 2
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:16:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 33e865684fe7a805e705dccf370a5918
f568cce7a7b24b51d250c29f79d039e75f2a954d
97b108cb59c31560bb942e61cdbb6689631a9a731ff515c519272ad61ad32076
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 13:16:36 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Wed, 01 Feb 2023 09:50:21 GMT
ETag: "f568cce7a7b24b51d250c29f79d039e75f2a954d"
Last-Modified: Sat, 28 Jan 2023 09:50:22 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1053
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790a00e77a8db506-OSL
adservice.google.com/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=5776111754266;gtm=2wg1p0;auiddc=1276546432.1674911799;~oref=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26
142.250.74.66200 OK 243 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=5776111754266;gtm=2wg1p0;auiddc=1276546432.1674911799;~oref=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (468), with no line terminators
Hash bb181cebb662964b046f74313915a5b2
62e0bf1241f3cc19363fe757177036f1b7ec5129
d6edf779542097e52ca488c2f0aa7feeeb4e93f3bcf40e37ec74da3fd5b696c1
GET /ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=5776111754266;gtm=2wg1p0;auiddc=1276546432.1674911799;~oref=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26 HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12688802.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 13:16:36 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 243
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1win-cdn.com/js/desktop.4480ee7e.js
172.67.71.219200 OK 34 kB URL HTTP/2 1win-cdn.com/js/desktop.4480ee7e.js
IP 172.67.71.219:0
File type Unicode text, UTF-8 text, with very long lines (65495), with no line terminators
Hash 9c9de39fb20b7ad59d58bef24b00d619
d2c9ad452695caebcb422b0d8288ddd35da09538
4f6257722194da419712e770d2078f365f76613b04a79ecfeecc77ab72d636a0
GET /js/desktop.4480ee7e.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:35 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=119486
access-control-allow-origin: *
etag: W/"63d39635-1d2be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 27 Jan 2023 09:15:33 GMT
cf-cache-status: HIT
age: 100684
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YnrEb8I4egafuKugNTeJzO%2BLqcdYNWXLIy%2ByMnh59PlDi8i%2FeYPleNjo7cIBJURwx%2Fbz0z7H8YDOcTadAwN4Bs3PE0VBRLEInvtN7PD6eEZqAyQuyu4qN5Te9mHeTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00e1b941b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:16:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c083fb68af37d6c700a3fa4eb04a29cb
9b3ff3c9c0bd7dc448eb18e74ddc029f7c18dc9a
3ea0d4252ad90ee13a6b23ebd1144639f7bb73e4d96ef2590b21a155809e65e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:16:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c083fb68af37d6c700a3fa4eb04a29cb
9b3ff3c9c0bd7dc448eb18e74ddc029f7c18dc9a
3ea0d4252ad90ee13a6b23ebd1144639f7bb73e4d96ef2590b21a155809e65e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:16:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/metrika/tag.js
93.158.134.119200 OK 74 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 93.158.134.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Hash a236c7014c1f1a1e52d356f59e5d665a
b66c638eb2346287364c37725819bbab1f409d66
ad2d57579e453af0eac49156840bcd1dcfbd802a82135af98f41f714d7e698f2
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
HTTP/2 200 OK
content-length: 73769
date: Sat, 28 Jan 2023 13:16:36 GMT
access-control-allow-origin: *
etag: "63c93a4b-12029"
expires: Sat, 28 Jan 2023 14:16:36 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=5776111754266;gtm=2wg1p0;auiddc=1276546432.1674911799;~oref=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26
216.58.207.194200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=5776111754266;gtm=2wg1p0;auiddc=1276546432.1674911799;~oref=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26
IP 216.58.207.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=5776111754266;gtm=2wg1p0;auiddc=1276546432.1674911799;~oref=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 13:16:36 GMT
expires: Sat, 28 Jan 2023 13:16:36 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=7834785675589.16;~oref=https://1wswqf.top/
216.58.207.194200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=7834785675589.16;~oref=https://1wswqf.top/
IP 216.58.207.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=7834785675589.16;~oref=https://1wswqf.top/ HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 13:16:36 GMT
expires: Sat, 28 Jan 2023 13:16:36 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1wswqf.top/1.txt?1674911799250
190.115.19.101200 OK 8 B URL HTTP/2 1wswqf.top/1.txt?1674911799250
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
Hash 48cfef8b3001a8c220dc815870f9916e
b77e871e72a3083c4bb31d6bcb5a257557181269
3d2c759213949af96fbdcd756a5146f64a9acadf9625bd7a9feb04bb4517b4f9
GET /1.txt?1674911799250 HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1wswqf.top/sw.db344b25.js
Connection: keep-alive
Cookie: sub_ids=sub2=13349; visit_domain=1wswqf.top; partner_key=79i6; core-sticky=http://10.233.97.253:80; 1w_lang=en; _gcl_au=1.1.1276546432.1674911799; amp_494ccc=0xDH024E0gwBmZuEiGCj-o...1gns8blof.1gns8blof.0.0.0; _ga_548949LWLW=GS1.1.1674911799.1.0.1674911799.0.0.0; _ga=GA1.1.616259581.1674911799; _hjSessionUser_2606090=eyJpZCI6ImY2YTMxMjU5LTA4OTktNTM0NC05MWZmLWY2NzVhYzkzZWQ0OCIsImNyZWF0ZWQiOjE2NzQ5MTE3OTg5ODMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_2606090=eyJpZCI6ImI5YmZlMzgyLWY0ZGQtNGY3ZC05N2VlLTg3NjhlOGVkYjczMiIsImNyZWF0ZWQiOjE2NzQ5MTE3OTkyMDYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Sat, 28 Jan 2023 13:16:36 GMT
content-type: text/plain
content-length: 8
last-modified: Fri, 27 Jan 2023 09:15:27 GMT
etag: "63d3962f-8"
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
1win-cdn.com/js/1883.ce7803cd.js
172.67.71.219200 OK 9.1 kB URL HTTP/2 1win-cdn.com/js/1883.ce7803cd.js
IP 172.67.71.219:0
File type ASCII text, with very long lines (13690), with no line terminators
Hash 0cc556b08fe1f52a36ac402b9ea0e3a5
cf43a5bc3ee494ffa93a56c13fca8598543e3816
1e51503c104cb1dcffeec6bbb5171c8767e560319410873200eed07f01cd7afc
GET /js/1883.ce7803cd.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:36 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=13732
access-control-allow-origin: *
etag: W/"63a42a53-35a4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3208458
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gCTdmdtGiqyMsHzdgQlEmmXVrYf4x6waluAgA4GMlHiW6LAZ5N5z6xajfqpJYuc8FabREBpFOHRVOhf8MAtHkWSZOb8wb3jLL9PN67CWmzgE9hEYgbIQHWc9GFYlFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00e83a0bb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/css/7057.6c4e5731.css
172.67.71.219200 OK 12 kB URL HTTP/2 1win-cdn.com/css/7057.6c4e5731.css
IP 172.67.71.219:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 39dc2085ae3478a0ec58663fe030df9a
de38b5f3ba48969d60d81d972b6d279bcca1344b
ee924ffaa166e80cdd8cee17428cc8594283aa1c7eceadf2d72ede89f7417f32
GET /css/7057.6c4e5731.css HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:36 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=68681
access-control-allow-origin: *
etag: W/"63cfcc7b-10c49"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 24 Jan 2023 12:18:03 GMT
cf-cache-status: HIT
age: 347164
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZwC3LTJtTli4KJOpulzOiy0UYOFrjghohv9BMfPbXITWHZPPfoF0UN32uEwcWY9jd2flgwCfDW5Ig2H6v60BidmVXFphWBpHiNBTIcVOmk6Q6sl4bBrP%2B3rth19J%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00e85a3cb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/7057.ec2ef73a.js
172.67.71.219200 OK 26 kB URL HTTP/2 1win-cdn.com/js/7057.ec2ef73a.js
IP 172.67.71.219:0
File type Unicode text, UTF-8 text, with very long lines (65531), with no line terminators
Hash 6519bb741424f9fde498b2958d6df3a0
ddc156c54a685ef29a12af7640fbc1e20cdb7d6b
03d328157104d3164d1a948a29afea3ef4a2f5e5900304ae1efafeb690ccd55d
GET /js/7057.ec2ef73a.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:36 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=99219
access-control-allow-origin: *
etag: W/"63d39632-18393"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 27 Jan 2023 09:15:30 GMT
cf-cache-status: HIT
age: 97113
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wdK5cxRmPD9obCq1bHvqppzsAmpIf5zpJqZMK3anpLBTrw%2BRCuJuCRCxaS%2B3aaA%2BWFHqWh3wBl1TcYIFhnN5pkvycSjuUnhwGXKeJAvzh%2B4Vhef0vMSzNGuq2Zbndg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00e85a3fb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/css/546.f10717d0.css
172.67.71.219200 OK 3.0 kB URL HTTP/2 1win-cdn.com/css/546.f10717d0.css
IP 172.67.71.219:0
File type ASCII text, with very long lines (11188), with no line terminators
Hash f83c52c8716c6574553dda6b73352cc8
2297124418563d9cc28ea3ef0b7e1ab6f620465a
7e261412f22221e1503e3b91d043c4c6bbe1b9338ef946800fd15622e352c569
GET /css/546.f10717d0.css HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:36 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
access-control-allow-origin: *
etag: W/"63c7c775-2bb4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
cf-cache-status: HIT
age: 814282
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tBZoCTf4Eomtkm6s06czgptpeJOpnThC%2FJx9cnV%2BAcztVghCVQfdSu7ZMnsSFXKWpn8AEeIxXeiOPb4tb1pA6xH%2FFy5KkXXTcrYOn49B2w3Re%2BVW8w7hHf3s2JO3mg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00e85a42b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash eafe7f8437e784f470d4f39a04112fae
33d2f608661b733970a1c62819933b8d39a339a8
06cc5c14198f525d24d7f9a8fe33f4d5f76301082f36df4ce4b4e99c77b8e297
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "06CC5C14198F525D24D7F9A8FE33F4D5F76301082F36DF4CE4B4E99C77B8E297"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8425
Expires: Sat, 28 Jan 2023 15:37:01 GMT
Date: Sat, 28 Jan 2023 13:16:36 GMT
Connection: keep-alive
1win.direct/socket.io/?Language=en&EIO=3&transport=websocket
134.122.54.186101 Switching Protocols 0 B URL HTTP/1.1 1win.direct/socket.io/?Language=en&EIO=3&transport=websocket
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?Language=en&EIO=3&transport=websocket HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://1wswqf.top
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ic6SAGlfH/b1F//Lo9PMcg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Sec-Websocket-Accept: s4TTp7i4GKOohLBKDuYYbvdAPmI=
Sec-Websocket-Extensions: permessage-deflate
Set-Cookie: core-sticky=ee2385ecc1a0eb94; Path=/; HttpOnly
Upgrade: websocket
region1.google-analytics.com/g/collect?v=2&tid=G-548949LWLW>m=2oe1p0&_p=1757408373&cid=616259581.1674911799&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674911799&sct=1&seg=0&dl=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26&dt=1win%20-%20Loading&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-548949LWLW>m=2oe1p0&_p=1757408373&cid=616259581.1674911799&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674911799&sct=1&seg=0&dl=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26&dt=1win%20-%20Loading&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-548949LWLW>m=2oe1p0&_p=1757408373&cid=616259581.1674911799&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674911799&sct=1&seg=0&dl=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26&dt=1win%20-%20Loading&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://1wswqf.top
date: Sat, 28 Jan 2023 13:16:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1wswqf.top/common/title?path=bets&lang=en
190.115.19.101200 OK 16 B URL HTTP/2 1wswqf.top/common/title?path=bets&lang=en
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
GET /common/title?path=bets&lang=en HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1wswqf.top/?open=register&
Connection: keep-alive
Cookie: sub_ids=sub2=13349; visit_domain=1wswqf.top; partner_key=79i6; core-sticky=http://10.233.97.253:80; 1w_lang=en; _gcl_au=1.1.1276546432.1674911799; amp_494ccc=0xDH024E0gwBmZuEiGCj-o...1gns8blof.1gns8blof.0.0.0; _ga_548949LWLW=GS1.1.1674911799.1.0.1674911799.0.0.0; _ga=GA1.1.616259581.1674911799; _hjSessionUser_2606090=eyJpZCI6ImY2YTMxMjU5LTA4OTktNTM0NC05MWZmLWY2NzVhYzkzZWQ0OCIsImNyZWF0ZWQiOjE2NzQ5MTE3OTg5ODMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_2606090=eyJpZCI6ImI5YmZlMzgyLWY0ZGQtNGY3ZC05N2VlLTg3NjhlOGVkYjczMiIsImNyZWF0ZWQiOjE2NzQ5MTE3OTkyMDYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: application/json; charset=utf-8
content-length: 16
vary: Origin
x-frame-options: DENY
X-Firefox-Spdy: h2
1wswqf.top/sw.db344b25.js
190.115.19.101304 Not Modified 0 B URL HTTP/2 1wswqf.top/sw.db344b25.js
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sw.db344b25.js HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: sub_ids=sub2=13349; visit_domain=1wswqf.top; partner_key=79i6; core-sticky=http://10.233.97.253:80; 1w_lang=en; _gcl_au=1.1.1276546432.1674911799; amp_494ccc=0xDH024E0gwBmZuEiGCj-o...1gns8blof.1gns8blof.0.0.0; _ga_548949LWLW=GS1.1.1674911799.1.0.1674911799.0.0.0; _ga=GA1.1.616259581.1674911799; _hjSessionUser_2606090=eyJpZCI6ImY2YTMxMjU5LTA4OTktNTM0NC05MWZmLWY2NzVhYzkzZWQ0OCIsImNyZWF0ZWQiOjE2NzQ5MTE3OTg5ODMsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_2606090=eyJpZCI6ImI5YmZlMzgyLWY0ZGQtNGY3ZC05N2VlLTg3NjhlOGVkYjczMiIsImNyZWF0ZWQiOjE2NzQ5MTE3OTkyMDYsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0; _ym_uid=1674911800563109915; _ym_d=1674911800; 1w_locale=1
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
If-Modified-Since: Fri, 27 Jan 2023 09:15:27 GMT
If-None-Match: W/"63d3962f-18bf"
Cache-Control: max-age=0
TE: trailers
HTTP/2 304 Not Modified
server: openresty/1.19.9.1
date: Sat, 28 Jan 2023 13:16:37 GMT
last-modified: Fri, 27 Jan 2023 09:15:27 GMT
etag: "63d3962f-18bf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: DENY
X-Firefox-Spdy: h2
1win-cdn.com/img/present-with-light.bd57fb06-151.png
172.67.71.219200 OK 6.7 kB URL HTTP/2 1win-cdn.com/img/present-with-light.bd57fb06-151.png
IP 172.67.71.219:0
File type PNG image data, 151 x 161, 8-bit colormap, non-interlaced\012- data
Hash 6e2f4fff39b3a495fecefe5fee863c51
d358f1c8d7fe7298feea325c7ea6d145a3634026
4800fa860802fd0e46629776201afccd5adc1bf6b8b5a45a5e7c46d8d3b2a690
GET /img/present-with-light.bd57fb06-151.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/png
content-length: 6732
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: "63a42a53-1a4c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3208486
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gWDBdvRU0vPkp0FpwoCLrjnb7lBcKVPZLSPAQIwHv1te04sWk7swsFqqN%2FuaonrBIdR0WLstxj14biQ4fIGQRD2DsqmseJhIcQRA5LfwkFEkiCRmaUfJYHWp8UISFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ece848b4f3-OSL
X-Firefox-Spdy: h2
1win-cdn.com/js/4709.abb5ceeb.js
172.67.71.219200 OK 11 kB URL HTTP/2 1win-cdn.com/js/4709.abb5ceeb.js
IP 172.67.71.219:0
File type ASCII text, with very long lines (27827), with no line terminators
Hash ed15d053d365f425d01d1a9f6c45f7aa
ff748ed921f5e1fea2aa637fb2434191b563eed0
c9eb1005fd55357ff81500541c4a1057eaa3840cfbf2c7cf58be18e164e7840d
GET /js/4709.abb5ceeb.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=27869
access-control-allow-origin: *
etag: W/"63d39636-6cdd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 27 Jan 2023 09:15:34 GMT
cf-cache-status: HIT
age: 94722
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X73SwVPtDGfzn18r83IUuE7uHUrrNkh8M4sAjkkFd4fvyq62VAlxyNArJmvlEP2krWk9afj59Y17%2FYSsqE1eMpBzR1R5pHL7QInNSoFu6seldDX2m2WDSJrpywwyXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ecb801b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/best-bitcoin-casino.9c1716b1-50.png
172.67.71.219200 OK 1.0 kB URL HTTP/2 1win-cdn.com/img/best-bitcoin-casino.9c1716b1-50.png
IP 172.67.71.219:0
File type PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Hash d17d9ae707b485a356eec325e36aa505
650fc9b7790343d87eacfa5f5466ecf659f3b9a7
5bca66d0040f92e3f15089ebc1f46687cf7bde68d46db0fb286113aaba9ac57f
GET /img/best-bitcoin-casino.9c1716b1-50.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/png
content-length: 1035
last-modified: Wed, 21 Dec 2022 11:04:29 GMT
etag: "63a2e83d-40b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3276526
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WFefvaaONze8Vp%2Fl0sW6psaPLpTScDMAn4ZsKtibmUg8s6UOS70vqI53QvQf2bMm7hUh1LaohRDzqM%2BC%2Fy1cRvc9U4K55oygk2DcNSjiyeanrA6p3svzReephiDx%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ecf867b4f3-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/casinos-analyzer.896bc525-182.png
172.67.71.219200 OK 2.0 kB URL HTTP/2 1win-cdn.com/img/casinos-analyzer.896bc525-182.png
IP 172.67.71.219:0
File type PNG image data, 182 x 50, 8-bit colormap, non-interlaced\012- data
Hash 75b2e733b195a4dc9229efa156e5a67a
f1755917d01bb31e56ab6e68c16656f6ffa9c38a
58a6718ce885d0923e0c0cdf64b8017396068f6c4c7ebda40fe951221dfb7475
GET /img/casinos-analyzer.896bc525-182.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/png
content-length: 2047
last-modified: Wed, 21 Dec 2022 11:04:29 GMT
etag: "63a2e83d-7ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3276526
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LT74Z%2BkO3CYrmMvvMnO0ewZmyGdtASO8rPD1fSI5%2Ft%2BoklGHnCI%2BWP3mrV9NsZ0jAw70k%2Fd4QKCKxbQjdHnttiTGWnmz7mzCz0mZcrLeouuKIXX2IC5wkCCe0zuDIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ecf869b4f3-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/cricket-betting-wali.1863d1d9-43.png
