www.leovegas.com/sv-se/registrering
107.154.248.168301 Moved Permanently 0 B URL HTTP/1.1 www.leovegas.com/sv-se/registrering
IP 107.154.248.168:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sv-se/registrering HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.leovegas.com/sv-se/registrering
Content-Length: 0
Connection: close
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17175
Expires: Sat, 04 Feb 2023 21:55:25 GMT
Date: Sat, 04 Feb 2023 17:09:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20308
Expires: Sat, 04 Feb 2023 22:47:38 GMT
Date: Sat, 04 Feb 2023 17:09:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 16:36:15 GMT
content-type: application/json
age: 1975
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8462
Expires: Sat, 04 Feb 2023 19:30:12 GMT
Date: Sat, 04 Feb 2023 17:09:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 2/QsMH3vxXXKYq14Bv37FlG93gYQv2ipCD5r/94Uv+pHO2QfJsTTII31aPv8SPCqGiZqBCvORO4=
x-amz-request-id: 9VRXCK63SZ04MR2G
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 16:52:54 GMT
age: 976
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d20d8c9b31276f31dc274dd2171b1ee2
6b77c4398414990f051880e327b1e20608bab789
6a221d52b1dc44371718a0860f11857da52065ce829afc9ad91c9f0a069674b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 448
Cache-Control: max-age=116262
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:10 GMT
Etag: "63ddb29c-1d7"
Expires: Mon, 06 Feb 2023 01:26:52 GMT
Last-Modified: Sat, 04 Feb 2023 01:19:24 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 17:09:10 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.leovegas.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=2&cb=354136722
107.154.248.168200 OK 21 kB URL HTTP/2 www.leovegas.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=2&cb=354136722
IP 107.154.248.168:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5cfe1416cabaa621529f89b8e96b18ce
3b709336158071fd954b088af2b2beae12925f47
866a0b6d8730432c49fc4bc42608b8339fc1ca56c8978c89ccec0385ab485039
GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=2&cb=354136722 HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/en-no/signup
Cookie: leo-essentials=%7B%22cid%22%3A%223d4eb16b-3d03-42bd-8c2a-40d425a8ff91%22%7D; visid_incap_846569=7IzJdxydTKmcIot5CiW+8TaR3mMAAAAAQUIPAAAAAAAzRUDKC62y24zAR/1Mv2Lb; nlbi_846569=j9OBc5pYqzPM0FssTJV9qQAAAACiGSrn7APJyeUtf5aLjh0b; incap_ses_631_846569=ygsXGCIFmC7hrH9VDMTBCDaR3mMAAAAA1YDjNuGKm+BOZ1HfYx0A2A==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/javascript
content-encoding: gzip
x-robots-tag: noindex
content-length: 20973
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ca6d4e31efa45fa5bb7c2113e5e0cc7e
794d26d0b6067fc8cacaed552bdc659b39a8e974
92851e96a9214bae5fdf82e0464bdcdbb6f6ca68013213797df763ba8cf69d14
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4473
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:11 GMT
Last-Modified: Sat, 04 Feb 2023 15:54:38 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ca6d4e31efa45fa5bb7c2113e5e0cc7e
794d26d0b6067fc8cacaed552bdc659b39a8e974
92851e96a9214bae5fdf82e0464bdcdbb6f6ca68013213797df763ba8cf69d14
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4473
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:11 GMT
Last-Modified: Sat, 04 Feb 2023 15:54:38 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ca6d4e31efa45fa5bb7c2113e5e0cc7e
794d26d0b6067fc8cacaed552bdc659b39a8e974
92851e96a9214bae5fdf82e0464bdcdbb6f6ca68013213797df763ba8cf69d14
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4473
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:11 GMT
Last-Modified: Sat, 04 Feb 2023 15:54:38 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~6b6ee712.162662eb90f6dec64b1e.chunk.js?e=p
34.107.241.180200 OK 19 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~6b6ee712.162662eb90f6dec64b1e.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (54811), with no line terminators
Hash 991d2b14040a4d33f5cbbe778d71d626
f0a9a6b943eca0c9f6c41b2223114293d8a197e4
4b690962c42f5b3537aea6fcf7dd311f6f32767e3f63a26b482322070a268030
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~6b6ee712.162662eb90f6dec64b1e.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvWoC_wLy9pkt2WBdTRW66kSGcA7hsMR9hgnn0spq34wIdIjnE8uAkqwgw6BTKfHYi6Y7LHPLMs1kcX8SgexPWHBmE5MUPF
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180089548
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 18815
content-encoding: gzip
x-goog-hash: crc32c=F3/tbA==, md5=mR0rFAQKTTP1y753jXHWJg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 18815
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Fri, 03 Feb 2023 09:38:55 GMT
expires: Fri, 03 Mar 2023 09:38:55 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "991d2b14040a4d33f5cbbe778d71d626"
content-type: application/javascript
age: 113416
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 17:07:19 GMT
age: 112
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~9b312c24.4913fd26d7cc2d31e38d.chunk.js?e=p
34.107.241.180200 OK 12 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~9b312c24.4913fd26d7cc2d31e38d.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (35552), with no line terminators
Hash 0364586251fdaa810c67bf91fb7068b6
eb23a74db2aa2ee6f8ffd766e122b1dbaa4f8e15
f9bbbd7458ed6eba55479dc0c998ec916c89d5d2532dadaa716ea374e19de33f
