1wzgt.xyz/
104.21.85.41303 See Other 0 B IP 104.21.85.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 1wzgt.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 303 See Other
Date: Mon, 30 Jan 2023 20:20:17 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Referrer-Policy: no-referrer
Location: https://1wswqf.top/?open=register&sub2=426#ydwg
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0OX4xeHWjCf0tTjDwm1y8b9zkvGgfWIBn4rj0IIk4QzOzYplh%2BL%2BT9qhHMSoQh9Tv3kgsMst6ODYfADJj6c9kJWR8jcmbwzSP934tmdCg2GwMfviA5dIyXeS2j4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 791ce8475945b4ff-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11725
Expires: Mon, 30 Jan 2023 23:35:42 GMT
Date: Mon, 30 Jan 2023 20:20:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12322
Expires: Mon, 30 Jan 2023 23:45:39 GMT
Date: Mon, 30 Jan 2023 20:20:17 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 19:43:13 GMT
content-type: application/json
age: 2224
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13621
Expires: Tue, 31 Jan 2023 00:07:18 GMT
Date: Mon, 30 Jan 2023 20:20:17 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: hk3FKdnD3wCRJzgArwgrI23qbdbwEHpd02B1QgOhmCRv3W4kitBb27qsKtTolXsp3cqWUUsPN8g=
x-amz-request-id: NH9P17NQHMTVR1P7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 19:50:52 GMT
age: 1765
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 20:20:17 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e7c63dd81dadf6ba7b8d970983f848e3
c4820ff4849cb634c5091ab05b3fae378c80bf13
4ea5fd035b03e2e597e8a572618876a4ee0e860199e4b458b0d0f1dd34b43f85
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4EA5FD035B03E2E597E8A572618876A4EE0E860199E4B458B0D0F1DD34B43F85"
Last-Modified: Mon, 30 Jan 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14881
Expires: Tue, 31 Jan 2023 00:28:18 GMT
Date: Mon, 30 Jan 2023 20:20:17 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 19:41:41 GMT
age: 2317
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/Qcxua71jizE
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Qcxua71jizE
IP 142.250.74.131:0
Hash fe3789ec3b04b81ceaba99885a38cafe
c2a49c8500ce151c7095c3e38b3d5d8a931e369d
7c9a716f794e3628ff1a5fcdc8ad7898a1a22c653d9c6beeef2ecf2ee2a1c917
POST /s/gts1p5/Qcxua71jizE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:20:18 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/Qcxua71jizE
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Qcxua71jizE
IP 142.250.74.131:0
Hash fe3789ec3b04b81ceaba99885a38cafe
c2a49c8500ce151c7095c3e38b3d5d8a931e369d
7c9a716f794e3628ff1a5fcdc8ad7898a1a22c653d9c6beeef2ecf2ee2a1c917
POST /s/gts1p5/Qcxua71jizE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:20:18 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10077
Expires: Mon, 30 Jan 2023 23:08:15 GMT
Date: Mon, 30 Jan 2023 20:20:18 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1p5/Qcxua71jizE
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Qcxua71jizE
IP 142.250.74.131:0
Hash fe3789ec3b04b81ceaba99885a38cafe
c2a49c8500ce151c7095c3e38b3d5d8a931e369d
7c9a716f794e3628ff1a5fcdc8ad7898a1a22c653d9c6beeef2ecf2ee2a1c917
POST /s/gts1p5/Qcxua71jizE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:20:18 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/Qcxua71jizE
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Qcxua71jizE
IP 142.250.74.131:0
Hash fe3789ec3b04b81ceaba99885a38cafe
c2a49c8500ce151c7095c3e38b3d5d8a931e369d
7c9a716f794e3628ff1a5fcdc8ad7898a1a22c653d9c6beeef2ecf2ee2a1c917
POST /s/gts1p5/Qcxua71jizE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:20:18 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/Qcxua71jizE
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/Qcxua71jizE
IP 142.250.74.131:0
Hash fe3789ec3b04b81ceaba99885a38cafe
c2a49c8500ce151c7095c3e38b3d5d8a931e369d
7c9a716f794e3628ff1a5fcdc8ad7898a1a22c653d9c6beeef2ecf2ee2a1c917
POST /s/gts1p5/Qcxua71jizE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:20:18 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1win-cdn.com/css/6610.4f034e44.css
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/css/6610.4f034e44.css
IP 104.26.4.11:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /css/6610.4f034e44.css HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:18 GMT
content-type: text/css
content-length: 0
cache-control: max-age=315360000
cf-bgj: minify
access-control-allow-origin: *
etag: "63c7c775-0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
cf-cache-status: HIT
age: 1005279
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CJBy1ym%2BhBM%2FsbcGSX1PE5%2FbN33hzu1fDvFacldgn%2BCob1EDaPI6ZGb4e1PQWi0RFdOHUKwxC%2FGsC25TLLkkN0Su3XFHsExQTU2R0bf8XMjiVP7DiA11HITWvKdOWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce84e3dd80b45-OSL
X-Firefox-Spdy: h2
1wswqf.top/affiliate:link_visit?partner_key=ydwg&sub_ids=sub2%3D426
190.115.19.101200 OK 15 B URL HTTP/2 1wswqf.top/affiliate:link_visit?partner_key=ydwg&sub_ids=sub2%3D426
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
File type JSON data\012- , ASCII text, with no line terminators
Hash 0f0479874bf6f4a7281099b15df27c27
55a490e280d48996e564d00492437eb17faadd28
a29ee2b15c494311c52521766e44af56a3ad2248e7a8ab465e5206463c13d288
GET /affiliate:link_visit?partner_key=ydwg&sub_ids=sub2%3D426 HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/?open=register&
Cookie: sub_ids=sub2=426; visit_domain=1wswqf.top; partner_key=ydwg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Mon, 30 Jan 2023 20:20:18 GMT
content-type: application/json; charset=utf-8
content-length: 15
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: undefined
access-control-expose-headers: Authorization
etag: W/"f-VaSQ4oDUiZblZNAEkkN+sX+q3Sg"
set-cookie: core-sticky=http://10.233.80.81:80; Path=/; HttpOnly
x-powered-by: Express
x-frame-options: DENY
X-Firefox-Spdy: h2
1win-cdn.com/js/1895.80662a88.js
104.26.4.11200 OK 396 kB URL HTTP/2 1win-cdn.com/js/1895.80662a88.js
IP 104.26.4.11:0
File type ASCII text, with very long lines (60374), with no line terminators
Size 396 kB (396324 bytes)
Hash c88e73d773eb2874a6011e76f17a16ed
0a055b248c98ab73c6a9b30d0cf737d76fdb3d09
78afaddeb0b2fce03c11def1887df6785b586034b00c902742919989665e21ae
GET /js/1895.80662a88.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:18 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=60416
access-control-allow-origin: *
etag: W/"63d7c7fa-ec00"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 30 Jan 2023 13:36:58 GMT
cf-cache-status: HIT
age: 24179
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gWDe1H%2BTBhxiya%2FKMZgyyy2X5FGIQ%2F8EvRIBnbnzqfrUoMQWg7VkfU6z3dvZyqfN7g9raRzI7KBcaCifFdGAIDHMOGHhWmLoH%2FNdKHGXt%2BoZO%2FwcC9hokYy%2BR%2FPfJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce84eee950b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/css/2950.0ca1e6d2.css
104.26.4.11200 OK 33 kB URL HTTP/2 1win-cdn.com/css/2950.0ca1e6d2.css
IP 104.26.4.11:0
File type ASCII text, with very long lines (19620), with no line terminators
Hash 3b906790bda5683ac2940bb8b84feef5
ddaa213cab97fd0f97f1076394d531468ca292ed
14a739727096316f18232a444a4a3a0101f5e719f98410eb9f4297794f697e68
GET /css/2950.0ca1e6d2.css HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:18 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=19626
access-control-allow-origin: *
etag: W/"63d7c0ef-4caa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 30 Jan 2023 13:06:55 GMT
cf-cache-status: HIT
age: 25944
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K9Z1E8hNHe6EtZMiJ2Ci%2F%2BjI8MFhrobwvhAq8iDG72dHRJPgpGkAek3bGHjcpoY%2FLkU%2Fr%2FLa%2FF%2FwX0CefwFyCyyyFI8PQG%2F%2B%2FL6ZClAth2xNoaQc6daQFIYWzBUriQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce84eee970b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1wswqf.top/img/icons/favicon-16x16-darkmode.png
190.115.19.101200 OK 410 B URL HTTP/2 1wswqf.top/img/icons/favicon-16x16-darkmode.png
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash c7a60b79929bf150e44e5ac28fcd0d4e
f1ecf72f71d7b4153b151e7a27d40bf0c926b09e
f2b53ffbd8af9378b2e1d160500d2a2f3fae9b963cf4d6a3e88108a765a548cf
GET /img/icons/favicon-16x16-darkmode.png HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/?open=register&sub2=426
Cookie: sub_ids=sub2=426; visit_domain=1wswqf.top; partner_key=ydwg; core-sticky=http://10.233.80.81:80
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Mon, 30 Jan 2023 20:20:18 GMT
content-type: image/png
content-length: 410
last-modified: Mon, 30 Jan 2023 13:37:13 GMT
etag: "63d7c809-19a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: DENY
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.149.13.193101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.13.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: g2NVkyofwhpm/K2QsH18mA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AY75WDKsvKswEXljXUAF+2wSNCc=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d81f874741beb45c89de8bb5c6de438e
a251ab903e654953631d84721479bbae55aa5cdf
ec28dafa2a54818028d4dfe99218d9e4b507f3bd7efaabfba630d85f24d4d75d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-KGKQDC7
142.250.74.72200 OK 57 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-KGKQDC7
IP 142.250.74.72:0
File type ASCII text, with very long lines (13682)
Hash 38851a348307a35f3a8c2b8ad548250a
6be80ca0b1967b66590f89e83df1d45884c82b65
8ee5fc1727f97fd4ccf30a772fb35ee91c9c5429d91c7f9296d3e259554b65a8
GET /gtm.js?id=GTM-KGKQDC7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 20:20:18 GMT
expires: Mon, 30 Jan 2023 20:20:18 GMT
cache-control: private, max-age=900
last-modified: Mon, 30 Jan 2023 20:00:08 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 57278
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d81f874741beb45c89de8bb5c6de438e
a251ab903e654953631d84721479bbae55aa5cdf
ec28dafa2a54818028d4dfe99218d9e4b507f3bd7efaabfba630d85f24d4d75d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1win-cdn.com/js/2950.f32fe8c6.js
104.26.4.11200 OK 147 kB URL HTTP/2 1win-cdn.com/js/2950.f32fe8c6.js
IP 104.26.4.11:0
File type Unicode text, UTF-8 text, with very long lines (65459), with no line terminators
Size 147 kB (146591 bytes)
Hash df8917d6a5d442712d8a039f8ab87501
4105841fbd294c658f53c6e17eeaa23ff49ca770
21669bebff62a67486a4ee55a022534d6c59d5aaf4931b901a05097433e77786
GET /js/2950.f32fe8c6.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:18 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=540141
access-control-allow-origin: *
etag: W/"63d7c7fb-83ded"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 30 Jan 2023 13:36:59 GMT
cf-cache-status: HIT
age: 24179
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0E8zRyrj0REDMRcRNmvGA4KYzoqG5MtqVvMM1KJ8XtNGp6iygWhNvNB2YKXJNjBkVU94sUjfTO5iZB5V4lXUglRKPPvwNs8WA%2B2ZFS%2BonIOTPD5xwkRAGFBTtP5xiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce84eee990b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 33e403367d183257be0f03f28da923d2
a586e4052008741f8f535e7bd12a94bde81b264e
82ce104749546e6a6f76a8ddf19b67795784c06256581c13f499e80e4f713131
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d12e9ff2f182d3ce52d59d589ab5a61d
1d39c5eed0a766cbee2fe1f0729eab7472f56d7f
e675272e9b74782eb09ee52be90da7a92ba0cbe71fccba9bd8c4416e4817b13b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.amplitude.com/libs/amplitude-8.17.0-min.gz.js
54.230.245.185200 OK 27 kB URL HTTP/2 cdn.amplitude.com/libs/amplitude-8.17.0-min.gz.js
IP 54.230.245.185:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e5211b7cbee53b6912f07a1cd72a4582
097096657cc1484ad9509b2c990a81a48990efdc
008014793f2666c663f98c7a3405db81b2db301c6a3caf2c05e6e9556085aa78
GET /libs/amplitude-8.17.0-min.gz.js HTTP/1.1
Host: cdn.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wswqf.top
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
HTTP/2 200 OK
content-type: application/javascript
content-length: 27400
date: Sat, 14 Jan 2023 17:39:11 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Fri, 25 Mar 2022 19:53:18 GMT
etag: "e5211b7cbee53b6912f07a1cd72a4582"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: wr63ICD3duh0Opi8j2KDhI34Ow38BHG0
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CkpDkBlLcEpKb4Ih7KTBs4xVw7PZn0g6xew_a-TBKXOqwhqFQfwxTg==
age: 1392068
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2606090.js?sv=6
54.230.111.8200 OK 3.7 kB URL HTTP/2 static.hotjar.com/c/hotjar-2606090.js?sv=6
IP 54.230.111.8:0
File type ASCII text, with very long lines (7535)
Hash 3ef88967d6754defc1647cb7a3808291
e0a2a9d54e35f473b46cb5a6d0b1f456135badea
e0b56a51479edf41278884bc3ecbff4a22b8a9aeb067b20f9a7a9fe0ed195de5
GET /c/hotjar-2606090.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 20:19:51 GMT
cache-control: max-age=60
etag: W/9d39799ee72eaea20c1604662d84fb78
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NZMHSjNmIX13fvnAyyRmgQEOc1lI_uWb9raFpJK__qaInqcglrumCQ==
age: 27
X-Firefox-Spdy: h2
1win-cdn.com/js/desktop.84d979cf.js
104.26.4.11200 OK 31 kB URL HTTP/2 1win-cdn.com/js/desktop.84d979cf.js
IP 104.26.4.11:0
File type Unicode text, UTF-8 text, with very long lines (65495), with no line terminators
Hash 009baf07f404e85bb892ee0504ab1958
7cdc03a0e479fe48ab64c464b16a9698628e48db
de03c558c4c5a0f14083ec3e15eb4bcdfd0745806cdee6fab811b102341fb702
GET /js/desktop.84d979cf.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:18 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=119486
access-control-allow-origin: *
etag: W/"63d7c7fb-1d2be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 30 Jan 2023 13:36:59 GMT
cf-cache-status: HIT
age: 23949
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wbPzdOgpFjibCHUg0zpVcjvCss4FWiGKYx8RzL3JU0bDHAePnWgsjbE2FhZV8HMo4acz4csTDmms2aHN0oi0mtixQTvEzmBgop1xHN3Fv3y7C8WsBAMTuvKBdpO2nA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce84e3dd30b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
vars.hotjar.com/box-2722367854ce9702c28ea74c51e2a23f.html
54.230.111.75200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-2722367854ce9702c28ea74c51e2a23f.html
IP 54.230.111.75:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 8665e233ef6caaf010ca89793f27b6f8
5c593fa5f33e55b3081308b43e6e801b56c047f7
435a3ca7c1c49cbfac193647d056e46217e5c3f9c65c354974ad7acdfb8925ac
GET /box-2722367854ce9702c28ea74c51e2a23f.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Mon, 30 Jan 2023 16:06:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "8665e233ef6caaf010ca89793f27b6f8"
last-modified: Mon, 30 Jan 2023 16:05:37 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XseITYUgphMjwiTid5wt-3N2YzXbBtwkG_Ocy4gh469OwJyAd_aT9A==
age: 15253
X-Firefox-Spdy: h2
script.hotjar.com/modules.4b160a4831adaf5337e6.js
54.230.111.79200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.4b160a4831adaf5337e6.js
IP 54.230.111.79:0
File type Unicode text, UTF-8 text, with very long lines (48602)
Hash 3315b6999637291711ab85ba678211fa
d1bba723aa49e6276dfdb0f1313a9bf0b64be153
b3bd4f702044ae91c9227ce2d5c8411d3fec3abb82c9c1b7a9b69d2011c520e5
GET /modules.4b160a4831adaf5337e6.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
HTTP/2 200 OK
content-type: application/javascript
content-length: 68316
date: Mon, 30 Jan 2023 16:06:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "3315b6999637291711ab85ba678211fa"
last-modified: Mon, 30 Jan 2023 16:05:37 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KDJoHPp-RERy37jcYwJltV2YG8IqgnShy9w8YiMPzYN0YLvtOJXVBg==
age: 15253
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 396c3031580960c65849e5313b39f4fa
4ad76b65ca349c0f62654426bba44e49291df679
fa139f416c967887eac37e7b73a877fe06d9406192d27e85534aab9fc8904e70
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 20:20:19 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Fri, 03 Feb 2023 16:19:21 GMT
ETag: "4ad76b65ca349c0f62654426bba44e49291df679"
Last-Modified: Mon, 30 Jan 2023 16:19:22 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 951
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791ce852de671c12-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 33e403367d183257be0f03f28da923d2
a586e4052008741f8f535e7bd12a94bde81b264e
82ce104749546e6a6f76a8ddf19b67795784c06256581c13f499e80e4f713131
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:20:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 33e403367d183257be0f03f28da923d2
a586e4052008741f8f535e7bd12a94bde81b264e
82ce104749546e6a6f76a8ddf19b67795784c06256581c13f499e80e4f713131
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:20:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:20:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=2964973425935;gtm=2wg1p0;auiddc=1086282868.1675110032;~oref=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26
142.250.74.66200 OK 253 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=2964973425935;gtm=2wg1p0;auiddc=1086282868.1675110032;~oref=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (468), with no line terminators
Hash 7db356ee22b551c0f01ba7736a2c78b6
74975ac8aa94470760e41078f8147ce767ce9989
c3a3dddb2443bc8b4edbaed72e9fc6a704ae04568923f5b1b0bcd907112618a5
GET /ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=2964973425935;gtm=2wg1p0;auiddc=1086282868.1675110032;~oref=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26 HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12688802.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 20:20:19 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 253
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=730549449112.1256;~oref=https://1wswqf.top/
142.250.74.66200 OK 276 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=730549449112.1256;~oref=https://1wswqf.top/
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (519), with no line terminators
Hash 1072b894681b89d32643a42fd480ce2f
df426d4c7811b7f47bdfffb759190afcbe449fc2
ea93c49cb36d90170b31e7f8285c011809c0e2eedb747ce008d53e58a1a1ad2c
GET /ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=730549449112.1256;~oref=https://1wswqf.top/ HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://12572451.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 20:20:19 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 276
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/tag.js
77.88.21.119200 OK 74 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 77.88.21.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Hash a236c7014c1f1a1e52d356f59e5d665a
b66c638eb2346287364c37725819bbab1f409d66
ad2d57579e453af0eac49156840bcd1dcfbd802a82135af98f41f714d7e698f2
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
HTTP/2 200 OK