172.67.71.219200 OK 2.5 kB URL HTTP/2 1win-cdn.com/img/cricket-betting-wali.1863d1d9-43.png
IP 172.67.71.219:0
File type PNG image data, 43 x 50, 8-bit colormap, non-interlaced\012- data
Hash f4d8e1bf9ee6fb80b23760cae020a174
008045648a3c542d9ffb296b9ab7f57dce550274
207d2b3d3be139912aef09fc9c5f794a8853c2c3526ab30a3603b8767d7cd07e
GET /img/cricket-betting-wali.1863d1d9-43.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/png
content-length: 2508
last-modified: Wed, 21 Dec 2022 11:04:29 GMT
etag: "63a2e83d-9cc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3276526
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RjB5zHhi67CF0uV4oBczPJkP2YMgtnuTkxhaRbE3t%2F9SOGULfYOGarXoluu9BITpMKUEmv6W7Q81gEqHKh8wmMGXYc89ZXZzXkp8wpY7OLJ71G1SGS%2FJZLY3FPMOjw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ed086db4f3-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/free-money-link-image.4433e497-120.png
172.67.71.219200 OK 6.3 kB URL HTTP/2 1win-cdn.com/img/free-money-link-image.4433e497-120.png
IP 172.67.71.219:0
File type PNG image data, 120 x 97, 8-bit colormap, non-interlaced\012- data
Hash 8c77c77c33189721a876fefeadf5ca83
0b197aa9e55fe824b28e55b9e0591f8631b6c3c8
b2a4295182c1f7c9619a4d2f842be12f4cbc6c4bb8d2ea607f06ff3bc4099486
GET /img/free-money-link-image.4433e497-120.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/png
content-length: 6292
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: "63a42a53-1894"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206588
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8Pi5M7szsj%2BjT5FHgXuZFat3F03VUzZNbwXvs3vyphd37XAvMungNMG1TkMmW3sNmc5PaQRv8YbqlmgikHDlfq8QPXGXth1wh9UjVmoJpAj97xCtuXjkr7hsJCxUFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ed0875b4f3-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/cricket-betting-guru.cfe7d426-500.png
172.67.71.219200 OK 9.2 kB URL HTTP/2 1win-cdn.com/img/cricket-betting-guru.cfe7d426-500.png
IP 172.67.71.219:0
File type PNG image data, 500 x 500, 8-bit colormap, non-interlaced\012- data
Hash 3c6da1041cc0873ff73533fd0e03f5a0
0666e13970c0698cf09ffafc9467ea705258c552
dfeed2cdb884b7769b5ee0fde60457b4b5380b7608c296b67e26c48dc1ca3f08
GET /img/cricket-betting-guru.cfe7d426-500.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/png
content-length: 9249
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: "63a42a53-2421"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3208486
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sXyIGeSZZW4VtGvyACelIwu3eEsD752JbgcQPfJKZLh%2FvXFM4m8Vcabwa17JtcbNYdHc47HElyQsWIWRsMPJQpWt5HVKCNmwjOikpfPCL2LPhKXMHytC3CMIlIlfhQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ed0873b4f3-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-roulette-frame@2.76ea5a24-256.png
172.67.71.219200 OK 30 kB URL HTTP/2 1win-cdn.com/img/sprite-roulette-frame@2.76ea5a24-256.png
IP 172.67.71.219:0
File type PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Hash fa83f73358ed73cbd8a0faf0d8e6c019
586b95f1e5e1945abd0248e995f79274463c1cd8
ede3848497b96e7defd4c5d53133cf2e374487411186a66a6146191ae5692f77
GET /img/sprite-roulette-frame@2.76ea5a24-256.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/png
content-length: 29770
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: "63a42a53-744a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206587
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=58nsm0aM8DZ66OYEfSeR%2B187gXCiuEITUjK3%2FHC9EOA8hGnpAS3nxEPczwNGHF7mLuczixmV%2BERX7%2BhaNZno0gxd%2Fv8Pe2PVlMtwMJa7Oljk1QBXWch1lz2g%2FLbDQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ed0886b4f3-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-tvbet@2.888adc8e-256.webp
172.67.71.219200 OK 354 kB URL HTTP/2 1win-cdn.com/img/sprite-tvbet@2.888adc8e-256.webp
IP 172.67.71.219:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 354 kB (353842 bytes)
Hash 8df817e5ef0af5dc8279d3f20cae9bc3
12c85bcc74a48053c92f3f75ce3c14e1a19e46d3
61a0f98511e6c60430ab044d1f80e1c9eff83f577064d465cc5f893ba3ce0fee
GET /img/sprite-tvbet@2.888adc8e-256.webp HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/webp
content-length: 353842
last-modified: Fri, 27 Jan 2023 09:15:36 GMT
etag: "63d39638-56632"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: HIT
age: 2612
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i0dSlseHZEaubUVzpCbTDaMFWXU3H02pI9ATyVfgxK6HDyPn3KroPpfjB%2FpuUrL5TH4F%2B06%2BsBiKByKAzKSkfWf%2FItGXzqBUgUfo4xhHoq5dGy%2FfGfgUwEXhC0TwAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ed0885b4f3-OSL
X-Firefox-Spdy: h2
1win-cdn.com/fonts/SFNSDisplay.2b5dc965.woff2
172.67.71.219200 OK 295 kB URL HTTP/2 1win-cdn.com/fonts/SFNSDisplay.2b5dc965.woff2
IP 172.67.71.219:0
File type Web Open Font Format (Version 2), TrueType, length 295048, version 1.0\012- data
Size 295 kB (295048 bytes)
Hash a54910c24518869ec095d604c76adb74
cd8ed32dd18b7f672bf502847242b0a9eee4c2c8
efdc0e9caf5e1b3f650e8ecd022ecd000bb070e1b0cf359eeb228603c325384b
GET /fonts/SFNSDisplay.2b5dc965.woff2 HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wswqf.top
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1win-cdn.com/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: application/octet-stream
content-length: 295048
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: "63d124be-48088"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 161070
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=byVadYxFLsmbqWcUgBDXnvdO8jdNFsqa851FtNpctU2yJaeVfN6pBfWkqkw4DVqPuSUPvQTLB8QC2bS53Y88aWucRECHoeKXiyolDK7UTQcPppgDx7i8kLvlD6x7Pw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ed0a50b518-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-dice-frame@2.8e0d7067-256.png
172.67.71.219200 OK 17 kB URL HTTP/2 1win-cdn.com/img/sprite-dice-frame@2.8e0d7067-256.png
IP 172.67.71.219:0
File type PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Hash b5469917695caf597285ce3e08c0e314
8d6b57a1590baf7531d688d5dde729ede7d02108
3353862bc343fe2f92faf7e59595d9aa80d2fbdc90c6677437daf3a9acd84b32
GET /img/sprite-dice-frame@2.8e0d7067-256.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/png
content-length: 17269
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: "63a42a53-4375"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206588
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OS7dGh0lPINmfox7iVTNH2EuBL8IvmsNr5605Y0tcij0zww0%2Fy74uCw79TYerj32ai%2BdO%2FPhU3Y4MQP9bCwdeJfN56wiHpq0t5VYQ4Xfu%2Fwy58P99vcZjq64RyOcoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ed088cb4f3-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-poker-frame@2.1caa31af-256.png
172.67.71.219200 OK 10 kB URL HTTP/2 1win-cdn.com/img/sprite-poker-frame@2.1caa31af-256.png
IP 172.67.71.219:0
File type PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Hash 74023900d89b98987ea3248f4a89a218
4ea53a2415cf89647c40a32c69b50bde861a40ed
484183c9f4d5b2d68649d3025af4d2b95a5cb71f40a1cf960d62e0e3560162ab
GET /img/sprite-poker-frame@2.1caa31af-256.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/png
content-length: 10453
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: "63a42a53-28d5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206587
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ue%2FsHZIN2%2FU%2F4Bm3Xc3iThhUEVtcczsMrn6WHaShW58dNrcer5zWnUN4OMHOpe4GHmtUXj%2Bxz2lVyrBrBszkn4apgfPJ6H4mP5NO7%2F%2FKGhuzGLJZNcg2VqiuGqdEJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ed0893b4f3-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-tvbet-frame@2.52cde99d-256.png
172.67.71.219200 OK 4.5 kB URL HTTP/2 1win-cdn.com/img/sprite-tvbet-frame@2.52cde99d-256.png
IP 172.67.71.219:0
File type PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Hash 40212134fb58f842529fa66647f1b7d2
e6d355ea609129942cde7b9d47e587ae5cc8596c
c04666bc555dfa0fbd2b5da4984cb813b58eab772e1fa1efa2fd2e62c6d11f7b
GET /img/sprite-tvbet-frame@2.52cde99d-256.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/png
content-length: 4458
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: "63a42a53-116a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206588
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F9PYuV%2BVr%2FqN4qyucqmUmWZzignGmfNuss%2FUlMD3qjD8JlwYD%2BItPB8qiQDMzxlVyjRcD%2By3z9jeybkd9CrHipBWZOgnFIdL%2BJEcCXFMQJLQxymfEUaGHdz91Z3pkw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ed0881b4f3-OSL
X-Firefox-Spdy: h2
1win-cdn.com/css/3590.4152629f.css
172.67.71.219200 OK 17 kB URL HTTP/2 1win-cdn.com/css/3590.4152629f.css
IP 172.67.71.219:0
File type ASCII text, with very long lines (30877), with no line terminators
Hash 0973aa48068e2251dfd31ad884e01b00
fe3d03dbc83076395ff21069a069a952ab2a3ab6
a335aca0e0a6c6050d03fb6705b788a8e0298634edbb4a58b7892927447a7618
GET /css/3590.4152629f.css HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=30879
access-control-allow-origin: *
etag: W/"63cfa92d-789f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 24 Jan 2023 09:47:25 GMT
cf-cache-status: HIT
age: 356353
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FBH%2FB9RZ6LWLJQDPJAjyyOYAcXt%2Bo3CJ0ZpgtOT8n1Bmoqh6jBcuBF1HisAcH%2BkDVDeUEGoQqaYj29kfYGT%2Bla7JPalAzYzGvgRvXI0tYY0F0Qoe3ubGtTTa8ZWxrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ecb803b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/3590.a08c1cd7.js
172.67.71.219200 OK 50 kB URL HTTP/2 1win-cdn.com/js/3590.a08c1cd7.js
IP 172.67.71.219:0
File type Unicode text, UTF-8 text, with very long lines (44887), with no line terminators
Hash 9d6474371ab20a7ad2f02eca0c98ff52
b6bc84e15a302605488584de98513366fe136542
bb1c5f0c516c42afe743ada9130b645cf57224f43aa8bd724e142f916034ad6a
GET /js/3590.a08c1cd7.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=44931
access-control-allow-origin: *
etag: W/"63cfb99e-af83"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 24 Jan 2023 10:57:34 GMT
cf-cache-status: HIT
age: 353576
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xSxbM%2F5jaAAgYXn25a%2BJ175QJ1fz7bTcMBkJbIyP5NvTJWirJL8Wsc99YhhNNFW5w4Eu566u%2FUM9E3ooJHKzvqWaxtlYB%2Bh8qMnu9ET55bg8DVil1Ja%2B%2F53qNaHafw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ecb808b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-roulette@2.25507485-256.webp
172.67.71.219200 OK 720 kB URL HTTP/2 1win-cdn.com/img/sprite-roulette@2.25507485-256.webp
IP 172.67.71.219:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 720 kB (719644 bytes)
Hash 344d71695bd0f387fedd84fba6ace2c1
1d37e2d66ab1098072febc0a0dc3769d44090048
7775854f4b641fa2c9f954c79de9d4bd51ffea8b9bc74d8e01768718cc438003
GET /img/sprite-roulette@2.25507485-256.webp HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/webp
content-length: 719644
last-modified: Fri, 27 Jan 2023 09:15:36 GMT
etag: "63d39638-afb1c"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: HIT
age: 55
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lhYdEaw47AnCRf76H0A7dcjYV9XOpesH75n5P2nqq%2FpI3fmmNnabN%2BtdiQ%2B6rLHc%2B8PoVWPrywQlc0CXzOpjBG%2BS1dclt3E%2FCD7owtGXo01zh89tCszAeGch%2BuGnBg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ed088ab4f3-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/pwa_ios_en.f08ddb1e-690.png
172.67.71.219200 OK 39 kB URL HTTP/2 1win-cdn.com/img/pwa_ios_en.f08ddb1e-690.png
IP 172.67.71.219:0
File type PNG image data, 690 x 450, 8-bit colormap, non-interlaced\012- data
Hash 2b063a8e2fb87b84cbf377d7a7fd389e
5c12f02ca086902c7fd9a5bd5de9eabce82c22a1
aa8f787e4db589a38a5c5a56bdb03f69329bfedc64649454f9fd370b78820b49
GET /img/pwa_ios_en.f08ddb1e-690.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/png
content-length: 39066
last-modified: Thu, 22 Dec 2022 11:20:11 GMT
etag: "63a43d6b-989a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3202257
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qc3CuLplTU1IOa%2BpN2nocM%2BP46jkjt5Sbre7OmFU8Uo5DV7X6%2FNRQLgLnWulrbE5csvIvyaxrrX367nb3M%2BNGNrsLqKKujbe2ztyssttK4GEVhFxRzMA1zXcBU2C5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ed4905b4f3-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-poker@2.a38733e7-256.webp
172.67.71.219200 OK 361 kB URL HTTP/2 1win-cdn.com/img/sprite-poker@2.a38733e7-256.webp
IP 172.67.71.219:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 361 kB (360930 bytes)
Hash 3da44652926631bc4fc847cfcbad6c71
a5f7955272162e543d5db897e200d00d3af22b22
354fe37cee669fe141e1e1dcb3b5a12df1ff2b9b34be38b4f2e20dd46fdb7d2a
GET /img/sprite-poker@2.a38733e7-256.webp HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/webp
content-length: 360930
last-modified: Fri, 27 Jan 2023 09:15:36 GMT
etag: "63d39638-581e2"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: HIT
age: 55
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p8qvIlEaRX0MXb9Vs%2F8dpHthECd2VO0D280nPQi7%2FrKRTZQ7avMzJNvFoYM1dMBaMm0FY20kT9UQX2tK72qRUc5LpyGb0Kn78iJKuXyxm%2FQlcR88oodMRm0gwBa2Gg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ed0897b4f3-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-dice@2.6e1ac0ed-256.webp
172.67.71.219200 OK 430 kB URL HTTP/2 1win-cdn.com/img/sprite-dice@2.6e1ac0ed-256.webp
IP 172.67.71.219:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 430 kB (429680 bytes)
Hash abaa6833958bdc5427e6fa573cbfa70a
d43989916cc382e4e3d983933d9cd52a7d1dbeb2
51ba8ea694483e38020360731af53be7cd411671786008119b70b2a320e3bd92
GET /img/sprite-dice@2.6e1ac0ed-256.webp HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/webp
content-length: 429680
last-modified: Fri, 27 Jan 2023 09:15:36 GMT
etag: "63d39638-68e70"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: HIT
age: 55
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kSz4xgOgr2fwE77LtvXJ%2FnDIwuC7N6525fkAbIUrY4rRby8QSMwEKWz4XTlWem%2BEQRB3IBQbCsFo7L0I02S6RbWRgQTE5HPCLs47ekOhyX4M1OFja6HpJViQj%2BVZVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ed088db4f3-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6050
Expires: Sat, 28 Jan 2023 14:57:27 GMT
Date: Sat, 28 Jan 2023 13:16:37 GMT
Connection: keep-alive
1win-cdn.com/js/icons-pack-payment-full.6272cc58.js
172.67.71.219200 OK 23 kB URL HTTP/2 1win-cdn.com/js/icons-pack-payment-full.6272cc58.js
IP 172.67.71.219:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3f7fc29f603b84fb6632dda7b64c4703
fe5046b91ad91739440ae0978e0600f852c181d1
61cf1ffd843a74949a9f5bd14cf60979983871e8f5625480b5f8c9eb5b2659eb
GET /js/icons-pack-payment-full.6272cc58.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=112398
access-control-allow-origin: *
etag: W/"63c7c775-1b70e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
cf-cache-status: HIT
age: 807053
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7KurauejYKCrxUU0P%2FXliAYLeGXz3iZDprP6zjcPEMCQOKBzfocu4VlL5EnqMR2qbmUrbmcWX9gsktbZNgFzIeQpPZKQpLKuq1ysjbzLG3cYIBDPonE7px9yTljbFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ecf85bb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6050
Expires: Sat, 28 Jan 2023 14:57:27 GMT
Date: Sat, 28 Jan 2023 13:16:37 GMT
Connection: keep-alive
1win-cdn.com/js/icons-pack-social.11d06b0b.js
172.67.71.219200 OK 6.6 kB URL HTTP/2 1win-cdn.com/js/icons-pack-social.11d06b0b.js
IP 172.67.71.219:0
File type ASCII text, with very long lines (20091), with no line terminators
Hash 608d2ab4441ae5a8e6e6a37ad1998743
1594497079444aa5a54232dcd4a1542d5fad4565
6794e7d8182a52847917dd104cc567db6f2a545d5f6e356a8702c91cfbfc5162
GET /js/icons-pack-social.11d06b0b.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=20146
access-control-allow-origin: *
etag: W/"63a42a53-4eb2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3208486
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wzl%2F2Y5FSmPVvCb%2BgGDDcwq1%2Fm38W0ECRJl35%2FihHY5JhYzjQdX%2BKxKlKDeM7Q5hyEploCh%2BUxzmcWPMcuOUa6YUyj5ZRTzj2%2BJZpsddQxWBGb2pNm7pJH3zqK0qUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ede9edb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6050
Expires: Sat, 28 Jan 2023 14:57:27 GMT
Date: Sat, 28 Jan 2023 13:16:37 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddac8c39-e94f-40c1-bf35-4a70c575efbe.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddac8c39-e94f-40c1-bf35-4a70c575efbe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6a40be482a56db1e4d48ba4a8cf515ba
da9c7255d5840c025526c6c24354750d9ba3a4ef
fa0bfe56b97ce5cf450e4799db2fe6d5645553b71d1e2bd928df0278a81a33c8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddac8c39-e94f-40c1-bf35-4a70c575efbe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7819
x-amzn-requestid: b9c17e9a-8da5-4736-a8bc-ea430feaef8d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_diGfbIAMFX2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f0-695dd291002d9cc425df0edc;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Gf-xQLbrbbXCRM8Q720PrSNSrvoelOoNlqbKwfiZHNIKCD_59TARLQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:03:06 GMT
etag: "da9c7255d5840c025526c6c24354750d9ba3a4ef"
content-type: image/jpeg
age: 54811
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ea24bcba583bd8bd139559448a343e68
b9d37c2b14f890d41983a59f352e8f7caa9c94bb
e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: K9YWM9eaEc1DQ6wtEEuADnG1U-ahRBXDaiHIAm20dkWMOxPWBlJidw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:46:13 GMT
age: 52224
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:14:23 GMT
age: 54134
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57b73886cbbb719eda5f733c018eedfb
b84ed40973f8a0d3c10529e34f9466746cfdaf0c
4ba11c23e0bbd2aed53b04ad0b3d22161af1971ddcfb75ae55734de9a49af207
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7028
