| 1win.run/panel/registerSW.js | 190.115.19.210 | | 145 B |
URL 1win.run/panel/registerSW.js IP190.115.19.210:0
File typeASCII text, with no line terminators Hash2358dc48fdd170cb47adf83e153e2795 afac549ba8175a2495822c25198d64fc70312d5b b86872131a9b98231da7e3a2468f85fe4fb461fa7e708b5151adee8d6268b389
GET /panel/registerSW.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-512x512.png
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 145
accept-ranges: bytes
etag: "66190546-91"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/fonts/ProximaNova-Regular-DtAL0MTj.woff2 | 190.115.19.210 | | 64 kB |
URL 1win.run/panel/assets/fonts/ProximaNova-Regular-DtAL0MTj.woff2 IP190.115.19.210:0
File typeWeb Open Font Format (Version 2), TrueType, length 64200, version 3.786 Hash1c6d7cd6aac72f4b4177ab42729d2019 88c115adeb21277900d5fc7f204e7af616a51f24 1ad151f1bd25d86f257c75c6abfa3b8481dd6fd5829714db6464b4d8c5027b3a
GET /panel/assets/fonts/ProximaNova-Regular-DtAL0MTj.woff2 HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/css/index-DRUd4wTy.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: application/octet-stream
content-length: 64200
accept-ranges: bytes
etag: "66190546-fac8"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/css/index-DRUd4wTy.css | 190.115.19.210 | | 75 kB |
URL 1win.run/panel/assets/css/index-DRUd4wTy.css IP190.115.19.210:0
File typegzip compressed data, from Unix Hash8399ab60f12c07adc1350bbc4fdd5d45 23c6dfe4e4eab542f9090593029089a10a943d6b feb8c41bd7435e6d625961fad477c0d92a30addd6a0125fdac20050e95be2151
GET /panel/assets/css/index-DRUd4wTy.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-512x512.png
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: text/css
etag: W/"66190546-9623"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/useI18n-Bi7csTvq.js | 190.115.19.210 | | 88 B |
URL 1win.run/panel/assets/js/useI18n-Bi7csTvq.js IP190.115.19.210:0
Hash3a8ce1a247fc48523e2d31d470a0b3a0 1d8096164adcb0f918ae96440c5fa566fb31e427 7b9da847261516ba5b1c6d2507bcb23c1803661dcf5c2136b45bc7b5492ac3cb
GET /panel/assets/js/useI18n-Bi7csTvq.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1win.run/panel/img/icons/android-chrome-512x512.png
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 88
accept-ranges: bytes
etag: "66190546-58"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/pageName-BYs_srUI.js | 190.115.19.210 | | 101 kB |
URL 1win.run/panel/assets/js/pageName-BYs_srUI.js IP190.115.19.210:0
File typegzip compressed data, from Unix Size101 kB (100818 bytes) Hash62423c2dc08601c2cc57bde62a17be0b 2be3eee3cccda6ed8c09d637dc0c8c1c51af8f6c 94aada1117ad83e1ae63107cf87b54ba6d7f70324d5164839506ab8fddd69dcf
GET /panel/assets/js/pageName-BYs_srUI.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1win.run/panel/img/icons/android-chrome-512x512.png
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-16f"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/useI18n-Bi7csTvq.js | 190.115.19.210 | | 88 B |
URL 1win.run/panel/assets/js/useI18n-Bi7csTvq.js IP190.115.19.210:0
Hash3a8ce1a247fc48523e2d31d470a0b3a0 1d8096164adcb0f918ae96440c5fa566fb31e427 7b9da847261516ba5b1c6d2507bcb23c1803661dcf5c2136b45bc7b5492ac3cb
GET /panel/assets/js/useI18n-Bi7csTvq.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/js/index-B-TUTQ1z.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 88
accept-ranges: bytes
etag: "66190546-58"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/useOpenModals-NgZ9RcDI.js | 190.115.19.210 | | 1.0 kB |
URL 1win.run/panel/assets/js/useOpenModals-NgZ9RcDI.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hashef5020ecdc643c7b7f3b7f2750aaaee4 bcf2c68f36e9600216545416e0a38edc786c1a38 540dd2f626bc8c117bfa249c0423dc3f70933341f7b3c252fb84d8b28c1b39a1
GET /panel/assets/js/useOpenModals-NgZ9RcDI.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/js/index-B-TUTQ1z.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-33f"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/pageName-BYs_srUI.js | 190.115.19.210 | | 15 kB |
URL 1win.run/panel/assets/js/pageName-BYs_srUI.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hashe6a7544976c15eb650c6e16ce61387dc 8ccab70623522b243b358e8239fb03a921ec0c87 2f07f27979d34fdc18024cefb1b0c76f7a384fbd2bef6d2c5728549140366e0f
GET /panel/assets/js/pageName-BYs_srUI.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/js/index-B-TUTQ1z.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-16f"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/vue-router-Dwjeftx9.js | 190.115.19.210 | | 32 kB |
URL 1win.run/panel/assets/js/vue-router-Dwjeftx9.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hash5cee22fbe5a7799b29afd8a570db010b 7b9f3c2df8b4897d86df042bb61c2851c8f16f5c df8dfac7fef53727fa76fb83fbf1c8aab1552f0674327f3aeadbe9fda15628a9
GET /panel/assets/js/vue-router-Dwjeftx9.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1win.run/panel/img/icons/android-chrome-512x512.png
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-5a29"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/api/v2/app-config/on-technical-works | 190.115.19.210 | | 29 B |
URL 1win.run/api/v2/app-config/on-technical-works IP190.115.19.210:0
Hash3f64ad68fff666e46be1e6a29b42c1b2 8a81d1ec31de5cc53fc85ba4ea828f01a0d39f14 1a8f1e4a7ea6cca8c2f75a55d47ddc88f23a0e94b653753f545103843ee7a4fa
GET /api/v2/app-config/on-technical-works HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Language: en
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-512x512.png
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: application/json; charset=utf-8
content-length: 29
access-control-allow-origin: *
vary: Origin
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-XXB14W5Y91&cid=98365324.1713444569>m=45je44f0v9128835020z89132822158za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&z=1329554580 | 142.250.74.163 | | 42 B |
URL www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-XXB14W5Y91&cid=98365324.1713444569>m=45je44f0v9128835020z89132822158za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&z=1329554580 IP142.250.74.163:0
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-XXB14W5Y91&cid=98365324.1713444569>m=45je44f0v9128835020z89132822158za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&z=1329554580 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 18 Apr 2024 12:49:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/index-Bo8vKEJS.js | 190.115.19.210 | | 243 kB |
URL 1win.run/panel/assets/js/index-Bo8vKEJS.js IP190.115.19.210:0
File typegzip compressed data, from Unix Size243 kB (243016 bytes) Hash19cfff93ba1d0a3a0394f83e10f26290 f2dea054104fc0c1dd25c1899a2b262941a89a20 660b7199e4739f39fee41dcf47e8b7ed595156951ab0afcc9a63e48db3f009d4
GET /panel/assets/js/index-Bo8vKEJS.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-512x512.png
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-7eb1d"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/fp.esm.min-CkGqPNId.js | 190.115.19.210 | | 2.7 kB |
URL 1win.run/panel/assets/js/fp.esm.min-CkGqPNId.js IP190.115.19.210:0
File typeJavaScript source, ASCII text, with very long lines (6139) Hash126e7344613f5b6fa2e1ddae79e4cab6 63ab4032a68e0a249c2366fda56b3912f32f515f faf3d0ffde0153949dfb4ef4e2896113691fcf2d972c29fcc30c870bcc2d32a7
GET /panel/assets/js/fp.esm.min-CkGqPNId.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/js/index-Bo8vKEJS.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:29 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-17fc"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/tslib.es6-CWU419fU.js | 190.115.19.210 | | 46 kB |
URL 1win.run/panel/assets/js/tslib.es6-CWU419fU.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hash835e362c1d7271e690f04d7a79e7d52a 4071c29ce3f69d2f668af6f65f858f2a2357337c f4789e4781384d850e537ec80966ef0e68983b5b72894bee07861be97cf27a20
GET /panel/assets/js/tslib.es6-CWU419fU.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1win.run/panel/img/icons/android-chrome-512x512.png
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:29 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-87f"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/css/index-BxeKJtsU.css | 190.115.19.210 | | 5.1 kB |
URL 1win.run/panel/assets/css/index-BxeKJtsU.css IP190.115.19.210:0
File typegzip compressed data, from Unix Hashc67023eec0665e1aa2e87127987471de 0be1fedbb8abadfb38a028be708e15ba7800e9de a1203f8c773cea6055f849c8f025f9c0e18966eb55bc7a8a7f0df465d53a25f2
GET /panel/assets/css/index-BxeKJtsU.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-512x512.png