content-length: 73769
date: Mon, 30 Jan 2023 20:20:19 GMT
access-control-allow-origin: *
etag: "63c93a4b-12029"
expires: Mon, 30 Jan 2023 21:20:19 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
api.lab.amplitude.com/sdk/vardata
151.101.130.132200 OK 2 B URL HTTP/2 api.lab.amplitude.com/sdk/vardata
IP 151.101.130.132:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
OPTIONS /sdk/vardata HTTP/1.1
Host: api.lab.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,x-amp-exp-user
Referer: https://1wswqf.top/
Origin: https://1wswqf.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://1wswqf.top
access-control-allow-credentials: true
access-control-max-age: 1800
access-control-allow-methods: GET,POST,HEAD
access-control-allow-headers: authorization,x-amp-exp-user
x-amzn-trace-id: Root=1-63d82682-209d94d61f058b5a50126d6c
x-content-type-options: nosniff
accept-ranges: bytes
date: Mon, 30 Jan 2023 20:20:18 GMT
x-served-by: cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675110019.742283,VS0,VE172
vary: Origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1141ae65ad448fb3438690d5042af728
aa8b236bb1099c9440bfe3e98530939623250c03
e55eeaf5cd454042706c3e2d7d2b0211e91087b430cb5bae6b9e030392f57b4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:20:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:20:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a369a4445d1fccf2ce045c3c4c3f3d67
d6f618e6150a4f9ac6eb5df4a503141a635605a2
d62c7913686c10d4c4b8d691d533256534da77cecc9fcf3f8aa885380dcc148b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:20:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=2964973425935;gtm=2wg1p0;auiddc=1086282868.1675110032;~oref=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26
142.250.74.98200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=2964973425935;gtm=2wg1p0;auiddc=1086282868.1675110032;~oref=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=12688802;type=actio0;cat=allpa0;ord=1;num=2964973425935;gtm=2wg1p0;auiddc=1086282868.1675110032;~oref=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 20:20:19 GMT
expires: Mon, 30 Jan 2023 20:20:19 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=730549449112.1256;~oref=https://1wswqf.top/
142.250.74.98200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=730549449112.1256;~oref=https://1wswqf.top/
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=12572451;type=1m0c10;cat=all_p0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;gdpr=$%7BGDPR%7D;gdpr_consent=$%7BGDPR_CONSENT_755%7D;ord=1;num=730549449112.1256;~oref=https://1wswqf.top/ HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 20:20:19 GMT
expires: Mon, 30 Jan 2023 20:20:19 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:20:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1win-cdn.com/css/546.f10717d0.css
104.26.4.11200 OK 2.7 kB URL HTTP/2 1win-cdn.com/css/546.f10717d0.css
IP 104.26.4.11:0
File type ASCII text, with very long lines (11188), with no line terminators
Hash 5a12d25c034946d5b2725f72df526c19
e10566e078266109621629426d1821672a0ebfe8
01f2c5f6f8f2fe1ed1f5ffaea697eded7eac767cce82e3f33b4685963fde9774
GET /css/546.f10717d0.css HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:19 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
access-control-allow-origin: *
etag: W/"63c7c775-2bb4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
cf-cache-status: HIT
age: 1012505
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3qSe%2BMAJbvZycp2EFAKmSAoMl1ZQkaJMmXPsQQH%2BlBZaRD65%2Fupx3Jajj2Xz8tzhh3pvsBbrXmRKeTNbFFE45RpCFhxNKGAdymAVQjWe3aQtFLJKAhUQA7kN%2Fb%2B7uQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8556dfe0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/539.6905ae30.js
104.26.4.11200 OK 6.7 kB URL HTTP/2 1win-cdn.com/js/539.6905ae30.js
IP 104.26.4.11:0
File type Unicode text, UTF-8 text, with very long lines (22614), with no line terminators
Hash b62b67faf1b80ca7373b531b3213062a
5171deee6239efc4abdc7b680490609665a14d3f
aa78006b7ed4f0fb1c5adc20fe7446a4d9b8e20278f0c326108fd2e5316c3b53
GET /js/539.6905ae30.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:19 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=22657
access-control-allow-origin: *
etag: W/"63d7c7fa-5881"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 30 Jan 2023 13:36:58 GMT
cf-cache-status: HIT
age: 23043
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=atnB5oLboH7ADnEwNrXePTOYknVIdNLdD3iVYa2eqAQZqxffaR7AcBXzKvsNKN1mYOPhrqxkfztrdCrKK2P1xkAEiXYEMd15PUE2LmNQfSas9n05zUdVKFCUWdlz6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8555dfd0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6d787261fba419d9ad7746171cb6f4f
caa967022afb8595f65ce534bf1c7e4d9cba9a8b
6fbf3bc61da4dee564b7dfc67e60415ddec9d470943dc801721bfcd0b49dc338
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6FBF3BC61DA4DEE564B7DFC67E60415DDEC9D470943DC801721BFCD0B49DC338"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19236
Expires: Tue, 31 Jan 2023 01:40:55 GMT
Date: Mon, 30 Jan 2023 20:20:19 GMT
Connection: keep-alive
1win-cdn.com/css/7057.6c4e5731.css
104.26.4.11200 OK 11 kB URL HTTP/2 1win-cdn.com/css/7057.6c4e5731.css
IP 104.26.4.11:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1f7edd542de563b439abb8dabe9eec26
d64dd47ce942189e02b357f066650aa96f5ae5fd
df8d20f3f70c6facb70e6fedcf64f88f3ef24e13f082f17373285fffab41e956
GET /css/7057.6c4e5731.css HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:19 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=68681
access-control-allow-origin: *
etag: W/"63cfcc7b-10c49"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 24 Jan 2023 12:18:03 GMT
cf-cache-status: HIT
age: 545387
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=suRPOF43esEjeGKanc5MEjaHzX39536nK6AcEnXqvxgkc%2FvlDy%2Ff1A%2BMTCP%2BlNyDBdmbXxWr85ws4E%2BY7jGUOgRl6Oat5Xs%2FIfLKW2vHxgMK%2B3gCnVl8KDmvBmlkFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8555df40b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win.direct/socket.io/?Language=en&EIO=3&transport=websocket
134.122.54.186101 Switching Protocols 0 B URL HTTP/1.1 1win.direct/socket.io/?Language=en&EIO=3&transport=websocket
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?Language=en&EIO=3&transport=websocket HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://1wswqf.top
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: FfV5jTENJ7tBKOIoblCARw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Sec-Websocket-Accept: 924UoziQF5soe5cAflM12ttXmU4=
Sec-Websocket-Extensions: permessage-deflate
Set-Cookie: core-sticky=e43f6d3f3ec2cddb; Path=/; HttpOnly
Upgrade: websocket
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7545
Expires: Mon, 30 Jan 2023 22:26:04 GMT
Date: Mon, 30 Jan 2023 20:20:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7545
Expires: Mon, 30 Jan 2023 22:26:04 GMT
Date: Mon, 30 Jan 2023 20:20:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7545
Expires: Mon, 30 Jan 2023 22:26:04 GMT
Date: Mon, 30 Jan 2023 20:20:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7545
Expires: Mon, 30 Jan 2023 22:26:04 GMT
Date: Mon, 30 Jan 2023 20:20:19 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e04b9eaf7449828136ad59e4c9d69f1
b820be4ed885dcf288eb6460c57e1fa7b1c7c476
df75cf7183d401a19655aab025d08ad2c498573c88b32e9b258d951d2993b936
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7679
x-amzn-requestid: 0c7983d5-6040-44e9-b394-21c3784702a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEtEfHoAMFaNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-54c55dbd09ca642048af8916;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VHh2SQ21xoDoBnGvM2kRiposhXuCE-DdWW1bM35kEykjbHYmhsldVA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:51:22 GMT
age: 80937
etag: "b820be4ed885dcf288eb6460c57e1fa7b1c7c476"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
1wswqf.top/firebase/8.1.1/firebase-messaging.js
190.115.19.101200 OK 23 kB URL HTTP/2 1wswqf.top/firebase/8.1.1/firebase-messaging.js
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
Hash 04f9564ac3a113cd8e80ef2723a5aeb2
02eb97f32822489088049a3af6d3d230932c1942
599cd624a06fffba7e3d0742d1414387dbe24fbc95159e7ca256a8823a18c473
GET /firebase/8.1.1/firebase-messaging.js HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/sw.db344b25.js
Cookie: sub_ids=sub2=426; visit_domain=1wswqf.top; partner_key=ydwg; core-sticky=http://10.233.80.81:80
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Mon, 30 Jan 2023 20:20:18 GMT
content-type: application/javascript
last-modified: Mon, 30 Jan 2023 13:37:13 GMT
etag: W/"63d7c809-9f25"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: DENY
content-encoding: gzip
X-Firefox-Spdy: h2
1win-cdn.com/js/10.fff54e18.js
104.26.4.11200 OK 8.7 kB URL HTTP/2 1win-cdn.com/js/10.fff54e18.js
IP 104.26.4.11:0
File type ASCII text, with very long lines (11261), with no line terminators
Hash 9614cf4bcf3d78266f28b911fc7c4853
99615e12e0d8e728994d9d8604be4385ab80380e
d6d65d1ed29f7b01b2df8ef5721d3f504b25d0530ba11992313d785282895ae0
GET /js/10.fff54e18.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:19 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=11301
access-control-allow-origin: *
etag: W/"63cfcc79-2c25"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 24 Jan 2023 12:18:01 GMT
cf-cache-status: HIT
age: 545387
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FHvLzKrJECmFB%2F5QRHdiKw2F2hK6X9FQn9po8CoTXikLFXpcy%2FWRNiJyCH4V1dmyMaI46dpFs3iE%2BfU27v5y8Rzzm6Y9w1U7Xx%2F6M8nLWxtnIg%2BuVMGPbBTUYbIZ7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8555dec0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/1883.ce7803cd.js
104.26.4.11200 OK 17 kB URL HTTP/2 1win-cdn.com/js/1883.ce7803cd.js
IP 104.26.4.11:0
File type ASCII text, with very long lines (13690), with no line terminators
Hash 663a2c307dec5f8070be0ec1b39a1d99
7b7f36e8cdb6aaad62b07475c5e6fae157969ae8
d8176bd71d47f5e0bd8e72149f2b7aef3b006e41e04a5f55f2b413537d6c6337
GET /js/1883.ce7803cd.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:19 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=13732
access-control-allow-origin: *
etag: W/"63a42a53-35a4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3406681
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cz8UK45msWY8UNd4lNWypsp54U0daEtPACwMpXWq9HMkA%2FIm3%2FFYcrpQVkC2MBI9q0PHsLLJn2%2B1ehsUKOlj1SBVFKXbDLvDBYNYdFyDIQfklrMakDjeWVb1rjp5zg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8555de30b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1wswqf.top/pwaNotFound.html
190.115.19.101200 OK 15 kB URL HTTP/2 1wswqf.top/pwaNotFound.html
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
Hash da00923f24014fb2449377fcb9829b9e
8a5f6db3f21947710a24fe8b7c9987abdcb831be
6bc29e5a75d67cf3bcae9772d5d49a20ac492e27717304d0ccfe17a1d073c0cb
GET /pwaNotFound.html HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1wswqf.top/sw.db344b25.js
Connection: keep-alive
Cookie: sub_ids=sub2=426; visit_domain=1wswqf.top; partner_key=ydwg; core-sticky=http://10.233.80.81:80; 1w_lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Mon, 30 Jan 2023 20:20:18 GMT
content-type: text/html
last-modified: Mon, 30 Jan 2023 13:37:13 GMT
etag: W/"63d7c809-136c"
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
1win-cdn.com/js/5862.39aa5820.js
104.26.4.11200 OK 26 kB URL HTTP/2 1win-cdn.com/js/5862.39aa5820.js
IP 104.26.4.11:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash f939e5b800bccdf5dfce523900015767
91eb4334ac1c489062d97566f817f7f8aa9f7cd2
454d5cfaf53aea7f6a45349852c851b87111b49c7bb21a26c739140e1360228a
GET /js/5862.39aa5820.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:19 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=95351
access-control-allow-origin: *
etag: W/"63c68016-17477"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 17 Jan 2023 11:01:42 GMT
cf-cache-status: HIT
age: 1156217
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rcemNALflkjM8zUCqz0W8IY0ItW5v2ww%2B3QjpoapUyAVvYELID3lNVc5S1AhDcBUiQ%2FX6RC9agJrrLuTQEnxa1z8BcqfAm7g0TtMbPQmzySb1FBdH8tefpBJqQKlFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8555de50b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/7057.258afbfb.js
104.26.4.11200 OK 26 kB URL HTTP/2 1win-cdn.com/js/7057.258afbfb.js
IP 104.26.4.11:0
File type Unicode text, UTF-8 text, with very long lines (65531), with no line terminators
Hash 249abcc42970b607c31931e9a9a9f281
697f28979a78d80b71bdf8a41cd4569d50fda8d4
23fe669a4c1406fac1762a40dfc73aa3aaa7bbca9645a3619f2fcf43a7fc3b77
GET /js/7057.258afbfb.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:19 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=99219
access-control-allow-origin: *
etag: W/"63d7c7fa-18393"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 30 Jan 2023 13:36:58 GMT
cf-cache-status: HIT
age: 23489
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uqjObExmRQheGG%2F1u44ERY%2FECbw1YkEm0UscwakAj19k8Brr1SK7XCFlFN7vvcxDBHr1esb%2FsTmK5lYe7fwOV4bvZLCgBVjperhzX9hywP8XfBIn5A980CHnqYYeyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8555df60b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1wswqf.top/1.txt?1675110032934
190.115.19.101200 OK 8 B URL HTTP/2 1wswqf.top/1.txt?1675110032934
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
Hash 48cfef8b3001a8c220dc815870f9916e
b77e871e72a3083c4bb31d6bcb5a257557181269
3d2c759213949af96fbdcd756a5146f64a9acadf9625bd7a9feb04bb4517b4f9
GET /1.txt?1675110032934 HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1wswqf.top/sw.db344b25.js
Connection: keep-alive
Cookie: sub_ids=sub2=426; visit_domain=1wswqf.top; partner_key=ydwg; core-sticky=http://10.233.80.81:80; 1w_lang=en; _gcl_au=1.1.1086282868.1675110032; amp_494ccc=_ICULU0A5383qxRowsrb5X...1go25d95k.1go25d95k.0.0.0; _ga_548949LWLW=GS1.1.1675110032.1.0.1675110032.0.0.0; _ga=GA1.1.474623364.1675110033; _ym_uid=1675110033667513241; _ym_d=1675110033; _hjSessionUser_2606090=eyJpZCI6ImM1MGQ5MmU3LTIyY2EtNWU0Yy1iYmNkLWZlNTg5ZDdkYmE5OSIsImNyZWF0ZWQiOjE2NzUxMTAwMzI2NDcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_2606090=eyJpZCI6IjBjZmRmYzM1LTMwMjItNDgwYi05YjJkLTc1ZDVjNzRlMWZlYyIsImNyZWF0ZWQiOjE2NzUxMTAwMzI4NzUsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=1; _hjHasCachedUserAttributes=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Mon, 30 Jan 2023 20:20:19 GMT
content-type: text/plain
content-length: 8
last-modified: Mon, 30 Jan 2023 13:37:13 GMT
etag: "63d7c809-8"
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
mc.yandex.ru/watch/92006234/1?wmode=7&page-url=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1065%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A627315863657%3Ahid%3A777433233%3Az%3A0%3Ai%3A20230130202032%3Aet%3A1675110033%3Ac%3A1%3Arn%3A528617114%3Arqn%3A1%3Au%3A1675110033667513241%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A150%2C206%2C118%2C0%2C389%2C0%2C%2C162%2C0%2C%2C%2C%2C1287%3Aco%3A0%3Ans%3A1675110030637%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675110033%3At%3A1win%20-%20Loading&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
77.88.21.119200 OK 407 B URL HTTP/2 mc.yandex.ru/watch/92006234/1?wmode=7&page-url=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1065%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A627315863657%3Ahid%3A777433233%3Az%3A0%3Ai%3A20230130202032%3Aet%3A1675110033%3Ac%3A1%3Arn%3A528617114%3Arqn%3A1%3Au%3A1675110033667513241%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A150%2C206%2C118%2C0%2C389%2C0%2C%2C162%2C0%2C%2C%2C%2C1287%3Aco%3A0%3Ans%3A1675110030637%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675110033%3At%3A1win%20-%20Loading&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP 77.88.21.119:0
File type JSON data\012- , ASCII text, with very long lines (407), with no line terminators
Hash a19b19469d27eb423ed13992b18505fa
f867cce4e00b3240c6a6af3a7b1e9aecf62d904c
65aafd0dc3e859f86299444646f2ad4c0f4e3234308e7038b2d59d728ce5c302
GET /watch/92006234/1?wmode=7&page-url=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1065%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A627315863657%3Ahid%3A777433233%3Az%3A0%3Ai%3A20230130202032%3Aet%3A1675110033%3Ac%3A1%3Arn%3A528617114%3Arqn%3A1%3Au%3A1675110033667513241%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A150%2C206%2C118%2C0%2C389%2C0%2C%2C162%2C0%2C%2C%2C%2C1287%3Aco%3A0%3Ans%3A1675110030637%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675110033%3At%3A1win%20-%20Loading&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wswqf.top
Referer: https://1wswqf.top/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 407
date: Mon, 30 Jan 2023 20:20:19 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://1wswqf.top
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Mon, 30-Jan-2023 20:20:19 GMT
last-modified: Mon, 30-Jan-2023 20:20:19 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
1win-cdn.com/js/4709.abb5ceeb.js
104.26.4.11200 OK 15 kB URL HTTP/2 1win-cdn.com/js/4709.abb5ceeb.js
IP 104.26.4.11:0
File type ASCII text, with very long lines (27827), with no line terminators
Hash 58b4eba4adbc0dbee1eb97c741f21129
00488389f22b60949d425bf1872925bccf72ce46
19c9b2ffffdfd12d7a38709d29aa4043ea08a63b17aac63e43c4dc3b3e38b000
GET /js/4709.abb5ceeb.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=27869
access-control-allow-origin: *
etag: W/"63d39636-6cdd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 27 Jan 2023 09:15:34 GMT
cf-cache-status: HIT
age: 292945
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6gBw17xABxMW0LBLx23kyu9hHDKf8LIyiOjNpkLCbXzlWwY%2BipabwSYlT39lISidR0t2RSQcNo6ZVme48pie5imZPqdIAuCwvGElcw%2B6VW8dVjzxpIY8fVOOuI79MQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8595ab90b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/casino-mentor.f6b6387a-172.png
104.26.4.11200 OK 2.0 kB URL HTTP/2 1win-cdn.com/img/casino-mentor.f6b6387a-172.png
IP 104.26.4.11:0
File type PNG image data, 172 x 50, 8-bit colormap, non-interlaced\012- data
Hash 1c8fa7ed406056b760b1171b49f8fd73
601643736f0c6bdce0531f5bc5252a96879d1ad1
c4ff5a6ee1315f5e5eeb287189912baaae7e032f178ccad3c575d6f8d99d4916
GET /img/casino-mentor.f6b6387a-172.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: image/png
content-length: 1976
last-modified: Wed, 21 Dec 2022 11:04:29 GMT
etag: "63a2e83d-7b8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3474749
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vrvaC%2BMCnPzNLHwIfPOZziEn72IgqtxDlVtpy9NWPSQBuSTEP4gZMdxS9FPZ%2B3F9Ydt9ckLcASiKDbz43E0qtLGAP6KIZczF8Qci3yKKf8d3UEV7ct86LRdkhwNfTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8598aee0b45-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/best-bitcoin-casino.9c1716b1-50.png