x-amzn-requestid: c1743fed-205a-431b-8648-474facde6d09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CwFtboAMF9rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-5b94864c707c42fc36fbc63a;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7LUa_R8g8Rlv7JJA0_okht-vGe-xBSyZ5TPJTFakAHlncQPZKEdULQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:48:58 GMT
age: 55659
etag: "b84ed40973f8a0d3c10529e34f9466746cfdaf0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 55191
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3237aa3-30cf-4312-861c-8d923987ed4b.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3237aa3-30cf-4312-861c-8d923987ed4b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 335cb821617fe98e993190c93c616f86
130b6f6d592f3ab052015656653a1b3ac259599d
ee90912b731ff31e52ccd404bf45ec6b6d3802247a29f9397eed153ab709df96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3237aa3-30cf-4312-861c-8d923987ed4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8569
x-amzn-requestid: d97c9436-5e2d-42a2-ad40-84c7776cdac3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_rVFA_oAMF-2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44648-03ff23d6072683a067472191;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:46:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: FuvSHsmeURS0TVrB-5IPYpmsovQh5OWzvsmlT2nzkDGfO2Q8gwP3Xw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:15:45 GMT
age: 54052
etag: "130b6f6d592f3ab052015656653a1b3ac259599d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b8a28769561cc9fa50343c20a31cb84d
0a7b5c9b25721a985f8278b5ff9b20985fbeaece
2d81b347b7679013552a3c43ff706768527f7a616c8a9edd5641907b7b2cba52
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2D81B347B7679013552A3C43FF706768527F7A616C8A9EDD5641907B7B2CBA52"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15462
Expires: Sat, 28 Jan 2023 17:34:19 GMT
Date: Sat, 28 Jan 2023 13:16:37 GMT
Connection: keep-alive
1win.direct/microservice/ask
134.122.54.186200 OK 2 B URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://1wswqf.top/
Origin: https://1wswqf.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-type: text/plain; charset=utf-8
date: Sat, 28 Jan 2023 13:16:37 GMT
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
set-cookie: core-sticky=f00e2df9a6729095; Path=/; HttpOnly
x-powered-by: Express
content-length: 2
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2 B URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://1wswqf.top/
Origin: https://1wswqf.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-type: text/plain; charset=utf-8
date: Sat, 28 Jan 2023 13:16:37 GMT
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
set-cookie: core-sticky=6ac2c5b3041d55b4; Path=/; HttpOnly
x-powered-by: Express
content-length: 2
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2 B URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://1wswqf.top/
Origin: https://1wswqf.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-type: text/plain; charset=utf-8
date: Sat, 28 Jan 2023 13:16:37 GMT
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
set-cookie: core-sticky=558a49684ab968eb; Path=/; HttpOnly
x-powered-by: Express
content-length: 2
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2 B URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://1wswqf.top/
Origin: https://1wswqf.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-type: text/plain; charset=utf-8
date: Sat, 28 Jan 2023 13:16:37 GMT
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
set-cookie: core-sticky=d7c6494501d2f0b6; Path=/; HttpOnly
x-powered-by: Express
content-length: 2
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-deposit.png@avif
190.115.24.75200 OK 4.3 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-deposit.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 22a160f55908549771f823852d5eaeea
267d86356fc72824681f08d9fd1207b77530c08d
bb19dc50ecc9dd60ce8760b73843ce465df86b78a76de6a924c813fc770a2f23
GET /unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-deposit.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/avif
content-length: 4323
cache-control: max-age=604800, public
content-disposition: inline; filename="bonus-banner-deposit.avif"
etag: "afr-jhlkuoDx_XrwjiuFbkzj6HdVsjvDmAeQvV8BbYs/RIjYxYTRlY2UwLTU0YWIyIg"
expires: Thu, 02 Feb 2023 09:59:19 GMT
x-request-id: k_UiPjjC7eUn-KF9U943Q
x-cache-status: HIT
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 16 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 2188f7e8f01095f7779daff21a9fbcd3
c49c593b4bc8d7b108db99d961333da27bf6a3b9
c703b4a57e98c5744bfbeb661ca3c23000ca2c7e2e36327f70f5c7eb9b2721a9
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 67
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Sat, 28 Jan 2023 13:16:37 GMT
etag: W/"3ef7-xJxZO0vI17EI25nZYTM9onv2o7k"
set-cookie: core-sticky=780879a3a57fb48e; Path=/; HttpOnly
x-powered-by: Express
content-length: 16119
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 3.4 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with very long lines (17749), with no line terminators
Hash b1da0f55def6bae6eca720e54c5b8a1d
206692db7f4b3e76399da513e790f6fa7b18633b
2fbed773e4d7a4e04c956ed38b8f2f667b452cb4b6add9df05e91463314c5af5
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 88
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Sat, 28 Jan 2023 13:16:37 GMT
etag: W/"d22-IGaS239LPnY5naUT55D2+nsYYzs"
set-cookie: core-sticky=ea0755b956748598; Path=/; HttpOnly
x-powered-by: Express
content-length: 3362
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-cashback-casino.png@avif
190.115.24.75200 OK 7.9 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-cashback-casino.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash f86f39dc44e8f92cc5658a394e833352
54093f2e69f448e122e771ec7c63d3cce35ffbdf
3fded209043aa6ec28cdff6321cff18c41238215a062dc02fab1af3915c637fe
GET /unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-cashback-casino.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/avif
content-length: 7940
cache-control: max-age=604800, public
content-disposition: inline; filename="bonus-banner-cashback-casino.avif"
etag: "afr-jhlkuoDx_XrwjiuFbkzj6HdVsjvDmAeQvV8BbYs/RIjYxYTRlY2U4LTYzNWI4Ig"
expires: Thu, 02 Feb 2023 09:59:18 GMT
x-request-id: uzFsF7HGLMtmmodlVn6LF
x-cache-status: HIT
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 92 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash 748a3bd240c95506788abcd69139ee94
ac16702b140f986499cb147bfea04d09607b62ec
268aaed0d126e4cb6a4fd8696f51a64982d97c7f20b1fc8e2bdcc8dfa4ba0551
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 85
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Sat, 28 Jan 2023 13:16:37 GMT
etag: W/"16691-rBZwKxQPmGSZyxR7/qBNCWB7Yuw"
set-cookie: core-sticky=ee2385ecc1a0eb94; Path=/; HttpOnly
x-powered-by: Express
content-length: 91793
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2.7 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (44409), with no line terminators
Hash 7be14b8a0b056b592a9fc8609eccba2f
5859d8a0e197392c235d966b55dc3567d8f40b4b
8361320771b60ab6963dee173dc1ef498ba42fabf121345156f61388f743521e
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 71
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Sat, 28 Jan 2023 13:16:37 GMT
etag: W/"ab5-WFnYoOGXOSwjXZZrVdw1Z9j0C0s"
set-cookie: core-sticky=3b2809a6d6e818d4; Path=/; HttpOnly
x-powered-by: Express
content-length: 2741
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 3.4 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with very long lines (17749), with no line terminators
Hash b1da0f55def6bae6eca720e54c5b8a1d
206692db7f4b3e76399da513e790f6fa7b18633b
2fbed773e4d7a4e04c956ed38b8f2f667b452cb4b6add9df05e91463314c5af5
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 101
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Sat, 28 Jan 2023 13:16:39 GMT
etag: W/"d22-IGaS239LPnY5naUT55D2+nsYYzs"
set-cookie: core-sticky=6ac2c5b3041d55b4; Path=/; HttpOnly
x-powered-by: Express
content-length: 3362
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2.7 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (44409), with no line terminators
Hash 7be14b8a0b056b592a9fc8609eccba2f
5859d8a0e197392c235d966b55dc3567d8f40b4b
8361320771b60ab6963dee173dc1ef498ba42fabf121345156f61388f743521e
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 71
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Sat, 28 Jan 2023 13:16:39 GMT
etag: W/"ab5-WFnYoOGXOSwjXZZrVdw1Z9j0C0s"
set-cookie: core-sticky=51bb0d365f2cc9d6; Path=/; HttpOnly
x-powered-by: Express
content-length: 2741
X-Firefox-Spdy: h2
1win-cdn.com/common/banners/all-v2?lang=en&type=desktop&bannersType=main&localeId=1
172.67.71.219200 OK 111 kB URL HTTP/2 1win-cdn.com/common/banners/all-v2?lang=en&type=desktop&bannersType=main&localeId=1
IP 172.67.71.219:0
File type JSON data\012- , ASCII text, with very long lines (3086), with no line terminators
Size 111 kB (110861 bytes)
Hash 9178f62b39ef04bef6ffc551aff9c55e
ca3b6d2ce3cd1b9fe58eeeb052c02d8ac7be0797
ebf7f6b6c2834c9aded89aa8338afd19be49ddb7f4a9e3f0bb34a7dcff0fffa1
GET /common/banners/all-v2?lang=en&type=desktop&bannersType=main&localeId=1 HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://1wswqf.top
vary: Origin
x-frame-options: DENY
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f38mf%2FPscMSfyyHTPCGDOzekqa5eA4hB80G3NzM8h%2FL%2BHbsOLLQsj9Hx%2BfveDiWjmaFQUThwoKUFJ5cie4nXrFKY3Mwov6SJNHtyfb%2F2pZ0TrRMjGzwoS%2FTMk%2FdOcg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790a00edeb4db518-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 16 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 2188f7e8f01095f7779daff21a9fbcd3
c49c593b4bc8d7b108db99d961333da27bf6a3b9
c703b4a57e98c5744bfbeb661ca3c23000ca2c7e2e36327f70f5c7eb9b2721a9
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 80
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Sat, 28 Jan 2023 13:16:39 GMT
etag: W/"3ef7-xJxZO0vI17EI25nZYTM9onv2o7k"
set-cookie: core-sticky=d9ff2d6049763a8f; Path=/; HttpOnly
x-powered-by: Express
content-length: 16119
X-Firefox-Spdy: h2
1win-cdn.com/img/emoji-soccer.1a6d4eca-160.png
172.67.71.219200 OK 7.9 kB URL HTTP/2 1win-cdn.com/img/emoji-soccer.1a6d4eca-160.png
IP 172.67.71.219:0
File type PNG image data, 160 x 160, 8-bit colormap, non-interlaced\012- data
Hash 531c59f255f2998443131a8503a6244e
5288df4ace6d3e89a393af2b58c1e6c38a0042a8
575412b54e344b5f40a21bb5b799f0430919cfb4ba807f9832c040e13711dc8e
GET /img/emoji-soccer.1a6d4eca-160.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/png
content-length: 7896
last-modified: Wed, 21 Dec 2022 11:04:29 GMT
etag: "63a2e83d-1ed8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3276518
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sKnSbq3eW4tkZZ3VU6ZXLHmZtMCrviSUBt7s4S7IgBnlTy9TaHFcaUteReHSE1wVKnO3KM6WetU9n9sbRnpkd8Q9VGWI3db7dE%2BMnIOQOszsT2TDn7Z45Atw7P7k5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fb8fdab4f3-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/emoji-slots.1c6e965b-160.png
172.67.71.219200 OK 9.0 kB URL HTTP/2 1win-cdn.com/img/emoji-slots.1c6e965b-160.png
IP 172.67.71.219:0
File type PNG image data, 160 x 160, 8-bit colormap, non-interlaced\012- data
Hash 1dc08d167f60360991bc58d8b3573355
55d11fb2d5a5b46b6ad68e8cfc40d59d4a434700
f2fc8f2712717b32157f7741b1c723d6fe1d430c41652cfafd39c68980db20bd
GET /img/emoji-slots.1c6e965b-160.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/png
content-length: 8977
last-modified: Wed, 21 Dec 2022 11:04:29 GMT
etag: "63a2e83d-2311"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3276518
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UlH8pznC52R6x%2BXAW5C8iMCpvsvjVfbyCQCuvlq3Og%2FMeehOGH%2B4WXkBVj2UgpA2Ct5GmxwE8L9DzKPP3DlMwJZCRCq9vP7HPZyWuhdXnpcnwDj1%2BrT0wpIfMLAT9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fb8ff0b4f3-OSL
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/5b4ab347-f37c-44e4-93e6-2c1c0efa069e.jpg@avif
190.115.24.75200 OK 5.3 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/5b4ab347-f37c-44e4-93e6-2c1c0efa069e.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 76a502c1036d076e2317739f0cc878d8
480303b6e1e68b1d04e998d9bcd26224429db376
e377abb67003f9b87b6c67e87b9814b99bb3c1de68f286546d9af4e6d6377351
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/5b4ab347-f37c-44e4-93e6-2c1c0efa069e.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/avif
content-length: 5302
cache-control: max-age=604800, public
content-disposition: inline; filename="5b4ab347-f37c-44e4-93e6-2c1c0efa069e.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzOTM2OTc5LTJiMmQxIg"
expires: Thu, 02 Feb 2023 09:59:10 GMT
x-request-id: hS5nFRN0pTfRoKGm08TCF
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/576a0d3a-0df0-4a5b-ac90-7e9f2ab73407.png@avif
190.115.24.75200 OK 4.3 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/576a0d3a-0df0-4a5b-ac90-7e9f2ab73407.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash d5f05284c21b7798248cd9fa99bfd299
bf9b3b55c3aa5508d51c2935e6494a6f91fb21b9
85a15ca1b3ad7e7569214ac1e02596a70b806eccd8ebf2b9fb079ca53986a0d4
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/576a0d3a-0df0-4a5b-ac90-7e9f2ab73407.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/avif
content-length: 4304
cache-control: max-age=604800, public
content-disposition: inline; filename="576a0d3a-0df0-4a5b-ac90-7e9f2ab73407.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzOTM2OTZmLTIwOWY5Ig"
expires: Thu, 02 Feb 2023 09:59:11 GMT
x-request-id: qdWArseWFiQPH7191DrZi
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/81c5273a-ebb1-47f6-8535-6376c353ea74.png@avif
190.115.24.75200 OK 3.6 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/81c5273a-ebb1-47f6-8535-6376c353ea74.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 38274844df1004bd9a0e2ebaa78fc880
ef316b9b62257b1e930eb064f30c1baecd86f2b9
5d128fbc4ca805ffd77a5d0c93ed6c15e548157d1b6a68b16c2849a98799a6a6
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/81c5273a-ebb1-47f6-8535-6376c353ea74.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/avif
content-length: 3601
cache-control: max-age=604800, public
content-disposition: inline; filename="81c5273a-ebb1-47f6-8535-6376c353ea74.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzOTM2OTc1LTY1Njk0Ig"
expires: Thu, 02 Feb 2023 09:59:15 GMT
x-request-id: 3_3K_XaC4gvPsdkGmWl7c
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/f736e1ff-fdf7-40e5-93b5-2daa1b472e4d.png@avif
190.115.24.75200 OK 3.3 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/f736e1ff-fdf7-40e5-93b5-2daa1b472e4d.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash bbb2a9093140015e4ebcb4b1ade5b171
dc35c677bb7d9b9e222f93e844793afc4fc06b2a
769a8489bc32f748e268b35024e9726719ef2a65d32665b0a5a54ca6d28789d9
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/f736e1ff-fdf7-40e5-93b5-2daa1b472e4d.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/avif
content-length: 3255
cache-control: max-age=604800, public
content-disposition: inline; filename="f736e1ff-fdf7-40e5-93b5-2daa1b472e4d.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzOTM2OThiLTFiYzYyIg"
expires: Thu, 02 Feb 2023 09:59:15 GMT
x-request-id: yhDgjau2hqJoacHHecauB
x-cache-status: HIT
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
93.158.134.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 28 Jan 2023 13:16:39 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Sat, 28 Jan 2023 14:16:39 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/92006234?wmode=7&page-url=https%3A%2F%2F1wswqf.top%2Fbets%2Fhome%3Fopen%3Dregister&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A785%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1670025063058%3Ahid%3A390051701%3Az%3A0%3Ai%3A20230128131639%3Aet%3A1674911800%3Ac%3A1%3Arn%3A581191996%3Arqn%3A1%3Au%3A1674911800563109915%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A18%2C143%2C107%2C0%2C368%2C0%2C%2C119%2C1%2C%2C%2C%2C1062%3Aco%3A0%3Ans%3A1674911797350%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674911800%3At%3A1win%20-%20Loading&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
93.158.134.119302 Found 407 B URL HTTP/2 mc.yandex.ru/watch/92006234?wmode=7&page-url=https%3A%2F%2F1wswqf.top%2Fbets%2Fhome%3Fopen%3Dregister&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A785%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1670025063058%3Ahid%3A390051701%3Az%3A0%3Ai%3A20230128131639%3Aet%3A1674911800%3Ac%3A1%3Arn%3A581191996%3Arqn%3A1%3Au%3A1674911800563109915%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A18%2C143%2C107%2C0%2C368%2C0%2C%2C119%2C1%2C%2C%2C%2C1062%3Aco%3A0%3Ans%3A1674911797350%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674911800%3At%3A1win%20-%20Loading&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 93.158.134.119:0
File type JSON data\012- , ASCII text, with very long lines (407), with no line terminators
Hash caddf3dd43d983e21a7abc1751f02ba4
637bfb05b2ab10094ca5a7e67b44c6bf0175c0b0
7792026b4c85a0e7f27890640e0ee434065118d4660263c37b18704cd41f3b1b
GET /watch/92006234?wmode=7&page-url=https%3A%2F%2F1wswqf.top%2Fbets%2Fhome%3Fopen%3Dregister&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A785%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1670025063058%3Ahid%3A390051701%3Az%3A0%3Ai%3A20230128131639%3Aet%3A1674911800%3Ac%3A1%3Arn%3A581191996%3Arqn%3A1%3Au%3A1674911800563109915%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A18%2C143%2C107%2C0%2C368%2C0%2C%2C119%2C1%2C%2C%2C%2C1062%3Aco%3A0%3Ans%3A1674911797350%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674911800%3At%3A1win%20-%20Loading&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 302 Found