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~9b312c24.4913fd26d7cc2d31e38d.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvxMbnPMWuyRv3AJeoW21l2vlREn6dfK6YZbGNCI7gil8M3_28PzsDDRghOjstUWla4D70fbFaNCEXXqc_vJ1cT2w
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180077247
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 11670
content-encoding: gzip
x-goog-hash: crc32c=PkWQmw==, md5=A2RYYlH9qoEMZ7+R+3Botg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 11670
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "0364586251fdaa810c67bf91fb7068b6"
content-type: application/javascript
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ca6d4e31efa45fa5bb7c2113e5e0cc7e
794d26d0b6067fc8cacaed552bdc659b39a8e974
92851e96a9214bae5fdf82e0464bdcdbb6f6ca68013213797df763ba8cf69d14
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4473
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:11 GMT
Last-Modified: Sat, 04 Feb 2023 15:54:38 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.runtime.8d23bc5252eefef18874.js?e=p
34.107.241.180200 OK 12 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.runtime.8d23bc5252eefef18874.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (34420)
Hash 13de8c5357b759da601e1d62aa125ae3
c20b7e121b1b906b7fbdcde7718584f570f659a9
ad577c76fc3c6adad509384d190a218a036dc17392369be7948ccdf92f9b301e
GET /fulcrum/v4/master/dynamic/mobile.runtime.8d23bc5252eefef18874.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsvloR0RqVqxSDp9jP6WarT4T9N6SZHoIi4p30murZZx8pw2IgCGUC7OpuSa1T5AtNZzqZZwqb4qS9WjwixCPp7UCVdf5mN
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675349647260716
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12188
content-encoding: gzip
x-goog-hash: crc32c=xo7Dqg==, md5=E96MU1e3WdpgHh1iqhJa4w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12188
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:58:14 GMT
expires: Thu, 02 Mar 2023 14:58:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:54:07 GMT
etag: "13de8c5357b759da601e1d62aa125ae3"
content-type: application/javascript
age: 180657
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bead5879.4ba62c335ac53fa2f433.chunk.css?e=p
34.107.241.180200 OK 1.6 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bead5879.4ba62c335ac53fa2f433.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (2303)
Hash e27a18cf1cd1a858e6bc1e56cfe231bd
73821fe3a5a2cff54c549ae91fb5347b5e6d8a9b
5a9ca458694d9b63411c902fe342f88de706187b5552a1670066753f502cd622
GET /fulcrum/v4/master/dynamic/mobile.app~bead5879.4ba62c335ac53fa2f433.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdto5R5g6_AH_zWAonxntbcB-wVa2Wb0sA7OtjJoYaNXdAHqff6JqUf3A1cQd1OjR3IENGYuVhYDkVQXl0aGb9BVEA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1670506834496426
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1625
content-encoding: gzip
x-goog-hash: crc32c=igy0xQ==, md5=4noYzxzRqFjmvB5Wz+IxvQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1625
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Mon, 30 Jan 2023 08:28:02 GMT
expires: Mon, 27 Feb 2023 08:28:02 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:34 GMT
etag: "e27a18cf1cd1a858e6bc1e56cfe231bd"
content-type: text/css
age: 463269
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~65914263.6f996d8b6ea9f23747f1.chunk.css?e=p
34.107.241.180200 OK 1.9 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~65914263.6f996d8b6ea9f23747f1.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (5028)
Hash 71b32aaf113588ee53a750afb9f91a02
7f378b3e6695c22fd99484613ffc4328d4d07816
068bf711982c24a8a09bd4432011c0e52355bb823392ab6421cbf62e0f082f97
GET /fulcrum/v4/master/dynamic/mobile.app~65914263.6f996d8b6ea9f23747f1.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvWEW-Vt3VQkhOnUyHFuuQ6eO0Qt79i-y7SYhOInLGY2G0BMjJ6F8hU0HudlQYwvKaSGT6UtGPVFRZuZ9RgEmJv8w
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1669028776140146
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1881
content-encoding: gzip
x-goog-hash: crc32c=ovdTiA==, md5=cbMqrxE1iO5Tp1CvufkaAg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1881
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Mon, 30 Jan 2023 08:16:25 GMT
expires: Mon, 27 Feb 2023 08:16:25 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Mon, 21 Nov 2022 11:06:16 GMT
etag: "71b32aaf113588ee53a750afb9f91a02"
content-type: text/css
age: 463966
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.relay~93c72913.9d8920c9306f7917f5d4.chunk.js?e=p
34.107.241.180200 OK 25 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.relay~93c72913.9d8920c9306f7917f5d4.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 88cc9dfad78be7a8333a39c60b66409c
c40c8ddd7735becdfa00a3f800a7530dff0f5b03
7bddfaa30d3edd219ff0d9364982fd9d8f0d41854b57ecd50259dd4e24755358
GET /fulcrum/v4/master/dynamic/mobile.relay~93c72913.9d8920c9306f7917f5d4.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu9fAUDoA7ZMlOCrwYl1sHA1yacom2Cmp7zPi68y5_tUG6UUCsc3n-kKCUuknvVSoyAIOlEVAmanTqrUiO10qURsQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179704429
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 25189
content-encoding: gzip
x-goog-hash: crc32c=jLMiDQ==, md5=iMyd+teL56gzOjnGC2ZAnA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 25189
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "88cc9dfad78be7a8333a39c60b66409c"
content-type: application/javascript
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17337
Expires: Sat, 04 Feb 2023 21:58:08 GMT