104.26.4.11200 OK 1.0 kB URL HTTP/2 1win-cdn.com/img/best-bitcoin-casino.9c1716b1-50.png
IP 104.26.4.11:0
File type PNG image data, 50 x 50, 8-bit colormap, non-interlaced\012- data
Hash d17d9ae707b485a356eec325e36aa505
650fc9b7790343d87eacfa5f5466ecf659f3b9a7
5bca66d0040f92e3f15089ebc1f46687cf7bde68d46db0fb286113aaba9ac57f
GET /img/best-bitcoin-casino.9c1716b1-50.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: image/png
content-length: 1035
last-modified: Wed, 21 Dec 2022 11:04:29 GMT
etag: "63a2e83d-40b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3474749
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8IDOhEWeoTdfVsWbMBbeWaffZw1Ge88wDhm6FRBxi8v8tWF%2FfVzQIjk5Iy8%2FghhwBd%2FsV93ks72HoTqZH66CagZoLS6Hs34AWxEjB2urRukFEF9AeK5KhmxWo7NcTA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8598aef0b45-OSL
X-Firefox-Spdy: h2
1wswqf.top/sw.db344b25.js
190.115.19.101304 Not Modified 0 B URL HTTP/2 1wswqf.top/sw.db344b25.js
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sw.db344b25.js HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: sub_ids=sub2=426; visit_domain=1wswqf.top; partner_key=ydwg; core-sticky=http://10.233.80.81:80; 1w_lang=en; _gcl_au=1.1.1086282868.1675110032; amp_494ccc=_ICULU0A5383qxRowsrb5X...1go25d95k.1go25d95k.0.0.0; _ga_548949LWLW=GS1.1.1675110032.1.0.1675110032.0.0.0; _ga=GA1.1.474623364.1675110033; _ym_uid=1675110033667513241; _ym_d=1675110033; _hjSessionUser_2606090=eyJpZCI6ImM1MGQ5MmU3LTIyY2EtNWU0Yy1iYmNkLWZlNTg5ZDdkYmE5OSIsImNyZWF0ZWQiOjE2NzUxMTAwMzI2NDcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_2606090=eyJpZCI6IjBjZmRmYzM1LTMwMjItNDgwYi05YjJkLTc1ZDVjNzRlMWZlYyIsImNyZWF0ZWQiOjE2NzUxMTAwMzI4NzUsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=1; _hjHasCachedUserAttributes=true
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
If-Modified-Since: Mon, 30 Jan 2023 13:37:13 GMT
If-None-Match: W/"63d7c809-18bf"
Cache-Control: max-age=0
TE: trailers
HTTP/2 304 Not Modified
server: openresty/1.19.9.1
date: Mon, 30 Jan 2023 20:20:20 GMT
last-modified: Mon, 30 Jan 2023 13:37:13 GMT
etag: "63d7c809-18bf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: DENY
X-Firefox-Spdy: h2
1win-cdn.com/js/icons-pack-sports-promotion.9bb32256.js
104.26.4.11200 OK 9.8 kB URL HTTP/2 1win-cdn.com/js/icons-pack-sports-promotion.9bb32256.js
IP 104.26.4.11:0
File type ASCII text, with very long lines (19195), with no line terminators
Hash 7c5f1a1316811bc96f6b4bf4373ddc0b
7906094b0b8bca465b6eabcf57c4bae378b8550f
2d7aab14bc0b86e675e0e9e1161e838d7f1a5036c9a065960edf1c098d7016e0
GET /js/icons-pack-sports-promotion.9bb32256.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=19260
access-control-allow-origin: *
etag: W/"63a42a53-4b3c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3406709
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MsJbXUNQCxszuj2KPIKUwV3QzBiaqVwRKvUypLQVBM8GGL9TbYkKiuIq1MqpDBFLM2jxwVRw8ZOsmMt52PgAqfOPeS0k2uRiGJ%2BMSDpbMUjgYL%2BO4NToQS7wLvwFSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8598aec0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/icons-pack-payment-full.6272cc58.js
104.26.4.11200 OK 32 kB URL HTTP/2 1win-cdn.com/js/icons-pack-payment-full.6272cc58.js
IP 104.26.4.11:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 36bba88c24d7b6665755b570ac4a4f63
ee86271cf6126ee55c484180d870ce6c095d899d
b007552dc8d57845d45a34ecc4ead06d087d5741e3a517707c3b36d35bee060f
GET /js/icons-pack-payment-full.6272cc58.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=112398
access-control-allow-origin: *
etag: W/"63c7c775-1b70e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
cf-cache-status: HIT
age: 1005276
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ru0kUJ9wLAiPOaX1zBHayPLoHwGS9Kj6vag%2BIOq0VtuWQAFJBYkQA92F8j2QROhGUTaLpCdQSRC4M%2BBWfFBNeIV%2FDO9pi%2FKrjumQb8zyaYduGuvEi1hlDFh9TzXPAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8598aed0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/free-money-link-image.4433e497-120.png
104.26.4.11200 OK 6.3 kB URL HTTP/2 1win-cdn.com/img/free-money-link-image.4433e497-120.png
IP 104.26.4.11:0
File type PNG image data, 120 x 97, 8-bit colormap, non-interlaced\012- data
Hash 8c77c77c33189721a876fefeadf5ca83
0b197aa9e55fe824b28e55b9e0591f8631b6c3c8
b2a4295182c1f7c9619a4d2f842be12f4cbc6c4bb8d2ea607f06ff3bc4099486
GET /img/free-money-link-image.4433e497-120.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: image/png
content-length: 6292
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: "63a42a53-1894"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404811
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Btl%2F2v1IjaW3aJfGrxtejEYjnj%2FAYYJbpNrwNF8COZUxZEcV21HQoQAJa3lY8Xs5Q9Fd0Q0ppQLXb3TqrrcLWw6%2B%2BCoeCYlTmgYJIE4CDoXUUFeeiE8aM26iAcf0wg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce859cb3d0b45-OSL
X-Firefox-Spdy: h2
1win-cdn.com/js/icons-pack-home.e8bf03cf.js
104.26.4.11200 OK 26 kB URL HTTP/2 1win-cdn.com/js/icons-pack-home.e8bf03cf.js
IP 104.26.4.11:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 402073f564b3899aff8009cdbdb570f5
0f5d353e24113ad2175e5eb2999bed083d2ae249
b3d2fbca1e17be3dae3347aac11fb760d054f051a5143ac7b0454dc111bfe536
GET /js/icons-pack-home.e8bf03cf.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=80069
access-control-allow-origin: *
etag: W/"63a42a53-138c5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3406708
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hXSve7n6vnzEkQDJ4E7N7QYktGJh13FHPyB5RLL78Vy7WlW1rcD3nLzUh%2BCNIVLyLQxmzpet0BTD8rsmYP7F5OrVr2sPFIN%2B5tVocx%2BLbmoEN6nVCYmKd3RqUWjLxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8597ae20b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/fonts/SFNSDisplay.2b5dc965.woff2
104.26.4.11200 OK 295 kB URL HTTP/2 1win-cdn.com/fonts/SFNSDisplay.2b5dc965.woff2
IP 104.26.4.11:0
File type Web Open Font Format (Version 2), TrueType, length 295048, version 1.0\012- data
Size 295 kB (295048 bytes)
Hash a54910c24518869ec095d604c76adb74
cd8ed32dd18b7f672bf502847242b0a9eee4c2c8
efdc0e9caf5e1b3f650e8ecd022ecd000bb070e1b0cf359eeb228603c325384b
GET /fonts/SFNSDisplay.2b5dc965.woff2 HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wswqf.top
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1win-cdn.com/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: application/octet-stream
content-length: 295048
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: "63d124be-48088"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 359293
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sjuiy07OPNrKGuFoPyshrYINfH3Ee33kkcbSoi9YBeG3ZeEvp98LT1aQB2hshq3cyuwsuGEweyEHni6e8XXhdc8FPtaJ7CN6eo7ukCBLVBQnLwspBUbK77kdkTyOlw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce859c8adb4ff-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-tvbet-frame@2.52cde99d-256.png
104.26.4.11200 OK 4.5 kB URL HTTP/2 1win-cdn.com/img/sprite-tvbet-frame@2.52cde99d-256.png
IP 104.26.4.11:0
File type PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Hash 40212134fb58f842529fa66647f1b7d2
e6d355ea609129942cde7b9d47e587ae5cc8596c
c04666bc555dfa0fbd2b5da4984cb813b58eab772e1fa1efa2fd2e62c6d11f7b
GET /img/sprite-tvbet-frame@2.52cde99d-256.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: image/png
content-length: 4458
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: "63a42a53-116a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404811
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nQLBz00EHtdFUIyx%2FJ4unUFBm1C36KHrxIyn4Muqc6i52rS8LQDkyQIX7mmBpYIPx%2BZqHQmk8kVcfJ3CxRTBfn1AAOLiYrtQFycaUa7CfbdfXkW2u%2Ftj6dD3o%2FqefA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce859cb420b45-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-roulette-frame@2.76ea5a24-256.png
104.26.4.11200 OK 30 kB URL HTTP/2 1win-cdn.com/img/sprite-roulette-frame@2.76ea5a24-256.png
IP 104.26.4.11:0
File type PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Hash fa83f73358ed73cbd8a0faf0d8e6c019
586b95f1e5e1945abd0248e995f79274463c1cd8
ede3848497b96e7defd4c5d53133cf2e374487411186a66a6146191ae5692f77
GET /img/sprite-roulette-frame@2.76ea5a24-256.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: image/png
content-length: 29770
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: "63a42a53-744a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404810
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l%2ByblK0dMl8PIjyYtpjLFpT7%2Fan2tBiDnp6PZq%2BDU2VERwnfcmXiT%2F1XA5SDVH%2BpMy3J%2BEepPxZPBN%2BXAKLcl2HRvQ5c3V5RkpL2oOSebHd2qSfbnlKur4X6y%2Fxidg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce859db570b45-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-tvbet@2.888adc8e-256.webp
104.26.4.11200 OK 354 kB URL HTTP/2 1win-cdn.com/img/sprite-tvbet@2.888adc8e-256.webp
IP 104.26.4.11:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 354 kB (353842 bytes)
Hash 8df817e5ef0af5dc8279d3f20cae9bc3
12c85bcc74a48053c92f3f75ce3c14e1a19e46d3
61a0f98511e6c60430ab044d1f80e1c9eff83f577064d465cc5f893ba3ce0fee
GET /img/sprite-tvbet@2.888adc8e-256.webp HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: image/webp
content-length: 353842
last-modified: Mon, 30 Jan 2023 13:36:59 GMT
etag: "63d7c7fb-56632"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: HIT
age: 1834
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pP0wWuzyWxjDsdD00HTg%2Flr5WhYDjrTl%2Bzn1ySAf0x4aj97DfZMAduhPUawtgk%2Be2jzjKI1qek14j70hR5qOFryXjRpmNd4SIB6rsW3qkTOebFz0TL5mrfssZzO5jQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce859db550b45-OSL
X-Firefox-Spdy: h2
1win-cdn.com/js/4801.2c1c51b1.js
104.26.4.11200 OK 27 kB URL HTTP/2 1win-cdn.com/js/4801.2c1c51b1.js
IP 104.26.4.11:0
File type ASCII text, with very long lines (25513), with no line terminators
Hash e3dc974e587e69f3984625a66f77bc99
5f70da47f6e928ad84c7361339ac6bbd83e523a7
f207bf7aa2d45eabe0758869fd828d58114264323d69868f5402f7c9ffec5e3e
GET /js/4801.2c1c51b1.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=25555
access-control-allow-origin: *
etag: W/"63a42a53-63d3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3406709
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e8Kc0gAttw0xcyuIKAXmX8ZFPi0JFZh16%2BgoV%2FclEBq0rDfm0yd%2Br4N2BgL%2B%2FSGUoqmiBMyOqhq59g4V83C%2F5VlhYICS%2BsTqnXuJBlkO0fa4z6NhTBiy7X0DrfmFeg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8594aa50b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/sprite-poker-frame@2.1caa31af-256.png
104.26.4.11200 OK 10 kB URL HTTP/2 1win-cdn.com/img/sprite-poker-frame@2.1caa31af-256.png
IP 104.26.4.11:0
File type PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Hash 74023900d89b98987ea3248f4a89a218
4ea53a2415cf89647c40a32c69b50bde861a40ed
484183c9f4d5b2d68649d3025af4d2b95a5cb71f40a1cf960d62e0e3560162ab
GET /img/sprite-poker-frame@2.1caa31af-256.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: image/png
content-length: 10453
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: "63a42a53-28d5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404810
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9OSF084RmOVnhtryW%2F9o4gH955PKp6mt%2Bg3s3m47qTPEoQ17kpdd4IWBIpe54fsyPWKwGZIF3PQ8swmhTI9u%2FKvJJxOcLFAOQt5qhQrl4QKT8ohIocko78XR3yB%2Byg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce85a0b950b45-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/pwa_android_en.b229a444-690.png
104.26.4.11200 OK 38 kB URL HTTP/2 1win-cdn.com/img/pwa_android_en.b229a444-690.png
IP 104.26.4.11:0
File type PNG image data, 690 x 450, 8-bit colormap, non-interlaced\012- data
Hash 8b6daeaca5784288934eb5c3dbc3401d
2df52222cb03510733d5f5c616278143e7f93f2d
53ee238e1169d7940016da0159e72a214403576447cf1b8cb384942a6200d191
GET /img/pwa_android_en.b229a444-690.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: image/png
content-length: 37637
last-modified: Thu, 22 Dec 2022 11:20:11 GMT
etag: "63a43d6b-9305"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3400481
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gu1OgU1%2BZeBxr3wGnTii1exTEkuPlrFlBSWbnmXAO%2F6mO1WOmpCSQZGu6CWSIKHzTufHMvs7EXHgh%2B8dWn5uY0bbCxB0W72ZBrxS1WUaIp3C7BnyqbJ%2FcfJ5ehzzow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce85a0ba10b45-OSL
X-Firefox-Spdy: h2
1win-cdn.com/css/3590.4152629f.css
104.26.4.11200 OK 727 kB URL HTTP/2 1win-cdn.com/css/3590.4152629f.css
IP 104.26.4.11:0
File type ASCII text, with very long lines (30877), with no line terminators
Size 727 kB (726563 bytes)
Hash 4f609d532772f830bd0dad7d2e28df50
1da6acdb2898f9450ae3a1c26b2be7b6d49c011f
a45baf334fd706089e72d74e16756a22569517830fbdd2dac0fe18d10f1c9c05
GET /css/3590.4152629f.css HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=30879
access-control-allow-origin: *
etag: W/"63cfa92d-789f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 24 Jan 2023 09:47:25 GMT
cf-cache-status: HIT
age: 554576
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E5Y%2FFTj13pPmMBDFw%2F9S7Vd%2FBr40ZbuujpckvtB8d05ugrY7tgUD5rMvmTa9NPDtf9TXgNvkOhct1ah1E8zOwF92M%2BlBrYEoc5KvQut2LnVBogyWAKchguhzBWzPiw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8595abc0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/pwa_ios_en.f08ddb1e-690.png
104.26.4.11200 OK 39 kB URL HTTP/2 1win-cdn.com/img/pwa_ios_en.f08ddb1e-690.png
IP 104.26.4.11:0
File type PNG image data, 690 x 450, 8-bit colormap, non-interlaced\012- data
Hash 2b063a8e2fb87b84cbf377d7a7fd389e
5c12f02ca086902c7fd9a5bd5de9eabce82c22a1
aa8f787e4db589a38a5c5a56bdb03f69329bfedc64649454f9fd370b78820b49
GET /img/pwa_ios_en.f08ddb1e-690.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: image/png
content-length: 39066
last-modified: Thu, 22 Dec 2022 11:20:11 GMT
etag: "63a43d6b-989a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3400480
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5O8C8d%2B1NoJEHyVq96YNy3RBr3UEU4%2BOz8UgyERcEMsPXLzuH3If1%2FBmcv8S28PeEPmM4C1BrwBQzb7XxWi9Wmha1HEI4Aghpmh2pSKnO5D9Mrwsndy5cskmHj0erA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce85a0ba50b45-OSL
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2 B URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://1wswqf.top/
Origin: https://1wswqf.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-type: text/plain; charset=utf-8
date: Mon, 30 Jan 2023 20:20:20 GMT
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
set-cookie: core-sticky=16a89d5d17de93d9; Path=/; HttpOnly
x-powered-by: Express
content-length: 2
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2 B URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://1wswqf.top/
Origin: https://1wswqf.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-type: text/plain; charset=utf-8
date: Mon, 30 Jan 2023 20:20:20 GMT
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
set-cookie: core-sticky=3bff0df57a815b91; Path=/; HttpOnly
x-powered-by: Express
content-length: 2
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2 B URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://1wswqf.top/
Origin: https://1wswqf.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-type: text/plain; charset=utf-8
date: Mon, 30 Jan 2023 20:20:20 GMT
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
set-cookie: core-sticky=158ca94b6d68c5bb; Path=/; HttpOnly
x-powered-by: Express
content-length: 2
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2 B URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://1wswqf.top/
Origin: https://1wswqf.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-type: text/plain; charset=utf-8
date: Mon, 30 Jan 2023 20:20:20 GMT
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
set-cookie: core-sticky=ed3f39e7fa8b2df7; Path=/; HttpOnly
x-powered-by: Express
content-length: 2
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2 B URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://1wswqf.top/
Origin: https://1wswqf.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-type: text/plain; charset=utf-8
date: Mon, 30 Jan 2023 20:20:20 GMT
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
set-cookie: core-sticky=4c19cd8fc84bc7; Path=/; HttpOnly
x-powered-by: Express
content-length: 2
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2 B URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://1wswqf.top/
Origin: https://1wswqf.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-type: text/plain; charset=utf-8
date: Mon, 30 Jan 2023 20:20:20 GMT
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
set-cookie: core-sticky=51bb0d365f2cc9d6; Path=/; HttpOnly
x-powered-by: Express
content-length: 2
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 667f2c02cead780538e445d0571bbeff
a68b9ac6c84f66d76b49ca6ea1e19604e55fc0f7
b53fd18961e7dd2a72bdd54c8bdce035ac698af6ec7964d7d4dd389a2c3c4ac2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B53FD18961E7DD2A72BDD54C8BDCE035AC698AF6EC7964D7D4DD389A2C3C4AC2"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14317
Expires: Tue, 31 Jan 2023 00:18:57 GMT
Date: Mon, 30 Jan 2023 20:20:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 667f2c02cead780538e445d0571bbeff
a68b9ac6c84f66d76b49ca6ea1e19604e55fc0f7
b53fd18961e7dd2a72bdd54c8bdce035ac698af6ec7964d7d4dd389a2c3c4ac2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B53FD18961E7DD2A72BDD54C8BDCE035AC698AF6EC7964D7D4DD389A2C3C4AC2"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14661
Expires: Tue, 31 Jan 2023 00:24:41 GMT
Date: Mon, 30 Jan 2023 20:20:20 GMT
Connection: keep-alive
1win-cdn.com/img/sprite-dice@2.6e1ac0ed-256.webp
104.26.4.11200 OK 430 kB URL HTTP/2 1win-cdn.com/img/sprite-dice@2.6e1ac0ed-256.webp
IP 104.26.4.11:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 430 kB (429680 bytes)
Hash abaa6833958bdc5427e6fa573cbfa70a
d43989916cc382e4e3d983933d9cd52a7d1dbeb2
51ba8ea694483e38020360731af53be7cd411671786008119b70b2a320e3bd92
GET /img/sprite-dice@2.6e1ac0ed-256.webp HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: image/webp
content-length: 429680
last-modified: Mon, 30 Jan 2023 13:36:59 GMT
etag: "63d7c7fb-68e70"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lUWks1N3eeEo4kd0KEYsB6Sm9Nib7i5y%2FpKjeEr%2B9E7MjF1lUNV%2BUuybrZbdoGIqneCvZoPEcYzrBYDhQHTGqd1asiKiO%2B9NG39An7vwqKT2YWeR5NLiaB3a4I9SRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce85a0b940b45-OSL
X-Firefox-Spdy: h2