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: text/css
etag: W/"66190546-525"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/js/GoogleAnalyticsService-C2ORRdB5.js | 190.115.19.210 | | 11 kB |
URL 1win.run/panel/assets/js/GoogleAnalyticsService-C2ORRdB5.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hashe3da3559fd22080d4b5e4c0e3939e100 62d34f3d990ba0db82c91dd65f9a48c29fc8c636 b8bee35ed3f3b329b272331eb341e2a6fd3be5b719bdf489ba12c87e3a69dcd7
GET /panel/assets/js/GoogleAnalyticsService-C2ORRdB5.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1win.run/panel/img/icons/android-chrome-512x512.png
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-2037"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/css/Chat-8T5rXPRs.css | 190.115.19.210 | | 7.6 kB |
URL 1win.run/panel/assets/css/Chat-8T5rXPRs.css IP190.115.19.210:0
File typegzip compressed data, from Unix Hashcdd44ae152881799bdda6d10aa2178e2 0b7c2b1d794b5a7184ca2263df362ce922445c60 9e5daaf7199023cd197171fde9f965be4be42a2e6595171eb000acec79177bce
GET /panel/assets/css/Chat-8T5rXPRs.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-512x512.png
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: text/css
etag: W/"66190546-1894"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/fonts/ProximaNova-Regular-DtAL0MTj.woff2 | 190.115.19.210 | | 64 kB |
URL 1win.run/panel/assets/fonts/ProximaNova-Regular-DtAL0MTj.woff2 IP190.115.19.210:0
File typeWeb Open Font Format (Version 2), TrueType, length 64200, version 3.786 Hash1c6d7cd6aac72f4b4177ab42729d2019 88c115adeb21277900d5fc7f204e7af616a51f24 1ad151f1bd25d86f257c75c6abfa3b8481dd6fd5829714db6464b4d8c5027b3a
GET /panel/assets/fonts/ProximaNova-Regular-DtAL0MTj.woff2 HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/css/index-DRUd4wTy.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:29 GMT
content-type: application/octet-stream
content-length: 64200
accept-ranges: bytes
etag: "66190546-fac8"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| api.fpjs.io/?ci=js/3.9.3&q=dexBvYvoWDszTouzpRYc | 76.223.60.10 | 200 OK | 1.1 kB |
URL POST HTTP/2api.fpjs.io/?ci=js/3.9.3&q=dexBvYvoWDszTouzpRYc IP76.223.60.10:443
CertificateIssuerAmazon Subjectapi.fpjs.io Fingerprint3A:A1:7F:82:48:97:10:BA:48:C8:D9:C9:DE:56:D3:C6:F1:FE:A7:26 ValidityWed, 15 Nov 2023 00:00:00 GMT - Sat, 14 Dec 2024 23:59:59 GMT
Hashacf39b37fc30dc1472c64fa2addfdf33 40110c04d271f7d0b8e2fa8fb318657a1f6235a5 3c4b9008e7dd8ee77ff1f429c04a38461a2a8cb4daf433deb744ab3e4f3c9834
POST /?ci=js/3.9.3&q=dexBvYvoWDszTouzpRYc HTTP/1.1
Host: api.fpjs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 11142
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 12:49:31 GMT
content-type: text/plain
content-length: 1071
access-control-allow-credentials: true
access-control-allow-origin: https://1win.run
access-control-expose-headers: Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'
referrer-policy: no-referrer
set-cookie: _iidt=yYxfdoAFaPKBXsn+WNZfWo1B1adBdsZ3awcSRfd1OBCynS/FYaL6yg6vj2wX29HTdVDm0Bi/NgKUNEDUNMpKZwm+CKjKYRJYng==; Path=/; Domain=fpjs.io; Expires=Fri, 18 Apr 2025 12:49:31 GMT; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
X-Firefox-Spdy: h2
|
|
| 1win.run/api/v2/user/refresh-token | 190.115.19.210 | | 73 B |
URL 1win.run/api/v2/user/refresh-token IP190.115.19.210:0
Hashd7e7b930ac12a073bc41fe9120350639 460e12b3ba04bbf222e9d35e85bcc99f3b47e219 95691a476dd7dca124c697c2447c12a4cc464ebd2e06397fdd9b42f0f94d3f3a
POST /api/v2/user/refresh-token HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Language: en
Content-Length: 38
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-512x512.png
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 401 Unauthorized
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:31 GMT
content-type: application/json; charset=utf-8
content-length: 73
access-control-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2
|
|
| 1win.run/api/v2/user/logout | 190.115.19.210 | | 73 B |
URL 1win.run/api/v2/user/logout IP190.115.19.210:0
Hashd7e7b930ac12a073bc41fe9120350639 460e12b3ba04bbf222e9d35e85bcc99f3b47e219 95691a476dd7dca124c697c2447c12a4cc464ebd2e06397fdd9b42f0f94d3f3a
POST /api/v2/user/logout HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Language: en
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-512x512.png
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers
HTTP/2 401 Unauthorized
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:31 GMT
content-type: application/json; charset=utf-8
content-length: 73
access-control-allow-origin: *
vary: Origin
X-Firefox-Spdy: h2
|
|
| 1win.run/panel/assets/fonts/ProximaNova-Bold-D2yrO9R2.woff2 | 190.115.19.210 | | 64 kB |
URL 1win.run/panel/assets/fonts/ProximaNova-Bold-D2yrO9R2.woff2 IP190.115.19.210:0
File typeWeb Open Font Format (Version 2), TrueType, length 64096, version 3.786 Hash5a816525aea1c9d0a8742e480c051290 acaca9eff7d44bb5542dae4a88f60eb9c6c99112 7bd5250e0b6072e36d85ed6bee0b506c37371af866f9d06a46ce6f8cc7640906
GET /panel/assets/fonts/ProximaNova-Bold-D2yrO9R2.woff2 HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/assets/css/index-DRUd4wTy.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:31 GMT
content-type: application/octet-stream
content-length: 64096
accept-ranges: bytes
etag: "66190546-fa60"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/socket.io/?Language=en&EIO=4&transport=websocket | 190.115.19.210 | | 0 B |
URL 1win.run/socket.io/?Language=en&EIO=4&transport=websocket IP190.115.19.210:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?Language=en&EIO=4&transport=websocket HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://1win.run
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0a4zi3GJ82vaoscgv6vD8Q==
DNT: 1
Connection: keep-alive, Upgrade
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx/1.22.0
Date: Thu, 18 Apr 2024 12:49:31 GMT
Connection: upgrade
Sec-Websocket-Accept: 7zCaBMblYviLlMc6bTzkQWLsoo8=
Upgrade: websocket
|
|
| 1win.run/panel/assets/js/index-B-TUTQ1z.js | 190.115.19.210 | | 25 kB |
URL 1win.run/panel/assets/js/index-B-TUTQ1z.js IP190.115.19.210:0
File typegzip compressed data, from Unix Hash5a13f09a66a0e29d67c330f4a66ea82c 23cac4acf8a97b712b505ecaa6f50cbf8275a6b6 52934fb8e0f8c9bf4d556773a922df4d7d90a9ef0808fd9fd9cad98f895ec304
GET /panel/assets/js/index-B-TUTQ1z.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1win.run/panel/img/icons/android-chrome-512x512.png
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:28 GMT
content-type: application/javascript; charset=utf-8
etag: W/"66190546-29e1"
last-modified: Fri, 12 Apr 2024 09:56:22 GMT
service-worker-allowed: /
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/entry.91b902a6.css | 190.115.19.210 | 200 OK | 1.4 kB |
URL GET HTTP/21win.run/_nuxt/entry.91b902a6.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Hash3fea650c7d041343fce153a5696958ca 2fdae769224853d503978523a8ab6118c3c15e27 60df46e7043bc688337129014c759c6eb6f3d104b7fe8b30f147ee7692bc8339
GET /_nuxt/entry.91b902a6.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"859-jj6nPwfQ4ofBRtCmiNVBZBXol7E"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Mulish:wght@400;500;600;700&display=swap | 216.58.207.234 | 200 OK | 1.1 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Mulish:wght@400;500;600;700&display=swap IP216.58.207.234:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typegzip compressed data, max compression Hash5e3e5b89fa970ef73ef33459674d9ced e061a15c9984cf4f9fcd9abced2a59340f4397a2 9db33c7111cde46f7523445c850d70a628bf1a9f5b03c148a5da28ee9bc966b9
GET /css2?family=Mulish:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 12:49:32 GMT
date: Thu, 18 Apr 2024 12:49:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/MenuEnum.b19d6b42.css | 190.115.19.210 | 200 OK | 1.5 kB |
URL GET HTTP/21win.run/_nuxt/MenuEnum.b19d6b42.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Hashb2cfb673c1fc1a4a3964e8135e3baba9 9c79e363c782424878f602ac18e2b749138459ba 2a67fb750bea848281343511eddfcce9580875d75b5b80408e9b5a41e0a919ee
GET /_nuxt/MenuEnum.b19d6b42.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"b91-dFWVSHYbOHdw1kgGEJkp0aTtoJg"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 | 142.250.74.99 | 200 OK | 30 kB |
URL GET HTTP/2fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 IP142.250.74.99:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 30096, version 1.0 Hash5e3a4044ee4a46b65e2289f76ea1ecda 1cd261cc685e2d003cbbbf6af1ffde0959934dce 7f0f781820c8de56bd6699ac9570ff90634de4eb5cca7ef4b573bb90619e5a5d