Date: Sat, 04 Feb 2023 17:09:11 GMT
Connection: keep-alive
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.react~03cc5dce.7d492abff2b9f861ab9c.chunk.js?e=p
34.107.241.180200 OK 36 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.react~03cc5dce.7d492abff2b9f861ab9c.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (58423)
Hash 7e2b85c28d0e81c76370de82accb078a
0ca5410f13c25c339685f024d985e6cab22448f9
c29b6f6762707f9ac9fd8edca2e3d342b8d47c92bd2660fb5a2b9a7daea3a7b9
GET /fulcrum/v4/master/dynamic/mobile.react~03cc5dce.7d492abff2b9f861ab9c.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvB8we4NCwjfojv2vNjxWJBAW1zPY96sGg_Ka_Su81ab6P4BkGimmWBztRKJTSORkrqQ6nlvSOc1HwZA-8-jqXNJg
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179664609
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 35667
content-encoding: gzip
x-goog-hash: crc32c=JB4Iyw==, md5=fiuFwo0OgcdjcN6CrMsHig==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 35667
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "7e2b85c28d0e81c76370de82accb078a"
content-type: application/javascript
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~0efdf0b8.d4ea2b83b2cf2182cc78.chunk.js?e=p
34.107.241.180200 OK 30 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~0efdf0b8.d4ea2b83b2cf2182cc78.chunk.js?e=p
IP 34.107.241.180:0
File type Unicode text, UTF-8 text, with very long lines (46939)
Hash e66ef353146ffbdf49e235f9145a71d5
b4d3fc764e56faf0e9b8a833b57392dfb5efe9ca
7bef4889a0f419c0ca5de2bfe9e563739fe152758f1312edd0704605f9495dbf
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~0efdf0b8.d4ea2b83b2cf2182cc78.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduM7BX4NAmWdBTaxROjG-mZQBZqcFpukgPPznxjBiOUNwMke0Hqk2YEGdXY6Bo3qEsDWNTR0u5WaC8IIydicLV_DxinEDA-
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180001485
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 30348
content-encoding: gzip
x-goog-hash: crc32c=i2jjBw==, md5=5m7zUxRv+99J4jX5FFpx1Q==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 30348
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "e66ef353146ffbdf49e235f9145a71d5"
content-type: application/javascript
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bfe0ed74.bb38c9744e90ac20e35f.chunk.js?e=p
34.107.241.180200 OK 23 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bfe0ed74.bb38c9744e90ac20e35f.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6597bbb00b8874bb766e271a4236c4b3
432a5e738f1e4a207621044425849b77d228532b
4dee43006229ac032aab15f545e2d79130957e41710f0fa276f0fd6258cf8c13
GET /fulcrum/v4/master/dynamic/mobile.app~bfe0ed74.bb38c9744e90ac20e35f.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvnQXEXRy-7sXw6vnMzhwJBU6jZ6goQiyZUfJdyFm5Qmkp3PEfgQhkORQr8Qxu5sKGoqgAn_nmqoZjbpuGlqZmQL92L3buo
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675349647321370
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 23208
content-encoding: gzip
x-goog-hash: crc32c=hK0X5g==, md5=ZZe7sAuIdLt2bicaQjbEsw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 23208
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:58:14 GMT
expires: Thu, 02 Mar 2023 14:58:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:54:07 GMT
etag: "6597bbb00b8874bb766e271a4236c4b3"
content-type: application/javascript
age: 180657
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/dVi66-kaLJo
216.58.211.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/dVi66-kaLJo
IP 216.58.211.3:0
Hash fcf7c87ee64969ef0b1428656680da59
b2c22f837f6d85033a7ac12e913ab41f1b6de716
efda65dafd83c528d92e689bd1b2c0dcd13fa64aea98e043443625728819b39c
POST /s/gts1p5/dVi66-kaLJo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:11 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~127b6cf7.0d0525409bcc0c2bfe6a.chunk.js?e=p
34.107.241.180200 OK 24 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~127b6cf7.0d0525409bcc0c2bfe6a.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3d7d79b60c8d684beeccd53a1155b2a5
8d4c4f6293beda5320b994228abad1c0483a6858
37de6e7c9c56259bf347969f1afcd40277460af9ee60187addcc323cc5f920c2
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~127b6cf7.0d0525409bcc0c2bfe6a.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvp4Vdkm6wuJ7ihF7IdoylnGYtZ5pKsQ7GVCKCLYKuKJiQDlHPUEnlNSr9ip5EEyc0YIxSZMX9TNEB2Upd_ZDgPHQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179971354
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 23570
content-encoding: gzip
x-goog-hash: crc32c=h2O+Sg==, md5=PX15tgyNaEvuzNU6EVWypQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 23570
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "3d7d79b60c8d684beeccd53a1155b2a5"
content-type: application/javascript
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~80e93ec1.cdd753cd2fd9b2b58452.chunk.js?e=p
34.107.241.180200 OK 22 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~80e93ec1.cdd753cd2fd9b2b58452.chunk.js?e=p
IP 34.107.241.180:0
File type Unicode text, UTF-8 text, with very long lines (29186), with LF, NEL line terminators
Hash e8c41d3c330ec4a5fa80c2f5bf9098a3
c036efcbd3f9736c82d71cba8d1717ecf56998eb
f9e59eeff9530e454c412b459e6b3762179bf1262072d83b619036dbb7b356c1
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~80e93ec1.cdd753cd2fd9b2b58452.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdumKysB5CufG-B7ckHVQZFqFCHHpC_ETynv_jwYE4POAimjl4XN6wY5wZUrwUZKKJ4fjHLLhGSsadiMqRpghR-l0A
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180040437