mc.yandex.ru/watch/92006234?wmode=7&page-url=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1065%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A627315863657%3Ahid%3A777433233%3Az%3A0%3Ai%3A20230130202032%3Aet%3A1675110033%3Ac%3A1%3Arn%3A528617114%3Arqn%3A1%3Au%3A1675110033667513241%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A150%2C206%2C118%2C0%2C389%2C0%2C%2C162%2C0%2C%2C%2C%2C1287%3Aco%3A0%3Ans%3A1675110030637%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675110033%3At%3A1win%20-%20Loading&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
77.88.21.119302 Found 361 kB URL HTTP/2 mc.yandex.ru/watch/92006234?wmode=7&page-url=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1065%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A627315863657%3Ahid%3A777433233%3Az%3A0%3Ai%3A20230130202032%3Aet%3A1675110033%3Ac%3A1%3Arn%3A528617114%3Arqn%3A1%3Au%3A1675110033667513241%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A150%2C206%2C118%2C0%2C389%2C0%2C%2C162%2C0%2C%2C%2C%2C1287%3Aco%3A0%3Ans%3A1675110030637%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675110033%3At%3A1win%20-%20Loading&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 77.88.21.119:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 361 kB (360930 bytes)
Hash 3da44652926631bc4fc847cfcbad6c71
a5f7955272162e543d5db897e200d00d3af22b22
354fe37cee669fe141e1e1dcb3b5a12df1ff2b9b34be38b4f2e20dd46fdb7d2a
GET /watch/92006234?wmode=7&page-url=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1065%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A627315863657%3Ahid%3A777433233%3Az%3A0%3Ai%3A20230130202032%3Aet%3A1675110033%3Ac%3A1%3Arn%3A528617114%3Arqn%3A1%3Au%3A1675110033667513241%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A150%2C206%2C118%2C0%2C389%2C0%2C%2C162%2C0%2C%2C%2C%2C1287%3Aco%3A0%3Ans%3A1675110030637%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675110033%3At%3A1win%20-%20Loading&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 302 Found
location: /watch/92006234/1?wmode=7&page-url=https%3A%2F%2F1wswqf.top%2F%3Fopen%3Dregister%26&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24hzlr84c06sesn%3Afp%3A1065%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A627315863657%3Ahid%3A777433233%3Az%3A0%3Ai%3A20230130202032%3Aet%3A1675110033%3Ac%3A1%3Arn%3A528617114%3Arqn%3A1%3Au%3A1675110033667513241%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A150%2C206%2C118%2C0%2C389%2C0%2C%2C162%2C0%2C%2C%2C%2C1287%3Aco%3A0%3Ans%3A1675110030637%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675110033%3At%3A1win%20-%20Loading&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Mon, 30 Jan 2023 20:20:19 GMT
access-control-allow-origin: https://1wswqf.top
set-cookie: yabs-sid=1471587871675110019; Path=/; SameSite=None; Secure
i=t6V/rGP7rZyKZxwX7ZMIku6QK1NvGJa68XNUmtUkGg15gfkpYgOGyY29SPPd0i7TsS6Nn9tm5r8ypFHbHayjhnL6rKg=; Expires=Thu, 27-Jan-2033 20:20:17 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=7330276571675110019; Expires=Tue, 30-Jan-2024 20:20:19 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=7330276571675110019; Expires=Tue, 30-Jan-2024 20:20:19 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1706646019.yc.1675110019#1706646019.yrts.1675110019#1706646019.yrtsi.1675110019; Expires=Tue, 30-Jan-2024 20:20:19 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Mon, 30-Jan-2023 20:20:19 GMT
last-modified: Mon, 30-Jan-2023 20:20:19 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2.7 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (44409), with no line terminators
Hash 7be14b8a0b056b592a9fc8609eccba2f
5859d8a0e197392c235d966b55dc3567d8f40b4b
8361320771b60ab6963dee173dc1ef498ba42fabf121345156f61388f743521e
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 71
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Mon, 30 Jan 2023 20:20:20 GMT
etag: W/"ab5-WFnYoOGXOSwjXZZrVdw1Z9j0C0s"
set-cookie: core-sticky=b5ceb9aa11155333; Path=/; HttpOnly
x-powered-by: Express
content-length: 2741
X-Firefox-Spdy: h2
1win-cdn.com/img/home-poker-banner-bg.87d81897-600.webp
104.26.4.11200 OK 12 kB URL HTTP/2 1win-cdn.com/img/home-poker-banner-bg.87d81897-600.webp
IP 104.26.4.11:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d42d6b091c917baad89cc62f34b1ef8d
6915e60ae50f4b00af5083ce1217a7dab04df42d
9ac95cc43cf590f1f9a5dd85b5b0bf04d98e38d3005b6e4b436f8c04d09a66e9
GET /img/home-poker-banner-bg.87d81897-600.webp HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: image/webp
content-length: 11812
last-modified: Mon, 30 Jan 2023 13:36:59 GMT
etag: "63d7c7fb-2e24"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mfVtrXpZep9KDRkRSgev3n6QCqlUXenbihx3%2BEP4%2FoGOXdv3tURii08OR%2BNGGx0c9KBboMUykqK1fTTlbZdaFG0BebpF%2F9fSDBZjGlgoISxUv%2FyOeydKtA2i1bwIPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce85a0ba40b45-OSL
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 2.7 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (44409), with no line terminators
Hash 7be14b8a0b056b592a9fc8609eccba2f
5859d8a0e197392c235d966b55dc3567d8f40b4b
8361320771b60ab6963dee173dc1ef498ba42fabf121345156f61388f743521e
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 71
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Mon, 30 Jan 2023 20:20:20 GMT
etag: W/"ab5-WFnYoOGXOSwjXZZrVdw1Z9j0C0s"
set-cookie: core-sticky=780879a3a57fb48e; Path=/; HttpOnly
x-powered-by: Express
content-length: 2741
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 3.4 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with very long lines (17749), with no line terminators
Hash b1da0f55def6bae6eca720e54c5b8a1d
206692db7f4b3e76399da513e790f6fa7b18633b
2fbed773e4d7a4e04c956ed38b8f2f667b452cb4b6add9df05e91463314c5af5
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 101
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Mon, 30 Jan 2023 20:20:20 GMT
etag: W/"d22-IGaS239LPnY5naUT55D2+nsYYzs"
set-cookie: core-sticky=9250e14e76aadaf9; Path=/; HttpOnly
x-powered-by: Express
content-length: 3362
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 3.4 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with very long lines (17749), with no line terminators
Hash b1da0f55def6bae6eca720e54c5b8a1d
206692db7f4b3e76399da513e790f6fa7b18633b
2fbed773e4d7a4e04c956ed38b8f2f667b452cb4b6add9df05e91463314c5af5
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 88
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Mon, 30 Jan 2023 20:20:20 GMT
etag: W/"d22-IGaS239LPnY5naUT55D2+nsYYzs"
set-cookie: core-sticky=ea0755b956748598; Path=/; HttpOnly
x-powered-by: Express
content-length: 3362
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-deposit.png@avif
190.115.24.75200 OK 4.3 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-deposit.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 22a160f55908549771f823852d5eaeea
267d86356fc72824681f08d9fd1207b77530c08d
bb19dc50ecc9dd60ce8760b73843ce465df86b78a76de6a924c813fc770a2f23
GET /unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-deposit.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
HTTP/2 200 OK
server: nginx/1.22.0
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: image/avif
content-length: 4323
cache-control: max-age=604800, public
content-disposition: inline; filename="bonus-banner-deposit.avif"
etag: "afr-jhlkuoDx_XrwjiuFbkzj6HdVsjvDmAeQvV8BbYs/RIjYxYTRlY2UwLTU0YWIyIg"
expires: Thu, 02 Feb 2023 09:59:19 GMT
x-request-id: k_UiPjjC7eUn-KF9U943Q
x-cache-status: HIT
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 11 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 961db58314dfbff0bf5f557ba903dcfb
6a0bec3db5955e3998f9d9974c00752eb96a939d
5c726bd3873902b81c2e2215f93725023d3cfed5107eb87ac4e2d63f7171ce8f
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 80
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Mon, 30 Jan 2023 20:20:20 GMT
etag: W/"2a2e-agvsPbWVXjmY+dmXTAB1Lrlqk50"
set-cookie: core-sticky=64fb19be1041bd3e; Path=/; HttpOnly
x-powered-by: Express
content-length: 10798
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 11 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 961db58314dfbff0bf5f557ba903dcfb
6a0bec3db5955e3998f9d9974c00752eb96a939d
5c726bd3873902b81c2e2215f93725023d3cfed5107eb87ac4e2d63f7171ce8f
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 67
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Mon, 30 Jan 2023 20:20:20 GMT
etag: W/"2a2e-agvsPbWVXjmY+dmXTAB1Lrlqk50"
set-cookie: core-sticky=558a49684ab968eb; Path=/; HttpOnly
x-powered-by: Express
content-length: 10798
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 50 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 8bcd5ddfb9642d4e0f64ecae13f955da
12b17eb2ba303b4617e342832fd1521afba80939
c8d0c3d57af9b9d96255276105d05bc56d3b47be21581c71ed9dc706c128646c
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 85
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Mon, 30 Jan 2023 20:20:20 GMT
etag: W/"c363-ErF+srowO0YX40KDL9FSGvuoCTk"
set-cookie: core-sticky=b1ff9d782588ea7e; Path=/; HttpOnly
x-powered-by: Express
content-length: 50019
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-cashback-casino.png@avif
190.115.24.75200 OK 7.9 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-cashback-casino.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash f86f39dc44e8f92cc5658a394e833352
54093f2e69f448e122e771ec7c63d3cce35ffbdf
3fded209043aa6ec28cdff6321cff18c41238215a062dc02fab1af3915c637fe
GET /unsafe/banner_desktop_main_1x/plain/https://1win-cdn.com/banner-files/bonus-banner-cashback-casino.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
HTTP/2 200 OK
server: nginx/1.22.0
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: image/avif
content-length: 7940
cache-control: max-age=604800, public
content-disposition: inline; filename="bonus-banner-cashback-casino.avif"
etag: "afr-jhlkuoDx_XrwjiuFbkzj6HdVsjvDmAeQvV8BbYs/RIjYxYTRlY2U4LTYzNWI4Ig"
expires: Thu, 02 Feb 2023 09:59:18 GMT
x-request-id: uzFsF7HGLMtmmodlVn6LF
x-cache-status: HIT
X-Firefox-Spdy: h2
1win.direct/microservice/ask
134.122.54.186200 OK 49 kB URL HTTP/2 1win.direct/microservice/ask
IP 134.122.54.186:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 33ec4a2617ba5e4d1f6bff4c52198f9d
35d67e31b1a45a178d7181221caaf0647d178b06
061973794d9b91c61eaf5cc0b23374b0a7176bd9247418a511235b9ffd8dd760
POST /microservice/ask HTTP/1.1
Host: 1win.direct
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 98
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Authorization
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-origin: https://1wswqf.top
access-control-expose-headers: Authorization
content-encoding: gzip
content-type: application/json; charset=utf-8
date: Mon, 30 Jan 2023 20:20:20 GMT
etag: W/"c090-NdZ+MbGkWheNcYEiHKrwZH0XiwY"
set-cookie: core-sticky=47446d5769b203fa; Path=/; HttpOnly
x-powered-by: Express
content-length: 49296
X-Firefox-Spdy: h2
1wswqf.top/common/title?path=bets&lang=en
190.115.19.101200 OK 16 B URL HTTP/2 1wswqf.top/common/title?path=bets&lang=en
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
File type JSON data\012- , ASCII text, with no line terminators
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
GET /common/title?path=bets&lang=en HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1wswqf.top/?open=register&
Connection: keep-alive
Cookie: sub_ids=sub2=426; visit_domain=1wswqf.top; partner_key=ydwg; core-sticky=http://10.233.80.81:80; 1w_lang=en; _gcl_au=1.1.1086282868.1675110032; amp_494ccc=_ICULU0A5383qxRowsrb5X...1go25d95k.1go25d95k.0.0.0; _ga_548949LWLW=GS1.1.1675110032.1.0.1675110032.0.0.0; _ga=GA1.1.474623364.1675110033; _ym_uid=1675110033667513241; _ym_d=1675110033; _hjSessionUser_2606090=eyJpZCI6ImM1MGQ5MmU3LTIyY2EtNWU0Yy1iYmNkLWZlNTg5ZDdkYmE5OSIsImNyZWF0ZWQiOjE2NzUxMTAwMzI2NDcsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=0; _hjSession_2606090=eyJpZCI6IjBjZmRmYzM1LTMwMjItNDgwYi05YjJkLTc1ZDVjNzRlMWZlYyIsImNyZWF0ZWQiOjE2NzUxMTAwMzI4NzUsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=1; _hjHasCachedUserAttributes=true; 1w_locale=1; _ym_isad=2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: application/json; charset=utf-8
content-length: 16
vary: Origin
x-frame-options: DENY
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/bD9xEdP9SoU
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/bD9xEdP9SoU
IP 142.250.74.131:0
Hash 93a1dc234a3eedb1ed83af1967fedd1f
33ace8917af555351a08ea32c6a4cc5b743dd88d
36486e331e2358df2041545ec6d7e81a4f5bf9b7b2b2f1cbe1522f6ee8f4943c
POST /s/gts1p5/bD9xEdP9SoU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:20:21 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ps250.1win-service.com/push-server-v2/?Language=en&snapshot_time=1675110032178&shouldCompress=true&EIO=3&transport=websocket
172.67.209.1101 Switching Protocols 0 B URL HTTP/1.1 ps250.1win-service.com/push-server-v2/?Language=en&snapshot_time=1675110032178&shouldCompress=true&EIO=3&transport=websocket
IP 172.67.209.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /push-server-v2/?Language=en&snapshot_time=1675110032178&shouldCompress=true&EIO=3&transport=websocket HTTP/1.1
Host: ps250.1win-service.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://1wswqf.top
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /bOcJcoVJiaM8nH/3Akxgw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Mon, 30 Jan 2023 20:20:21 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: cEaNlpgG5b8pte71HeMX+cmC7Ng=
sec-websocket-extensions: permessage-deflate
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xd%2F3UhnKdH2evqQtioK19axLAxb7482Zi5%2F3z9PhwMKoOeyaVG9fZagrow8Oo1Vc13JQ3CAf57Ph%2BqvbuZnjNWSQM0lSD3tpZabvsh27xW0hw1jRn8tcTNMsc9rknZGrTbHur4g28xm%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 791ce863ee76b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/s/gts1p5/bD9xEdP9SoU
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/bD9xEdP9SoU
IP 142.250.74.131:0
Hash 93a1dc234a3eedb1ed83af1967fedd1f
33ace8917af555351a08ea32c6a4cc5b743dd88d
36486e331e2358df2041545ec6d7e81a4f5bf9b7b2b2f1cbe1522f6ee8f4943c
POST /s/gts1p5/bD9xEdP9SoU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 20:20:22 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1win-cdn.com/img/emoji-slots.1c6e965b-160.png
104.26.4.11200 OK 9.0 kB URL HTTP/2 1win-cdn.com/img/emoji-slots.1c6e965b-160.png
IP 104.26.4.11:0
File type PNG image data, 160 x 160, 8-bit colormap, non-interlaced\012- data
Hash 1dc08d167f60360991bc58d8b3573355
55d11fb2d5a5b46b6ad68e8cfc40d59d4a434700
f2fc8f2712717b32157f7741b1c723d6fe1d430c41652cfafd39c68980db20bd
GET /img/emoji-slots.1c6e965b-160.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/png
content-length: 8977
last-modified: Wed, 21 Dec 2022 11:04:29 GMT
etag: "63a2e83d-2311"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3474743
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LEv1UN4nVxvGXx94xGAhhFBNR5S%2FwRsluXk239ClHAiJERm25FDMj4vnVEhYYyoD%2FJir9E3MbsrpFnolni%2BFTPmsMdgPlfbkZopdWg%2FCoKX1JiWRBf9AfYii4umSrg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce872df680b45-OSL
X-Firefox-Spdy: h2
1win-cdn.com/img/emoji-soccer.1a6d4eca-160.png
104.26.4.11200 OK 7.9 kB URL HTTP/2 1win-cdn.com/img/emoji-soccer.1a6d4eca-160.png
IP 104.26.4.11:0
File type PNG image data, 160 x 160, 8-bit colormap, non-interlaced\012- data
Hash 531c59f255f2998443131a8503a6244e
5288df4ace6d3e89a393af2b58c1e6c38a0042a8
575412b54e344b5f40a21bb5b799f0430919cfb4ba807f9832c040e13711dc8e
GET /img/emoji-soccer.1a6d4eca-160.png HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/png
content-length: 7896
last-modified: Wed, 21 Dec 2022 11:04:29 GMT
etag: "63a2e83d-1ed8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3474743
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z%2BanWqfyV2r6yl5ZTXHnRoVQXt7nVPZYl8KQW%2FVVtooHymPznXc2Qi6kyfSTw0tLZ4XobfFbPBlud%2FD7csAfhx5mgoKlagQlfQVk9TR1NvFFNou3fV82EJkJO0QWXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce872df660b45-OSL
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/5b4ab347-f37c-44e4-93e6-2c1c0efa069e.jpg@avif
190.115.24.75200 OK 5.3 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/5b4ab347-f37c-44e4-93e6-2c1c0efa069e.jpg@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 76a502c1036d076e2317739f0cc878d8
480303b6e1e68b1d04e998d9bcd26224429db376
e377abb67003f9b87b6c67e87b9814b99bb3c1de68f286546d9af4e6d6377351
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/5b4ab347-f37c-44e4-93e6-2c1c0efa069e.jpg@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/avif
content-length: 5302
cache-control: max-age=604800, public
content-disposition: inline; filename="5b4ab347-f37c-44e4-93e6-2c1c0efa069e.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzOTM2OTc5LTJiMmQxIg"
expires: Thu, 02 Feb 2023 09:59:10 GMT
x-request-id: hS5nFRN0pTfRoKGm08TCF
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/576a0d3a-0df0-4a5b-ac90-7e9f2ab73407.png@avif
190.115.24.75200 OK 4.3 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/576a0d3a-0df0-4a5b-ac90-7e9f2ab73407.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash d5f05284c21b7798248cd9fa99bfd299
bf9b3b55c3aa5508d51c2935e6494a6f91fb21b9
85a15ca1b3ad7e7569214ac1e02596a70b806eccd8ebf2b9fb079ca53986a0d4
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/576a0d3a-0df0-4a5b-ac90-7e9f2ab73407.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/avif
content-length: 4304
cache-control: max-age=604800, public
content-disposition: inline; filename="576a0d3a-0df0-4a5b-ac90-7e9f2ab73407.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzOTM2OTZmLTIwOWY5Ig"
expires: Thu, 02 Feb 2023 09:59:11 GMT
x-request-id: qdWArseWFiQPH7191DrZi
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/81c5273a-ebb1-47f6-8535-6376c353ea74.png@avif
190.115.24.75200 OK 3.6 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/81c5273a-ebb1-47f6-8535-6376c353ea74.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash 38274844df1004bd9a0e2ebaa78fc880
ef316b9b62257b1e930eb064f30c1baecd86f2b9
5d128fbc4ca805ffd77a5d0c93ed6c15e548157d1b6a68b16c2849a98799a6a6
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/81c5273a-ebb1-47f6-8535-6376c353ea74.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/avif
content-length: 3601
cache-control: max-age=604800, public
content-disposition: inline; filename="81c5273a-ebb1-47f6-8535-6376c353ea74.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzOTM2OTc1LTY1Njk0Ig"
expires: Thu, 02 Feb 2023 09:59:15 GMT
x-request-id: 3_3K_XaC4gvPsdkGmWl7c
x-cache-status: HIT
X-Firefox-Spdy: h2
imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/f736e1ff-fdf7-40e5-93b5-2daa1b472e4d.png@avif
190.115.24.75200 OK 3.3 kB URL HTTP/2 imgproxy.1win-cdn.com/unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/f736e1ff-fdf7-40e5-93b5-2daa1b472e4d.png@avif
IP 190.115.24.75:0
ASN #262254 DDOS-GUARD CORP.