location: /watch/92006234/1?wmode=7&page-url=https%3A%2F%2F1wswqf.top%2Fbets%2Fhome%3Fopen%3Dregister&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A785%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1670025063058%3Ahid%3A390051701%3Az%3A0%3Ai%3A20230128131639%3Aet%3A1674911800%3Ac%3A1%3Arn%3A581191996%3Arqn%3A1%3Au%3A1674911800563109915%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A18%2C143%2C107%2C0%2C368%2C0%2C%2C119%2C1%2C%2C%2C%2C1062%3Aco%3A0%3Ans%3A1674911797350%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1674911800%3At%3A1win%20-%20Loading&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Sat, 28 Jan 2023 13:16:38 GMT
access-control-allow-origin: https://1wswqf.top
set-cookie: yabs-sid=914894101674911798; Path=/; SameSite=None; Secure
i=oMK6nCyBVb84lYaH7Z6KcTuT5wi9/cyrjeaN+kNUREbEuu3E9HvTxO+f79lubjAlw9mdXm8s2Wl8T3O77V2BhLdZPuc=; Expires=Tue, 25-Jan-2033 13:16:37 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=6456002821674911798; Expires=Sun, 28-Jan-2024 13:16:38 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=6456002821674911798; Expires=Sun, 28-Jan-2024 13:16:38 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1706447798.yc.1674911798#1706447798.yrts.1674911798#1706447798.yrtsi.1674911798; Expires=Sun, 28-Jan-2024 13:16:38 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 28-Jan-2023 13:16:38 GMT
last-modified: Sat, 28-Jan-2023 13:16:38 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
1win-cdn.com/img/cashback.12a56595.svg
172.67.71.219200 OK 1.0 kB URL HTTP/2 1win-cdn.com/img/cashback.12a56595.svg
IP 172.67.71.219:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2025)
Hash c7b794987aaeec2e7e91de27bf53a284
48b78ff41a0b96a97c6bff24640a8d663e104765
8f31c80d28707bba6c3556fe42d00fcc780fa5dad60bc787f73343497e946c98
GET /img/cashback.12a56595.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-851"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206589
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7KrMOrMpTLX5uzveveJIoQbeGeGG8bmcNqa6Y0%2F2WtW48%2FnKLdyUPYcQmqCIieFRfGbiJuD7rRbqrzqzJoS9Bb0zae65VCeNVsUml3L7bvHlr%2Bgiyeg4W3s9Jc3tXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fb8ff6b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/9dd18146-c273-48b4-ab55-70c3042a3f64.png@avif
190.115.24.75200 OK 5.8 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/9dd18146-c273-48b4-ab55-70c3042a3f64.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 8b9dae655791a2c093c33da8a8f41277
c564561f1f54aa7ce97a26a5c0d869fd05ba59da
179311580e45d0faa648f3673f12b5cb2235d2a367c4864febdc818f3a5d27fe
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/9dd18146-c273-48b4-ab55-70c3042a3f64.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/avif
content-length: 5759
cache-control: max-age=604800, public
content-disposition: inline; filename="9dd18146-c273-48b4-ab55-70c3042a3f64.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzOTM2OTU5LTJhM2VmIg"
expires: Thu, 02 Feb 2023 09:59:12 GMT
x-request-id: 1b79iucWvgm-kD0B9wRn0
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/1983b5c6-aeba-424f-b790-01d500023607.jpg@avif
190.115.24.75200 OK 7.6 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/1983b5c6-aeba-424f-b790-01d500023607.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash d437b0757b3d3be3c19c87919a3aa1d2
32a477ee6439bab8e93e3f47c949000a2c6270dd
0cf00b44bd1b346f12c6b46e7316669113d0c2cd43e752c5a06ae4990d78d9a8
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/1983b5c6-aeba-424f-b790-01d500023607.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/avif
content-length: 7591
cache-control: max-age=604800, public
content-disposition: inline; filename="1983b5c6-aeba-424f-b790-01d500023607.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzOTczNDEyLTIxMzk1Ig"
expires: Thu, 02 Feb 2023 10:09:25 GMT
x-request-id: 7FZkIHauUdzQArQbJb8jG
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/relax/c_102de4b840e0b3d43ec219886af06871.png@avif
190.115.24.75200 OK 7.4 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/relax/c_102de4b840e0b3d43ec219886af06871.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 44d6d73bffea52fdb89dbce90b12ed68
3e2feb53775a9b247958092366956ec10ac06b3f
3249942415e96d6fb3c5099b69b378f556f3bbc1cd3e674e6c87311177a4fa10
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/relax/c_102de4b840e0b3d43ec219886af06871.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/avif
content-length: 7415
cache-control: max-age=604800, public
content-disposition: inline; filename="c_102de4b840e0b3d43ec219886af06871.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYyOWEwODM4LTY4MzFjIg"
expires: Thu, 02 Feb 2023 10:05:28 GMT
x-request-id: BzPlnfcoMMob-lFMDxjbf
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/bgaming/194f01dc-eaa3-4379-831d-5a792c1eca57.png@avif
190.115.24.75200 OK 8.9 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/bgaming/194f01dc-eaa3-4379-831d-5a792c1eca57.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 17026de42f18fb450b84240abe77801b
aac5ef93d090c0f7711e949da60170ceeb09e291
954db7309a3f64c0f1784e7a72542a54a4216f182ea865080ad6efbaa71414e0
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/bgaming/194f01dc-eaa3-4379-831d-5a792c1eca57.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/avif
content-length: 8870
cache-control: max-age=604800, public
content-disposition: inline; filename="194f01dc-eaa3-4379-831d-5a792c1eca57.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzYzkwNDMzLTY0MWJhIg"
expires: Thu, 02 Feb 2023 08:50:36 GMT
x-request-id: XaEAK-kY2gZKSLFgjEWKA
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/evoplay/c_629b5b7ecad77eca213957740c0ac78c.jpg@avif
190.115.24.75200 OK 5.0 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/evoplay/c_629b5b7ecad77eca213957740c0ac78c.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 3076cecb5519fe3ab82562ba350f69b5
cc77dcda234ae49c57fd0534ebddaf1b1fb9fe82
5ee40b48c9b99199aa92cb5c9832626d77f5ba97a362ff617fcc12f94017f9a1
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/evoplay/c_629b5b7ecad77eca213957740c0ac78c.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/avif
content-length: 5026
cache-control: max-age=604800, public
content-disposition: inline; filename="c_629b5b7ecad77eca213957740c0ac78c.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjVmODQ0YWFmLTRmNjQi"
expires: Thu, 02 Feb 2023 10:04:25 GMT
x-request-id: oMLdXJ5uFDVAqqILg_OdH
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/spinomenal/e8c6ec93-32f6-423b-b5e0-574778b0383e.jpg@avif
190.115.24.75200 OK 17 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/spinomenal/e8c6ec93-32f6-423b-b5e0-574778b0383e.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 10efcdb8a9e6e4d6e26335cb5f6f22e5
6dea345a0cbd5d7a467315dd9ebb48949e761b60
6ac02eb9d12d1a9b448180af552bed3ed48b749345c0979ad991650f81c063ce
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/spinomenal/e8c6ec93-32f6-423b-b5e0-574778b0383e.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/avif
content-length: 17157
cache-control: max-age=604800, public
content-disposition: inline; filename="e8c6ec93-32f6-423b-b5e0-574778b0383e.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzNjNiNWM4LTE0ODkzIg"
expires: Thu, 02 Feb 2023 10:05:16 GMT
x-request-id: KL7T5SHGdCoCVOyCw9Vca
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/infingames/5cc068cf-9d52-4102-9f28-66395a65c931.png@avif
190.115.24.75200 OK 8.5 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/infingames/5cc068cf-9d52-4102-9f28-66395a65c931.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 67a53ed7251c92f5ea42d77beae82de5
9110e976e79310157443eac3ae7329b4ebc6d716
527ab81f140771168d3e0d7401d3a75dcd3aa9a9341529b2cd066f105ef01879
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/infingames/5cc068cf-9d52-4102-9f28-66395a65c931.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/avif
content-length: 8467
cache-control: max-age=604800, public
content-disposition: inline; filename="5cc068cf-9d52-4102-9f28-66395a65c931.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzYTk5ODk5LTE3NzA3Ig"
expires: Mon, 30 Jan 2023 12:53:00 GMT
x-request-id: M55yKr0DaOUP7c5_YVuHS
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/02afd62b-235b-4d6b-ad9c-58457d5b4b5d.jpg@avif
190.115.24.75200 OK 4.5 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/02afd62b-235b-4d6b-ad9c-58457d5b4b5d.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 485b06f67fd25afaea1ab08a605e830c
5adb1ff31fd9a405ab2ddb9a6ec1b3155ca3c9b5
7ebd2ded354fa906d7dea21ee2bb392051524a2f05760986f27271323c3430d1
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/02afd62b-235b-4d6b-ad9c-58457d5b4b5d.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/avif
content-length: 4529
cache-control: max-age=604800, public
content-disposition: inline; filename="02afd62b-235b-4d6b-ad9c-58457d5b4b5d.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzY2ZjY2VmLWJiOTAi"
expires: Tue, 31 Jan 2023 12:22:29 GMT
x-request-id: w225OA76XNK_lGesHFlS2
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/26b06924-2e59-423a-b6ef-9bd9c97f41ae.jpg@avif
190.115.24.75200 OK 5.7 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/26b06924-2e59-423a-b6ef-9bd9c97f41ae.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash d43bad364c5a03c96a9609f5817e6150
15772d42d72303f27a057a208ffa73a5e2cd79c5
fc301e54c3cfd5b3a1ae24e06ce4df85391d488199b163e44fe653027fc014e4
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/26b06924-2e59-423a-b6ef-9bd9c97f41ae.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/avif
content-length: 5690
cache-control: max-age=604800, public
content-disposition: inline; filename="26b06924-2e59-423a-b6ef-9bd9c97f41ae.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzMDc2Zjg5LTEyZjkwIg"
expires: Thu, 02 Feb 2023 09:59:43 GMT
x-request-id: TX1K5cWHXpyP0FUMhzS8Y
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/0e2d11b9-786d-4e45-8265-542c38fc3575.jpg@avif
190.115.24.75200 OK 17 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/0e2d11b9-786d-4e45-8265-542c38fc3575.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 151bc0973a888c1c3abed902f5e7d9af
5e3e6c76c81b2891ce6d8001a6cd73b267e6bd66
e7ca152be70af106f7ab79894d653efb6cfe72050652b42883d3878f2783fccd
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/0e2d11b9-786d-4e45-8265-542c38fc3575.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/avif
content-length: 16569
cache-control: max-age=604800, public
content-disposition: inline; filename="0e2d11b9-786d-4e45-8265-542c38fc3575.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzNjNiNTQ5LTE5MzM1Ig"
expires: Thu, 02 Feb 2023 09:59:43 GMT
x-request-id: 3MmKYbEFmWODH2mc1Ry8Q
x-cache-status: HIT
X-Firefox-Spdy: h2
1win-cdn.com/img/bf%20games.a530d147.svg
172.67.71.219200 OK 11 kB URL HTTP/2 1win-cdn.com/img/bf%20games.a530d147.svg
IP 172.67.71.219:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 8c7c35a1826bdfa69a226169bb767327
67ce2f24f7128f12039dee2f0d2ed8e2dc766fe4
29305d8aadc6c686275cf5db659660855f7c22282db145647a80f1da69f6b871
GET /img/bf%20games.a530d147.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1374"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206589
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7JPAOu%2FAeSSTThAXglPQPk9ux5qcJHKzG6reap%2BtOhKEBF%2BNp2WMTPDMlwfOuBYqlMboSK%2FcM9bDA0A0x20an5DN0il0oYQYQNr3J%2B5h8FcrCic4KDzv0cP7XBY4HA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd3bb4b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/infingames/eb768ea8-8c0f-4c1d-a465-b8273ca51b7b.png@avif
190.115.24.75200 OK 7.2 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/infingames/eb768ea8-8c0f-4c1d-a465-b8273ca51b7b.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 346cd8e0efd877ab4b3be5e25dcccf98
e9b425456024f04cd54718964de4460a030ece5b
24c523648df2f1021c092a6a6e217f892a6192c3828d71af9ff2177ae77a8cff
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/infingames/eb768ea8-8c0f-4c1d-a465-b8273ca51b7b.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/avif
content-length: 7168
cache-control: max-age=604800, public
content-disposition: inline; filename="eb768ea8-8c0f-4c1d-a465-b8273ca51b7b.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzNWZlNTkzLTU2ZTRhIg"
expires: Thu, 02 Feb 2023 09:59:55 GMT
x-request-id: H1Z6wD1jtNxW1mPqoxQDi
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/cat_wilde_doom_of_dead.jpg@avif
190.115.24.75200 OK 9.4 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/cat_wilde_doom_of_dead.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 76dbfbe5cdd074e629e319a5d6b3dddb
6ffd4956326fc530e89fdfc5c5708d25cb9617ec
38bbf2f26820df3af512990110e926a7fd0c95dbbd203edad95562aafd75e9c6
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/cat_wilde_doom_of_dead.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/avif
content-length: 9367
cache-control: max-age=604800, public
content-disposition: inline; filename="cat_wilde_doom_of_dead.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjVmZDg5ZjBjLTI3Mzc5Ig"
expires: Sat, 04 Feb 2023 01:30:02 GMT
x-request-id: LGSuP5PoWS0qM3nJ8dU3I
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/endorphina/c_a7a3a6c91c477defb558aaaa3474f556.png@avif
190.115.24.75200 OK 6.1 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/endorphina/c_a7a3a6c91c477defb558aaaa3474f556.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 04d165298871006dd1c85a662edc6e9b
1d0fad43e67f4214254105720a43d5af5ab61f83
b292c081556ad9a860ee6c5295992c7e792a08e4f35fcb05e7dedbc7c13b9d39
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/endorphina/c_a7a3a6c91c477defb558aaaa3474f556.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/avif
content-length: 6126
cache-control: max-age=604800, public
content-disposition: inline; filename="c_a7a3a6c91c477defb558aaaa3474f556.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjVmODQ0MGU1LTNiYzEi"
expires: Thu, 02 Feb 2023 10:02:20 GMT
x-request-id: wFNKaLuuw6sLc2f7cwoYq
x-cache-status: HIT
X-Firefox-Spdy: h2
1win-cdn.com/img/bgaming.8e34f448.svg
172.67.71.219200 OK 7.6 kB URL HTTP/2 1win-cdn.com/img/bgaming.8e34f448.svg
IP 172.67.71.219:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (685)
Hash bcefaeeeb37e58b249a5559013d39995
805c4402c39272f527902423bd898cb2c017a4f7
dff8393ac172bd95ffef109e45a66b1b0f684e96f278f430963d1a580db65b57
GET /img/bgaming.8e34f448.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-41d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206589
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ac8%2FvjebkZK5D1Acr3FiRfkGvaxTj8oBNGvqlqhf8q9vPnF7bD2DF9HhCR092tI29ANxNpCqezY3ulZhSRB%2F35h73p6g64V6gnozO5Qg%2Fzp92rsM2bj%2F5PKi8Mxgfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd5be6b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/0454b4e5-60dc-489e-b56b-32a10b2c8515.jpg@avif
190.115.24.75200 OK 16 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/0454b4e5-60dc-489e-b56b-32a10b2c8515.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 8ec5cb671f5d77870c4aedcbdddf8fa1
076251b76aa32b66c0cec26a61c5a734055f1c8b
6b909f634726426df55659b111f2296bcfc59dd903b08e80c9b8cc3761d1b2b6
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/0454b4e5-60dc-489e-b56b-32a10b2c8515.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/avif
content-length: 15723
cache-control: max-age=604800, public
content-disposition: inline; filename="0454b4e5-60dc-489e-b56b-32a10b2c8515.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzNjNiNTZiLTE4NzgzIg"
expires: Thu, 02 Feb 2023 09:59:50 GMT
x-request-id: lVRDVswYW1yo4KNK2NMTF
x-cache-status: HIT
X-Firefox-Spdy: h2
1win-cdn.com/img/big%20time%20gaming.848cd084.svg
172.67.71.219200 OK 7.8 kB URL HTTP/2 1win-cdn.com/img/big%20time%20gaming.848cd084.svg
IP 172.67.71.219:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c9c48ad756d1ae818193cb44cf5c2495
baaec705e0d4451c2e23d58339f2e2615f351f4e
a79bc655d777a162e0625ad16964ed84811e50630c89e2e0071937c2fe805413
GET /img/big%20time%20gaming.848cd084.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-209a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206589
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xgGm2V7NkSwxreGGNnhsVRH3RuL60xd3kGwQDkT7pWDh3MDmXUxwnbYUDTnssqaZiDXl5YPtKWmND6ZAEFVIxvBjQJ1Se4D%2BNmsiHg80CF9IbZmbL72iKH3u1MMQVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd5be8b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/blackpudding.ab318dcd.svg
172.67.71.219200 OK 9.7 kB URL HTTP/2 1win-cdn.com/img/blackpudding.ab318dcd.svg
IP 172.67.71.219:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (695)
Hash 7e69b510995fb6f9f772cef1b1bd6ae5
3b87f90cf1ce56fb3e48f545d4207b3625a4b56d
c91c56b8267df01e72065ea8d94547d89482beafbd279fb5fd7f588f9847e374
GET /img/blackpudding.ab318dcd.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-141e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206589
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QxLOpChCJiDO%2FCC5P1vcgN%2Byz9Dy8eDIN%2BZKl8XDN4D%2BNaHNtdcCjeKpY4zpCXAhl0tuPyXirRcX%2Bq4lvqM6HSH3rePahZrsdp0VUR4t8OYM3vg7IqDX%2BWzBcG4Nsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd5be9b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/c_c8e904ac4dabe3818f06e49a09fdaac0.png@avif
190.115.24.75200 OK 9.4 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/c_c8e904ac4dabe3818f06e49a09fdaac0.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash a995261e906304939463e01e8d2209d0
37ba1a9417ce2730d73f53e18643421ec7b05dbd