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 22124
content-encoding: gzip
x-goog-hash: crc32c=Gw5y/Q==, md5=6MQdPDMOxKX6gML1v5CYow==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 22124
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "e8c41d3c330ec4a5fa80c2f5bf9098a3"
content-type: application/javascript
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~4da73d43.545eda81f6d644ad31df.chunk.js?e=p
34.107.241.180200 OK 7.5 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~4da73d43.545eda81f6d644ad31df.chunk.js?e=p
IP 34.107.241.180:0
File type Unicode text, UTF-8 text, with very long lines (21356), with no line terminators
Hash 901800bf9e0f8a689e9e42974f045846
14a2eb1a04844e36954f06b42d3ad27cf144a426
cef389af57e9f715fc0fcca9faac05199cc762bd0808eef6c3d683e3d56b8194
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~4da73d43.545eda81f6d644ad31df.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvc9FHGNwOGJ7wiXI9a06_Wuty9BiUkb7VuiuRaygeklKgZvTy68TzgVUKNvjUrj3YSJg_v1K3qYwFVVzI41lR9uA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179893609
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7524
content-encoding: gzip
x-goog-hash: crc32c=iD9+kw==, md5=kBgAv54PimienkKXTwRYRg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 7524
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "901800bf9e0f8a689e9e42974f045846"
content-type: application/javascript
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~acf67890.15da669b4021ad83d058.chunk.js?e=p
34.107.241.180200 OK 12 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~acf67890.15da669b4021ad83d058.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (46125), with no line terminators
Hash 68465abfbaec3491818ac4636383161f
dc127f9610a639bc06db484be2287ff3250e0e69
79e46474c775953f2f9e957adddda206b3af0cea02070079aa19d86acfeff9b1
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~acf67890.15da669b4021ad83d058.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsnxqjULrZCc9MOp8lfrQQjqors1dHzJvgUVQB7yTdPzSIiMvHqImTysMkXFn19GvjA1hl1NHMFl9F3GMMndZJT
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180163950
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12367
content-encoding: gzip
x-goog-hash: crc32c=Ny5aTQ==, md5=aEZav7rsNJGBisRjY4MWHw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12367
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "68465abfbaec3491818ac4636383161f"
content-type: application/javascript
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~91835fe9.4c6c6e810b1dcde86c48.chunk.js?e=p
34.107.241.180200 OK 7.7 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~91835fe9.4c6c6e810b1dcde86c48.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (25581), with no line terminators
Hash eb010ae02917a1500b804e16a7810032
bb22ae2e40fa7a8fe21f1d64caad6b78fa656033
061ed2c2d9b28dcc0322d55ff556f2569b3aded1f39969885024f1275b85865f
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~91835fe9.4c6c6e810b1dcde86c48.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtjlsK2pb33w_DDcS5uQaATbiCJZzP8mxs-WxqxwWm7D0L0NO3erEGh8XKeSFAcZ3shVHDoRlv-_8Ao9RAjdoxvZg
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180009401
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7716
content-encoding: gzip
x-goog-hash: crc32c=sbwi2A==, md5=6wEK4CkXoVALgE4Wp4EAMg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 7716
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "eb010ae02917a1500b804e16a7810032"
content-type: application/javascript
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~23b211d4.9dd27998f83f955876f0.chunk.js?e=p
34.107.241.180200 OK 13 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~23b211d4.9dd27998f83f955876f0.chunk.js?e=p
IP 34.107.241.180:0
File type Unicode text, UTF-8 text, with very long lines (29772), with no line terminators
Hash a9a803eeac0782a4e2fd613481d5285b
ec9245cb5ed6125d90e922f0f798ce7b12019cb8
61190c753a1b862c8d56bca34174da3c3ff9db9c94c90c28da618206449e0d87
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~23b211d4.9dd27998f83f955876f0.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtT657bDUoe5rfWTDqT1OfuCDy20s_fAWd5CB39TU30VTfabDYH_hRVoLfYtg8IfbxPxTjWme9Zr3woHa0hK15yzlkDepxa
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179939177
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 13193
content-encoding: gzip
x-goog-hash: crc32c=9v/k/g==, md5=qagD7qwHgqTi/WE0gdUoWw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 13193
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "a9a803eeac0782a4e2fd613481d5285b"
content-type: application/javascript
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~e9b2199d.4c6b788c457b66b2dd15.chunk.js?e=p
34.107.241.180200 OK 14 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~e9b2199d.4c6b788c457b66b2dd15.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (42449), with no line terminators
Hash 3c7b19f4a0f7ac55be57aee572fda218
90d9d47a0dd106d9d0e7ad2b299264148ac4fbe3
fdd778c1654295540dc0d7d6a87d9a42207426c17d0584e61e93f9a07266bf79
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~e9b2199d.4c6b788c457b66b2dd15.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdutN2E8LgrLozoIxIzwtHjmomuOTRUbXoeOa_i3nO4Xfnr05CJgUGVaR1_UvCLk5eart_9HCXG_BiMz_bShyLcgmQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180169481
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 13604
content-encoding: gzip