File type ISO Media, AVIF Image\012- data
Hash bbb2a9093140015e4ebcb4b1ade5b171
dc35c677bb7d9b9e222f93e844793afc4fc06b2a
769a8489bc32f748e268b35024e9726719ef2a65d32665b0a5a54ca6d28789d9
GET /unsafe/casino_list_big_1x/plain/https://1win-cdn.com/casino-images/1play/f736e1ff-fdf7-40e5-93b5-2daa1b472e4d.png@avif HTTP/1.1
Host: imgproxy.1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/avif
content-length: 3255
cache-control: max-age=604800, public
content-disposition: inline; filename="f736e1ff-fdf7-40e5-93b5-2daa1b472e4d.avif"
etag: "qZN6EBzPegPBpsimkrNBhehT4d3pwCv1LGwwuLjYmzM/RIjYzOTM2OThiLTFiYzYyIg"
expires: Thu, 02 Feb 2023 09:59:15 GMT
x-request-id: yhDgjau2hqJoacHHecauB
x-cache-status: HIT
X-Firefox-Spdy: h2
1win-cdn.com/img/caleta.4b134d78.svg
104.26.4.11200 OK 6.4 kB URL HTTP/2 1win-cdn.com/img/caleta.4b134d78.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1174)
Hash 0d8ede51549d38830df646ad766a3f9e
808e37474c55c28049f8561f1c6bb820d466600b
b7f49d8eeb2251a7b44ca772fad4b9318469a5d08eb2fc6718a47486d195a531
GET /img/caleta.4b134d78.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-502"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404823
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DmlOFNuc993z%2B6a4Wbs7mhghPvSSWS0Su4JCxEJG0UVo3tWjRll%2B%2FLOl0%2FwfJIZOF8pQvjjAbh8fjv4dC2cLycjRYD1mmzuzLTxahHf98dYYYB8GtO11pW7LiBdG2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87368690b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/booming.a167e59f.svg
104.26.4.11200 OK 8.7 kB URL HTTP/2 1win-cdn.com/img/booming.a167e59f.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2116)
Hash 5c169ce32e715f861afa706e65dec60f
7cfc32971ef50671346f22e412c5a87bfaf5405e
53672d0a40655e99c2e82a7b7c7c44490802a3ee7eca9c4201a82dd2beb54afc
GET /img/booming.a167e59f.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-8b3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404823
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FnINtKWBJn1cKCRJOFpwzedYE%2FHRVJ0TLmpbpdqebc7g%2BynsyXvntpsoazwstIQfU542syy9NDns6tfrJsm4MUBoH28ynjgxJU1JhwaI6acgTEix5NarEym8ocjJqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87368620b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/boomerang.ce3752d9.svg
104.26.4.11200 OK 20 kB URL HTTP/2 1win-cdn.com/img/boomerang.ce3752d9.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (5946)
Hash ec93afd4e89941fdd2d4bf4da02ca000
3152b4a5b2bf2c9c3fe0cb9f60c74d2d6e0d1cfb
3e0ec1493a2758150067f6b6f35252812941a1df2a2747843c6fb7ce93d50898
GET /img/boomerang.ce3752d9.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-81cd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404823
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iMKxSf7DUWdzVZvqsl%2FPeU24I9DdD3TQJfa4u%2FiUoKDZjbaMo1fkBb0T1Nhr6DElxR6UeLRdKQgI1GFQkVxTqad26uncHdpKj8c4UVmFHJZ5OF2jXBWaZrvdp5gNgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87368600b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/cq9.bd2145b0.svg
104.26.4.11200 OK 11 kB URL HTTP/2 1win-cdn.com/img/cq9.bd2145b0.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2264)
Hash 2607ff18197cb36d90fad81af941ba71
13a4b721cc7ff5f448161fb5fcfc9fb2162f1e00
3cfe3c584ee8bd9adc04bbbde7ed50540829271f0a04d0f10d881171d918a7fc
GET /img/cq9.bd2145b0.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1169"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404822
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UTtiB45FdJ2RUfaon%2Fub3WyZCPk%2BbT4%2FWSwdWQqqcVnq42P9WzwBmJByUJTurBwXIdOM8WWd6nj1gC9q9Gbe129XX8EjIpXqN4OAtDFaIedKBRNcbU6Roycj5WRDRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873786f0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/habanero.5aca5f39.svg
104.26.4.11200 OK 1.6 kB URL HTTP/2 1win-cdn.com/img/habanero.5aca5f39.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1844)
Hash 85362abd5d1a953bef5c56ba1b1dad43
2f5ae1b6c5005db19c2a31321ec9a1d20243a28f
2ec494ef48ee498fdbd81df66e96fac59ec733cc646ce4cbf08dd248d33cf6f6
GET /img/habanero.5aca5f39.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: W/"63d124be-1077"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 415629
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zwy4Cn4K%2F4YlSCCVhtAs0CfhIqyU2jYKgjF5rQLfo9cpIsBv%2BbmZwrdzczPQAzVhWK%2FSiCC2ifKWLlL49GTAwWvzEcqPJN0ayGzexsQELqkGJQgjjEFfbiVGFosOaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87398be0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/icons-pack-casino.243be753.js
104.26.4.11200 OK 26 kB URL HTTP/2 1win-cdn.com/js/icons-pack-casino.243be753.js
IP 104.26.4.11:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 83ca2e33a565d9de7eeb32fbf3f9a537
e01d2fe8b15979612f366b247f934708b59fef98
fe8321991b04a1d79b15c620ef7b6c7f38043d2b48e3056fca1cc2e6e6c098ef
GET /js/icons-pack-casino.243be753.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=93639
access-control-allow-origin: *
etag: W/"63a42a53-16dc7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3406782
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FIiAFuI4gQwlUThE3adY%2F1Yh%2BHhJNn8pyotFkzmNnDgDkOFf6tTcYpbW5KU%2Bb5XJs%2B%2FG6%2Fe%2FJWq2%2Fbh0Lev1O7TF7iKCMVEoF7Yc482ogt6vIsgiatNMHVq5f69IlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce872ff810b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/allwayspin.ef1458a7.svg
104.26.4.11200 OK 19 kB URL HTTP/2 1win-cdn.com/img/allwayspin.ef1458a7.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 79fc1179b2cff0ed976cbdbbd80ace08
e7848cb31162db00bc498f74d37086bd0a509a43
4fadd3e66ad1d1aad4bc6ddb84b9cfa0861bf8b79ab2a2f92f32c5e2a40dccc9
GET /img/allwayspin.ef1458a7.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-db6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404814
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6bZnfxZO%2BjC3njjCvCJ2%2FFMABenQyNyNsPo2NJO%2BZg%2Fsq%2BFfhRRwFFW7%2B3TufTQz6bgLnzXtIPMltKTDwU7cdxAh0SDKCEjcGwg87spxijWYddijwiwJtw8lhJxu9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8732ff10b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/betsoft.c6b04922.svg
104.26.4.11200 OK 10 kB URL HTTP/2 1win-cdn.com/img/betsoft.c6b04922.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1628)
Hash 166838f651c5335a874549bd1447cd4a
aacab98425098fae08d798e96f82676b5187a23d
df5d3f2755dd5dda09320b201f61acf4c1ea5fd45a3c5f848fd428ded8dd8434
GET /img/betsoft.c6b04922.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-14a0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3405592
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7UdFLNfeAjmWrIzg%2BFedIcWIaVVuT2goFSEShmr7pjEjeU%2FJ6K%2B%2B51pGqaaoaaCClvH%2B%2FQnhw%2B6ct%2B1Cww25NpCYPCHIjCT1Ym4DwoNs7MClZH9g9vhcUn5rAe0IJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873482c0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/blueprint.92d09945.svg
104.26.4.11200 OK 11 kB URL HTTP/2 1win-cdn.com/img/blueprint.92d09945.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1482)
Hash ab82bfbd1e8e66737326944c9390a59e
e78616f73b5dcddfbdf9308ce7ba81bad6f66c92
b646cc2abba34ec814ae36261659b3854e8736a312efe447bf85fcc0bf6ed2a9
GET /img/blueprint.92d09945.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2a4f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404823
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rXuDZmfDvvcTeOjcqQAPunGI3tCXWdAJ9DHgZ5hZzfs%2FrEh2nWLQlCqKAZdXhedQ5VemjS9EJt3602KPwZQP0zS8msZq9bfcJfVQpJuCDREhEqn5%2F7O0WwgfMMRO9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87368560b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/elbet.90c78268.svg
104.26.4.11200 OK 15 kB URL HTTP/2 1win-cdn.com/img/elbet.90c78268.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (843)
Hash 83916e7c317a1432cf42370ce67c509e
6ea423fe6dd0141a4e52816069b86756a0975b58
6d23de5855b756bbdda9ddfcd2f0fea85a8b9d088f8e196cbe8b91ef2492cad6
GET /img/elbet.90c78268.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-70f7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404821
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8bJNWgtxjD0IbZNeHjEDg3luvPoyh8JEuydSeAszfpxm4fCOa9d9%2B%2BsWVamJKElGBm4Kp9ccVpJ%2FtWt4WsGwrX%2BQXc%2F%2B8e7AhDNvOoJUWLL49Jtuyvj%2FaNcc34AMmg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87378840b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/fire.47bc0337.svg
104.26.4.11200 OK 8.9 kB URL HTTP/2 1win-cdn.com/img/fire.47bc0337.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (322)
Hash 0b480ef7043fc1d3a28980de82fcb36d
5480abc7751b7adbcd5364eba1729ca131cd904b
de4476e2e5603cb25bfd032e9d5e5b75c9968613b1c96dbd3ec1f78e4e935a29
GET /img/fire.47bc0337.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-244"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404810
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DFHng0yBN6BQRRq2oSbU%2FSFsa3HA%2FCQP%2B4TgQgMgkeHo%2FIoZYddWYatuN2IrC6z8Iwv2%2FP%2Ffo8X0Mwg1MbDPRftSzVxIRrkt%2FoMSEC%2B%2BWt2g7Y62ohLaRELckrx2hw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8597ae40b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/goldenrace.423ead5c.svg
104.26.4.11200 OK 21 kB URL HTTP/2 1win-cdn.com/img/goldenrace.423ead5c.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (28699)
Hash bdb8b79ddb3e2183ee22c02df6bff38e
a2977b66d26c742e00dbcdd076fdfc93d0d6dedd
ecfaad439473c4861f6fb4c2a409b84d2a21d6fa41ec1ff6e0a1e472d72f5d28
GET /img/goldenrace.423ead5c.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-7198"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nsnXNHzwA8mFc7PukCJH%2FOaZINrUM3wjVNWImj6B%2FBFeGw8UJncSLK9rxJy461bmzk1pqkubv98y0R3N9z3zleaGGI%2F465d%2FONxXRk%2BMar6y2wUn8FOGUUiNpthSTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87398b80b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/spadegaming.eebb41d8.svg
104.26.4.11200 OK 4.6 kB URL HTTP/2 1win-cdn.com/img/spadegaming.eebb41d8.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bbf33aabfacae017ec7be0340fa9a730
c0e3abe98d094b0831c348364f46f1554ffb7ea2
65a586ccf09716a3aefd0fe171a2b3aaa8bdf6e5d6365913fb3356336945cde1
GET /img/spadegaming.eebb41d8.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2d62"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CSSuh0HmOkJXopHHDcXJgwVbvIh%2BuF9v9mcMoUlfZ2wjHDMftvcrFLClqiZsH2b9t3QFNJpktdsgIyGjEUnJ493tyKsN0KhP0op5Tx6oT5OrvGpXd3nVgMxFTXss8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873e9470b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/truelab.c0496875.svg
104.26.4.11200 OK 5.9 kB URL HTTP/2 1win-cdn.com/img/truelab.c0496875.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3806)
Hash cfa163038e159c4c72c3ac7a6bdcf06f
16a225516472d89f096f7f972ab5872cf7188b4a
f9485d79eac612067701427071016186938e5bc4e96e1c2d8867f823c7b9b445
GET /img/truelab.c0496875.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1043"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WS2iS2zr%2F6fBpuHma%2FWv2lNHWLpS92LPxDsPSkLzn%2FVu4n2tb4GVCX%2BveaaNzwHxbNQdrmc49DOj9EGgFYwjJPWIs%2Fqy55fQ%2B2UsUUYoeC%2FbQHE%2FFJ6eNzSgaGPmtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce874096b0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/superlotto.164bda58.svg
104.26.4.11200 OK 8.2 kB URL HTTP/2 1win-cdn.com/img/superlotto.164bda58.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3769)
Hash 3ba33c855fdf9c3bee3fc5e9ebe257df
9e21edc7a9accd699091f0896a8333e69375a8b9
8aafe975a6f4084b19f3b1579c5837ab1ca3c163aa5c10f8adb96c5db5a3e2a0
GET /img/superlotto.164bda58.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1a77"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yCDohtT6ig%2FG0dRqfwMM86ES4OcsObVq6l83EzkyFdBHaSqiq4U1nbOwA7x%2FgUuvM1jFi8LHuGFGdA9BmOD5aZOgYxGiBHZLxBTCklWaxpSiSzsY0qTcQh9fz7hgmg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873f9530b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/synot.becc85e0.svg
104.26.4.11200 OK 18 kB URL HTTP/2 1win-cdn.com/img/synot.becc85e0.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c09350d23e61e0edd2e0aa3c28ac9db6
dc7ed5bf5d163d50e8b36a34677010538b58cf07
3143d22ce598ea037d62f7f0f5b1a8fba08d2e2b02ea54336b61c3f484a5888a
GET /img/synot.becc85e0.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-b94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s81wFvpA5uvtG1IQvw8vAyNUjQ9rY6%2BAN6EIhzbLzZpO4W8mTnLww2aqGPCp%2BNYt%2B7EozoVfD31BKqcMbHxFdaxVNXyHBcvrRO4z5n8LobkxKoXMQRI5m%2FEnyn05nQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873f9540b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/boldplay.018c7f09.svg
104.26.4.11200 OK 42 kB URL HTTP/2 1win-cdn.com/img/boldplay.018c7f09.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Hash 6424857469ca39fdc1543c8ee5202a4f
aeb27b79c0c3aea6d618a6d42938a8733b73ae86
f97ca71178a0177cdb93b90e6e89bfc8f2414b723ae5b182a0fc811c945a4798
GET /img/boldplay.018c7f09.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-1603"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 1003246
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S%2FaHaOklh8F9s9GyE4ik%2BzYjE9FkamYt9Yz%2B1tWE35ic%2BKrZVwGeZkmARpYOj3pW9j7zQYlXVZ6VVXNSoMCT7c%2FTL5i8sybdeW%2B8mXQMm3pSz47B8O8BlEaWhdJ8TA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87368590b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/mrslotty.366e094c.svg
104.26.4.11200 OK 9.7 kB URL HTTP/2 1win-cdn.com/img/mrslotty.366e094c.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash f9b8cf8826806d7d537f5e47e3779e5c
58df49560fdd8ec799ac457149184ab78d3022fb
da75eca4279112b5634a39cc7caf916d53b05282e22e3ce48c65899ef377ff18
GET /img/mrslotty.366e094c.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-8d5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3405592
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W%2FPKj3h%2BxBiwONKlyDcRT5JVwYCmRHZwdsEqOEIS89xHe8ZAmBGqxSVqKJcV9s4%2FdMTbk5ixQwK7r9V%2B6zby5Pnt24D%2Ff7RtlcPwps%2FR1EI7zttBR8rr4nruPdiWXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873b8f40b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/spribe.e535371c.svg
104.26.4.11200 OK 1.2 kB URL HTTP/2 1win-cdn.com/img/spribe.e535371c.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2011)
Hash 98f899430ba6531e3040652c1ebde93e
4a422553059f4cc567631536b73d61a1ddc0722e
ab8d1cc648e3e9c4d183955c58533e878248b69cf4cbdc1b24f3e388ffa2a84a
GET /img/spribe.e535371c.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-843"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=05iFka%2FD%2FVnHWM9dm3QM8%2BKoqmHmMffJxKiy7ppbEXlu%2BZ1uquDlO2o7HRXFNuNY6YCG5BXZIC8FthXDss0WhsSuu3ypZJjrjg2AcmbxLiRcDp6KodmTR4POYaXtRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873f9500b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/nolimit%20city.73ea77ec.svg
104.26.4.11200 OK 7.4 kB URL HTTP/2 1win-cdn.com/img/nolimit%20city.73ea77ec.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (427)
Hash ac02d8ef6414e463d8dc54818cadfbdc
6f6dcf5e6e0ce2a6d99f5934cc45dc6c553e8996
632db65c56b58f6dd707c9730d7b68836a974ffafe5530a95c4db51ce39ce4b5
GET /img/nolimit%20city.73ea77ec.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-21a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7b93s%2FxFPbBQO2JUZbsHo1xqMm55c%2F%2FcoZWfsePHfydtvzZWFpQbNv2ph7kx4jX%2F5XxWdMk78t3rEkbPZa5jTqw%2BMoplheVuRtUCdfvUZM9UsRgF8cApCiUrzegH8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873b8f80b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/max%20win%20gaming.d504cecb.svg
104.26.4.11200 OK 17 kB URL HTTP/2 1win-cdn.com/img/max%20win%20gaming.d504cecb.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text
Hash 6cd75e52b389048bed5e4f2132d56a74
62c0e67c4bd6232590bba297ff660ad0d899deb3
bce0909f18c753367a8b819d7e99906233e3906081b3ce796e33abf86ef6b646
GET /img/max%20win%20gaming.d504cecb.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-a04"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6G0QO9EtvJfLESnwtChEnE8g4%2Fwdpxfu5ZGfUkvdL2YatV7xm9b4jzZOH8ylBc2tQ1bcVrPUFHENAE4iPp%2BKvuf8flhrQKU%2BHFoMVb5aeRDR0zfXVCBZ6%2BoiXjMLyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873b8f10b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/iron%20dog%20studios.8a9aca7b.svg
104.26.4.11200 OK 7.5 kB URL HTTP/2 1win-cdn.com/img/iron%20dog%20studios.8a9aca7b.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2001)
Hash e1ed5ec35c1945c71563442f445197b5
61eac923e304f6cbe3fbb36254dcb064476cad63
f36b5b1c42fe1be781508354506844ab60ad951cc68f506755f27f65dde8c57d
GET /img/iron%20dog%20studios.8a9aca7b.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-23e8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x2LLdu5w38LnG0fWbbd8NQ90RG%2FkNWW7r2DMtnv5796olmxTufDcfJxxZkaY6bjQptp2AdKv6FG4LIgut2XFSrPVSowt9BPq4zz9BTr0N5EQmFj570fdllajevw7wg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873a8d00b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/kalamba.f208b29d.svg
104.26.4.11200 OK 13 kB URL HTTP/2 1win-cdn.com/img/kalamba.f208b29d.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash db36d95c4ed8c837a38235d0b6b47ceb
f7415d0cf9d5c921fd362a53af7dd81d8db37f42
296de8d8ab391f3800f29fe372cc68d06dd2665be514041f066d19223d10ccaa
GET /img/kalamba.f208b29d.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-5343"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IvdgH1SO7w%2FwEz1LLIL3%2FLrjBmBZ4H7JDU6cFCVIJYpiv213MhpA2uGcbl86b%2FqL0CUh%2FIV9C1UBjN4VSXDWzoXcX%2FOXjudXho%2F81kwOJGe%2Fo9gIwzFOPraSusLXMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873a8d40b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/hollegames.04d23aa8.svg
104.26.4.11200 OK 13 kB URL HTTP/2 1win-cdn.com/img/hollegames.04d23aa8.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7653)
Hash 33d8adff6873bec4aff342233dff5c68
380ebbbf66be7197207fb13375f8bec64cb8f23a
94599953f80aa497d80c90be9a6c229a1e67fb0de2769250b314f5ea77ac1d8b