7f07e25e2084c5d7e38ed047b1e8a11fc2276e23dc966a3dd659824fe5523de5
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/c_c8e904ac4dabe3818f06e49a09fdaac0.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/avif
content-length: 9379
cache-control: max-age=604800, public
content-disposition: inline; filename="c_c8e904ac4dabe3818f06e49a09fdaac0.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYyOGUyMTg2LTkwOTI4Ig"
expires: Thu, 02 Feb 2023 09:59:50 GMT
x-request-id: J8wKb_PLVkwdL47bQa2d8
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/mega_ball.jpg@avif
190.115.24.75200 OK 6.2 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/mega_ball.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash d3ee4a65591776350c544469f26808cb
f47d83a03d9f164948f9f84a4d5c862aa2533d36
ad8b75e81f84c682e478263a16335af1dfd6a9ae295d1829474531f33052a403
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/fundist/mega_ball.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/avif
content-length: 6153
cache-control: max-age=604800, public
content-disposition: inline; filename="mega_ball.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYyOWEwMzlmLTIzNjFlIg"
expires: Thu, 02 Feb 2023 09:59:50 GMT
x-request-id: JFHCBu-5HGFANdGL8yHrO
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/c_300da598258852b57b4ecd31843f80f9.png@avif
190.115.24.75200 OK 9.1 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/c_300da598258852b57b4ecd31843f80f9.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 6e6f32713b50df3ba50d41505175c63f
5547a296063359192cb4ef07b5519bcc16cb447e
04a0454bd3d732c13f6e1e77d7565181c79366d5ec1c949b51f54cf58ce66f3d
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pragmatic/c_300da598258852b57b4ecd31843f80f9.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/avif
content-length: 9050
cache-control: max-age=604800, public
content-disposition: inline; filename="c_300da598258852b57b4ecd31843f80f9.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYyOGUyMTY1LTg3NjIxIg"
expires: Thu, 02 Feb 2023 09:59:51 GMT
x-request-id: MI6nR4_fmtm2LxIQ6Zx1i
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pariplay/c_2904702a8791aed55834406566576246.png@avif
190.115.24.75200 OK 5.9 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pariplay/c_2904702a8791aed55834406566576246.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash f754e2c011ffd1df13a4d8e3269adc4d
4a78b5089ca094024092c26d80ddca7527735642
7e7584a7a6424668f15a4808a76bfd85160b9d5c2f540b1c4d07b9baeb0f2495
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/pariplay/c_2904702a8791aed55834406566576246.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/avif
content-length: 5896
cache-control: max-age=604800, public
content-disposition: inline; filename="c_2904702a8791aed55834406566576246.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYyYzU1OTIyLTVlMGUyIg"
expires: Thu, 02 Feb 2023 09:59:13 GMT
x-request-id: y8aHU8i4TWQT9wJOEJxKL
x-cache-status: HIT
X-Firefox-Spdy: h2
1win-cdn.com/img/yggdrasil.6666231e.svg
172.67.71.219200 OK 2.6 kB URL HTTP/2 1win-cdn.com/img/yggdrasil.6666231e.svg
IP 172.67.71.219:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3215)
Hash be1777f4278b32523f8404a7fb3d5370
55ecd850ede35859e4b554d868696321509fdeb5
ebf6648ac2bb3483877d7e538982eebf93302198da88ea8fbb9a30b98a4b0ad9
GET /img/yggdrasil.6666231e.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-12ef"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ITPFa7XL%2F0o0wKsCUbE86tK0kk1MpqWE6wf9JS%2BcXLuOQRg4woY8mz%2ByStDo2HkyKWnjmx6nL2cpMwvWHA%2BDKjI6nM3%2FRArWKCId8VMjgjZt4ZqQFhXPYbrGDEgiOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe2e3eb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/zeus%20play.8ccc9002.svg
172.67.71.219200 OK 985 B URL HTTP/2 1win-cdn.com/img/zeus%20play.8ccc9002.svg
IP 172.67.71.219:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (403)
Hash 48175963567afb258131eb8a19413a73
a7a266bf5a2496720f3d1e6dfa59e89bc798d53e
5b51a9dfa43cb421d72bc8b6db447dec470ee1c5cc5178c8d962c220a7846358
GET /img/zeus%20play.8ccc9002.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-3d9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u%2B1JeGCA6KbjL4%2FyOC%2F20aXOyXPvNsMZLprLEkinK%2BXBruVW6qEad8uKl%2BWfBGv9lyVX2DMtyr%2F7DSzWiaYbBCgBHfwI75geracH3Ryz3wEXxuBZOTtpLAkZRdxETA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe2e42b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
api.amplitude.com/
52.33.249.191200 OK 0 B IP 52.33.249.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: api.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cross-origin-resource-policy
Referer: https://1wswqf.top/
Origin: https://1wswqf.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-length: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: cross-origin-resource-policy
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
api.amplitude.com/
52.33.249.191200 OK 7 B IP 52.33.249.191:0
File type ASCII text, with no line terminators
Hash 260ca9dd8a4577fc00b7bd5810298076
53a5687cb26dc41f2ab4033e97e13adefd3740d6
aee408847d35e44e99430f0979c3357b85fe8dbb4535a494301198adbee85f27
POST / HTTP/1.1
Host: api.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 1109
Cross-Origin-Resource-Policy: cross-origin
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:41 GMT
content-type: text/html;charset=utf-8
content-length: 7
access-control-allow-origin: *
access-control-allow-methods: GET, POST
trace-id: Root=1-63d52039-656a3ff851d59c514e583734
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/bD9xEdP9SoU
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/bD9xEdP9SoU
IP 142.250.74.131:0
Hash 11c191bd69289aeda02a7d7e46b066d4
1f1b797c3eaf5908e42f4339227339808f04e505
191c81a6c9616452fa4f2204eb968e1015b451bdc9fb79ab5eac7025faae4559
POST /s/gts1p5/bD9xEdP9SoU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:16:41 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ps250.1win-service.com/push-server-v2/?Language=en&snapshot_time=1674911798675&shouldCompress=true&EIO=3&transport=websocket
104.21.53.47101 Switching Protocols 0 B URL HTTP/1.1 ps250.1win-service.com/push-server-v2/?Language=en&snapshot_time=1674911798675&shouldCompress=true&EIO=3&transport=websocket
IP 104.21.53.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /push-server-v2/?Language=en&snapshot_time=1674911798675&shouldCompress=true&EIO=3&transport=websocket HTTP/1.1
Host: ps250.1win-service.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://1wswqf.top
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +WT88UStjj8r7s7+J5VJTQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sat, 28 Jan 2023 13:16:41 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: F6Wr5D7nuHw/KvhOz6MhZIpyhQk=
sec-websocket-extensions: permessage-deflate
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mKoJ9Fo9IzFuwaJb44G32bsy9m3Hc0hXZJezVmJhd58Dn%2B3QRCwbU%2BT2KOTKlpsZ2N4fMmjQVx2qGtf4oB0W%2BFjq3zuW4vUYgcxHxra09DxapZRFcq6byWxc8FteKBDMFhVXlDBzUvV5"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 790a0105aa8a0b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/s/gts1p5/bD9xEdP9SoU
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/bD9xEdP9SoU
IP 142.250.74.131:0
Hash 11c191bd69289aeda02a7d7e46b066d4
1f1b797c3eaf5908e42f4339227339808f04e505
191c81a6c9616452fa4f2204eb968e1015b451bdc9fb79ab5eac7025faae4559
POST /s/gts1p5/bD9xEdP9SoU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 13:16:41 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1win-cdn.com/img/habanero.5aca5f39.svg
172.67.71.219200 OK 8.9 kB URL HTTP/2 1win-cdn.com/img/habanero.5aca5f39.svg
IP 172.67.71.219:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1844)
Hash bd929dac166d975b2601e6beb14bb2c5
1f179f0838316fda930acb46c263524fd953e58b
f1c18d1f2dca4e36eb8a31e91a59fe200fd1e7bf55ac42a490ace8ebe26d3861
GET /img/habanero.5aca5f39.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: W/"63d124be-1077"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 217404
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZcWARFWiTlJxgtUvnJwV89%2B0zhS5jQhwFOXi5UVFb49n%2Fial03Oc5IKtVX2Zj6dq0InUQTlSjIkXOaqLD4zinYQgVzR%2BkxgR12E1SZbLar5KkUajM6M4iW26XFBJrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdacd3b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/4801.2c1c51b1.js
172.67.71.219200 OK 16 kB URL HTTP/2 1win-cdn.com/js/4801.2c1c51b1.js
IP 172.67.71.219:0
File type ASCII text, with very long lines (25513), with no line terminators
Hash d23a4d63bddc996a74c005ca59383974
c982dbbb5179a335978dfcea40fcf38ab2589a3f
80031fc2ac3a7f2d06fd02eb12554547ca5dd941e9fc9bc54df56bb2b2c17c09
GET /js/4801.2c1c51b1.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=25555
access-control-allow-origin: *
etag: W/"63a42a53-63d3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3208486
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BLCDAqpmnyjOSleJ1L%2BeyeVg5N0JSjamVZLOJ4XI0CxaX2mp7%2BN%2BtzVcGkovNjSllB2hxVYxkesFEVh5LYXYqmHAyBKQ13EhAALsydsQbU0dF3sQpWxOPY59R8PKoA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ecb800b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/icons-common.c0259c25.js
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/js/icons-common.c0259c25.js
IP 172.67.71.219:0
GET /js/icons-common.c0259c25.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:35 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=231782
access-control-allow-origin: *
etag: W/"63c6800f-38966"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 17 Jan 2023 11:01:35 GMT
cf-cache-status: HIT
age: 958445
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xLitA1vZ2tOVuMy5BuSUCE3DwfA%2FT1H9%2BnAOpvqZjkAcoGfKoJ7BJLQiKYOnzARImqgDf%2BMg%2FLzjP4AP49h42b2vox7Z9WfNfNQl5rMC5krhArvek36x1AdXTc3fUg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00e31b06b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/oryx.ef29a7af.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/oryx.ef29a7af.svg
IP 172.67.71.219:0
GET /img/oryx.ef29a7af.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-507"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7%2FY%2FCF6D17IO0Tfb5at%2By2hcB%2BL23GF3oOpyv%2B99x333S8%2F0bUjXf5y%2BifQAZNZ6CU3aTLZsSLfc8tPDqkV7earGkYxPiL5h1vxhD3NmJxlssQwMAcR4jDgsByGsjQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fddd63b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/smartsoft.55c81c76.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/smartsoft.55c81c76.svg
IP 172.67.71.219:0
GET /img/smartsoft.55c81c76.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-149b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cLUoEDXuNknTt6qiuVcyqi16uuivjLKbIYOJicJ7md5SmDJRZOHihl3d6Etl2sKRBhARpUUnPKYarKGn8%2FErGxVphaWVYqLN0OUtGcGDMFtxWmElnRoszfOZ6PxUuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdfdbdb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/virtual%20generation.76588830.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/virtual%20generation.76588830.svg
IP 172.67.71.219:0
GET /img/virtual%20generation.76588830.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2e89"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vUMEX2LeSvA3Li5j2LHwbSBFtrX6i0iovrd%2FGSJHC6IMnSaZlfurNK02p8is3KlKcTvgqIX4Lx8uvM8WpsGjh3m55qPwvfWhHHOU46H5im1dGBIiCfiPXW7BsFz2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe1e17b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1wswqf.top/pwaNotFound.html
190.115.19.101200 OK 0 B URL HTTP/2 1wswqf.top/pwaNotFound.html
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
GET /pwaNotFound.html HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1wswqf.top/sw.db344b25.js
Connection: keep-alive
Cookie: sub_ids=sub2=13349; visit_domain=1wswqf.top; partner_key=79i6; core-sticky=http://10.233.97.253:80; 1w_lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Sat, 28 Jan 2023 13:16:36 GMT
content-type: text/html
last-modified: Fri, 27 Jan 2023 09:15:27 GMT
etag: W/"63d3962f-136c"
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
1win-cdn.com/js/2950.429a0b76.js
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/js/2950.429a0b76.js
IP 172.67.71.219:0
GET /js/2950.429a0b76.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:35 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=540152
access-control-allow-origin: *
etag: W/"63d39637-83df8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 27 Jan 2023 09:15:35 GMT
cf-cache-status: HIT
age: 100684
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FObykJoC00xxlDw94l4N0aLvoi4EvjmaRglK5ScSuDRBX5ds0t1bBDn8z3Rcj%2FHBmtFJLqBhHkBDwr3Xrwu6LVKlfD9JZKKSiX%2BH%2FLeNzolsHWi2K%2Fqr0kMblu6Zpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00e31b10b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/revolver.1a5adf31.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/revolver.1a5adf31.svg
IP 172.67.71.219:0
GET /img/revolver.1a5adf31.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-e61"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FfHM1QKyxcHtltvsv4z8aXSPTMbPMFmnirkw8uITClbsMEdSwqrUQoAxN0PXq2POZr1fiMbrfiNyC5RmK8VSj29lim%2FAphm1cWe0fyqz97IFK75mgycGiMCGbSibZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdfdabb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/turbo%20games.bfc7405e.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/turbo%20games.bfc7405e.svg
IP 172.67.71.219:0
GET /img/turbo%20games.bfc7405e.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-18b5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 837034
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iR6XL6p6ZHk6haCa9V%2BdWDsViw0WarmBOnnMhOVUhrmpBwOWvsZ2YmYOzcDgBL3K2vIoMoe%2BrazzOdmw2oiyUcdphNQe629fHNwzs07XxlsXXSbW6UnhwKv75rZgig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe1e13b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/flags/NO.svg
172.67.71.219404 Not Found 0 B URL HTTP/2 1win-cdn.com/img/flags/NO.svg
IP 172.67.71.219:0
GET /img/flags/NO.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 404 Not Found
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: text/html; charset=utf-8
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0WPgPgrSO8m7PclY%2BDWRvpSDCwlAWRHCzWI3VtqHhPhLNUFaYvpOgFVyEmaBbfwhvYxDZE1OvEeNI3wxBH6UE7RMb2eGxDdKHvexppiSQ9EKrJ25u3%2BLu3WOcEp0OA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a010349cdb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/mancala%20gaming.792c2e8b.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/mancala%20gaming.792c2e8b.svg
IP 172.67.71.219:0
GET /img/mancala%20gaming.792c2e8b.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-305d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1CRpA9nijA71TD0O5uaaHnhEYRM2qb5nbsR34ZjvxF1lLQi5UHwiE095a8gqFyEcHIsYLo%2Bc5INYmEoXpclNlyY%2BcbAHAb%2BrV9RJeaHGj0%2FAUPrnAD7SEqKuzlsCQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdccfdb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/rubyplay.ba93a714.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/rubyplay.ba93a714.svg
IP 172.67.71.219:0
GET /img/rubyplay.ba93a714.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-245b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=StBe9Nb17G7VBtSEe4GYf42SWYdjzFv0s8x1t%2BKErtLySBW1wG89j34sSfdpd%2FWGsyGNH%2BvxdY8auURDXIA6scMoCQULD%2BWmweeeKqNjxDsQHSRZep%2BCnRX0DkkPkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe5e9cb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/kalamba.f208b29d.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/kalamba.f208b29d.svg
IP 172.67.71.219:0
GET /img/kalamba.f208b29d.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-5343"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2i6CIlUrn18tsxrUaJYhcB6aen2NXH0pN1HV7Jsqjvl%2BJzZxiAGznhFgxIcsdEHKNenckC07q1W3y7%2Bp02%2Fhj%2BIXXcwQoQj2YQ%2FxGWbTEaQMnnZAqelKDe4xD2JYug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdbcedb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/sapphire%20gaming.474064f5.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/sapphire%20gaming.474064f5.svg
IP 172.67.71.219:0
GET /img/sapphire%20gaming.474064f5.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-3bfe"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3g0ZM0Ee53L5SDhejN4kUBikng67xtg4BqMK1QucqcYgk5Q29j%2BNmexowCr6DHArhlOAa2QjKG%2BhaPeJegb1UyPcAN5rIHnGnVmMH5FK6eNNJ1kGM4D7Q3Niw5Ndhg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdfdafb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/silverback.e3f805e2.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/silverback.e3f805e2.svg
IP 172.67.71.219:0
GET /img/silverback.e3f805e2.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1c185"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hm59bzZQX9IkZd3MOS315gqW7fV0moqr2xzjGsoIgNAND0OaUT4IhlUcGtr11oITeY4thD1dqM1wDgOwZgndj38rzxTOUtHo1PA4zxTzGvknDWFJJlsLh12uPWF7qw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdfdb6b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2606090.js?sv=6
54.230.111.8200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2606090.js?sv=6
IP 54.230.111.8:0
GET /c/hotjar-2606090.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sat, 28 Jan 2023 13:16:12 GMT
cache-control: max-age=60
etag: W/a51ec862e7c21b01a2705015ef50cbad
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BCQy6aHizb_rcNz_vPoYL1K4gqJSldGUhdA_EIREBU5RAeNazx2Jyg==
age: 27
X-Firefox-Spdy: h2
1win-cdn.com/img/fire.47bc0337.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/fire.47bc0337.svg
IP 172.67.71.219:0
GET /img/fire.47bc0337.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-244"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206587