GET /s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 17:55:12 GMT
expires: Tue, 15 Apr 2025 17:55:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:18:56 GMT
content-type: font/woff2
age: 240860
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/Registration.f7bbad2c.css | 190.115.19.210 | 200 OK | 1.7 kB |
URL GET HTTP/21win.run/_nuxt/Registration.f7bbad2c.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (5675) Hash25c232bd20ea22976716acbc1f005a15 f773c0ad6ec26fd0dc35f1a3206bdc89e904df39 f7bbad2cc77e19c8f943f1d9515f39ffd463be093d8854e2cc100b2b8e4b1b62
GET /_nuxt/Registration.f7bbad2c.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"162c-93PArW7Cb9DcNfGjIGvciekE3zk"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/useImages.713b2a79.js | 190.115.19.210 | 200 OK | 95 kB |
URL GET HTTP/21win.run/_nuxt/useImages.713b2a79.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Hash3739c634b8142c14902a188f9a7ff3ed 7992ad45e9ee9c30b952c40069da285d59b08b67 d0f419996a69ac1a0d85245cb471a1d46d9e3e3aa2c5c051ad27df84a24c0575
GET /_nuxt/useImages.713b2a79.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"16a03-ZEHWkJbd/wM4jWmzzW7yjel+jok"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/useDisableAuth.49c83f5d.js | 190.115.19.210 | 200 OK | 5.2 kB |
URL GET HTTP/21win.run/_nuxt/useDisableAuth.49c83f5d.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Hash013fa52bdfafb18db2e033e773d9a781 44934fdb409915234b9f8684bf71c64bf9b1bb0e ae44324262074bdffb30a59f8f88ab6c594b8e65eb858ec5db51c67c7bca5aae
GET /_nuxt/useDisableAuth.49c83f5d.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"142-RA7SrTWwwPkeokcDir+mqpzODE0"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/envelope.4ddbfd6f.js | 190.115.19.210 | 200 OK | 616 B |
URL GET HTTP/21win.run/_nuxt/envelope.4ddbfd6f.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Hash837c94cdbe350651a3b1151153df19e6 4db9337ad3a5d8012d22371e61432a9d217fa648 e501eaf0e7599b8cfde6e21cb9c76c288edf3bcfb1a684bce5e06478176884c8
GET /_nuxt/envelope.4ddbfd6f.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"31f-vSDWCSj/zjZHuynMvRskpWkAaE8"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/useOpenModals.1c37ecf0.js | 190.115.19.210 | 200 OK | 124 kB |
URL GET HTTP/21win.run/_nuxt/useOpenModals.1c37ecf0.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Size124 kB (123816 bytes) Hash07ffe5be46dbbd1e51da1ec1aef2c0df 71cc0aa468c0bdc86dcbe5c50ab14e6afbba8ac3 3deb5860f921f5c9194d1bee937acdff2cd6dd682cd35af65cbdd3537596323c
GET /_nuxt/useOpenModals.1c37ecf0.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"1f5-QyhAF9tcPfvgU/+JnUXWK+t2mH8"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-XXB14W5Y91&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 101 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-XXB14W5Y91&l=dataLayer&cx=c IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size101 kB (100665 bytes) Hash974b24552ac4a740eb56c7ba33848504 bb39bac5459beaa8528ab0a557f3e5991e86cadf 4c527e190fbf76f0d66955734fdf10aea83df5708fb5657671b2c74c329069be
GET /gtag/js?id=G-XXB14W5Y91&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 18 Apr 2024 12:49:32 GMT
expires: Thu, 18 Apr 2024 12:49:32 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100665
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| | 190.115.19.210 | 200 OK | 100 kB |
URL User Request GET HTTP/2IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeHTML document, ASCII text, with very long lines (7276) Size100 kB (100338 bytes) Hash71fa027af89c81cf441b7c0902f18e74 3a04b409cb9be5f702e1bc84a62f5f07138ffadb c9ddd60530d21bb2080311542a619f22db96a46b4be5f924ae78eaed893bb6a9
GET / HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/panel/img/icons/android-chrome-512x512.png
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:31 GMT
content-type: text/html;charset=utf-8
cache-control: no-cache
set-cookie: 1w_lang=en; Max-Age=604800; Path=/
vary: Accept-Encoding
x-powered-by: Nuxt
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 | 142.250.74.99 | 200 OK | 30 kB |
URL GET HTTP/2fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 IP142.250.74.99:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 30096, version 1.0 Hash5e3a4044ee4a46b65e2289f76ea1ecda 1cd261cc685e2d003cbbbf6af1ffde0959934dce 7f0f781820c8de56bd6699ac9570ff90634de4eb5cca7ef4b573bb90619e5a5d
GET /s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 17:55:12 GMT
expires: Tue, 15 Apr 2025 17:55:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:18:56 GMT
content-type: font/woff2
age: 240862
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 | 142.250.74.99 | 200 OK | 30 kB |
URL GET HTTP/2fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 IP142.250.74.99:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 30096, version 1.0 Hash5e3a4044ee4a46b65e2289f76ea1ecda 1cd261cc685e2d003cbbbf6af1ffde0959934dce 7f0f781820c8de56bd6699ac9570ff90634de4eb5cca7ef4b573bb90619e5a5d
GET /s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 17:55:12 GMT
expires: Tue, 15 Apr 2025 17:55:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:18:56 GMT
content-type: font/woff2
age: 240862
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 | 142.250.74.99 | 200 OK | 30 kB |
URL GET HTTP/2fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 IP142.250.74.99:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 30096, version 1.0 Hash5e3a4044ee4a46b65e2289f76ea1ecda 1cd261cc685e2d003cbbbf6af1ffde0959934dce 7f0f781820c8de56bd6699ac9570ff90634de4eb5cca7ef4b573bb90619e5a5d
GET /s/mulish/v13/1Ptvg83HX_SGhgqk3wot.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 17:55:12 GMT
expires: Tue, 15 Apr 2025 17:55:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:18:56 GMT
content-type: font/woff2
age: 240862
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk2wotcqA.woff2 | 142.250.74.99 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/mulish/v13/1Ptvg83HX_SGhgqk2wotcqA.woff2 IP142.250.74.99:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15840, version 1.0 Hash1f0187afc748a458d0951bc370c0a8d2 9a07290922c93eb7f85ee8583d2eedad96a042fb 85cc62cf3b13c6166fea632307afcf5688c0a7239cb79db6582736fb5413ffe4
GET /s/mulish/v13/1Ptvg83HX_SGhgqk2wotcqA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:39:37 GMT
expires: Fri, 18 Apr 2025 02:39:37 GMT
cache-control: public, max-age=31536000
age: 36597
last-modified: Thu, 14 Sep 2023 00:51:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/bg.5725d1ad.webp | 190.115.19.210 | 200 OK | 6.5 kB |
URL GET HTTP/21win.run/_nuxt/bg.5725d1ad.webp IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeRIFF (little-endian) data, Web/P image Hash187f40302084c28df9291dfc561150f4 8ae7b69ae4237e0c0675fdbee0feb7b2c539b84b 5725d1ade623473e8c09dd6b54af63561c26a9f7d681e5bb58fcee1b431549ed
GET /_nuxt/bg.5725d1ad.webp HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.4c218f9a.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.1.1713444572.56.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:34 GMT
content-type: image/webp
content-length: 6540
cache-control: public, max-age=31536000, immutable
etag: "198c-iue2muQjfgwGdf2+4P63ssU5uEs"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/useVuelidateForm.9350eb9e.js | 190.115.19.210 | 200 OK | 138 kB |
URL GET HTTP/21win.run/_nuxt/useVuelidateForm.9350eb9e.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Size138 kB (137763 bytes) Hash6e08c205848e445b86e067260c038290 fdc6e2ae525173b842f97fdb973430075f951399 3273837af7f76a76832241b8081161dbef6362359b34270c21e3a0eceb8a4595
GET /_nuxt/useVuelidateForm.9350eb9e.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"4ca3-/ggD6a9k5aQkvuDFso7rL20z+10"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/changeKeysImportGlob.9d744f95.js | 190.115.19.210 | 200 OK | 32 kB |
URL GET HTTP/21win.run/_nuxt/changeKeysImportGlob.9d744f95.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Hash7593e3e873c79576c30e9c6ac86959a8 ef389e5abb69e12cb674dcf50c581066ae81903f 4461adf25b385c3aad1c25e3200a1bbfe931a54f85699f3dfa6327d9a11717dc
GET /_nuxt/changeKeysImportGlob.9d744f95.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"287-FlX0vWOcD0CU4vyPXMFz7QfY8Ms"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/fp.esm.min.c7c919a5.js | 190.115.19.210 | 200 OK | 17 kB |
URL GET HTTP/21win.run/_nuxt/fp.esm.min.c7c919a5.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Hash93464db987283ea41a139188383c7fd6 d1f62acf07be364001727f36898e9353ec2dc63d f81e4cd5627ec1b3dd591d09b431a53641505ab096e1c7d92f31507e66418557