x-goog-hash: crc32c=Lq3TUg==, md5=PHsZ9KD3rFW+V67lcv2iGA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 13604
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "3c7b19f4a0f7ac55be57aee572fda218"
content-type: application/javascript
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~1d14d743.970bb9f2fd2ca616ce3d.chunk.js?e=p
34.107.241.180200 OK 4.8 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~1d14d743.970bb9f2fd2ca616ce3d.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (11224)
Hash 11c0e63f74e14e5e25068b9da8372396
1ac3b79d91c0c85283fc9a6527ed89b2fe19519e
c39d9b1f6ba4b413a7972d10dbc46057869343e864596d47c56fae059812695c
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~1d14d743.970bb9f2fd2ca616ce3d.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsUCV_WNYFfJyTC_dv_pxmsEQzGk_hd18aJoflSU9hNsxtCIUJmCpxRvPwrm5u32WJxe_F95nYTn7EMty_dCQONFHLie22y
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179942071
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 4799
content-encoding: gzip
x-goog-hash: crc32c=nSZfng==, md5=EcDmP3ThTl4lBoudqDcjlg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 4799
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Fri, 03 Feb 2023 09:38:55 GMT
expires: Fri, 03 Mar 2023 09:38:55 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "11c0e63f74e14e5e25068b9da8372396"
content-type: application/javascript
age: 113416
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~361546bd.9e9fc658b42b63778cd2.chunk.js?e=p
34.107.241.180200 OK 16 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~361546bd.9e9fc658b42b63778cd2.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash bb233299fff2abc4abfb55f2e18dcf43
8c88dae5382af38d1173b4db1cef4d5ac6a4c698
519bcd3b8037567d6f47a12aab2cd08b4117b51356a40ce689e936c25810d48a
GET /fulcrum/v4/master/dynamic/mobile.app~361546bd.9e9fc658b42b63778cd2.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtOY8AnNjpaIIGYB2LY6dB2c7prQsK2ap5d7g-snTi40LUZDiNvfUgVu7kKPejRCPfEP7FJMDHoYTQzfuJ5sdPMWA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675348740848123
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 15964
content-encoding: gzip
x-goog-hash: crc32c=AA32kA==, md5=uyMymf/yq8Sr+1Xy4Y3PQw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 15964
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:44:50 GMT
expires: Thu, 02 Mar 2023 14:44:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:39:00 GMT
etag: "bb233299fff2abc4abfb55f2e18dcf43"
content-type: application/javascript
age: 181461
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~521067a8.89f65db9ae423b9197b1.chunk.css?e=p
34.107.241.180200 OK 283 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~521067a8.89f65db9ae423b9197b1.chunk.css?e=p
IP 34.107.241.180:0
Hash 327122b5334eeb33cd79c886dd49beb3
e58dfacbb2db54d6652889e2dad8ce19f2d2fe2f
9df65c43857dea61bc65232b1e3fd20a82475f77563d3999ac0a9b9ed6d90f38
GET /fulcrum/v4/master/dynamic/mobile.app~521067a8.89f65db9ae423b9197b1.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvr2vM1CLIhWErAihgnPFSak9IycOV3qAuItXvxGVTwIuRgfQ5_IBXPSes8P98V0W1IY8NgystDxkc1SV4XcezP0g
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1663591116440358
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 283
content-encoding: gzip
x-goog-hash: crc32c=uA/axQ==, md5=MnEitTNO6zPNeciG3Um+sw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 283
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Mon, 30 Jan 2023 08:28:02 GMT
expires: Mon, 27 Feb 2023 08:28:02 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Mon, 19 Sep 2022 12:38:36 GMT
etag: "327122b5334eeb33cd79c886dd49beb3"
content-type: text/css
age: 463269
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~7a676cbb.1011d686d38b3587b223.chunk.js?e=p
34.107.241.180200 OK 6.4 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~7a676cbb.1011d686d38b3587b223.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (51031)
Hash cc3739e3b574506881018eb6a4736b4b
ffc28597388f0c3bc1ffcf6705fbd4aba9bb373f
b98a76f329fd7b9e2fc330e699c30ac3d6f99dd1d386d3c15fa35bbd5ebba6c3
GET /fulcrum/v4/master/dynamic/mobile.app~7a676cbb.1011d686d38b3587b223.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvOsNk3rKLBlvVPNAB8nl-7vlV84L6KwT120SnnMOruTXCrgHC8_Qt2F2CVzEc8ax7dA037zHsdELRFXVb2krNNbw
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179475373
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 6371
content-encoding: gzip
x-goog-hash: crc32c=DLaeTw==, md5=zDc547V0UGiBAY62pHNrSw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 6371
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "cc3739e3b574506881018eb6a4736b4b"
content-type: application/javascript
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~521067a8.06385421245227d2bbfd.chunk.js?e=p
34.107.241.180200 OK 10 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~521067a8.06385421245227d2bbfd.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (49063)
Hash c9f6afb2fa4e26f3d83bda9580a89775
539b5b23175d5bf1cef5be8c6bd28585fdcafc21
a15d70ea3a613863d101ff1332e7899cc0e336cd4bbfaeb1e26a25d0b7146dd7
GET /fulcrum/v4/master/dynamic/mobile.app~521067a8.06385421245227d2bbfd.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdszXrtT5q_1eN7Cgvb9SjPmrMTuTZV--FE7oT-4r0i_62M6hnVSzd_g7gkO69p5SsILaT8bShAwckLQS75-7Mpvwx3CfbI9
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179311342
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10268
content-encoding: gzip