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l%2BGgYKxnfsnCManDcqnX2NsoBPc4hI0UcJLTbNzVQF7ArANOScXw1wVkQr5BXI5bbZn4oM9NjlhQ7UEv1cnVl5c6kr7KTRClFyN68rZf33P75MPJPrlWhKOXrC1EAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ecf857b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/7mojos%20live.0bbc237e.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/7mojos%20live.0bbc237e.svg
IP 172.67.71.219:0
GET /img/7mojos%20live.0bbc237e.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-144e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206589
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CCPEBMmcX9uNKGkppYKGa3vcAynrZSXIT2bQLXD7xAk5aJsGTrSsVRbMweUmamcFvA9g3EzRPAJKXSWKRMeQNT64LKEtrj2oeIteDXTpwnibbwqlFqgiwVZlojy%2F3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fcfb1fb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/betsoft.c6b04922.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/betsoft.c6b04922.svg
IP 172.67.71.219:0
GET /img/betsoft.c6b04922.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-14a0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3207367
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qaaiIaUzUnuRsKhMmiL1Ta3Wuz1kI0Sf7l5glU27RMU6Idw1L6mj6PRTwr9jfP3JlFUmrB6w9pismPvOlHZWFBYUYBnCtYH77gv%2FpC4knuotEnENcBXWz1dZD%2BumUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd2b9ab4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/iron%20dog%20studios.8a9aca7b.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/iron%20dog%20studios.8a9aca7b.svg
IP 172.67.71.219:0
GET /img/iron%20dog%20studios.8a9aca7b.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-23e8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S%2BdgslQM7n3ko6zFC8l0jQeaFb7q5RdtOPzzxxrxlCZ5jqXgPHjYIw%2FJ29ceAz9TeCXmliR47pX%2FrkpA2yTY52uhS6%2BFsMGxcDkfWM%2BnL%2FPXDSQq7PaV4YP5zGLEoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdbceab4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/atmosfera.2954041c.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/atmosfera.2954041c.svg
IP 172.67.71.219:0
GET /img/atmosfera.2954041c.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-156d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206589
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SJ4iODduBkAljxIUgee4jLCs2Ykbz0SavIpqN84ZYj2DyBNDKN3NtfkcI5cJ2HoIzCkFBpS5f7ilb9nfpZZVExuOy07KbnirLRVudr1Y3GKXEmlvVGvtwYwkd4pvpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd0b47b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/cq9.bd2145b0.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/cq9.bd2145b0.svg
IP 172.67.71.219:0
GET /img/cq9.bd2145b0.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1169"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206597
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BQOAEr3erK%2BnkF0yxx%2BoTO9nhZ9e4PmoE3lHLB6Hs4eOClfW4ZsrGH5uYkNU%2FNcrzr28JCqiseqscGyimlushUUBBsTEh1h9uuwEo%2F2vZ%2Faaw2JswZBNKL2gpF0qRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd7c40b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/spinmatic.6decf00d.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/spinmatic.6decf00d.svg
IP 172.67.71.219:0
GET /img/spinmatic.6decf00d.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-24b3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ilEuj%2FaA5cx%2FTEjw%2BE0kM%2B%2BriIfix5BvA8ae6Z3Yj6bFI%2FDp5vDjdO8msFkhOfYoH9hM4OG4ouNR%2BnB1Y0obyTOpkJ1w0dLyPmw8EoErpn9A053dIYLgDi%2Bjie%2F1uA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe0ddcb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/tomhorn.8e656e09.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/tomhorn.8e656e09.svg
IP 172.67.71.219:0
GET /img/tomhorn.8e656e09.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1811"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jc7GTq9K1070CK0NnnCnJD69PDvVWaqlPFx0nX3uuLPx3MvzsPzG%2FSM5a%2F6rXzqLcGJBPBLuTTiOCgXL7kfF0SMbr27vueVmp7puXe7IeqBD7XjpZY1eiQERreZshw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe0df1b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1wswqf.top/?open=register&sub2=13349
190.115.19.101200 OK 0 B URL HTTP/2 1wswqf.top/?open=register&sub2=13349
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
GET /?open=register&sub2=13349 HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Sat, 28 Jan 2023 13:16:35 GMT
content-type: text/html; charset=utf-8
set-cookie: sub_ids=sub2=13349; path=/; expires=Tue, 28 Feb 2023 13:16:35 GMT; secure
x-frame-options: DENY
content-encoding: gzip
X-Firefox-Spdy: h2
1win-cdn.com/img/icons_footzal.52da9664.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/icons_footzal.52da9664.svg
IP 172.67.71.219:0
GET /img/icons_footzal.52da9664.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Referer: https://1win-cdn.com/css/5616.80aa74eb.css
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:45 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Jan 2023 13:54:57 GMT
etag: W/"63ce91b1-53f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 417229
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yyAgM1VxP%2FVyjcRN0MssjRaWm5DQr6SMmNeTEiqSSQEc6G%2Bw7sBquds6RTtvqbjiVL3t8%2F7lVgma0KsmVV80E19D64Uh9LehKbTNEFHXTUyycWcNlOj3hwvwYYswsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a011ddeccb518-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/nolimit%20city.73ea77ec.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/nolimit%20city.73ea77ec.svg
IP 172.67.71.219:0
GET /img/nolimit%20city.73ea77ec.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-21a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n%2BId3qUB1zV6au3qvYuV9CGOGA6%2B%2FpInDe0HxlF7F4xP7%2FvhKum4mULhCXDcBt8N0XrrA77FjOgjtBnGg00kmMe%2BERxRGQeU6Z1ZIQUwYOXVJhlRcUy0sgS8%2F8Xq3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fddd57b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/sagaming.4e1b794f.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/sagaming.4e1b794f.svg
IP 172.67.71.219:0
GET /img/sagaming.4e1b794f.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1060"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZzxO%2BkeIf%2F7C2RVy%2FPw3JzI7kj9WhGfH6vtrdHvd5BYZR3G4oRUQ7RULKeZUGtlZHHgg8R0CVMMvvXunmEv%2BmFFeJEn2x38AgW28yioTp%2BazyQ15WAxacCbgWbQ54A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdfdacb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/dicelab.f8f3d560.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/dicelab.f8f3d560.svg
IP 172.67.71.219:0
GET /img/dicelab.f8f3d560.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-f89"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4LB0MVhEgONtZ3VThAn%2BN%2BrbdGJfy8y7Iywa%2BQ8YuBiTrmiSs4KIwRFwDJiajzoH9xwSYLChe6Yny6ycSrxLQYCcThLWNRbkNxZ%2B9V1oiz0YdhNoz4GwxNiiynRyXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd8c46b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/hollegames.04d23aa8.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/hollegames.04d23aa8.svg
IP 172.67.71.219:0
GET /img/hollegames.04d23aa8.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2121"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=urxIyYmQss0cLNAkarrpXNQiRNugRLoIypU5ayjopvQ%2FVaeqpQch%2FE6itxskWWldMQDqdazWcNIlbYjtiDvYsHrwjdhYBrsCeDYb%2Bt7PgZwKPxd8RFhrM5JPU96eEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdacdab4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/liw.06ac3b16.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/liw.06ac3b16.svg
IP 172.67.71.219:0
GET /img/liw.06ac3b16.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1df5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8Kqn4zYZQWwvZzXZXJiWytFE7cKYuP9AG6JyZ6D%2FhYlc6aJdt3r4oxEWUwEBqB%2B7MTlJ2R8%2FrbWKJOCLiLyJujQR2Zh89JN1NyVxZHXsVfEiYeUcfnX0%2F8CjiIwvRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdccfab4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/spinomenal.30d1dc2d.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/spinomenal.30d1dc2d.svg
IP 172.67.71.219:0
GET /img/spinomenal.30d1dc2d.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-6e7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3207239
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HXtzJv4nRPpD4cd5SfXyLpLQtZ2volcui05frwwoTyeC5I%2BxZSJK09g5ofiDqNwceuIMVzwakQ5Zs8RKPIxM2XjNinb1TWu6DO4ZhDC9B04ab1NJzzFOAyA4zplaPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe0dddb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/1win.e3630873.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/1win.e3630873.svg
IP 172.67.71.219:0
GET /img/1win.e3630873.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-60f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206589
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ut45BT9kO7hqC5soKTADE99ENap%2FXT7pzPCtQy6hcgrbJl3qyyLQgPbTJbDeKqdhC5%2BDGufXgfIL6ApKQ1%2FWxStGrF25Q63NqInLBHHgWNxz5%2BHxTCC2vwfzKjW5Kw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fccab2b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/flags/ru.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/flags/ru.svg
IP 172.67.71.219:0
GET /img/flags/ru.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Jan 2023 10:56:34 GMT
etag: W/"63ce67e2-110"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 440347
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u7I5l5Kxcfpbiyp%2Fp9%2Bcfe0eyjraY0c1OWksT%2FKKq4PJ6lWsHfyymxs0MpvxhrhAeuPc5xz2xuXk0vuyqDStQjvRiFYVTy53k65ag3SlTWxa%2FNkMEVH6P1QyolsUmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fb8fcfb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/apollo.72eae79f.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/apollo.72eae79f.svg
IP 172.67.71.219:0
GET /img/apollo.72eae79f.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-312f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3207367
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HUcuKbCzKXe9IZVhVLkxy4pHUDMa7vvvfLaS3ZZXV6M801iiiVHorwKssz2z0%2BP1432iZnY%2Fi2TcM2T0PnBiPoh6hAs8WIhVJlPVuvflOj0eA6YWqZmrpYy7ozpoBw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fcfb41b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/fazi.0731b5cf.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/fazi.0731b5cf.svg
IP 172.67.71.219:0
GET /img/fazi.0731b5cf.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-27b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jj%2B6MwMzLMGQd62AM3luTO22Zo%2FLAN3UAv%2F1dou2piG9ZeyVbHi82g1szsle4UBY1Hd3DBvKW%2FTLckNvyU5gAZ3uzRwevsJyrUZwvCXv2cHiQMHtaRokzYV71S0hHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd9c7cb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/gamomat%20standard.7d28ae64.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/gamomat%20standard.7d28ae64.svg
IP 172.67.71.219:0
GET /img/gamomat%20standard.7d28ae64.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-31a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sdG7wx74yfp3dP9Nmp7G2WAzg5wQxP9%2BOiSmr3d4V5BX9si3lqcJwTvQ1uswfdjswWnLX9vrlJRRk7e9121CNa%2BuhED2fE3guBd3Kmx1c5%2FwXU7nWl9n%2FbQac8ufDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdacbbb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/vibragaming.4b28676d.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/vibragaming.4b28676d.svg
IP 172.67.71.219:0
GET /img/vibragaming.4b28676d.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-22a4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oRxH23Ae7GhGYG%2FVgX5UoUGFPcgvW0SAssv1lsDfSNP8Hbx3pUE%2BE88mJRm%2B%2FcPpbxtVPNG27ExuexIbX0rUhoqxhFErXHWc5r%2B8EyrXS5U5CDd6e%2BL%2FtMozoduPIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe1e15b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/icons_hockey.0d49138d.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/icons_hockey.0d49138d.svg
IP 172.67.71.219:0
GET /img/icons_hockey.0d49138d.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Referer: https://1win-cdn.com/css/5616.80aa74eb.css
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:45 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: W/"63d124be-3fd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 142500
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xgbq%2Frd6LylxiSVcbmdhvovCJHe34JJk0gklADeN6mY68bbmEikJ6LpABLouMTGgVWQq6Le%2B8Z9UD1HZ9B8SLebPku8OQE4ARqom6U9bUa6LfKeV%2FS%2Fb5umzHUmkcw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a011dceb1b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/playtech.f068e8ab.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/playtech.f068e8ab.svg
IP 172.67.71.219:0
GET /img/playtech.f068e8ab.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-50e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VunhvvDFtyZMLlbqC%2Bz%2FzH61nl0pr7gwRsAUh6i5KLZu7dTCnGp3tMOTV7flQrjRW417cuc37aPUiDJRYLsct6J9RaNWZEa9WIvrBUDKsK%2B88MA3qNSUh1VQNN9%2F2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fded74b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/chunk-common.cb71208d.js
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/js/chunk-common.cb71208d.js
IP 172.67.71.219:0
GET /js/chunk-common.cb71208d.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wswqf.top
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:35 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=16758
access-control-allow-origin: *
etag: W/"63caa6b8-4176"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 20 Jan 2023 14:35:36 GMT
cf-cache-status: HIT
age: 489851
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HKhAaWifDpnOJNWb62No%2BoACPGuZmtR%2BEOjZesvuvqiHDwBRID32j6dO0aUJBnv%2FbJuaeV%2BoO5kOI9%2FYvAM8BNEz%2BllanjoUdrPMLQpy8AYprtLnavWiwOrMBKLB%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00e1ddb0b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/1x2gaming.9c41eb85.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/1x2gaming.9c41eb85.svg
IP 172.67.71.219:0
GET /img/1x2gaming.9c41eb85.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-f4c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206589
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qB9jgB%2F5r9YVgIL%2Be8hly0ARYlB8V3n%2ByKPj5YHNeEApfO5DGOqW7UU6j3lUy3Ujgzbj56L3Bs%2BgnzwwzXxKtFeqWOll71SmHtuWXbZA9kqETek1fDjAzbbeu1wY%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fccab3b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/bet2tech.bb2f3549.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/bet2tech.bb2f3549.svg
IP 172.67.71.219:0
GET /img/bet2tech.bb2f3549.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-5e6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206589
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yAPoyy1vIzJux1mUBuHfVIc1RhhPT0CU1wpJmdPVf2DdNQwuRDxxke7U9Un3pOYIDw2qM%2FB2gKnbyjTXz9Z9vdmhMtGimAnpFoBKn%2FLeyXI%2Bdtp%2FJOx%2B0zIFKVtd2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd2b7cb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/mrslotty.366e094c.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/mrslotty.366e094c.svg
IP 172.67.71.219:0
GET /img/mrslotty.366e094c.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-8d5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3207367
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KM0W%2BzchM8CL6eXTFyACjActiBvHCHlqfTEE7qImflpCvgf90%2BcyTyJXTCt3E7mReQDjwLueCC%2FDWeULawrvACtUNyvnMcvy9wAVM9GJd5fdjODHJqcfoy5B5I8NnA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fddd53b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/onetouch.8550a163.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/onetouch.8550a163.svg
IP 172.67.71.219:0
GET /img/onetouch.8550a163.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-3ad4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b0iDvZKKjRhwUqE4g94EYdX2Cld0Gw%2BsLplOMOHT3Yg6VvLmN4ZU%2F33FQX0RTxCOd0WoZcQ%2BOS7LSRWGXaPo2KGvjkKvNxv5YoQcLWJMag8yWm2gjrBGgCGcdu4jTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fddd5db4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/5%20men%20gaming.81b340c2.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/5%20men%20gaming.81b340c2.svg
IP 172.67.71.219:0
GET /img/5%20men%20gaming.81b340c2.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1ac8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206589
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=09lLERBML1poA8QA3iE0qTDSdL0sJtlf9G%2FHGARQv9bA2zP8QHCbcpUIUw0%2FmEBMBysLSGPIn8zi9cqRQ2viaaWkdNyCgnQLfUeWigpTLWc4cw%2FCDk2YwL%2FGL2YC7Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fcfb1ab4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/hogaming.f8502380.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/hogaming.f8502380.svg
IP 172.67.71.219:0
GET /img/hogaming.f8502380.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2cde"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xvTU8ZaQKO58Nf1UkgUm6BbDLJUonuyA7CyZnhnWkjTrU4mjOkwWrndDN2g14TZw5w%2BF37jQRn4%2B3naP3myAzK2HCdi%2B%2B70vo%2B%2Fc5BgHGNEAlgMNmDJTd1FxoGqH1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdacd8b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/retrogames.513aab74.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/retrogames.513aab74.svg
IP 172.67.71.219:0
GET /img/retrogames.513aab74.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-815"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dt%2BtXCSBtQtqlfMzhIrv5teHlkU7ZSDsFRLZaY30TamTor3yhfv%2BOCo6aZmzD0v6rNdTbqalrBWALBLVr2noUuUHydD%2FGdwDxeNZ6r0%2FXOhtaDSA4yvvEgdc1Cdmuw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdfda9b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/igrosoft.81ca5abc.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/igrosoft.81ca5abc.svg
IP 172.67.71.219:0