GET /_nuxt/fp.esm.min.c7c919a5.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/entry.af293afb.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.1.1713444572.56.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:34 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"153d-QNMNvco4V7hDUOEKcgiqIoXx+gk"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.163 | 200 OK | 203 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=9tdzh78a7yax CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 15:10:08 GMT
expires: Sat, 12 Apr 2025 15:10:08 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 509966
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| api.fpjs.io/xridvya/qAo6p?q=dexBvYvoWDszTouzpRYc | 76.223.60.10 | 200 OK | 96 B |
URL GET HTTP/2api.fpjs.io/xridvya/qAo6p?q=dexBvYvoWDszTouzpRYc IP76.223.60.10:443
CertificateIssuerAmazon Subjectapi.fpjs.io Fingerprint3A:A1:7F:82:48:97:10:BA:48:C8:D9:C9:DE:56:D3:C6:F1:FE:A7:26 ValidityWed, 15 Nov 2023 00:00:00 GMT - Sat, 14 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash9f7752fec6e8699d725e96dc55040e23 a30de0ea7b7fd6165027e304fa5383666a0df60f 1122538d7bdcb04929a3f51d0840ccb368a8d6e01302012d650cac4a3e15a2da
GET /xridvya/qAo6p?q=dexBvYvoWDszTouzpRYc HTTP/1.1
Host: api.fpjs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 12:49:34 GMT
content-type: text/plain; charset=utf-8
content-length: 96
access-control-allow-origin: *
access-control-expose-headers: Retry-After
cache-control: max-age=31536000, immutable, private
content-security-policy: default-src 'none'; frame-ancestors 'none'
referrer-policy: no-referrer
strict-transport-security: max-age=63072000
timing-allow-origin: *
x-content-type-options: nosniff
x-frame-options: DENY
x-robots-tag: noindex
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css | 142.250.74.163 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeASCII text, with very long lines (56398), with no line terminators Hasheb4bc511f79f7a1573b45f5775b3a99b d910fb51ad7316aa54f055079374574698e74b35 7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 11:39:42 GMT
expires: Sat, 12 Apr 2025 11:39:42 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/css
vary: Accept-Encoding
age: 522592
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.163 | 200 OK | 203 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=9tdzh78a7yax CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 15:10:08 GMT
expires: Sat, 12 Apr 2025 15:10:08 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 509966
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.99 | 200 OK | 15 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 06:43:51 GMT
expires: Wed, 16 Apr 2025 06:43:51 GMT
cache-control: public, max-age=31536000
age: 194744
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/Registration.21e083b5.js | 190.115.19.210 | 200 OK | 101 kB |
URL GET HTTP/21win.run/_nuxt/Registration.21e083b5.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Size101 kB (101293 bytes) Hash9a530a70ab75a7909f403713a99d2609 c781a80260e1732b76a57350c6bfc2082789bfcd d3d62ea87aa0a2565844343375775f7d3b68aedc4954c1f362b8da4723c55f50
GET /_nuxt/Registration.21e083b5.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"460a8-zudH7ufSbob96TCrDPd41x+n8lk"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.google.com/js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js | 142.250.74.164 | 200 OK | 7.4 kB |
URL GET HTTP/3www.google.com/js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=9tdzh78a7yax CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (17636) Hashb38e10fee62caf0053645e3116660cce 2259de80ed88610f583a830443c604877466194b 3c1aaa03c8c58f4c0b10459a47b71834ee35e84cd3b82d025f639cfbf8fba9bf
GET /js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=9tdzh78a7yax
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7423
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 09:54:39 GMT
expires: Wed, 16 Apr 2025 09:54:39 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 183296
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/logo_48.png | 142.250.74.163 | 200 OK | 2.2 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/logo_48.png IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=9tdzh78a7yax CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hashef9941290c50cd3866e2ba6b793f010d 4736508c795667dcea21f8d864233031223b7832 1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:35:26 GMT
expires: Thu, 18 Apr 2024 17:35:26 GMT
cache-control: public, max-age=604800
age: 587649
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.163 | 200 OK | 203 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=9tdzh78a7yax CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 15:10:08 GMT
expires: Sat, 12 Apr 2025 15:10:08 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 509967
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css | 142.250.74.163 | 200 OK | 25 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeASCII text, with very long lines (56398), with no line terminators Hasheb4bc511f79f7a1573b45f5775b3a99b d910fb51ad7316aa54f055079374574698e74b35 7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 11:39:42 GMT
expires: Sat, 12 Apr 2025 11:39:42 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/css
vary: Accept-Encoding
age: 522593
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js | 142.250.74.163 | 200 OK | 203 kB |
URL GET HTTP/3www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=9tdzh78a7yax CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeJavaScript source, ASCII text, with very long lines (554) Size203 kB (203369 bytes) Hashe9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137
GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 15:10:08 GMT
expires: Sat, 12 Apr 2025 15:10:08 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 509967
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/refresh_2x.png | 142.250.74.163 | 200 OK | 600 B |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/refresh_2x.png IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced Hash0f2a4639b8a4cb30c76e8333c00d30a6 57e273a270bb864970d747c74b3f0a7c8e515b13 44b988703019cd6bfa86c91840fecf2a42b611b364e3eea2f4eb63bf62714e98
GET /recaptcha/api2/refresh_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 12:26:13 GMT
expires: Tue, 23 Apr 2024 12:26:13 GMT
cache-control: public, max-age=604800
age: 174202
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.99 | 200 OK | 15 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 06:43:51 GMT
expires: Wed, 16 Apr 2025 06:43:51 GMT
cache-control: public, max-age=31536000
age: 194744
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/instagram.c07adbe3.svg | 190.115.19.210 | 200 OK | 16 kB |
URL GET HTTP/21win.run/_nuxt/instagram.c07adbe3.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typegzip compressed data, from Unix Hashb4671fbb77c5648528a9f4180a58dc07 a10c587eb71dfe5ab78c313767edef6b5af2f3ab 27ae89dbb729c7b3f4f29f324bdffba4c8376f32657c484cede7ef20c0f7618d
GET /_nuxt/instagram.c07adbe3.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.1.1713444572.56.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:34 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"a61-/4cXQyQQLFA/LZs9FMa2Fqbe3HQ"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api.js?onload=vueRecaptchaApiLoaded&render=explicit&hl= | 142.250.74.164 | 200 OK | 16 kB |
URL GET HTTP/2www.google.com/recaptcha/api.js?onload=vueRecaptchaApiLoaded&render=explicit&hl= IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
Hash16dac5072ad8322d4d5c58422be15ebf 16f18d9ca49a22a17aada1f9f568298e43c98448 e3a356f9154a3bf0f708878872ed224a93fd6c6488d0d417e3ff314b7eaffb58
GET /recaptcha/api.js?onload=vueRecaptchaApiLoaded&render=explicit&hl= HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Thu, 18 Apr 2024 12:49:34 GMT
date: Thu, 18 Apr 2024 12:49:34 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/payload?p=06AFcWeA7Lx-R02jeRE22-UAhaH0jj6Im38GUGCwq2lagzCrLIKSlksFYqKpS1riuxLZ81nxf7OI7Rj69DwPI3UnxY4xahOH82ShJEwnmDPqxS_Tj5IYjLTMwMaEXJPehQP5ROnDCghbKHhh_n8cV1aokXTS9IANCoXpbYMBTn7vcvVpGci9iNpSzzRzkGM9GXBsT3qgipWWR3&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX | 142.250.74.164 | 200 OK | 33 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/payload?p=06AFcWeA7Lx-R02jeRE22-UAhaH0jj6Im38GUGCwq2lagzCrLIKSlksFYqKpS1riuxLZ81nxf7OI7Rj69DwPI3UnxY4xahOH82ShJEwnmDPqxS_Tj5IYjLTMwMaEXJPehQP5ROnDCghbKHhh_n8cV1aokXTS9IANCoXpbYMBTn7vcvVpGci9iNpSzzRzkGM9GXBsT3qgipWWR3&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 450x450, components 3 Hashbae5932c0c21a20b495c4c46a3c717b6 5088ee91850061c6797905624440ceade38a67c6 ce3f3be193526a98d9b413bd303896f89008dae7e207f8e98c9a008f5402fe0a