x-goog-hash: crc32c=MPJYgQ==, md5=yfavsvpOJvPYO9qVgKiXdQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 10268
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "c9f6afb2fa4e26f3d83bda9580a89775"
content-type: application/javascript
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~9675856e.dd984e891c8a0e00c45b.chunk.css?e=p
34.107.241.180200 OK 2.1 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~9675856e.dd984e891c8a0e00c45b.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (2605)
Hash 8bf6d4e9191247f34f49910ff4bce36c
083cc5e954c1cadc64847b769796b4f783194a8d
a26135400ddfc9dcb572f5cee188ef7cd5faf61bbb851a25b74738bc12cc0477
GET /fulcrum/v4/master/dynamic/mobile.app~9675856e.dd984e891c8a0e00c45b.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycds23EoE_4Dnjej6UNJqueAIXqWX-bElTkYvnK2C85NT5yCjjL02fxjPufteD9KMX5nmfBx1wwQgDmzQdX6LmTgxuFazZssP
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1670506834487828
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2102
content-encoding: gzip
x-goog-hash: crc32c=xSTuIQ==, md5=i/bU6RkSR/NPSZEP9LzjbA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2102
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Sun, 29 Jan 2023 22:01:52 GMT
expires: Sun, 26 Feb 2023 22:01:52 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:34 GMT
etag: "8bf6d4e9191247f34f49910ff4bce36c"
content-type: text/css
age: 500839
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~29a429d8.be7a25b5bebf4a6f484f.chunk.js?e=p
34.107.241.180200 OK 11 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~29a429d8.be7a25b5bebf4a6f484f.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 53c3d58d1f7efad8d8e0b8f930466f34
4e03b27ab097aefc1a27531fadadbc51578449b0
abf91635a4623c0c1dcc414d29ca182fa790aee2c19506e238513f34b6275ff8
GET /fulcrum/v4/master/dynamic/mobile.app~29a429d8.be7a25b5bebf4a6f484f.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtVp6oOISYb9dZoLC0CoPGWbT98EnjYB-cybXpvLNHW9U72lE4sW8HV3PSh0uQYwG_daOmML_jEoDmTRKtya4tV
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179360681
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 11446
content-encoding: gzip
x-goog-hash: crc32c=vBY9Cg==, md5=U8PVjR9++tjY4Lj5MEZvNA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 11446
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "53c3d58d1f7efad8d8e0b8f930466f34"
content-type: application/javascript
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~1152e2e7.75b89c58b5cad5b0fc2b.chunk.js?e=p
34.107.241.180200 OK 22 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~1152e2e7.75b89c58b5cad5b0fc2b.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash dd00d335f35aae85c9fcd2cf3f43d937
4e18bf6e0c74ad4407f268521ddf2b0d31c54057
56dd2d07b2e5be8e9a7cf011fb1e3bb1eb637cb2ca1794dda9dea1c79dfdf3e8
GET /fulcrum/v4/master/dynamic/mobile.app~1152e2e7.75b89c58b5cad5b0fc2b.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv2RBoq9BlMF8keMetnydmROYDmqtCRgv0yyjGNxgzaNtWpTqPwpAfZroOruh-qh-I_BMIk-4UOPirDBZo_gCNMMg
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675346487652309
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 21995
content-encoding: gzip
x-goog-hash: crc32c=ItEhNw==, md5=3QDTNfNaroXJ/NLPP0PZNw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 21995
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:09:35 GMT
expires: Thu, 02 Mar 2023 14:09:35 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:01:27 GMT
etag: "dd00d335f35aae85c9fcd2cf3f43d937"
content-type: application/javascript
age: 183576
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~a8f9656c.06731460c1fba01cd0fc.chunk.js?e=p
34.107.241.180200 OK 20 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~a8f9656c.06731460c1fba01cd0fc.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (52100)
Hash 9dfa61d3ec42bfecfa4f827dbe77a2dd
21dc2920dfe87863d7da1dde4295ee390b74c760
8ba56e2f4a0d1589afe4138ed68256d779d39fd240fcafd42bf8213ff3be840f
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~a8f9656c.06731460c1fba01cd0fc.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdugopzXQTD0leBQyQS_N7DTdljQGaAEPHhPHGJ4yZLvuFL-eR0oAORAc75Es3284okSNcCgQTwbpadyeW_yLQs3643vKclj
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180097198
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 20044
content-encoding: gzip
x-goog-hash: crc32c=SiynNg==, md5=nfph0+xCv+z6T4J9vnei3Q==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 20044
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "9dfa61d3ec42bfecfa4f827dbe77a2dd"
content-type: application/javascript
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/dVi66-kaLJo
216.58.211.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/dVi66-kaLJo
IP 216.58.211.3:0
Hash fcf7c87ee64969ef0b1428656680da59
b2c22f837f6d85033a7ac12e913ab41f1b6de716
efda65dafd83c528d92e689bd1b2c0dcd13fa64aea98e043443625728819b39c
POST /s/gts1p5/dVi66-kaLJo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:11 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~493df0b3.f8b771413c312f3e2221.chunk.js?e=p
34.107.241.180200 OK 29 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~493df0b3.f8b771413c312f3e2221.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash dfc12b022a2d063d1c5d0bd82bc35bd2
3c11222417d98653195d0d7de566438b7978c430
ce27a6a69386359dcb44defe51a4c51263ce03c937037902f0e73acc98ed1a4b
GET /fulcrum/v4/master/dynamic/mobile.app~493df0b3.f8b771413c312f3e2221.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvhg9avrja4cjcTRhJo9c-GA6u7Ejk10mPm5sWhdATzqvLE-XTgXAsa_cSH8AL4olfVPtYT6lL_iukCoW6dfI6Z2Q