GET /img/hollegames.04d23aa8.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2121"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jUByYOKcOByO2EsJQYHb3CH2nJesck9kWvVA8WCcq%2B9nRP1FAQlNLtY%2B3Ztp0Roow%2FEHy4F3DmT0GrU09%2Bt9%2FX%2BimC9h%2BZ7bmjwL8ZleXyb%2B3wzyEH1CnwOOgDodsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873a8cc0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/green%20jade.c62a1806.svg
104.26.4.11200 OK 9.8 kB URL HTTP/2 1win-cdn.com/img/green%20jade.c62a1806.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 82bdd7d2482b8d4aabf29cc518900f74
e9b3b8b453c6cc0dade18840de57b825edf0be17
cf14392d4966e4426b3ac37c14b5fa43b221118f0c22550f3d0424f846a29456
GET /img/green%20jade.c62a1806.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2aee"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oA444PACORq2gX3ELWHn%2BkZsYV4KQOc81CfGA%2BZngymyLFatGhU448eYQIelNhLHVFCAApcdwXAEpVX5erWpDd2r5HHoov%2F%2BHxv0JEETeA1LFo8Ir%2BeyOpxx8GF8Ag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87398b90b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/northernlights.efa65c9f.svg
104.26.4.11200 OK 12 kB URL HTTP/2 1win-cdn.com/img/northernlights.efa65c9f.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1088)
Hash 72ffc35760aadd369ca89c80c963d470
b1da7f497364077fe01e6507a9277c2088c88b80
b4743fdd0d5f878b7ba2aacbdf684cc2efedb45443fa1e2b4e0f9a05e047c591
GET /img/northernlights.efa65c9f.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2699"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t%2BMOn97%2BOrfaIUBETrCWdgYVawJ9EZaEYxz%2BlJNhVfzE%2FSxYbbbe%2BoHhD29w8y0Ki5wDWjYt1eY5lhy5b7EttFJgOqe1THCvv%2BctNUWNrxnhQPMjvO20merckGg%2F%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873b8fb0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/mancala%20gaming.792c2e8b.svg
104.26.4.11200 OK 9.9 kB URL HTTP/2 1win-cdn.com/img/mancala%20gaming.792c2e8b.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (12345), with no line terminators
Hash b6e73df2d5bca47895ba7462c4819cc1
050afe72c3133019cd2e2991cf90c9336878073e
86450e04c25580ea47dc8a5d101fb6a1e793c9bec7cf4f6d40262e11176e3866
GET /img/mancala%20gaming.792c2e8b.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-305d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ba1SuUXZw5s2VVCMNi9vHR3P905fe2QEXAc1zvowMuirt0jFB%2FzQQ68gsKQOqfIqVO2wRZ6SNPJHv76l5V%2B2Aa0AX8gyKuE1NTiMWG6h%2B6zv9lb84XAMnAG6emDYwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873b8ed0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/500_i18_img.cad2d5cb-1320.webp
104.26.4.11200 OK 25 kB URL HTTP/2 1win-cdn.com/img/500_i18_img.cad2d5cb-1320.webp
IP 104.26.4.11:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1312c2c31e69ae16717161d0b63e862e
1ea1ac50dccf074db7972fd01030d27764c647be
17e3ddf96f54278719c3951bdf7fd750f03eef6fa8f7e257b47bf04a7915fb81
GET /img/500_i18_img.cad2d5cb-1320.webp HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:25 GMT
content-type: image/webp
content-length: 25094
last-modified: Mon, 30 Jan 2023 13:36:59 GMT
etag: "63d7c7fb-6206"
x-frame-options: DENY
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PKA4J9iIusnpWXObreXyPYCq1SqbcwG4PhrKW4xvcyTgWi5fSk0LGbWjDSLfRuBsM3IVBzhl71%2FrQXV3r5HCRkGBjkeC1jOwsOwjHEcblo1JueLXmAu1r0TgFnmLUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87439b90b45-OSL
X-Firefox-Spdy: h2
ocsp.comodoca.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4d2529e0c0c6f7146a3e0b4cf87c3c5b
8b270c03a3644bd040783f2d341c47c6e0fc0ddb
c1c0a900b85b2b671f52cb27ff581e1b60f8ecc87446580d2191f2b39b31ba00
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 20:20:25 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 28 Jan 2023 15:38:21 GMT
Expires: Sat, 04 Feb 2023 15:38:20 GMT
Etag: "8b270c03a3644bd040783f2d341c47c6e0fc0ddb"
Cache-Control: max-age=602986,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 404
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791ce879fe21b51e-OSL
1win-cdn.com/img/vibragaming.4b28676d.svg
104.26.4.11200 OK 3.8 kB URL HTTP/2 1win-cdn.com/img/vibragaming.4b28676d.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a2e4a89169a4af955f40dd7814603383
7b779a392442fdf1b2d68f54692c80990d07227f
aef75bc76f5c8c2d549a7544b7cba2f96bf9cc4426414093522e9ccb43cc8539
GET /img/vibragaming.4b28676d.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-22a4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=heKMddVp1QIBYG2af3U9f0Bs%2BTnfQvECaIu7dpg5X6YOi4Ikn3S3TTqZSLCblXDkFQvYCJfILGgHMTV3onn7500DiWd1hDZWfUZOynvL3d68Q%2BYQICep4Mt%2BBxM2SA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87409710b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/virtual%20generation.76588830.svg
104.26.4.11200 OK 3.5 kB URL HTTP/2 1win-cdn.com/img/virtual%20generation.76588830.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 81068c91dfcd3d972d21f6bc22672073
9325e0577f372b3a25a0078ef00303f0072de380
18253f6f875de826cf5968fda0c22b3d8849c23d352b02b320d72043feeebda0
GET /img/virtual%20generation.76588830.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2e89"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y4IUN2kB1AMbUoaVGJ8MdE6r8Wa5txmUSWy1bsMnC%2FJJWItl8TQsOSymKulZNpxJNpGBDtbwpLdcFapY%2B2UbqbINo1yxEyia%2B0ZtXgjh5ESckUtPMAk3WbH05gmQUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87409750b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/tvbet.c92ea7dc.svg
104.26.4.11200 OK 7.0 kB URL HTTP/2 1win-cdn.com/img/tvbet.c92ea7dc.svg
IP 104.26.4.11:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2202)
Hash ad851a9c95dec97f1f765a2408f56590
816b54f1a698736439b64c2c3084ce3e21caa7a8
d59e730463a4773abf87eadc8d919e22dc2b4db33bda1e9012bf7fbee7ac1897
GET /img/tvbet.c92ea7dc.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-3edf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g62J%2FPn4pBERelSCU%2F3zabQo3LaIIRafBHTlQX8VVFYeT2eSgcP6nHuUT3MPyKKKswlP%2BDL2BcRdH1%2FTzIVsUjtwpGW1fo%2FVk5bw1T06V13ZNpTVrXehT6%2F7vlKlZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce874096d0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/common/banners/all-v2?lang=en&type=desktop&bannersType=main&localeId=1
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/common/banners/all-v2?lang=en&type=desktop&bannersType=main&localeId=1
IP 104.26.4.11:0
GET /common/banners/all-v2?lang=en&type=desktop&bannersType=main&localeId=1 HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://1wswqf.top
vary: Origin
x-frame-options: DENY
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KPI3q%2FfUde81yyn%2B%2BGIfXdVWBJhQfFbEI0d7bEYfj7J1EeAtXXvpCWBY%2FF2ywn0Fk1FupVdImDn8J75iyrlCTdYdofCA2rgkq8gjRwxwvfrpPQwjproJYVewlx1Quw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791ce85a89fdb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/blackpudding.ab318dcd.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/blackpudding.ab318dcd.svg
IP 104.26.4.11:0
GET /img/blackpudding.ab318dcd.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-141e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404814
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=twDTOULeOwe%2FpqIrIzGWmOkU%2B%2B4UhMsZHc4%2Be4yMg2OEBRkELWwv48myIBklfpAS7V%2FEVnhThtuYJlfv0cjnUaY1UiwiwYiztea3d%2FQURXvlS1zvq7KSN6D9KWa9XA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87358530b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/evoplay.f05734bb.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/evoplay.f05734bb.svg
IP 104.26.4.11:0
GET /img/evoplay.f05734bb.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-a08"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404821
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nvYaMcHA8mfz%2FREtvU4BAiYdIwPUAAC0xKwYPRvZdQ1lEBushmwxRNcyX3McUi%2FRjzOj86FtLyGT%2FRLTF1dTUc6GbOtfcYny5kIrcYEF%2BigInts%2FuekgmhD6pLHQHg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87388960b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/quickspin.9b693b27.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/quickspin.9b693b27.svg
IP 104.26.4.11:0
GET /img/quickspin.9b693b27.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-16a6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3405463
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AYlPtIKlVmQ8Zko6YSY8GNdfBYa%2FI8XnI%2BFF%2BzI7nlmko7pTLlLbkxs%2FCkUGB%2BIiPCZoOkn5iQves%2Fu3a%2F3%2Fk%2FHwfnpyuDuoDIeh2Ux4QA039IeRcM2vIGnxQGPXiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873d9240b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/hogaming.f8502380.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/hogaming.f8502380.svg
IP 104.26.4.11:0
GET /img/hogaming.f8502380.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2cde"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=odM6e5DIQljv8FrADbpwlg5Ldn%2Fl1VYunNjgplBj5A4oOvNVfJaU33SE47PsShogSFp4qkfpNYSGwPG1h4q%2BAxcfR9dzou6Ujysi5rtmCw6HtB%2FgdtMK%2FJj389vlSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873a8cb0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/triplecherry.ca9e4ee4.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/triplecherry.ca9e4ee4.svg
IP 104.26.4.11:0
GET /img/triplecherry.ca9e4ee4.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-d37"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z6nTHj59T2au6t43sJaUSKJsQdZmpP76Hmqtirz%2FKOpZE2RzBMyQCh4%2FPt4y8a3byFyrN6sNyVpcYd%2BAz%2BPtkJW5rDoUzJ4CJNrEOkp2hU%2BWfoF6IgPAwDEp%2FspfEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87409680b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1wswqf.top/?open=register&sub2=426
190.115.19.101200 OK 0 B URL HTTP/2 1wswqf.top/?open=register&sub2=426
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
GET /?open=register&sub2=426 HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Mon, 30 Jan 2023 20:20:17 GMT
content-type: text/html; charset=utf-8
set-cookie: sub_ids=sub2=426; path=/; expires=Thu, 02 Mar 2023 20:20:17 GMT; secure
x-frame-options: DENY
content-encoding: gzip
X-Firefox-Spdy: h2
1wswqf.top/sw.db344b25.js
190.115.19.101200 OK 0 B URL HTTP/2 1wswqf.top/sw.db344b25.js
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
GET /sw.db344b25.js HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: sub_ids=sub2=426
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Mon, 30 Jan 2023 20:20:18 GMT
content-type: application/javascript
last-modified: Mon, 30 Jan 2023 13:37:13 GMT
etag: W/"63d7c809-18bf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: DENY
content-encoding: gzip
X-Firefox-Spdy: h2
1win-cdn.com/img/spinmatic.6decf00d.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/spinmatic.6decf00d.svg
IP 104.26.4.11:0
GET /img/spinmatic.6decf00d.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-24b3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mfF9AZr%2B382wJxHXz9IHBcIXs5N23FVzNDE%2BHqgnyzCLr5gocVdJlWwxH33B7YIotCXZC2BT7UJxBSgq4IsVEZ0WFXHIwc%2FLGT41bkAVRRJKkMYJJV92HQBgZRmNCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873f9480b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/thunderkick.93d20b41.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/thunderkick.93d20b41.svg
IP 104.26.4.11:0
GET /img/thunderkick.93d20b41.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: W/"63d124be-1f2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 328818
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nar3PwoOiuczkp37SryAPelEOLN1rtHFXE%2FiNmcryRe%2Bay3LQmnx2lQrnxHfB27FVnLaHCl0KU%2Bs8ALsUejAr0OoS7WAyCkG%2FSJLzdY5%2F5KpMbqqUC9LkpXE0%2BNaOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873f9550b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/sthlm%20gaming.a42e0c70.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/sthlm%20gaming.a42e0c70.svg
IP 104.26.4.11:0
GET /img/sthlm%20gaming.a42e0c70.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-3199"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=46sJ8%2FqNaYSgepKAZZoX%2FSnQFB9J5HyGo6K8O563x6PfxmhfjirklvOpTLVKjzHWWKf7K6wR%2BtFrnWJXJBhGZAU0HogQgF%2BMlfaTjkrGaArxDaKix4VaFjkZ7fTo6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873f9520b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/playbro.29e123ea.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/playbro.29e123ea.svg
IP 104.26.4.11:0
GET /img/playbro.29e123ea.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1b2f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n%2FkeJSlst6p40bzWbso%2BHPpDh71ENCIKf5MQB5j%2B9LmlFdhm51Klt8ZdtfX%2FgYNF%2FqjBxkCEW7HRJH1lcvRmIA0cur7hStaaqFdRyQUIkaCQ19G8p40tNix491EziQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873c9150b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/cashback.12a56595.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/cashback.12a56595.svg
IP 104.26.4.11:0
GET /img/cashback.12a56595.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-851"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404814
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MZpA%2BhbGf5nMC0UiDzbaSFPQnfH92oonUxXyZD%2FsFk1nhxaHz3%2BRFWMR%2B%2FaFEhWxSe95ff5%2Fr%2BQMVSin999KMR5z8ebHgmeuf1g6fjDhRssiXy%2BTgSRc%2B1%2FKRGqMMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce872ef6a0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/dicelab.f8f3d560.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/dicelab.f8f3d560.svg
IP 104.26.4.11:0
GET /img/dicelab.f8f3d560.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-f89"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404821
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6CixzRuxzL5ZvMDZ4rwx%2FE6nFx4Ha7S6bVuCzHZM6tZkYVyXwxS%2BD6Tw4PJgkr9rKjqve4ZEviUkssgQKgtv%2F5DKpVCwegSnLKoRpkgpOkkrkv5hnWEDvdceM84v8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87378810b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/givme%20games.9c29bc7b.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/givme%20games.9c29bc7b.svg
IP 104.26.4.11:0
GET /img/givme%20games.9c29bc7b.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-961"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AKc0uq8DIw7Wmilcdn13AKzZmsQiogj5GFu9tLGJ6vGwGI5susBolbwb%2Bv2k4IozIiucNJZz7DTxiKPB0cIallUMH73jj2mfv2N3GIRdX9un3xUF96aPFfJSmvmsKg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87398b30b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/silverback.e3f805e2.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/silverback.e3f805e2.svg
IP 104.26.4.11:0
GET /img/silverback.e3f805e2.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1c185"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RptO5X2%2BEoxbAq2%2Fh%2FCmhQOPYENSENfi50uOyeohfdjbcLG1ujc1WvviLpu060jNPpmsqEMuqXCIKNO4jufUL%2FU%2FTk8WmqtfkIn3if8GLZ3EPv4Rm4tbNkObmSsYJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873e93e0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/vivogaming.41d892b8.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/vivogaming.41d892b8.svg
IP 104.26.4.11:0
GET /img/vivogaming.41d892b8.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: W/"63d124be-f228"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 340719
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EJkTW2IcTvcxy6MN%2FID7pljgOvOk7MStFIjkrZwhL51jYVxo3vqvz3Z%2BU5qLqItEmBIkI1ii1rPslzWvspzpkPvG%2FYy77j34HR0c6Maz9RlyOf9E3YgDE86SFEdF2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87409770b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/atmosfera.2954041c.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/atmosfera.2954041c.svg
IP 104.26.4.11:0
GET /img/atmosfera.2954041c.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-156d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404814
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l94qn6eLhlsUbCvM7VplIDQLM17%2BVUwkWh16WTZ4fxlH6SVjAbywBzJMPfqQPwTnSqYamdWSwVzX3c8sLMq%2BC0aTJT0kiNa99Iu427cJIrYlRAKYXcRsNyTFACjXWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87338150b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/hacksaw.ba9f22a5.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/hacksaw.ba9f22a5.svg
IP 104.26.4.11:0
GET /img/hacksaw.ba9f22a5.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-110b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DysXWaAOSmcbXT1iVGcCto73UflxaMCDQiXJglQ01ddn8%2F3wCtZr%2B5J8CiL6KYUWBdoV5ryF5dOlhTwXhlKZRS8WX6b2pnGutlBBNYkpScoXPZA5MbnkrLI6ca2%2BlA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87398c30b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/netgaming.aac206c0.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/netgaming.aac206c0.svg
IP 104.26.4.11:0
GET /img/netgaming.aac206c0.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-127cf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bjb7ZMyCyYdDPmMUoicRU60KLXSjSYL5YmQR8nPGtkw4D07L8QwrzoHuHXIQiq2HHtz%2Fgnz%2FUEVWfCPr21HXPvrpOJfgWL92Qf3Qdo4SCNUmuJAqx9Fsngb03gPvTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873b8f70b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/index.ada59b3e.js
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/index.ada59b3e.js
IP 104.26.4.11:0
GET /js/index.ada59b3e.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wswqf.top
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:18 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=91627
access-control-allow-origin: *
etag: W/"63d7c7fa-165eb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 30 Jan 2023 13:36:58 GMT
cf-cache-status: HIT
age: 23864
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=am44nM0C3I7XEdzBxchzi8TzcnqP2tJz4WwThMm675%2Fh2lu6xrOMfPZ25sPpomXBe3KlRDPbf86Yn%2BUNEunHcxo%2Bxk199gd1kHVQSzN3%2FhPguXvEa6m5S1K0rC2EZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce84e3dcbb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
1wswqf.top/firebase/8.1.1/firebase-app.js
190.115.19.101200 OK 0 B URL HTTP/2 1wswqf.top/firebase/8.1.1/firebase-app.js
IP 190.115.19.101:0
ASN #262254 DDOS-GUARD CORP.