GET /recaptcha/api2/payload?p=06AFcWeA7Lx-R02jeRE22-UAhaH0jj6Im38GUGCwq2lagzCrLIKSlksFYqKpS1riuxLZ81nxf7OI7Rj69DwPI3UnxY4xahOH82ShJEwnmDPqxS_Tj5IYjLTMwMaEXJPehQP5ROnDCghbKHhh_n8cV1aokXTS9IANCoXpbYMBTn7vcvVpGci9iNpSzzRzkGM9GXBsT3qgipWWR3&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX
Cookie: _GRECAPTCHA=09ALYNOaiDkhn5AdRGmRzz9eHISehr4GaJb6F55tjwPcPu2DjoSuqsXLSdBj_TNEi6S57IXyBFNoYiypqnHk-c3qs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
expires: Thu, 18 Apr 2024 12:49:35 GMT
date: Thu, 18 Apr 2024 12:49:35 GMT
cache-control: private, max-age=30
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/recaptcha/api2/info_2x.png | 142.250.74.163 | 200 OK | 665 B |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/info_2x.png IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced Hash07bf314aab04047b9e9a959ee6f63da3 17bef6602672e2fd9956381e01356245144003e5 55eaf62cb05da20088dc12b39d7d254d046cb1fd61ddf3ae641f1439efd0a5ee
GET /recaptcha/api2/info_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 665
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:20:08 GMT
expires: Tue, 23 Apr 2024 07:20:08 GMT
cache-control: public, max-age=604800
age: 192568
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js | 142.250.74.164 | 200 OK | 7.4 kB |
URL GET HTTP/3www.google.com/js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=9tdzh78a7yax CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (17636) Hashb38e10fee62caf0053645e3116660cce 2259de80ed88610f583a830443c604877466194b 3c1aaa03c8c58f4c0b10459a47b71834ee35e84cd3b82d025f639cfbf8fba9bf
GET /js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7423
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 09:54:39 GMT
expires: Wed, 16 Apr 2025 09:54:39 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 183297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| api.fpjs.io/?ci=js/3.9.3&q=dexBvYvoWDszTouzpRYc | 76.223.60.10 | 200 OK | 1.0 kB |
URL POST HTTP/2api.fpjs.io/?ci=js/3.9.3&q=dexBvYvoWDszTouzpRYc IP76.223.60.10:443
CertificateIssuerAmazon Subjectapi.fpjs.io Fingerprint3A:A1:7F:82:48:97:10:BA:48:C8:D9:C9:DE:56:D3:C6:F1:FE:A7:26 ValidityWed, 15 Nov 2023 00:00:00 GMT - Sat, 14 Dec 2024 23:59:59 GMT
Hasha5f8e94ca82d58e0652435e9d149372d 51825e74ac5e617161d913c9650b8d74917af8aa 582b7dd989caf1d7e3d2c44c30ebe09930df9fd5bb2767082584d686d04f5cd5
POST /?ci=js/3.9.3&q=dexBvYvoWDszTouzpRYc HTTP/1.1
Host: api.fpjs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 12609
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _iidt=yYxfdoAFaPKBXsn+WNZfWo1B1adBdsZ3awcSRfd1OBCynS/FYaL6yg6vj2wX29HTdVDm0Bi/NgKUNEDUNMpKZwm+CKjKYRJYng==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 12:49:36 GMT
content-type: text/plain
content-length: 1011
access-control-allow-credentials: true
access-control-allow-origin: https://1win.run
access-control-expose-headers: Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'
referrer-policy: no-referrer
set-cookie: _iidt=YVYsD0uVeWf7/E8pNuhjI9pIVToW4DpGIZHxig50NYRLnUBCtwlFbZ8BWffiSUz0saRmj5wE9/fqox81ZGyNcD7DkqM3UeAizQ==; Path=/; Domain=fpjs.io; Expires=Fri, 18 Apr 2025 12:49:36 GMT; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=63072000
timing-allow-origin: *
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020za200&_p=1713444572561&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=98365324.1713444569&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713444568&sct=1&seg=1&dl=https%3A%2F%2F1win.run%2F&dr=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-512x512.png&dt=1win%20Affiliate%20Program&en=scroll&epn.percent_scrolled=90&tfd=6121 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020za200&_p=1713444572561&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=98365324.1713444569&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713444568&sct=1&seg=1&dl=https%3A%2F%2F1win.run%2F&dr=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-512x512.png&dt=1win%20Affiliate%20Program&en=scroll&epn.percent_scrolled=90&tfd=6121 IP216.239.32.36:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020za200&_p=1713444572561&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=98365324.1713444569&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713444568&sct=1&seg=1&dl=https%3A%2F%2F1win.run%2F&dr=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-512x512.png&dt=1win%20Affiliate%20Program&en=scroll&epn.percent_scrolled=90&tfd=6121 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://1win.run
date: Thu, 18 Apr 2024 12:49:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/statistic-s.83e5a909.svg | 190.115.19.210 | 200 OK | 2.1 kB |
URL GET HTTP/21win.run/_nuxt/statistic-s.83e5a909.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hashf32492bf932dda87c5554d26eae93fa8 8843fd797d367efcaf91c340a4f74f050c1537a5 dce99b1ba2c99dda37076cd9b3177da2660fcd590b26c1dfdb745e778c8c25fa
GET /_nuxt/statistic-s.83e5a909.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.4c218f9a.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.1.1713444572.56.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:34 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"860-appgy6jHOflD6FOmVY+ths2CWbE"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/bg-vector.367614b4.svg | 190.115.19.210 | 200 OK | 15 kB |
URL GET HTTP/21win.run/_nuxt/bg-vector.367614b4.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hashc5dcb0ad782b6e7eb1804fff9491e894 723fe8e611dcd096697c73b0108805819c049290 367614b4959e418ff8367bab5d5aea6e6c52dbf0a78a25bce6ff47913473cd85
GET /_nuxt/bg-vector.367614b4.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.4c218f9a.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.1.1713444572.56.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:34 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"3953-cj/o5hHc0JZpfHOwEIgFgZwEkpA"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/button.1da91cc6.webp | 190.115.19.210 | 200 OK | 32 kB |
URL GET HTTP/21win.run/_nuxt/button.1da91cc6.webp IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeRIFF (little-endian) data, Web/P image Hash1bbfa4e88f075f941e2aa38dc3b9d8c5 ef438ac3a426410fcc9c006beb35ec28db98cb5d 1da91cc6cd748172fc940cb7bf0281338cb4481e0c57d32b32884f835090a2c9
GET /_nuxt/button.1da91cc6.webp HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.4c218f9a.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.1.1713444572.56.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:34 GMT
content-type: image/webp
content-length: 32082
cache-control: public, max-age=31536000, immutable
etag: "7d52-70OKw6QmQQ/MnABr6zXsKNuYy10"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/telegram.747c2948.svg | 190.115.19.210 | 200 OK | 1.6 kB |
URL GET HTTP/21win.run/_nuxt/telegram.747c2948.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hash98722fa743187c4ad093a9248a4c97f8 8779f43e47a10b577796877ab877f4a64dc77b37 4cf166ff4807a95c10a98df131f5b934796ed7eb0e49283cecee0c7df8fe0679
GET /_nuxt/telegram.747c2948.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.1.1713444572.56.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:34 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"60f-qsCb+t+JaE5lXYzWT+EMc2mdPyA"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/linkedin.bf69fa96.svg | 190.115.19.210 | 200 OK | 1.8 kB |
URL GET HTTP/21win.run/_nuxt/linkedin.bf69fa96.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hashdccb77298aa7974f25b27e960c8c831b f85a73a2e8bd0e860de25d7df2d601089d6b8313 099a8920f322bc1a891483162471bddcb3ab16a8a8e8fb7a302c888a194108cd
GET /_nuxt/linkedin.bf69fa96.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.1.1713444572.56.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:34 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"6ff-L8YL3SQ4O3IkQQ9kAyKsngIDSr4"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX | 142.250.74.164 | 200 OK | 7.4 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeHTML document, ASCII text, with very long lines (7672), with no line terminators Hash94c7c592ffe5a15cdc226141a1acaff4 21eab94e8c62bfeece6e75ee9840a751739468d0 e75ca2e7c6e51dd4c18250749f1f28d65993ae61787510dabc1fbad8720c4754
GET /recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 18 Apr 2024 12:49:35 GMT