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675346487679611
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 29128
content-encoding: gzip
x-goog-hash: crc32c=3mb5dQ==, md5=38ErAiotBj0cXQvYK8Nb0g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 29128
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:09:35 GMT
expires: Thu, 02 Mar 2023 14:09:35 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:01:27 GMT
etag: "dfc12b022a2d063d1c5d0bd82bc35bd2"
content-type: application/javascript
age: 183576
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~748942c6.b53734c1bca4cfe0f1df.chunk.js?e=p
34.107.241.180200 OK 33 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~748942c6.b53734c1bca4cfe0f1df.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash c454ddf2e6046c01ef6c979bee666bff
15f805e6b99b2796aaef1c2791bc68cdb116616c
2f51c31349daf69bfebca77950b0561905dd054e441c8f200a892329b47eb469
GET /fulcrum/v4/master/dynamic/mobile.app~748942c6.b53734c1bca4cfe0f1df.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtrRsNf7tRHVWNMRgb6-0q5p5yZEEcf0Nqlrh92az_FLxRxXfDNIRZoB3krJM2dwuwTuB4hY2EYL534bYWmDf5d2g
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675346487777510
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 33027
content-encoding: gzip
x-goog-hash: crc32c=0v3AYg==, md5=xFTd8uYEbAHvbJeb7mZr/w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 33027
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:09:35 GMT
expires: Thu, 02 Mar 2023 14:09:35 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:01:27 GMT
etag: "c454ddf2e6046c01ef6c979bee666bff"
content-type: application/javascript
age: 183576
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~b60d9e2a.77e906acd52b72523ea9.chunk.js?e=p
34.107.241.180200 OK 40 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~b60d9e2a.77e906acd52b72523ea9.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7e11101ecbbe8af2b6fcbda133db99fe
82185521e7de2c32e05dffb1b3c6fdc382488c72
879d10487b2f2102e1419f1642b01472db7eb3db4efe09f0de8e661544672d66
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~b60d9e2a.77e906acd52b72523ea9.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduE0uaiHI4wRdsTHhUDIq6OrC5YfH7bMHrv5v4ec2nHY1oYWga68UaIli90K260J64IJz12UyQnXbvTaOHKM4BGUg
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180178706
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 39927
content-encoding: gzip
x-goog-hash: crc32c=cCrbLg==, md5=fhEQHsu+ivK2/L2hM9uZ/g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 39927
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Fri, 03 Feb 2023 09:38:55 GMT
expires: Fri, 03 Mar 2023 09:38:55 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "7e11101ecbbe8af2b6fcbda133db99fe"
content-type: application/javascript
age: 113416
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~e4dfd1bd.efabe06dcca0b93134c8.chunk.js?e=p
34.107.241.180200 OK 40 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~e4dfd1bd.efabe06dcca0b93134c8.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (40178)
Hash 07ef144974b50f57a4b67dc73aec1ea5
d82a6952908ba7558c925afc79250f19b11e2560
ff9bb69a5b4e41a57f7c1c74ae1810af3d48956030605ece2729ffd5357410cd
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~e4dfd1bd.efabe06dcca0b93134c8.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtzYbVJQ94G6n6rDqpywp_kLH0nVgwF2QFTARjAnsqkdnmeL7xn0C1AHaVwjRMoC1mBzIl3AijOLZiuJoBSBOW0ag
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180253656
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 40018
content-encoding: gzip
x-goog-hash: crc32c=GkLgKQ==, md5=B+8USXS1D1ektn3HOuwepQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 40018
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "07ef144974b50f57a4b67dc73aec1ea5"
content-type: application/javascript
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~c7b8ce09.a7ba145b7ffb82742c2f.chunk.js?e=p
34.107.241.180200 OK 38 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~c7b8ce09.a7ba145b7ffb82742c2f.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 442a97213d095b355bed29d77dc563c2
bef6a1aa8501dda048fcc6125268d5428fb0fa96
5756601734ebfa591299bdfdd4ef4987e56d4985d5be673fedf221c86a78dd12
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~c7b8ce09.a7ba145b7ffb82742c2f.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvZgMqvvQkTWzkfVglre12bLOCQ0Nzdbhden6JHcgrW8LXxEvAUdxRU7uMT2Mnqj7WPAgx-kKiQ6dVw2-p0JJKfjw
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180170244
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 37623
content-encoding: gzip
x-goog-hash: crc32c=qG4coA==, md5=RCqXIT0JWzVb7SnXfcVjwg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 37623
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "442a97213d095b355bed29d77dc563c2"
content-type: application/javascript
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~112c8377.fefc9d505ba77a59ab90.chunk.js?e=p
34.107.241.180200 OK 45 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~112c8377.fefc9d505ba77a59ab90.chunk.js?e=p
IP 34.107.241.180:0
File type Unicode text, UTF-8 text, with very long lines (34517)
Hash b2b00374ffeb1db10774b23dce472540
63e3b108c3419daf6b9c4981faabfb61a4978f9b
5d9ade74c0d20456e4658632184c48c7d7b3e5782aee51fc25678b5305161479