GET /firebase/8.1.1/firebase-app.js HTTP/1.1
Host: 1wswqf.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/sw.db344b25.js
Cookie: sub_ids=sub2=426; visit_domain=1wswqf.top; partner_key=ydwg; core-sticky=http://10.233.80.81:80
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Mon, 30 Jan 2023 20:20:18 GMT
content-type: application/javascript
last-modified: Mon, 30 Jan 2023 13:37:13 GMT
etag: W/"63d7c809-4ded"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: DENY
content-encoding: gzip
X-Firefox-Spdy: h2
1win-cdn.com/js/icons-pack-social.11d06b0b.js
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/icons-pack-social.11d06b0b.js
IP 104.26.4.11:0
GET /js/icons-pack-social.11d06b0b.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=20146
access-control-allow-origin: *
etag: W/"63a42a53-4eb2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3406709
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b32skZ9v8%2FRolUCLE10eVj0aTlsSLNMYz8%2FxOWzwnWirvTcZmEOHHWf7ML3yOHbEndAlLobP63Mk62UzyDkYYTidyI5OlKa9vQramB6BH0XMQdTMKAX65XeFZ%2B4BDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce85a8c710b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/fazi.0731b5cf.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/fazi.0731b5cf.svg
IP 104.26.4.11:0
GET /img/fazi.0731b5cf.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-27b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5yL2WTgXqH%2BHHIGh4dLV%2BFwCBsr4bJJ3DeFEB875cFYdW%2BTIEHNimHYa8kPQaq%2BshcbUaakXZPnXPdFSd5UF957xVdqyn%2Fp9TeIEVbUnNCzb0kOlseYNtYEQq5Yqvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87388990b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/gamzix.f7270646.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/gamzix.f7270646.svg
IP 104.26.4.11:0
GET /img/gamzix.f7270646.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-f15b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GYnDEWFOL3%2F9kuGmUNNIcDUW7%2FeqIS%2F6YywMg2ySpBe6%2Fco2u1YDg3CoWoaJB2EgE6hF44hU0di0malTXB0HGx6Nb8D%2FmLXH5AiWpJszlsr8XEPddcd%2FRvsRzCWUXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87398ae0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/belatra.259628ea.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/belatra.259628ea.svg
IP 104.26.4.11:0
GET /img/belatra.259628ea.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1818"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404814
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Axz%2BLvN18m4%2FtEVOteO6F7%2FIL%2B%2BAU4ZD%2F65mWY%2BW64iRWs2hvTT3pMijIwDlnTH2YeJet%2FClfEqQjsfbAZVHnZ71HtoxwWtAKVcEy5FY%2B6EyyZLH%2FcY7AdGbLaYhfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873481f0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/bet2tech.bb2f3549.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/bet2tech.bb2f3549.svg
IP 104.26.4.11:0
GET /img/bet2tech.bb2f3549.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-5e6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404814
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SWCGMUtdeXwHMYyR3WhLTLgwQjkrJQrUnLTfYwm5bwoq%2FuMTfoV0u370qgGFSAeKUrSJaJQ3%2BkYVxEtaK7yz4nM4eEHnkD4KD6kh%2FOmXkcKgZ0z1Qhuk36EgAvpJlw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87348260b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/pgsoft.5ab7874f.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/pgsoft.5ab7874f.svg
IP 104.26.4.11:0
GET /img/pgsoft.5ab7874f.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-d6f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YAqvy%2FKJWc0rrx7DB3Re8%2BYAFPcO6mLhxHUDOWi6nNMgHMYF7Xl0wpe2w1iKSpKcIwvIYuljccd1uaaQ25odI0mpVZKoVLz9sxyFu16kmJToAtMFafV5XIX5yyu27g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873c9090b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/playngo.ee16ad11.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/playngo.ee16ad11.svg
IP 104.26.4.11:0
GET /img/playngo.ee16ad11.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-dea"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vAirnZVu4D1KQHt0E%2B4JW8nAGMN1gG0ltBkGwBAcAs5IC%2FQ2xdjY3T9Z454wEd8F1babD21%2B5yI2U26FyPAiTsAZdkRsVjQ0TdlOZMaxuBaDGPR9%2FxRMYFvReilpDg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873c9170b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/simpleplay.21ac090f.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/simpleplay.21ac090f.svg
IP 104.26.4.11:0
GET /img/simpleplay.21ac090f.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: W/"63d124be-a01"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 340719
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o8a%2F0OeNrrm%2BCFjC4kzUiRfOT84YbC0NdrNd%2BXh4v6ID9nGACqAGzKwH7KLGM42LmYvClA3tmXK517qe%2B4nR9PbrvpA0fmMl3xjJUXnWmou%2BZItPf4FYkxSXXCRnZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873e9400b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/cool%20games.5793050c.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/cool%20games.5793050c.svg
IP 104.26.4.11:0
GET /img/cool%20games.5793050c.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-d49"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404822
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CFRHkbleFqtiKSmryY6KpIxXBKDPIvBb4%2B566K5oesgbUNUORLccDFa5wTIiRfha0MIuwedma1dfXaiymw%2B9TSJj3PrK7YSTc4XVwqIEtnoxD9Ypz9hNbt1%2Bwam8ow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873686d0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/liw.06ac3b16.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/liw.06ac3b16.svg
IP 104.26.4.11:0
GET /img/liw.06ac3b16.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1df5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E3k3giztDeCJ6akyctUe89Da4wOewkR9CdLC%2F5uGmKjmwuHIm7T3ZqmYc8g6pNVfYw8Kj0BFqD22YNwMzaxfLu0SJz0UBTbxLNcHzOYpg15AZPaoStIK4RMIUCSmtg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873a8e10b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/3590.a08c1cd7.js
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/3590.a08c1cd7.js
IP 104.26.4.11:0
GET /js/3590.a08c1cd7.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=44931
access-control-allow-origin: *
etag: W/"63cfb99e-af83"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 24 Jan 2023 10:57:34 GMT
cf-cache-status: HIT
age: 551799
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KBH8zOIjz8KNOSeCzBTRM5X5ls56UdMM9CvgJI9DfOQTbJsu2doRZo6vxT4Gu3w%2BcfeeDV4suKe28D8Oag39aT8PBbF1k6FCCXXQCKsRHoWW2UCd7a%2FGyh2Xyly2AQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8595ac70b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/1win.e3630873.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/1win.e3630873.svg
IP 104.26.4.11:0
GET /img/1win.e3630873.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-60f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404814
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i4rw76twV%2FCHz2YMxyTaJXJGlHythK30b6fSaZMjEFn7NOT1o41y%2FqMi1qLOAqoQkU5ReKw5KSjdT5Tbjhel1CfyXHZeUWpF83MMJpq7xN31CWrBWvaxTJJqOIiLgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce872ff880b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/4theplayer.1c19371a.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/4theplayer.1c19371a.svg
IP 104.26.4.11:0
GET /img/4theplayer.1c19371a.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-25e5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404814
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nAxgiKUBFfdYsLxc0opbdXtEehXXTXlLXVoUcSWN%2BySP7bKkFmWnnQ3Lw%2Bqz7LbSclT6s8Y6JGppUd%2Fs%2F7bteGLNh6b%2BtgVEUFt4EaiU0z%2F7q7baAsxNfvvtfqcBvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8730fb30b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/pushgaming.bc19137b.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/pushgaming.bc19137b.svg
IP 104.26.4.11:0
GET /img/pushgaming.bc19137b.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-e19"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yQN4RAJXUh%2B1ZORe8WHc6i%2FdFfrqhQHnpqVhpXqVOrOp0uQOp9wsIBliWwjkV1WspEZv52iTwhTRel%2FY%2B%2BaB0tD%2B6X43Ske3OZgrPZdwBt9BTORyvsT2snPkLU5Bdw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873d9210b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/yggdrasil.6666231e.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/yggdrasil.6666231e.svg
IP 104.26.4.11:0
GET /img/yggdrasil.6666231e.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-12ef"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lYzn2frwfYvkwVDEDYHMDqe2UVSoz19fKJK6Z4KgVWBWknYnCBBMr%2FIq44KPt86sd65tWdqhO%2FhoQqduE%2BK8LMgVdA2J6Db0cWgDOIJ3nOchdqAy2r3q5D6Amm0gow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce874197f0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/common/banners/all-v2?lang=en&type=desktop&bannersType=main
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/common/banners/all-v2?lang=en&type=desktop&bannersType=main
IP 104.26.4.11:0
GET /common/banners/all-v2?lang=en&type=desktop&bannersType=main HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wswqf.top
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:20 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://1wswqf.top
vary: Origin
x-frame-options: DENY
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hNcZaRKkXU%2BHwJQlQPoACR4CeLVgTBzCAuEC1jVLNd%2BsnzDwwBVQNdp9%2BE5DsD%2BZiy6r099uig8FIbJmoYCx2a4pPI3n6ALqWl%2Bd2aTMv%2BLuwQnZuNLLYBVilk7cow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791ce85a0915b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/play%20pearls.e674562a.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/play%20pearls.e674562a.svg
IP 104.26.4.11:0
GET /img/play%20pearls.e674562a.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-a4a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eW%2B4smNq8gOMAYQAFTr5YUJiHPigtW%2BFQDv24CNj5p3qEoqTLiEugsnVq7wSl%2BP1sCGfJSbRT9y3jVV3PEGqVOZn%2BOUuid1oDFGbnSnwNuMwbXkh872PUs6gO5l0%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873c90f0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/turbo%20games.bfc7405e.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/turbo%20games.bfc7405e.svg
IP 104.26.4.11:0
GET /img/turbo%20games.bfc7405e.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-18b5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 1035258
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0FcYBAHboe6db8owLYW4VxBkWybyhbvlbYA3NdGktgvYwIcvhR8%2FDbT1s2CYJW1f5Hld5NLjyR9ZNiJk6SCw8prlfv6x5tJdFe45AbRIfaU%2FtpQb5nOUSrNqF%2BDnow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce874096c0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/9208.28ef8f69.js
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/9208.28ef8f69.js
IP 104.26.4.11:0
GET /js/9208.28ef8f69.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:19 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=1368
access-control-allow-origin: *
etag: W/"63d7c7fa-558"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 30 Jan 2023 13:36:58 GMT
cf-cache-status: HIT
age: 23461
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B2NcM5G1K4oTg5dkEBh4%2BX1Yh59eD2AmM4KaKUNgHn3uctgUkJkALE%2BRGZMVJqaADp2BGW3N1HxxHuZXV%2FBBWJi7%2BwokGY8%2FedzwHEpqdCeIpeLDUoPNX6O4t0MdpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8556e010b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/5%20men%20gaming.81b340c2.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/5%20men%20gaming.81b340c2.svg
IP 104.26.4.11:0
GET /img/5%20men%20gaming.81b340c2.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1ac8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404814
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b9lqiUd8ppd1vfFBJxFm8TnIkHGuxJRENWCxtRzspwKhnWMwknyAFyOlAy4FwS645rgRPsda6UneHud7xhprJOP9Oy6n7WK84vKEOGtKULUJxHU8kCpnAEVy4RxhTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8730fc00b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/fantasma.7a456c94.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/fantasma.7a456c94.svg
IP 104.26.4.11:0
GET /img/fantasma.7a456c94.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2397"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8mlUhAdcn3qn3Z1p5sBXTogys3IQpAzKpj0ynpQbgXCJXx1Y8dBRrg6nZ1MjZ9rp0ZYARZ9ouAQOMrNUXWtcsrRE%2BxNFfycYB0JUpMAVxCAqgLnM21JpYsy5IyL%2BZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87388980b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/mascotgaming.fbac2f51.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/mascotgaming.fbac2f51.svg
IP 104.26.4.11:0
GET /img/mascotgaming.fbac2f51.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-b64"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X2OyZVWjW4WTSAahP9BUHibNUboPwlnu5%2B%2FvBFkk71sQlGLx8jxmdPgXfXFZPlTIIhNUAk6Gr%2BSOrniqw8Lb%2BXn%2F%2FeoTUKo1MldxrOhIewtGrItPfHkHYzPES2iwtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873b8ef0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/tpg.b2c2a9df.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/tpg.b2c2a9df.svg
IP 104.26.4.11:0
GET /img/tpg.b2c2a9df.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-a6f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 1003246
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oh25o%2BcwRnTTdGw0qT16aCek9X42PR7DaysuSi00kHU0czvEr3vqVJbhg5ViyfDGqZbAcNy6EZOBFKvim0A0M1F26L32xY5iqFZJS6gxglnUrIFFl4kqOBiKivpyXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87409660b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/wazdan.63223c78.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/wazdan.63223c78.svg
IP 104.26.4.11:0
GET /img/wazdan.63223c78.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-cac"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HF5NSQXC4Pej3vTwBQuL2R%2F%2BjUshScCFduUm9xHhYo9tjTkwjoeH2QTTwp%2Ba2a1jAg3g3%2FpuDfw9EJSQC%2BPUXPEmOhQHEwgQi%2BuNGIDB4IcwlJraeHcGAldTqEKu2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce874097b0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/chunk-vendors.65b7581c.js
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/chunk-vendors.65b7581c.js
IP 104.26.4.11:0
GET /js/chunk-vendors.65b7581c.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wswqf.top
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:18 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=427140
access-control-allow-origin: *
etag: W/"63d7c7fb-68484"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 30 Jan 2023 13:36:59 GMT
cf-cache-status: HIT
age: 23864
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O2nJ%2BSjNZ1Nen2e%2FxASjiii%2FEncb%2FpeACgbVfKhIvA6GDk7L5Gl%2B1gyMOmzJzjj63frqbgPYZh7wepuLmCpQN0Xg9nGrH7uqEMBW2uPIIDnB84eebxpQo%2BmheDdsHg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce84ded1bb4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/relax.c4362d19.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/relax.c4362d19.svg
IP 104.26.4.11:0
GET /img/relax.c4362d19.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: W/"63d124be-1994"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 328818
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=769Yqm8oSdu4lMr0R7verNVnEAYxPiPzgZdH2%2BuDtwlhYqhEfDBcu%2FRmkMrcEhRDCJjxLSmxm9Vj9o44ykYUrPFIgGg9N1NNZ8rlh57Og9jWMe04Rxrmr4noLfc90g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873d92e0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/retrogames.513aab74.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/retrogames.513aab74.svg
IP 104.26.4.11:0
GET /img/retrogames.513aab74.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-815"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rYQDOyTm91wx0s%2BiQRG8fDUD58hoKpZBlTgjt1asIsJ9vMB3qtbJWKGbF3axrqL%2Fej4D9jUOHlUT0mFvVOeErEz3vP45Wi49ZUdcxKjoSrR4o6%2FlN0jl2sVhUX0fgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873e92f0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/icons-common.c0259c25.js
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/icons-common.c0259c25.js
IP 104.26.4.11:0
GET /js/icons-common.c0259c25.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:18 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=231782
access-control-allow-origin: *
etag: W/"63c6800f-38966"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 17 Jan 2023 11:01:35 GMT
cf-cache-status: HIT
age: 1156668
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yM5RQrtJaIktIo%2FoXd6%2B8S3jWq1t0tQwdqS6e3DzxtJzx%2BtjOHaHQJeaTGklrCI33xy6MYe9E3KDDQV24lwYm9S8vXy4f13b9ngstegFvxsABBak5kzIZStOunPhJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce84eee920b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/gamomat%20standard.7d28ae64.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/gamomat%20standard.7d28ae64.svg
IP 104.26.4.11:0
GET /img/gamomat%20standard.7d28ae64.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-31a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iqGMuRHDH6NC92CfGGW%2B3K3XOZD2MMuT9qGDhAzYbLafYtHCFjUf9Uo8LILwW5VO7UEKcBCrN7HYHqU1GLHYbpbKMLmrODwp6%2F%2By1tINSFEcIUCSq7EWvYl25u9MQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87388ab0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/css/desktop.31e6deb9.css
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/css/desktop.31e6deb9.css
IP 104.26.4.11:0
GET /css/desktop.31e6deb9.css HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:18 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=95906
access-control-allow-origin: *
etag: W/"63d124be-176a2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