content-security-policy: script-src 'nonce-PF1lXbQkXnk81DgNJ5n73g' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.99 | 200 OK | 16 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 22:10:11 GMT
expires: Tue, 15 Apr 2025 22:10:11 GMT
cache-control: public, max-age=31536000
age: 225564
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/polyfills.1635f540.js | 190.115.19.210 | 200 OK | 28 kB |
URL GET HTTP/21win.run/_nuxt/polyfills.1635f540.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_nuxt/polyfills.1635f540.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"6bd9-oSlLJ9QswYK0TmGO/vLUPbyrgvc"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/icons/512x512.maskable.708b580c.png | 190.115.19.210 | 200 OK | 124 kB |
URL GET HTTP/21win.run/_nuxt/icons/512x512.maskable.708b580c.png IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typePNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced Size124 kB (123529 bytes) Hash8861ea68e979f98002d972996bd97030 be5fa93dad7acdc83a1dd7130c5014b8ec2e3154 80a28328628ebb0727154b8f25b85f304088764a3bc66b2bba97d5c47d3cbd75
GET /_nuxt/icons/512x512.maskable.708b580c.png HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: image/png
content-length: 123529
cache-control: public, max-age=31536000, immutable
etag: "1e289-vl+pPa16zcg6HdcTDFAUuOwuMVQ"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/logo.3bb310f6.svg | 190.115.19.210 | 200 OK | 9.5 kB |
URL GET HTTP/21win.run/_nuxt/logo.3bb310f6.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hashb09c616e91b67a1295ab7f3389e09dff 7e97c59c01c62cdffbf3bbf4b80faf5fc4108bfa 2a260ec9052540ebbd8b7d1422e2582829f4dc33183ef9ecfec209ea10f1f1d5
GET /_nuxt/logo.3bb310f6.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"24ed-rb4HsgHTwI1xpXf1BlL7enApCCI"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/useImages.c52ffa7b.css | 190.115.19.210 | 200 OK | 6.6 kB |
URL GET HTTP/21win.run/_nuxt/useImages.c52ffa7b.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (6650), with no line terminators Hash4d40ced86b47cf6536628e7c60049d38 6970a96d8558322158409c88e353add8f0d1f7f6 0609816e1506c9c4c8abea8c956d5e5c46566fcb38901ef2ac5a4b0038992ab2
GET /_nuxt/useImages.c52ffa7b.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"19f6-TCmyZTMWn7Tm2p3UXo7wx6sxyCI"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-KRTK33G | 142.250.74.168 | 200 OK | 189 kB |
URL GET HTTP/3www.googletagmanager.com/gtm.js?id=GTM-KRTK33G IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (2202) Size189 kB (188587 bytes) Hashbc1cc20212318c0645215df58553955b 9b11b83ead7ea9c81e00b70553492ef1dcca4c39 a35b764035022d9ae7ee0fd057f44dbfbcd4b8a9606ff7c80ab7c59a9ae8c88d
GET /gtm.js?id=GTM-KRTK33G HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 18 Apr 2024 12:49:32 GMT
expires: Thu, 18 Apr 2024 12:49:32 GMT
cache-control: private, max-age=900
last-modified: Thu, 18 Apr 2024 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 67743
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/fp.esm.8130da25.js | 190.115.19.210 | 200 OK | 33 kB |
URL GET HTTP/21win.run/_nuxt/fp.esm.8130da25.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_nuxt/fp.esm.8130da25.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/entry.af293afb.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.1.1713444572.56.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:34 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"817d-/pW2dYhGPlj7SU+lSchuxTq90IY"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020za200&_p=1713444568445&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=98365324.1713444569&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713444568&sct=1&seg=0&dl=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-512x512.png&dt=1win%20-%20Loading&en=scroll&epn.percent_scrolled=90&tfd=3995 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020za200&_p=1713444568445&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=98365324.1713444569&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713444568&sct=1&seg=0&dl=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-512x512.png&dt=1win%20-%20Loading&en=scroll&epn.percent_scrolled=90&tfd=3995 IP216.239.32.36:443
Requested byhttps://1win.run/panel/img/icons/android-chrome-512x512.png CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020za200&_p=1713444568445&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=98365324.1713444569&ul=en-us&sr=1280x1024&pscdl=noapi&_eu=AEA&_s=2&sid=1713444568&sct=1&seg=0&dl=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-512x512.png&dt=1win%20-%20Loading&en=scroll&epn.percent_scrolled=90&tfd=3995 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/3 204 No Content
access-control-allow-origin: https://1win.run
date: Thu, 18 Apr 2024 12:49:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/default.21f0dd30.css | 190.115.19.210 | 200 OK | 1.7 kB |
URL GET HTTP/21win.run/_nuxt/default.21f0dd30.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (1655), with no line terminators Hashe5c4d5ed8b9b0ffa6d21db0eff61025c 9732b744a7a0f2b681bb049f07646f352349032d 3d1ac42e234901621f5b81f8788f9b8052c3f19ae14e3b3a278323055fd657f8
GET /_nuxt/default.21f0dd30.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"674-QYOq82Z3GohzsV7pyYFvoy5aWPM"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/useVuelidateForm.01d66fe9.css | 190.115.19.210 | 200 OK | 1.2 kB |
URL GET HTTP/21win.run/_nuxt/useVuelidateForm.01d66fe9.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (1184), with no line terminators Hash7aa5c2d65e99b3b88a95721a8a26f0c0 c599406b1bccbf1fe752add6c77468e64e87d7ce ad7d78c0d0db490967dceb1d4eb827b73f8eaa5dd16f8145e393053d0754a40f
GET /_nuxt/useVuelidateForm.01d66fe9.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"49f-gAoabq/RDTeBUg3ADpNXpt2dToE"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/product-image.931b1f66.avif | 190.115.19.210 | 200 OK | 14 kB |
URL GET HTTP/21win.run/_nuxt/product-image.931b1f66.avif IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
Hashde4d804a6a51cb2cb8c76ac101fd811b 9413fcab3e345c13e642a44aa87a40696568b2ba 931b1f66ce72a22323cff5264a7da7cf1e0a673b124b1600839db0c8f4109ab4
GET /_nuxt/product-image.931b1f66.avif HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.1.1713444572.56.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:34 GMT
content-type: image/avif
content-length: 14178
cache-control: public, max-age=31536000, immutable
etag: "3762-lBP8qz40XBPmQqRKqHpAaWVosro"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| fpnpmcdn.net/v3/dexBvYvoWDszTouzpRYc/loader_v3.8.3.js | 54.230.111.110 | 200 OK | 132 kB |
URL GET HTTP/3fpnpmcdn.net/v3/dexBvYvoWDszTouzpRYc/loader_v3.8.3.js IP54.230.111.110:443
CertificateIssuerAmazon Subjectfpcdn.io Fingerprint50:73:A9:9D:5E:A5:A2:57:0B:73:8F:D2:B2:1E:8A:5D:A7:FF:F8:16 ValidityTue, 10 Oct 2023 00:00:00 GMT - Fri, 08 Nov 2024 23:59:59 GMT
Size132 kB (132180 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/dexBvYvoWDszTouzpRYc/loader_v3.8.3.js HTTP/1.1
Host: fpnpmcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
alt-svc: h3=":443"; ma=86400
age: 109230
server: CloudFront
date: Wed, 17 Apr 2024 06:29:04 GMT
cache-control: public, max-age=3729, s-maxage=617146
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
etag: W/"k5aiGxGijreb1jCJ0YNtCoRJLCc"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5PDa_CBioScZQNQRyoP1AZWL-4ETlZXQ5ADAG0Db6l2wqN9h7bImNA==
|
|
| 1win.run/_nuxt/en.458e6464.svg | 190.115.19.210 | 200 OK | 2.2 kB |
URL GET HTTP/21win.run/_nuxt/en.458e6464.svg IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeSVG Scalable Vector Graphics image Hash79e4258317717cae7d54221d403e28d4 85a14a9c6aa03cf4c9ec9e942a06e5987cb61d0a 0b0d98ecb898886bc24f0a6859a7a76034f960374c9914370e69d3ac7467a697
GET /_nuxt/en.458e6464.svg HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/MenuEnum.b19d6b42.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.1.1713444572.56.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:34 GMT
content-type: image/svg+xml
cache-control: public, max-age=31536000, immutable
etag: W/"8ae-uUSpGKGRbU+pvTTrdQBVFuoZ76g"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.99 | 200 OK | 16 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=9tdzh78a7yax CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 22:10:11 GMT
expires: Tue, 15 Apr 2025 22:10:11 GMT
cache-control: public, max-age=31536000
age: 225564
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/arrowRight.ac4d9640.js | 190.115.19.210 | 200 OK | 452 B |