GET /img/igrosoft.81ca5abc.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2243"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gkiIFgJysfQ4A0rCpi8qBFSN098H%2Bmzpg802aA35jJCYyPJjWjZ%2Fx%2F1cASjzOL1%2FqNPUzVJm2oyJablifqRCJ3mPQuEkn36%2Fd5936tvNnTZtDYahThVKFJ%2BolzN%2BVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdbce8b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/tvbet.c92ea7dc.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/tvbet.c92ea7dc.svg
IP 172.67.71.219:0
GET /img/tvbet.c92ea7dc.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-3edf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=joSoU9Mkm27MuW%2B8e%2FpoS1P2YW1bn1U0lDbt264E1gOScIZvry6y%2FAaaV0Cx3fnwJDPl0h2Ci1LltkMDcV8SfYMnkurWMgXPkTAEKXZ4Zf8h6oR1OJQdLpvARp%2BFdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe1e14b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/common/banners/all-v2?lang=en&type=desktop&bannersType=main
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/common/banners/all-v2?lang=en&type=desktop&bannersType=main
IP 172.67.71.219:0
GET /common/banners/all-v2?lang=en&type=desktop&bannersType=main HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:38 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://1wswqf.top
vary: Origin
x-frame-options: DENY
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XJeGGzBJHQXMD2e201LW2WzTCcDV1tzrNOcPuEzmupELf9%2FJ1yiu93fZZtbkLv7Yv4RQiFLrrqbtlZcq5aR8zaicxDSK8XUOTzXGC8wTqu1su3Ws0axHYeLJ6XGbEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790a00ed3a6fb518-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/authenticgaming.08e94926.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/authenticgaming.08e94926.svg
IP 172.67.71.219:0
GET /img/authenticgaming.08e94926.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2813"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206589
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=54g20pN7v0CJPoN4rypTcbEzNGkQR%2FyP4ZLpIMj4MP6iQFw8beqaSq2juoMhw4WcxpxArsjc9S2pYvbNc6QHZ5%2FTzXMzc%2BBPckv2GZknRRR%2FxJHzb4I1x6gf%2BRntCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd0b49b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/redtiger.81376ac8.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/redtiger.81376ac8.svg
IP 172.67.71.219:0
GET /img/redtiger.81376ac8.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2a9f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3207238
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d4E9A%2FM2526GhqgbM8CiU7myPjzxt65JwAFYJ%2BUG4qWBF61TuvAdqVuyCWV2FfwpFemiCbOcohO%2BbKt31mcvFIIG9tiIgaPb37J2Zh4LwYYBgGIdckr2WiEFzoHGSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdfda5b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/simpleplay.21ac090f.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/simpleplay.21ac090f.svg
IP 172.67.71.219:0
GET /img/simpleplay.21ac090f.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: W/"63d124be-a01"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 142495
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IdskktIb985y6nIDRJirP21nVG1BGqk114Sif0ospHIhC7KjBMRJSRD9cZXqZMkYdRdAh8f41%2Bk%2BVT3lzfii%2B0Pj3KyRHw8PWO17xS8NQ8zapaUImwlZ4B%2FnT3CNSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdfdb9b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/1705.d306728f.js
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/js/1705.d306728f.js
IP 172.67.71.219:0
GET /js/1705.d306728f.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:35 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=29313
access-control-allow-origin: *
etag: W/"63a42a53-7281"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3207652
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B90TKW9l2AvTGUlysgdnUbiIsaGrzWg6ejfbbTgvT4yjyWfzGIW7kMrgTEsv3g7jPELERGz8X5FBeH3cln8dZmkjto8oCWqBAI%2FuKNa1iANFNX1ShapmNFa%2FJKlsgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00e31b0ab4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/green%20jade.c62a1806.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/green%20jade.c62a1806.svg
IP 172.67.71.219:0
GET /img/green%20jade.c62a1806.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2aee"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QcgkvNyNgVx8H1qMlTL9Zeqm3zlik%2BCEWHLP5l%2F2YGIcA7H6QUoiwkMfNRkQNmbfR3TwSS6ziA%2FBF2t0XHMWjTMGpRW8Cv2msE0L2c7EsGc%2F2tim1%2FaZG3Kv7%2Bd1kA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdacd2b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/pragmatic.fd2b7bb4.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/pragmatic.fd2b7bb4.svg
IP 172.67.71.219:0
GET /img/pragmatic.fd2b7bb4.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-52f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4mWjWZzCB92xL6xQUe%2BWPil07xKorTGxzRzyL%2FC1ZKHlXFMIatUucOkOaUlP6oxbQ9SSa5JZO7zplRq8W9SteRaCATQ8ohEkYfuORR1ArwR6k6DiqhiWD5p1PK6q3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fded76b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/9208.35d28ae2.js
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/js/9208.35d28ae2.js
IP 172.67.71.219:0
GET /js/9208.35d28ae2.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:36 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=1368
access-control-allow-origin: *
etag: W/"63d3962e-558"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 27 Jan 2023 09:15:26 GMT
cf-cache-status: HIT
age: 94721
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GTcC1BpIrV2%2FLErjH%2BHwpD2%2BAIZmwwqjGCG1yNaQg5mAcouI2e0S0cPZMwDyZZxxFpJ444ydIVP96YbmncAFoqqjRgqV6OEgvYFDZvTUIWDK2AHxx7CtQEbBK8I49A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00e86a43b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/boomerang.ce3752d9.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/boomerang.ce3752d9.svg
IP 172.67.71.219:0
GET /img/boomerang.ce3752d9.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-81cd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206598
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=44h14hHHf3FZ%2Bq0iFAZh2%2BMFdqhHmkb1aajM9fPJegAMnPBMIXVP9liYRji%2FYgqYMmhbk5IXZ3OPL5Vmply3KevLNaZ6HiCNoFOJ1uJSJ0HzJqRDObCFIVLm%2B5hCsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd6c1bb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/fugaso.a193ab53.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/fugaso.a193ab53.svg
IP 172.67.71.219:0
GET /img/fugaso.a193ab53.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-4c1e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3207367
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OehILmdc9YfYSnA8%2BLTZGlv097zwzUOgkhi%2FWTXPBMGtZF83%2B9v5MdnwjdIqkcjY%2FnENroLb4BwauG%2FHd2vtpgQzbVzl0ZslzFzTZ5VtrkKO6vDACdvkGzmM36yr9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd9c9fb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/superlotto.164bda58.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/superlotto.164bda58.svg
IP 172.67.71.219:0
GET /img/superlotto.164bda58.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1a77"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6%2BmwJ82AaHaov8HHQklOdpKSJQMDMFsl9Csr4KfqDTO%2FCAiny%2B2x0%2BPMI0vrQytNmLhMTO3BuiY1gkyJp%2B9I%2FhG%2Ft9IGC85JDH9PIjnRYxsfFV7h4%2F74yvRAvPcPiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe0de3b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1wswqf.top/firebase/8.1.1/firebase-messaging.js
190.115.19.101200 OK 0 B URL HTTP/2 1wswqf.top/firebase/8.1.1/firebase-messaging.js
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
GET /firebase/8.1.1/firebase-messaging.js HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/sw.db344b25.js
Cookie: sub_ids=sub2=13349; visit_domain=1wswqf.top; partner_key=79i6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Sat, 28 Jan 2023 13:16:35 GMT
content-type: application/javascript
last-modified: Fri, 27 Jan 2023 09:15:27 GMT
etag: W/"63d3962f-9f25"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: DENY
content-encoding: gzip
X-Firefox-Spdy: h2
1win-cdn.com/img/boldplay.018c7f09.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/boldplay.018c7f09.svg
IP 172.67.71.219:0
GET /img/boldplay.018c7f09.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-1603"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 805021
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Js0havzIs%2Fx4ju7bMepDkyHHhIVp0rvDa2OmJ5LNSm92hDYuo96oGZT6oSUp2CH81HUgXeIZuXxjoqJPsuWW5B%2BA990qf7UNHctjtMJwl%2BI9GcZTNNZZkeDx7qiVqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd6c18b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/edict.209e128e.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/edict.209e128e.svg
IP 172.67.71.219:0
GET /img/edict.209e128e.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2f34"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XUB0BatI8t0Am%2FYlmuzsxCcVSI4r%2F6P2JgJ4HVOGWK4QFtLYvRnJgfLjwFFRAXcQuerz4MhcbKPFrR%2F1kD0WUni%2FsiLxkw%2BD205l8swEc9PwMgW3hEMf9mU6%2FPa8wg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd8c52b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/css/2950.0a35ca33.css
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/css/2950.0a35ca33.css
IP 172.67.71.219:0
GET /css/2950.0a35ca33.css HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:35 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=19535
access-control-allow-origin: *
etag: W/"63ce67e3-4c4f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 23 Jan 2023 10:56:35 GMT
cf-cache-status: HIT
age: 440344
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ralLQBm4gOPKVGHfT2vjfElE%2BrP%2B%2FIw3wryOK0%2BMxHgypJj5a6s6QedDhIFpH08MNWd7a8tPeOQJN0bmNLBEeqjXnzp7dQA2nC71pIkufut1uaCHETIggh5uDUIVOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00e31b0eb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/max%20win%20gaming.d504cecb.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/max%20win%20gaming.d504cecb.svg
IP 172.67.71.219:0
GET /img/max%20win%20gaming.d504cecb.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-a04"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B%2FXonpnckXG69Ba5Cs4QbShJ8EzZXV0RULom4Mz2aEss6PFo5JsTiY9REwwpCb%2Brxe8D6haNCsyLe5irUNYQ9dMk5NFwy%2BPZNRn7TgxN2SH1vYJ1SnItGJWS6t3B6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdcd04b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/playbro.29e123ea.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/playbro.29e123ea.svg
IP 172.67.71.219:0
GET /img/playbro.29e123ea.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1b2f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gq7Xw0qFSUR6aaHVJo%2FlH8s%2BJDhDXVTkI1yTuDwrw0xiYmfw%2F9Gx%2B8b5PyitLYc1pCygJHlNJhP9Odq6%2BRUV8GFOaZu9TLUJg6xEJJk1Cpv604kz%2BG6KqjQ2MksPJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fded6db4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/wazdan.63223c78.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/wazdan.63223c78.svg
IP 172.67.71.219:0
GET /img/wazdan.63223c78.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-cac"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CBBukssqLwSo8QyzRYrVONCteY6cxM1FM9P3%2BmxyScDjno6%2FUM04NdmxzI3jYdKzrU%2BMvjUDt0ZIpVMDYQFhW%2F7TMoZSv%2FQYIUTOhUX7%2FJzYyHVIE%2B5I%2FvbftZGIkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe1e1eb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/worldmatch.767ba51a.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/worldmatch.767ba51a.svg
IP 172.67.71.219:0
GET /img/worldmatch.767ba51a.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-1f6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 805022
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=42K3%2Bv%2BhT3gmn0vzkYI99P%2B2sYWz61m32x4x%2Bkwr8q0BGJUdia5Tl6DCkHLzS8KnnPYe8GdkgDxru%2F5KHPk3tGHJe3VUJ64tw4UjlnV2qYOcu%2F%2Fy5peHaZnWBn8KRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe2e3cb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
api.lab.amplitude.com/sdk/vardata
151.101.2.132200 OK 0 B URL HTTP/2 api.lab.amplitude.com/sdk/vardata
IP 151.101.2.132:0
OPTIONS /sdk/vardata HTTP/1.1
Host: api.lab.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,x-amp-exp-user
Referer: https://1wswqf.top/
Origin: https://1wswqf.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://1wswqf.top
access-control-allow-credentials: true
access-control-max-age: 1800
access-control-allow-methods: GET,POST,HEAD
access-control-allow-headers: authorization,x-amp-exp-user
x-amzn-trace-id: Root=1-63d52034-79cf20811fe1a100183ca9e4
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 13:16:36 GMT
x-served-by: cache-bma1644-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674911796.029718,VS0,VE175
vary: Origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
1win-cdn.com/img/hacksaw.ba9f22a5.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/hacksaw.ba9f22a5.svg
IP 172.67.71.219:0
GET /img/hacksaw.ba9f22a5.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-110b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YDa%2B8zE9m5VctI7uZ9M48nH61AygAn4rysJP5X%2BBT%2BA6UYdj00PRu%2F5qDaB2XZjPcIo%2FfQgPEe75ruCpibcD6hR6gl1px2fNYNWYUvim0GU3A75S3uUHVyFu3ERRXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdacd5b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/salsa.aa6535b1.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/salsa.aa6535b1.svg
IP 172.67.71.219:0
GET /img/salsa.aa6535b1.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-246f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rSWUfZp6UxggDXZG6cy9wncVe9ngz7o1%2FfF%2BVldVlh9CJrslvRDtYj94bNPB8zlRxll5yu8%2FK53hKujw9C9IhqCHm0JhOuGJ%2BAkX2O7h2X97lnpRqk2UBmtCto1Wfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdfdadb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/vivogaming.41d892b8.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/vivogaming.41d892b8.svg
IP 172.67.71.219:0
GET /img/vivogaming.41d892b8.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: W/"63d124be-f228"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 142495
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=soS%2BraUWQkF7E0tjS4WWKK2nWZXvtIHWQmkuyQ7jn9fXjJyj1wKCVkmZb9lDoSB15REjamiAYdiT%2FXZGlAQvs%2BM%2FKRd8zmeCNTIUEeTxIkxZiinfumpbeoFrjB7jaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe1e18b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/betsolutions.9f618e22.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/betsolutions.9f618e22.svg
IP 172.67.71.219:0
GET /img/betsolutions.9f618e22.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-911"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206589
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0Y%2Bugk8%2FGZYPTRdWO7OhfcoTxBjUzPdZARa6bcXF4rs61PCBQpCXHNClHwxLmra8VbKTd5%2B6YlnOJm%2BOMG%2BvrXSJn0smwfpT1Z7UTrrUPoPfGenYSBeZttknEmycFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd3b9fb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/high5.4aa8a605.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/high5.4aa8a605.svg
IP 172.67.71.219:0
GET /img/high5.4aa8a605.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-1314"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 805021
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=unFKj1UzOMd8%2BP2A8VxKgxdqRy%2F9l6Tc2Vntc1MI%2FEUg3Jz9XuRMUSt%2BWCtSIwqj4uCurRuFf%2FYsRAlP9AI%2F3KxqAniQ5Nw9WbRRcnwDi1M6ss6Ppkld8Q%2BRCZM2NA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdacd6b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/champion.2f4e5fd3.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/champion.2f4e5fd3.svg
IP 172.67.71.219:0
GET /img/champion.2f4e5fd3.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-a80"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206598
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y%2BDACDaRmv4soDx2PSYVe7g8sKzhK8sMu4igTRg283PQUbja5hNj1l5Unz3ESJK6chqikKwgsbmwz0KTlvdduVzkh3k1dr54P0QYr6Cv2SZmJlaFw%2FIRzwt08rUeAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe5e9bb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/css/5616.80aa74eb.css
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/css/5616.80aa74eb.css
IP 172.67.71.219:0
GET /css/5616.80aa74eb.css HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:36 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
access-control-allow-origin: *
etag: W/"63a42a53-5088"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3208503
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y5JVeQurPmyThVYOhBof4%2F539ysbO0jTkgbBNeugeXde6DnGbVHQzIhqo6hY1anHTjVCEomn7F%2FdS3Ji8pvP%2FYxcspghjgvENYfN2xsNwqUG9Fb7AosBCIG73GnWmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00e83a0ab4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/quickspin.9b693b27.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/quickspin.9b693b27.svg
IP 172.67.71.219:0
GET /img/quickspin.9b693b27.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-16a6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3207238
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9%2F%2BKggs47NQ6gSD9AIbug%2FByMemvdKinPxuYMSOehTSAbc3V2KG60TQQusvNB1kAQGEhIdXcQinJeAdX5z6DoolnafQvuYmmtq3CtZyhSPE8cyFJtysjXorMDjOX3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdfda3b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/electric%20elephant%20.0f5be6ef.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/electric%20elephant%20.0f5be6ef.svg
IP 172.67.71.219:0
GET /img/electric%20elephant%20.0f5be6ef.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1cdd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vzWtKr7Znzc43hJWop0OePNyDtIgSuZ%2FCrwl00c0JdjerL8b7jmE%2F82DvtgnndY0ak1zE1AYHxlhc6hH2VexxmrNZSPCMta2d8SKW1d7GebmlJD4of0e7Vk%2BWe%2B44A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd8c57b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/apparat.982be0d4.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/apparat.982be0d4.svg