cf-cache-status: HIT
age: 335390
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1hrpeVI0MneB3brkPAxv4vrY6sDaskwSR6LrUsrIj5L%2FSRpEjHU7p0d1Qy%2BmP07hSpNV7zlJflhnFicm%2BLc0hPRQAH0X2HVfHEHRZ1mI4K4eaUVa8VKTjdnigJGCCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce84ded5e0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/1705.d306728f.js
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/1705.d306728f.js
IP 104.26.4.11:0
GET /js/1705.d306728f.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:18 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=29313
access-control-allow-origin: *
etag: W/"63a42a53-7281"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
cf-cache-status: HIT
age: 3405875
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sTqztMA%2FCbklxj0EnGwzl%2F3hYTHz5GI0zZ9ksw3zJdr5NqP5UECHlYic2zd24MTo34VuMjYm%2BaFKpgYcwBkhTVSHML2XTKHMkrnawWn65AoE3jURYsuAYejBXn%2FG%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce84eee930b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/authenticgaming.08e94926.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/authenticgaming.08e94926.svg
IP 104.26.4.11:0
GET /img/authenticgaming.08e94926.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2813"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404814
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dtCzh%2BLZSYg01YPi1K4l16Mdne7nQ66Uj6Um9Ka0FcOE36UcnYaI28v1JbqQ5wdzAeqRkBzGtHizcGwbg7swk4tOQtVHsqOt4ezzf1RpPYP8uncxGC1a318OfuqyuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873381a0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/pragmatic.fd2b7bb4.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/pragmatic.fd2b7bb4.svg
IP 104.26.4.11:0
GET /img/pragmatic.fd2b7bb4.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-52f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j19qp5PSBQAanr4mfv3muebwJGUWs5nrBIAiO7KMZpJa1MOu0zEw610k6XOc0WYwMs65yxWt2uvIy3afldS0uI7sZP%2FXxcH6JpFeFhQ%2BMZ%2Bl%2FDG8TjCkN6NoJWW8jQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873d91f0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/spinomenal.30d1dc2d.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/spinomenal.30d1dc2d.svg
IP 104.26.4.11:0
GET /img/spinomenal.30d1dc2d.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-6e7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3405463
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3YlQE4Fsfi1565dL4Pknm3nqqh0cPd3H0CZHgByEqmf852m%2BAs2ALp87ZZjC4l8ReSA0Vs6Pk0Y9Tp0OeDP83l424vB743S3HEr%2BDDwPvl7EHc5ecbpAxA2AV6MGmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873f94a0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/tomhorn.8e656e09.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/tomhorn.8e656e09.svg
IP 104.26.4.11:0
GET /img/tomhorn.8e656e09.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1811"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3POlSkuDsp6qskiPGY94Pq3dQECqN%2BHQqmf9dYV7QXy4kqixiIQTO71jkX6ijPCV7XJNhBEjmPbzNRuuwd5B1%2Bn8Q9YeGlGMq97R7NIK23uHVcFJkLxWjjp9IN22Qw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87409610b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/chunk-common.cb71208d.js
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/chunk-common.cb71208d.js
IP 104.26.4.11:0
GET /js/chunk-common.cb71208d.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1wswqf.top
Connection: keep-alive
Referer: https://1wswqf.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:18 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=16758
access-control-allow-origin: *
etag: W/"63caa6b8-4176"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 20 Jan 2023 14:35:36 GMT
cf-cache-status: HIT
age: 688074
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m6WqB22srMBYhUxl4XEqDfLfqQqO%2BmNWp5y5ttjOOdlN87KGcJZh%2BE6ye2vSi5nbStEaarzEWLSR88rzPLn7cHLJfK689WMOdliX%2FIYW3wPbMpmAdAAXE9lptc1isQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce84dfd2db4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/apollo.72eae79f.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/apollo.72eae79f.svg
IP 104.26.4.11:0
GET /img/apollo.72eae79f.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-312f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3405592
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=reRFmnZBRoFCsaPYaqk1E8tEY3IalmVsHEDdlMjAjjvtJxvtsp9U2Y6ihnUfKAk3qiBZt8YHH9nFjuM2y0vgUKbGHCfLF%2B%2FsPstT65Zqsw%2BtsQ%2FG%2FXt77sR95kLzZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87338070b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/fugaso.a193ab53.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/fugaso.a193ab53.svg
IP 104.26.4.11:0
GET /img/fugaso.a193ab53.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-4c1e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3405592
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7v2Urp%2FRktROl3GYdxpccRkWXVfgBtARSRI0fp%2FS3WK6ORfGZeLm9V534MgjpMSIvwOczsEG3l8vKhMp%2FwCxmkzINiG7w%2Fyha5KtKTmQupl82OhQxeELGHdAp8Rbbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87388a30b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/golden%20hero%20games.815c7431.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/golden%20hero%20games.815c7431.svg
IP 104.26.4.11:0
GET /img/golden%20hero%20games.815c7431.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-ba94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TyhwdZpRSzpuhcTifqzpbL8hfHWskamXVRlV6qpyFR2bDu8TbhRatt5rEMsLrTHMMt5%2BCRw3Xr0rC8qqQs1gtBb2aaqV6owfAgX7i%2FDg8k16AtcxK7ORJo3A8dCkvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87398b60b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/onlyplay.820ab1cc.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/onlyplay.820ab1cc.svg
IP 104.26.4.11:0
GET /img/onlyplay.820ab1cc.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Wed, 25 Jan 2023 12:46:54 GMT
etag: W/"63d124be-648"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 328818
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9h4PyBYqau9za8wfHK3ddIsyvXPbSKdJztOnyFpUr9t%2FuW%2BA4Vnz%2FsG1oZ9%2F73Veh8sxOFfyUOSe2zlWTVE1tSYpkzq32EsjDRFxxrw8Dc48BP%2FtgXX7w2ZHtZhlVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873b9040b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/worldmatch.767ba51a.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/worldmatch.767ba51a.svg
IP 104.26.4.11:0
GET /img/worldmatch.767ba51a.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-1f6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 1003246
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AFnJgtWlwl0PZGBhP0Da8eDlRrDdpS8UTEadG1hJmyUUAc7NUQTa0EXrYo9ehzedfDrHJh3grSJ9K3aYTkgheJ2SwGKUdLpy9EkSx65kIlo8ns%2BW13Ky5O4pe%2BHmCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce874097c0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/edict.209e128e.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/edict.209e128e.svg
IP 104.26.4.11:0
GET /img/edict.209e128e.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2f34"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404821
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TVycSiU33V9u5OyxCaWkl5mLvDACg37UcL%2B5rnmbKHZqahBjYaiu9YshTsOdteeAVtrptp0UiMtGcORnYH3%2BYuUOCNowIN%2BMhetYbRdRK5CMyCjyixksNTj8UkfX%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87378830b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/kiron.4a0c7f94.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/kiron.4a0c7f94.svg
IP 104.26.4.11:0
GET /img/kiron.4a0c7f94.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-264"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ctUvhWWE3GehOYtdRJKUshBiauu55DZ9T%2Fsa%2B%2BK1Uc6Bco4%2BEPa4E2SjQ6T5wtJMdLjhbFiC9Sz9JmcJj5tvtKWcXXaSrwbw6Y3Qr4kSqvNUTB5hVywNotzH1Brhzw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873a8dd0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/playsondirect.60f5d958.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/playsondirect.60f5d958.svg
IP 104.26.4.11:0
GET /img/playsondirect.60f5d958.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1b2b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YiLXSXaHRV%2FTPa4p4Zdu0Pb1V3%2B9UvlrLMEo%2BAsEWAl6OS8Dffs5u2kfOgDe4CIgQHMcJ4FiaVsmzsQgn99h9FmI3mXavQabOCLu3Nj2pIFPRlhyhUWf2FAE3ZlFdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873c9190b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/1x2gaming.9c41eb85.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/1x2gaming.9c41eb85.svg
IP 104.26.4.11:0
GET /img/1x2gaming.9c41eb85.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-f4c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404814
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EXROM1KBryCfz7VXngxWwmlxwLfA38FRGbO11afSzRg1Dm7eLZnw%2FiMWr8eR3Fsx5l%2Bwb1iRbjIsWLJ%2BlrlTi9poS22LeQ3hzxdXK%2FUyHNrscKSFwpclyFn%2BsuVP3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce872ff980b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/7mojos%20slots.d3a1137d.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/7mojos%20slots.d3a1137d.svg
IP 104.26.4.11:0
GET /img/7mojos%20slots.d3a1137d.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-22be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 1003246
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Aei5CJ22uni0BOwgB7Z2tAnUuJHCD0gESdesnFpOFqPOOZGxIKY%2BsZmNdz%2FN92i5Xe%2F6nV%2Bp5DYX3SfeXH9GcijUbrlhlFf%2FTSS%2BQqsYyxaOPyGf6dfiOCex0FJI4w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8731fe10b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/endorphina.bf6a0cf2.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/endorphina.bf6a0cf2.svg
IP 104.26.4.11:0
GET /img/endorphina.bf6a0cf2.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-3a771"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404821
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MH3UdtrVm36G5tVGDksdNW15ZWGzZHGyiElf1EdFvmMdCS84JiiWgw0%2BKa3Q9F1S7oFOEhaebyVz%2F2XIwYzSG2cbymLmNYvPVT%2F3oJbEWUZssMuBnUxk5NGeNHyOcw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87388910b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/high5.4aa8a605.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/high5.4aa8a605.svg
IP 104.26.4.11:0
GET /img/high5.4aa8a605.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-1314"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 1003246
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cpKFplTLGNlcJZy0nOKj%2Fi%2Bo2RZAATdDiYASu%2F2yyF2YPSSFbSJAUuS2WIH5SN5g8P6Q2%2FYQhZM4bK7DYWGmkj4YXMFZKZO6Y7aWc1sY92CX3Wgxae8UNzoXRwaK%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873a8c50b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/redtiger.81376ac8.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/redtiger.81376ac8.svg
IP 104.26.4.11:0
GET /img/redtiger.81376ac8.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2a9f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3405463
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O1dPjL6Ym8TFgAOLgJrh9v405DyV2EJhOF5FURUU0lyqlFXNIvbxWS%2FQ9isiOJDuIGM6Poear6K8Q55eO33bLS9TBPHv45Bf6%2FOWZ9RRHb%2BxYZ7tQNiX3s%2Bwa5KS2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873d92b0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/onetouch.8550a163.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/onetouch.8550a163.svg
IP 104.26.4.11:0
GET /img/onetouch.8550a163.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-3ad4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kJAMF5%2BcX4NU9e9csggY5tgF%2BFMtmCsCj%2F1MsPlm2zZf1ZvXWcXtyW9S5yAHku6wdbxNEMw1129EWoS41VVkHnOf9Xu%2ByCpBX0uMrDYTRJj3QrJZjuVHP95FxJY6Jg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873b9030b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/felt.10413409.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/felt.10413409.svg
IP 104.26.4.11:0
GET /img/felt.10413409.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-17fa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G3G9g0ZeKGIX4wSSAjKHgEidycw6E3cTRpQaG%2BVUCKPYuQgC73%2B6MgIbxIJ6rB6DdIIagYRcw3C%2B%2FocCIIy5Inh2lkQsrjgAIUI8qxIU3ntCFn2%2B7G0hsNHVfewXvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873889d0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/platipus.62dd70ad.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/platipus.62dd70ad.svg
IP 104.26.4.11:0
GET /img/platipus.62dd70ad.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1368"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mwRT4jZau8rpbQaF79OLrsz1olKBOVQtlY37aL5wsuYuzQwY1CqquQPjfAt9jNjKtUuJezQHJXvnTHvNYrYI%2BSaOtW7OtYEP1umPojFYr7E5skyAjFCYmNwgdRGIZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873c90b0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/elk.f78317e9.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/elk.f78317e9.svg
IP 104.26.4.11:0
GET /img/elk.f78317e9.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-d7f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404821
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=67fbpV%2FFdz4hfcEpMRI%2Bld2IDdFlg9hsx0L4xkFOKilv6QqcCfEHZ%2B5zYu6ZbZHPKg5Ey72l0G%2F7Tz%2FGU0gtmcdoBrsboupydbOI2WazGsaKivBltKx9QU3QH8myDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873888e0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/electric%20elephant%20.0f5be6ef.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/electric%20elephant%20.0f5be6ef.svg
IP 104.26.4.11:0
GET /img/electric%20elephant%20.0f5be6ef.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-1cdd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404821
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0C%2F5B6doGi9O5%2FgduItnSdZmA9x0bY6N3iamQHMrYy1NZdQlrmQZi9dzj2QqYIm2tUpWu083Dt7b9TA3hLRv0vVHaiUVXo2sE%2FAv3920e%2Br3Om37YGlK0dCzYHpNIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873788b0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/igrosoft.81ca5abc.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/igrosoft.81ca5abc.svg
IP 104.26.4.11:0
GET /img/igrosoft.81ca5abc.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-2243"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q%2FoRUyF%2FxN8U%2FO%2BHBqYGuD4kZ73hUYi2LhvFJEF8iROIEqSmkI67sERUMjQWTE3p0hgJXlY%2BG54M2dR6FhBQ9y09OO86WjwdfC89yMej0KLZbmKwYSXWMVNk%2F%2F7MLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873a8ce0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/reelplay.7c34e6a5.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/reelplay.7c34e6a5.svg
IP 104.26.4.11:0
GET /img/reelplay.7c34e6a5.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Wed, 18 Jan 2023 10:18:29 GMT
etag: W/"63c7c775-6070"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 1003246
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K1zYAb3NtsUac7t%2FiClDkOEzPVp0yyDEfxgFN%2BqHJIZFfEmm%2BqFDwBk5UMfJky1J3ENdlUhzB2kSxinIrYVCZU%2BsRufuddnRDWJatsM1XGjePK6fkWFTOWTIddsYUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873d92d0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/zeus%20play.8ccc9002.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/zeus%20play.8ccc9002.svg
IP 104.26.4.11:0
GET /img/zeus%20play.8ccc9002.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-3d9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XAYlIayq0BCgVuYW11ZqQkLidshgFwbGfdo2OgqnsVAjS1i%2FNsSqffdrEMYlG03VY21GZUzg8d2bJGyLowg%2Bc%2FjbfszHdwJ8EFfIan2fM4F0fDYVm3k%2BApl1mf9wyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce87419820b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/js/541.d536ea95.js
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/js/541.d536ea95.js
IP 104.26.4.11:0
GET /js/541.d536ea95.js HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:19 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=11217
access-control-allow-origin: *
etag: W/"63a43d6a-2bd1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 22 Dec 2022 11:20:10 GMT
cf-cache-status: HIT
age: 3401975
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7oQFW4WYnWYVnvBrSVEWMKHDyszgK%2FlJ8zegLsp%2Fg0ltPmP7W5D3pZBX77uKF2dO6QXyYXmsBiqxKvR%2B4mlgQEbwLJIrgcIXtfL6mLtDlLNs0%2BgBNkAQqBmsI3MbVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce8555de80b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/oryx.ef29a7af.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/oryx.ef29a7af.svg
IP 104.26.4.11:0
GET /img/oryx.ef29a7af.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-507"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fbYKacvk3Mo3DIf5Fm8K6OVRzMs8czj9VdPzYA4%2BhEFgFMTuLj6KbEEY7ufXtqNwuDNttTP6q%2F%2FLjURGd9uAAKv%2BueQ3%2BYHnEH%2B9DKgtiPNTxVNtqBKpLvHMpF%2FjNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873c9070b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
1win-cdn.com/img/playtech.f068e8ab.svg
104.26.4.11200 OK 0 B URL HTTP/2 1win-cdn.com/img/playtech.f068e8ab.svg
IP 104.26.4.11:0
GET /img/playtech.f068e8ab.svg HTTP/1.1
Host: 1win-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://1wswqf.top/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 20:20:24 GMT
content-type: image/svg+xml
last-modified: Thu, 22 Dec 2022 09:58:43 GMT
etag: W/"63a42a53-50e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3404820
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SJYn2x%2FEu7okBb0FrJvya1Sjq%2Bmfo8oeNG5Jr3R5tfBYTpR3B%2FQcMWyEWI4a5ZqbFwWzdAPclB8ojMCLxmu0bzxKKMbAwSisyyTmRl9VHk7gOAkxZmb%2Fu%2FKB9nhmeA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ce873d91a0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2