URL GET HTTP/21win.run/_nuxt/arrowRight.ac4d9640.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (481), with no line terminators Hash929dedb2e51df5e3f372093bf4679d91 8f298f333f25db02946ad1f6e4b9a5cfea8b73af 7814099953fa401d9c659da0d29cc4facdd3d836653ad2aa02173f0b1fffd03c
GET /_nuxt/arrowRight.ac4d9640.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"1c4-banY43+/tcBUHtE3sh3EIjrdpyU"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/phone-bg.6388017c.webp | 190.115.19.210 | 200 OK | 130 kB |
URL GET HTTP/21win.run/_nuxt/phone-bg.6388017c.webp IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeRIFF (little-endian) data, Web/P image Size130 kB (130074 bytes) Hashf6a774e285b4d276a1c196dcd69ac199 bbb25280c76b014fa86b238ee56717c9576c589d 6388017c44e2188941647d4ccd0f1e2aaf10dea0525fc92c683adff80f32377a
GET /_nuxt/phone-bg.6388017c.webp HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.4c218f9a.css
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.1.1713444572.56.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:34 GMT
content-type: image/webp
content-length: 130074
cache-control: public, max-age=31536000, immutable
etag: "1fc1a-u7JSgMdrAU+oayOO5WcXyVdsWJ0"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=9tdzh78a7yax | 142.250.74.164 | 200 OK | 46 kB |
URL GET HTTP/3www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=9tdzh78a7yax IP142.250.74.164:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeHTML document, ASCII text, with very long lines (36957) Hashb8e21a19ab9438075f9a2182a8faf2ae b26f8af90125db22cbaea4e64d4d45e4d4cd89f0 b6d59e160559d53ea599aea4edfb2f76c88122dab72477dbe300a86d9b370a04
GET /recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=9tdzh78a7yax HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 18 Apr 2024 12:49:34 GMT
content-security-policy: script-src 'nonce-bAR4R_e3kMGDPX4xrP_xJw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020z89132822158za200&_p=1713444572561&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=98365324.1713444569&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713444568&sct=1&seg=1&dl=https%3A%2F%2F1win.run%2F&dr=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-512x512.png&dt=1win%20Affiliate%20Program&en=page_view&tfd=1120 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020z89132822158za200&_p=1713444572561&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=98365324.1713444569&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713444568&sct=1&seg=1&dl=https%3A%2F%2F1win.run%2F&dr=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-512x512.png&dt=1win%20Affiliate%20Program&en=page_view&tfd=1120 IP216.239.32.36:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-XXB14W5Y91>m=45je44f0v9128835020z89132822158za200&_p=1713444572561&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=98365324.1713444569&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713444568&sct=1&seg=1&dl=https%3A%2F%2F1win.run%2F&dr=https%3A%2F%2F1win.run%2Fpanel%2Fimg%2Ficons%2Fandroid-chrome-512x512.png&dt=1win%20Affiliate%20Program&en=page_view&tfd=1120 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://1win.run
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/3 204 No Content
access-control-allow-origin: https://1win.run
date: Thu, 18 Apr 2024 12:49:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/socials.523c3f64.js | 190.115.19.210 | 200 OK | 1.2 kB |
URL GET HTTP/21win.run/_nuxt/socials.523c3f64.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (1274), with no line terminators Hashd2ac3a331c5665c3a61561129db18a36 681cb44d889dbe307d3349db25c0aa76ce9f163f 56fae6d486d8a6cb446b1091dec8b6f471347cfa0879e3ee3ccd940578c1508e
GET /_nuxt/socials.523c3f64.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"4cb-wzAVlSO1uPRGFyV8e/nSKpRK3lQ"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/Link.aee80935.js | 190.115.19.210 | 200 OK | 4.3 kB |
URL GET HTTP/21win.run/_nuxt/Link.aee80935.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeJavaScript source, ASCII text, with very long lines (4340), with no line terminators Hash23049b9ed52ab0a252a677f7bd97b54b b848b9e7a63d6bdcc14d681beeafc7f9a88b99ff b62d7645a1d6af4ecb14d6b30059123e435322731b5d97c213659568658840b7
GET /_nuxt/Link.aee80935.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"10c3-j0Hl9oZyzKc6Uk9dmjIYgn+Ge70"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/AppHeader.0d40d81c.js | 190.115.19.210 | 200 OK | 2.6 kB |
URL GET HTTP/21win.run/_nuxt/AppHeader.0d40d81c.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeC source, ASCII text, with very long lines (2727), with no line terminators Hashaa4d37463e3b27e71fe3ac9edf184d62 c3889530eede7992b67901737a187d28286b9f76 acd2a0b5d4d4cb2e569fce12882662d7f81e6508694efd93ef440aa3f99f305a
GET /_nuxt/AppHeader.0d40d81c.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/default.4dc7ed4f.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.1.1713444572.56.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"a34-T0dSK4SsifEnB1j1/g3yLpuxHas"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api2/reload?k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX | 142.250.74.164 | 200 OK | 20 kB |
URL POST HTTP/3www.google.com/recaptcha/api2/reload?k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeASCII text, with very long lines (19851) Hash04e284554fda3f2eaf76b0a2fbfcc1db d9835bf9f57e3447788adbdac046193196de409e 0f3509ef1af47382730e36ce0c1b556a29f4e380f23db11e92e26c0927f745d7
POST /recaptcha/api2/reload?k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 8570
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Thu, 18 Apr 2024 12:49:35 GMT
expires: Thu, 18 Apr 2024 12:49:35 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
set-cookie: _GRECAPTCHA=09ALYNOaiDkhn5AdRGmRzz9eHISehr4GaJb6F55tjwPcPu2DjoSuqsXLSdBj_TNEi6S57IXyBFNoYiypqnHk-c3qs;Path=/recaptcha;Expires=Tue, 15-Oct-2024 12:49:35 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/Modal.2a0b0849.css | 190.115.19.210 | 200 OK | 524 B |
URL GET HTTP/21win.run/_nuxt/Modal.2a0b0849.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (525), with no line terminators Hash6783f8e90dfacc0c0c4839e1e103a97d a57397ad24685c10eeabf9a5c5d5dbaf41304c2b eb71a528d5d9bb885d6bb0356a8a5a0325bdef02e9a8bf570fe4042ec545031c
GET /_nuxt/Modal.2a0b0849.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"20c-3X+ZaNqBlviUelP/iAiiNO0JtI8"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/api2/audio_2x.png | 142.250.74.163 | 200 OK | 530 B |
URL GET HTTP/3www.gstatic.com/recaptcha/api2/audio_2x.png IP142.250.74.163:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced Hash88e0f42c9fa4f94aa8bcd54d1685c180 5ad9d47a49b82718baa3be88550a0b3350270c42 89c62095126fca89ea1511cf35b49b8306162946b0c26d6f60c5506c51d85992
GET /recaptcha/api2/audio_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 530
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 01:43:57 GMT
expires: Tue, 23 Apr 2024 01:43:57 GMT
cache-control: public, max-age=604800
age: 212739
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.google.com/recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- | 142.250.74.164 | 200 OK | 102 B |
URL GET HTTP/3www.google.com/recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- IP142.250.74.164:443
Requested byhttps://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=9tdzh78a7yax CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeASCII text, with no line terminators Hash701c50fe2f9d8cfca61542dee7684552 952a04f81a291e11f5d4ecd7364a3840412ba65e 9fc5dfc54de18e9c98733bbea6ebdcbc1f01c0b23f985556f24684ee96dc0582
GET /recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX&co=aHR0cHM6Ly8xd2luLnJ1bjo0NDM.&hl=en&type=invisible&v=rz4DvU-cY2JYCwHSTck0_qm-&theme=blackglass&size=invisible&cb=9tdzh78a7yax
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Thu, 18 Apr 2024 12:49:35 GMT
date: Thu, 18 Apr 2024 12:49:35 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/_nuxt/phone.f034de8d.avif | 190.115.19.210 | 200 OK | 21 kB |
URL GET HTTP/21win.run/_nuxt/phone.f034de8d.avif IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
Hashc269023bce498d4a6d4e3230bf7031ff 1f74c2a77291a0e78808fecf26c2d1bf8078be71 f034de8dd61b831ad493266e668a146905276a416fd60c6011ec23e4449313c1
GET /_nuxt/phone.f034de8d.avif HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: image/avif
content-length: 21263
cache-control: public, max-age=31536000, immutable
etag: "530f-H3TCp3KRoOeICP7PJsLRv4B4vnE"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 | 142.250.74.99 | 200 OK | 15 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 IP142.250.74.99:443