IP 172.67.71.219:0
GET /img/apparat.982be0d4.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-177"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206589
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=prDqerNBRhOQa8H5jBRSIm%2BfmGeCzl1ThSeTpQMQDsRFQOMuXUkZDgzuCayqBSk63ZXT6nwfbPuGAyYcXScrfStLaAtRPcoCKD5kNKAki6%2B%2FFJmTC2fnYYU%2F%2FKPXqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd0b46b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/goldenrace.423ead5c.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/goldenrace.423ead5c.svg
IP 172.67.71.219:0
GET /img/goldenrace.423ead5c.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-7198"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W9aI84D%2FJUrz%2BJgc1NbnO7RKq%2B3k8p1d0RS%2FfqYGhezIvMEAOeARNYth3Z1QLUFruBbHXbbtDoZGVs8XJ8DmATFkIeMd8ETeozbMX6r5%2F%2BJOU%2BHc3gZ7pnREMOikpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdacc7b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/mascotgaming.fbac2f51.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/mascotgaming.fbac2f51.svg
IP 172.67.71.219:0
GET /img/mascotgaming.fbac2f51.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-b64"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1trtHa0M2yI1mOpINXpRcypdZqna74s8yrTDo2PcC3EHWP%2B9T03g9SwN2e2l2bRuHPpY0pJmqX3vV3QxD%2FKh34fWn2E302suCKblB1%2FvSVcvX1m%2FGIvcUVGkLybQ5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdcd03b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/netgaming.aac206c0.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/netgaming.aac206c0.svg
IP 172.67.71.219:0
GET /img/netgaming.aac206c0.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-127cf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2dEu%2BdQoDhxmOqzeXHjKJQev51KKQrN6CferVJL%2BBNpIHIj%2B2D%2Fofx1z75d9iYA51WWB9AsuME1m0wcBMad2loh4W94P6Kgh3LSIOiJCQ0o4DCY%2F9KYi7v3UedGOxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fddd56b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/pgsoft.5ab7874f.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/pgsoft.5ab7874f.svg
IP 172.67.71.219:0
GET /img/pgsoft.5ab7874f.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-d6f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QU6xohNvANfFXmFbLqwMEuEaBVF8eqwRdFu8K6Dl2OkuARuoZGET2nC3cnqvPw3cJCej%2BMFRf%2FZLim%2F77fH837Hil3Ek2SWWVOcO%2FntO8QFVJasgkCLHqObIJVGz%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fddd66b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/icons-pack-casino.243be753.js
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/js/icons-pack-casino.243be753.js
IP 172.67.71.219:0
GET /js/icons-pack-casino.243be753.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=93639
access-control-allow-origin: *
etag: W/"63a42a53-16dc7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3208557
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OzNHWWDiafW5L0jkPaOEcUhrZinPfZUe0jcKTAnvJOeNan7JVDxhvQFIRzkqC5I9JMZvjnf%2Fg8Is%2BbHIlwL%2Fsln3MfOAY6nk57Yoc5MjFXE5LHT2W2hR2pcK3l9ciw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fccaacb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/play%20pearls.e674562a.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/play%20pearls.e674562a.svg
IP 172.67.71.219:0
GET /img/play%20pearls.e674562a.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-a4a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W44%2FRfhd7acTaxdzamRHmsxfSx8PK0C1K5Wxofg49CpTH0nvsYu60FACLsBA6c6HbZxw22GD%2F9e6DCSbIJ6XSG%2FGBj%2Byz46NOzQN%2BZ9zFyKdipQ3pC5LWoHjDfGQsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fddd69b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/relax.c4362d19.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/relax.c4362d19.svg
IP 172.67.71.219:0
GET /img/relax.c4362d19.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: W/"63d124be-1994"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 130593
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FnxHsxSJaopphuorevMBdQzV9nZG1mm1CXYPy5qS6Ipy5Id3HhdZIEGTiYeB1HjM2J8ziVYm0tlF3W8o6xKM25n1PMtge%2FJFh3sRc68r7v%2FnFQrcEGHftiir4ur2pg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdfda8b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/spadegaming.eebb41d8.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/spadegaming.eebb41d8.svg
IP 172.67.71.219:0
GET /img/spadegaming.eebb41d8.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2d62"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IP5XTaik1nnItXkGgq6z6e7E%2FsATEBxQLZlbF2%2B%2B2rJ9t1ATcBF1iWNKjDG%2BSNxxEE%2BeeDnYkZi5R1HZrjw6n%2Bc5yb4AFkGYUFdaBkVAGIvqTVQGjLFQ%2BsvtdXXRPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdfdc0b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/539.677ecef1.js
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/js/539.677ecef1.js
IP 172.67.71.219:0
GET /js/539.677ecef1.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:36 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=22657
access-control-allow-origin: *
etag: W/"63ce67df-5881"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 23 Jan 2023 10:56:31 GMT
cf-cache-status: HIT
age: 439091
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5s5T6klNdaiHhU9h0Z3jrRwnElmbnNrs2sm0jVFuASFEkiuE3IQr1X2mlwXGbWIqCGayc2d8S94RSV%2B6ZMwsyMVw7GXjpaKlBI0CC%2FBp3jWeHvahUA6r8z1bjVwfmg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00e85a40b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/platipus.62dd70ad.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/platipus.62dd70ad.svg
IP 172.67.71.219:0
GET /img/platipus.62dd70ad.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1368"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W%2BM%2F2U00izMDpjLsuqAeE3YWEQN%2BR4g0zoGP3QddDu%2FisK8id9%2FqanjE2IQnMBnFi2eTNtex%2BUAgABLqZGKDCR9Gy2Z681iEW8HeUGD%2Bf%2Bj3bA9tmU4wTdmAouFx4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fddd67b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/spribe.e535371c.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/spribe.e535371c.svg
IP 172.67.71.219:0
GET /img/spribe.e535371c.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-843"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LHMSCiTiZWYUNAwTUTQQ4k9m9%2F6uDJkSw3Rhw51PJUITFWnH0NN%2B2YeisMUl40VX%2B5vlq3l9OpyyFmOd5ly%2BTj7WQJSTV4%2F5mlcP6TOuNXwCbfgTAD7toWsqvPiUUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe0de0b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/5862.39aa5820.js
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/js/5862.39aa5820.js
IP 172.67.71.219:0
GET /js/5862.39aa5820.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:36 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=95351
access-control-allow-origin: *
etag: W/"63c68016-17477"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 17 Jan 2023 11:01:42 GMT
cf-cache-status: HIT
age: 957994
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EckfKbyLPnR6E2Tn%2FuGb26TrLhC7r%2BRehOjWcfJC2gvd%2FGSW9A5zNhapN5BcFg%2FdTESFimf0WNbLpOLeCBlNWd7s536mM3U%2BfFAzKePycL11IY%2B%2B0pYsDwMNuSrwaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00e83a0fb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/skywind.61796511.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/skywind.61796511.svg
IP 172.67.71.219:0
GET /img/skywind.61796511.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-15e3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 805022
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PrZ7aywXZCK8LZ3q9n614XJ3pAO4KNdWx1N%2B3jIh2jynIjH9P79VlAp08xQOqapOpm%2BxbDltWVgqoKqQHd1jID36LcRcc8rUiphm1NxTO4VdqjvZxWDfFxLjWXNZ5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdfdbcb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/chunk-vendors.24294a2f.js
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/js/chunk-vendors.24294a2f.js
IP 172.67.71.219:0
GET /js/chunk-vendors.24294a2f.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wswqf.top
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:35 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=427140
access-control-allow-origin: *
etag: W/"63d3962e-68484"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 27 Jan 2023 09:15:26 GMT
cf-cache-status: HIT
age: 99065
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bSaEsuauRXFg3fI%2BqvOFiNqY5MxFdR2lba1Df8ZT%2BfuqfhRiFhxrdLbNR7TRc%2BMo4i%2FftYXT292bkiu%2FFV%2BSI%2FCNjsA6SZTpz195iqmZZ7TStaSXPJcjeP3tYYMynw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00e1ad84b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/blueprint.92d09945.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/blueprint.92d09945.svg
IP 172.67.71.219:0
GET /img/blueprint.92d09945.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2a4f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206598
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BOhPLo%2F1c9JbeTOiW0%2FTUfqA5EDcdxWwY2N%2FJTP98AfZCv%2BXqEs3pnba62%2FPcRukDm39lCKxp71054gCRhfchyl70CQxc2t0iSqm9IV8pqMfjHCY1RumOZ4MMXrhCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd6bfbb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/playngo.ee16ad11.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/playngo.ee16ad11.svg
IP 172.67.71.219:0
GET /img/playngo.ee16ad11.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-dea"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n543PTAiFtrZ%2Fyq3qkBiR%2B8IDEUA0NpNLkQRNGFDpbjm82P47SIaGkQoiwHWdbtQafsATjHkmDv359EGZ7%2FK6kvikIeQS7VEV%2BYgkBD5BkyCdCmw94zj5VlewdmcpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fded6fb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/playsondirect.60f5d958.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/playsondirect.60f5d958.svg
IP 172.67.71.219:0
GET /img/playsondirect.60f5d958.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1b2b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gf%2B6EGQA%2BarzDWTS6o1PJASEDxzTRm3zb5xoKTWd%2BAovPpTugXCUdkZPHSGwBGk9cm2NKWNOf%2FxaV1FmmzbmY9%2Fn9uLIU22mPjfWUH4wJg1T4gQzQTzMXHFcNGQXqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fded71b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/thunderkick.93d20b41.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/thunderkick.93d20b41.svg
IP 172.67.71.219:0
GET /img/thunderkick.93d20b41.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: W/"63d124be-1f2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 130594
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UipQaJJmqFN0WgTX%2FNNPA4nSCOcbO7sjUhUFYH2N0tXG1Fp%2BRZumYbQEJ9gEyJ2DxmyyX9MZUtVk3b1%2FO2nKHNGoMrldebq99p%2FGfNCYBOfgZ0IFhsfKtAGMHIvhFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe0debb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/flags/en.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/flags/en.svg
IP 172.67.71.219:0
GET /img/flags/en.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/svg+xml
last-modified: Mon, 23 Jan 2023 10:56:34 GMT
etag: W/"63ce67e2-8ae"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 439387
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pC5D91Hi32U4wZnviAkkA9QJenCrdYKZeUDJk3fQKoWZlmvMS6CljJE72WChZmwgCcrXlrJEMnIj48wW9vH5dn1F2pnGKMoI7sEC4PAQpkNX0Ob7si01bwqS3quV1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ecf84cb4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/belatra.259628ea.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/belatra.259628ea.svg
IP 172.67.71.219:0
GET /img/belatra.259628ea.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1818"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206589
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q9tMbjtXyqGlCbjDFS8A0y%2FTifG8ZPcGvKN%2BJ4hhN2un3tKkpYpIu4K87H4Dc8q9SYen0v0OUBgFCuu3vNzQ%2BIsaeohrjDOtnlcQOsD4Ol6ZpOyjFbWP4u%2FRoV54Ww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd0b4ab4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/kiron.4a0c7f94.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/kiron.4a0c7f94.svg
IP 172.67.71.219:0
GET /img/kiron.4a0c7f94.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-264"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nyIuwgn0vRsSo%2Bt%2FzSINFQVKhX0Hzkspvwnfqa08B4Zs2gLpmJr1UjJTk6cxHS8ngbahUpEo7vzuC%2FKytdyA1l6h0dqckqSZv47CuXh%2BOVvsz7%2Ff%2B7Avc9zPoiqjOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdccf9b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/tpg.b2c2a9df.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/tpg.b2c2a9df.svg
IP 172.67.71.219:0
GET /img/tpg.b2c2a9df.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-a6f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 805022
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0SUiMy%2FEBdFmU0WYcfB5NZC1CkmDXXf3k7z7oWs2YHuzoXo4uwXATFxJMbKC8UkEyAwwkN219X631JCIw%2BBwberw59sPqYZnF9KmzpxQvYi9zAWjAwKDXSsWkRnYBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe0dfab4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/icons-pack-home.e8bf03cf.js
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/js/icons-pack-home.e8bf03cf.js
IP 172.67.71.219:0
GET /js/icons-pack-home.e8bf03cf.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=80069
access-control-allow-origin: *
etag: W/"63a42a53-138c5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3208485
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9nUGEH%2Bnjd7x%2BRM50BC2XIjm7wRnHe0jIhhtQhbQEoiy2d0g7T6QzW1AXnRezCu18IBCnRZrJyKMYJkztdeR5X2B3jecQeu53k6OVn3uYBkR%2FYgP0P%2F0X1IBADydww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ecf854b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/7mojos%20slots.d3a1137d.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/7mojos%20slots.d3a1137d.svg
IP 172.67.71.219:0
GET /img/7mojos%20slots.d3a1137d.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-22be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 805021
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v1axzwGDl9rw8rryzqb%2BZwgEsE0VN%2BP7Sx8MVzgWkzcF5PsHdyuePMWLAZ9gwymByWZPbgmAdTJOJUv9OEgqwmXrOvJbZXBMfLcU3mmm5kqTTXFARSaLFocEdm2O5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fcfb36b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/endorphina.bf6a0cf2.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/endorphina.bf6a0cf2.svg
IP 172.67.71.219:0
GET /img/endorphina.bf6a0cf2.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-3a771"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YUDVB9G8wF%2BE5kz4Eygf%2BOjysRSwM9kRFTVjlZ%2FVtFtbDiMF38wCTLF1c9YhWaA9RoUsH1LS4KuMLvM9sLXMVL3XsiT7U8wOBnprKSyqWG4iOeWux4KeaBw5Kah8xA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fd8c62b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/reelplay.7c34e6a5.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/reelplay.7c34e6a5.svg
IP 172.67.71.219:0
GET /img/reelplay.7c34e6a5.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-6070"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 805021
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rHIyB8OK53WWDnk%2BH47GAA6uTT9GrvDSEELBeSzDmPJdGI0lq1wAqBQ5WXGTQqc8AocUTuJrYb8MdrOrvlWFar0QlYTIi1RfjkkHAHse6zfUSLeCG3uKuZ0MXaRTYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fdfda7b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/northernlights.efa65c9f.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/northernlights.efa65c9f.svg
IP 172.67.71.219:0
GET /img/northernlights.efa65c9f.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2699"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206595
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2B1diloMEESugZpl9W3fkZN1iq2eOLQaqgeII5TQALAE7j3sF%2BV6KPgFN%2FTOhy3mXldcKL2rhoIqYwM9oYv9yaTXuGmOAKCoiyLTVfxpdUXQLemuf7JOSi0NXhbynA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fddd59b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/synot.becc85e0.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/synot.becc85e0.svg
IP 172.67.71.219:0
GET /img/synot.becc85e0.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-b94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C50lqibH9bL15g1rF%2FhQG%2BSkxMCozmbeUInPSyQXeiaWWPKqH2WLM2tZcvtmNmw8xcma3d46FqSdnEidKr%2F8Xl0onWkPWLVOvR1%2B2g0rw86xS3Tn%2FnPMV9u%2BEMboGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe0de4b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/aviator-game-logo.2fb50dc0.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/aviator-game-logo.2fb50dc0.svg
IP 172.67.71.219:0
GET /img/aviator-game-logo.2fb50dc0.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:37 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-bfa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3208485
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JMQZzSOxlmWb0AIuUfu27l57dfBzwrqb871cTVtzkEYIWPv%2BjokVuQf6%2BSBUWghm5oU%2F7b%2BgVvk5ePpic4mhyrqIAwu4Az4jvRNRcvxQcr7MOQoiZ60UmWHFHXonng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00ecf853b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/sthlm%20gaming.a42e0c70.svg
172.67.71.219200 OK 0 B URL HTTP/2 1win-cdn.com/img/sthlm%20gaming.a42e0c70.svg
IP 172.67.71.219:0
GET /img/sthlm%20gaming.a42e0c70.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 13:16:40 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-3199"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3206596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ivzxFNaFkMBKubUKVN0Qgn0kmgG%2BTDHPWpP2%2FkRB9tBqKmnSWCz7oZmGgUnEVxT8wyCfdirzav4XCrXlJYJiQ4WInhc2fe0FbN8WecFwif2ueqKzY72HiKchN3Gxrg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790a00fe0de2b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2