Requested byhttps://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LcXUDUpAAAAADpTok3SZQYthPu5eGwq5MSGpEYX CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15340, version 1.0 Hash19b7a0adfdd4f808b53af7e2ce2ad4e5 81d5d4c7b5035ad10cce63cf7100295e0c51fdda c912a9ce0c3122d4b2b29ad26bfe06b0390d1a5bdaa5d6128692c0befd1dfbbd
GET /s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 23:58:18 GMT
expires: Tue, 15 Apr 2025 23:58:18 GMT
cache-control: public, max-age=31536000
age: 219077
last-modified: Mon, 16 Oct 2017 17:33:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 1win.run/js/polyfills/globalThis.js | 190.115.19.210 | 200 OK | 357 B |
URL GET HTTP/21win.run/js/polyfills/globalThis.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (370), with no line terminators Hashab05a9dbe8bddd96b41a8c8de53e2dfa e0bf058443a1409616d2c2218faaa677b0aab518 edd48ef8500de2fb36d96536f08b11f5e775bae46b0523975f9a03cd08af7011
GET /js/polyfills/globalThis.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: application/javascript; charset=utf-8
etag: W/"165-8omh0YR4Qo+qDF4EP7appG6skxs"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/tslib.es6.de9fe4f9.js | 190.115.19.210 | 200 OK | 2.2 kB |
URL GET HTTP/21win.run/_nuxt/tslib.es6.de9fe4f9.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeJavaScript source, ASCII text, with very long lines (2182), with no line terminators Hashd27f44826ccf8a7eb791db00368e0853 394cb6128f8e5b7aaa681c3dbabdb15c68a282df d1dd502d71a9ad9da86d86f7b19406e0e7f62e74416c3c023f21a4062f61ad16
GET /_nuxt/tslib.es6.de9fe4f9.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/fp.esm.min.c7c919a5.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.1.1713444572.56.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:34 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"87f-rBtiMCIPl2tpLnoUntStYPWGThk"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/_locale_.342f1ac3.js | 190.115.19.210 | 200 OK | 201 kB |
URL GET HTTP/21win.run/_nuxt/_locale_.342f1ac3.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeC source, ASCII text, with very long lines (65536), with no line terminators Size201 kB (201399 bytes) Hashff43a624b69870ee93e5568de98d4246 8fc9aa7f0475cbd3ca9fc1c2711b25f6a0932648 7a77a966240f76b3198bc903d4b9c1437bf606bf3ecaca0a8b4ba88d867e327f
GET /_nuxt/_locale_.342f1ac3.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/entry.af293afb.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"312b7-j8mqfwR1y9PKn8HCcRsl9qCTJkg"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/MenuEnum.3c40e0da.js | 190.115.19.210 | 200 OK | 6.5 kB |
URL GET HTTP/21win.run/_nuxt/MenuEnum.3c40e0da.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (6774), with no line terminators Hash55f98e14af952beef5432a5bf2c69f1e eb541c759a0fb099ec86733a31249209e01cea01 646be9d6ec083613e01945302360c3692d0a4d8b4a3624cc0ab245858acc7319
GET /_nuxt/MenuEnum.3c40e0da.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/default.4dc7ed4f.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.1.1713444572.56.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:33 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"1939-1f5DCD7/1APaVJ/RC+Z9jQKQnB0"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/AppHeader.3d817507.css | 190.115.19.210 | 200 OK | 2.9 kB |
URL GET HTTP/21win.run/_nuxt/AppHeader.3d817507.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (2950), with no line terminators Hasha4b07b448a26d1ae862a9be4fa1c5e4e 0dbf35066d8b29323a7b463c68aee693e1229f79 82179db6fd817521483c0943001c62e9f914f65314ff4e1e117c259d212784a3
GET /_nuxt/AppHeader.3d817507.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"b83-YJ2EiEhWyOJ3H9t/FTXjxGyLTD8"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/entry.af293afb.js | 190.115.19.210 | 200 OK | 355 kB |
URL GET HTTP/21win.run/_nuxt/entry.af293afb.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
Size355 kB (354634 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_nuxt/entry.af293afb.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"5694a-rODNF4sdoE5A96Q5/8ImKs4riPE"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/Button.b6a71541.js | 190.115.19.210 | 200 OK | 1.1 kB |
URL GET HTTP/21win.run/_nuxt/Button.b6a71541.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (1116), with no line terminators Hash109349f2b5460ab57804fce29e14150a c799d5537d66d0ab2dda467bd8090cad2a32a0c9 5b16e0a1973b99bccb744e5741ddfabaac0d7a6a9fa1f9ea2d234bda6c267042
GET /_nuxt/Button.b6a71541.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/_locale_.342f1ac3.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"42b-hPnpZw6xfIu5v+D7s7+LXsxzbYA"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/icons/64x64.708b580c.png | 190.115.19.210 | 200 OK | 4.9 kB |
URL GET HTTP/21win.run/_nuxt/icons/64x64.708b580c.png IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typePNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced Hash3edbb690b0420ca031ad65703d24e233 3c3fc02a3ed8c68482fd02456762f705cd79dde0 60a3fe40eea18a1ef677239aec61a56d29065ac7d241aea673363291a1761024
GET /_nuxt/icons/64x64.708b580c.png HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: image/png
content-length: 4936
cache-control: public, max-age=31536000, immutable
etag: "1348-PD/AKj7YxoSC/QJFZ2L3Bc153eA"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/_locale_.4c218f9a.css | 190.115.19.210 | 200 OK | 50 kB |
URL GET HTTP/21win.run/_nuxt/_locale_.4c218f9a.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (49723) Hash99945cba2692f7d233e52833c79e47c3 61e15c69fd319273c9fb55c9544245c70d85cc09 4c218f9a3fc52caf39483e4019e5da92787089b86cbdd6a40cfae8a516b676af
GET /_nuxt/_locale_.4c218f9a.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"c23c-YeFcaf0xknPJ+1XJVEJFxw2FzAk"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/default.4dc7ed4f.js | 190.115.19.210 | 200 OK | 2.2 kB |
URL GET HTTP/21win.run/_nuxt/default.4dc7ed4f.js IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeC source, Unicode text, UTF-8 text, with very long lines (2349), with no line terminators Hash51db02ce88205c02cb6882799eca7f0d 310303b574d7d51829f87c23bfc6cde0088bc61f 828cef238f669df45ffacb055ffbeaaf139d034987dc91c64715bd3528bbc49f
GET /_nuxt/default.4dc7ed4f.js HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/_nuxt/entry.af293afb.js
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"8c9-+AGzm1BF1NgawTuJzXNGJYzviKQ"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/Button.437b53e3.css | 190.115.19.210 | 200 OK | 763 B |
URL GET HTTP/21win.run/_nuxt/Button.437b53e3.css IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typeASCII text, with very long lines (764), with no line terminators Hash4dc507051374bddea78c2902ca420b6a e73723e44b4979f115925f8b0badd4823568c39f fdaf0960107f7dc4a5d7544cc59fd27b5c4a9e4279dd5c48f9f6b0212e9036c2
GET /_nuxt/Button.437b53e3.css HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://1win.run/
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: text/css; charset=utf-8
cache-control: public, max-age=31536000, immutable
etag: W/"2fb-SxGjHHzIBiKgTgtWqTRccPPX7uc"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 1win.run/_nuxt/builds/meta/f2255aec-1c02-4818-ad5f-e65dd2cac8be.json | 190.115.19.210 | 200 OK | 139 B |
URL GET HTTP/21win.run/_nuxt/builds/meta/f2255aec-1c02-4818-ad5f-e65dd2cac8be.json IP190.115.19.210:443
CertificateIssuerLet's Encrypt Subject1win.run Fingerprint29:BE:DD:A7:1A:A4:76:F8:7A:78:F3:ED:1B:DC:6E:89:59:33:79:80 ValidityMon, 11 Mar 2024 13:53:10 GMT - Sun, 09 Jun 2024 13:53:09 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashaa95878e1fd2c720d051da35e9ae7f6c 6b1cb95e140a4f908817a8352acb7e01132ff292 f6f132168fb5ca45b9cb765635085e535ee6bc7e6f3cb93cd481b665df6a032a
GET /_nuxt/builds/meta/f2255aec-1c02-4818-ad5f-e65dd2cac8be.json HTTP/1.1
Host: 1win.run
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1win.run/
DNT: 1
Connection: keep-alive
Cookie: _ga_XXB14W5Y91=GS1.1.1713444568.1.0.1713444568.60.0.0; _ga=GA1.1.98365324.1713444569; _vid_t=CRdxyXw8EnGudUrnCjrXHZX9m+z4i3pDxMEWj1aT07zsJ6w6WkOV8UPwrpNtLNFg+1Yi3XP5VGHd7WHa7aUAjFbPKN9D5g4nvw==; 1w_lang=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.22.0
date: Thu, 18 Apr 2024 12:49:32 GMT
content-type: application/json
content-length: 139
cache-control: public, max-age=31536000, immutable
etag: "8b-2BnkjzZnhgj3RWYTlTnKKPWbVTg"
last-modified: Wed, 03 Apr 2024 07:51:17 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|