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~112c8377.fefc9d505ba77a59ab90.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdst8vvz9Wtwk2a0zg17-bARLcxcEcDelDZevn4F4TSntVXBXmFoY7JtyqYdRuv0Ig9nieg_fgcEROX6gJLEHvAw9eXr0c9G
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180049006
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 44753
content-encoding: gzip
x-goog-hash: crc32c=R3Uoaw==, md5=srADdP/rHbEHdLI9zkclQA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 44753
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "b2b00374ffeb1db10774b23dce472540"
content-type: application/javascript
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~493df0b3.e3a8cf8c790c63be4011.chunk.css?e=p
34.107.241.180200 OK 9.9 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~493df0b3.e3a8cf8c790c63be4011.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (17796)
Hash 5eb7226dc2575783709eccb6a4519e02
79d8d5cc2c5099ee653de2e4b62285a912a3c6cb
ba158e88bf0853c4c2e548c26fda44e0b347e97457aec514bb5f671ecab15706
GET /fulcrum/v4/master/dynamic/mobile.app~493df0b3.e3a8cf8c790c63be4011.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvS2Bt_qQjo9l4ym_dI7Gt8QbrLNbfCJ8TYrPDFp1lXiqY8f8Nq2DB7Olkvzp0SxPsukFTr_1OqjY0PkUL4R4-rRjeeSz6J
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675157189530005
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 9916
content-encoding: gzip
x-goog-hash: crc32c=x1FyTA==, md5=XrcibcJXV4Nwnsy2pFGeAg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 9916
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 31 Jan 2023 09:49:36 GMT
expires: Tue, 28 Feb 2023 09:49:36 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 31 Jan 2023 09:26:29 GMT
etag: "5eb7226dc2575783709eccb6a4519e02"
content-type: text/css
age: 371975
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~748942c6.ae767656cbb1ec0a4ab9.chunk.css?e=p
34.107.241.180200 OK 1.7 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~748942c6.ae767656cbb1ec0a4ab9.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (1772)
Hash 598b253bf510e57911fbd5fd86511a47
4209a7bdfdee81b9eeae3b1414146c97e294c847
7ebcb687ea0b9907a0ae2d2443e1b6d39de4f4b9f0a23b70c06163874247d2ab
GET /fulcrum/v4/master/dynamic/mobile.app~748942c6.ae767656cbb1ec0a4ab9.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduqfl1IJyu-8KE8VtM687UidT0_gZokmpO_qtTjsLcEiC74YSRZE4GfLWRjBcW5dGmoCChm1CFMjNePPE4x2bKbxg
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328181413771
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1663
content-encoding: gzip
x-goog-hash: crc32c=Q0P26g==, md5=WYslO/UQ5XkR+9X9hlEaRw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1663
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:21 GMT
etag: "598b253bf510e57911fbd5fd86511a47"
content-type: text/css
age: 201297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.35.3.113101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.3.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: B4iH7SapAR8hEg7xU4uMOg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: HhNNrOsrwcdGGEHxPXp/lsQhCfU=
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 500832
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.leovegas.com/_Incapsula_Resource?SWKMTFSR=1&e=0.5466990051249125
107.154.248.168200 OK 1 B URL HTTP/2 www.leovegas.com/_Incapsula_Resource?SWKMTFSR=1&e=0.5466990051249125
IP 107.154.248.168:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
GET /_Incapsula_Resource?SWKMTFSR=1&e=0.5466990051249125 HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/en-no/signup
Cookie: leo-essentials=%7B%22cid%22%3A%223d4eb16b-3d03-42bd-8c2a-40d425a8ff91%22%7D; visid_incap_846569=7IzJdxydTKmcIot5CiW+8TaR3mMAAAAAQUIPAAAAAAAzRUDKC62y24zAR/1Mv2Lb; nlbi_846569=j9OBc5pYqzPM0FssTJV9qQAAAACiGSrn7APJyeUtf5aLjh0b; incap_ses_631_846569=ygsXGCIFmC7hrH9VDMTBCDaR3mMAAAAA1YDjNuGKm+BOZ1HfYx0A2A==; ___utmvc=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
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: text/plain
x-robots-tag: noindex
content-length: 1
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Adform~e8e8aaba.732b6adb9ba9c968310e.chunk.js?e=p
34.107.241.180200 OK 2.7 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Adform~e8e8aaba.732b6adb9ba9c968310e.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (7023)
Hash 2bf4450cfc48e32b76f19becdba06fe6
505910ff4f3f30c3a37a4cda4b74860a9351fc05
fdc59f5aab0dcee3fb6bb3b6281cb679816e78a11f6591d24e0b1a954b285955
GET /fulcrum/v4/master/dynamic/mobile.Adform~e8e8aaba.732b6adb9ba9c968310e.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdscQnX8FPWfw92DkVYZF-l-WT9BohXmjyx_V7SaR7ETtODm1NjeB--Un6gNVfyfrcFULLTxkBl8MmwMFuWvTEsbi3T-S9aw
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328173993949
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2716
content-encoding: gzip
x-goog-hash: crc32c=DkH48A==, md5=K/RFDPxI4yt28Zvs26Bv5g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2716
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:14 GMT
etag: "2bf4450cfc48e32b76f19becdba06fe6"
content-type: application/javascript
age: 201298
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Snackbar~9765a08b.bbb624b4c6a00e9ac79e.chunk.css?e=p
34.107.241.180200 OK 465 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Snackbar~9765a08b.bbb624b4c6a00e9ac79e.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (631)
Hash 99c084dd92a699e13251da924e9724c9
e005575addfea39ef22d6949f9c3dc92fb859389
20fa74d03ed880ed3615b72143b64547ed3ab72665e256e84b07157556903ec0
GET /fulcrum/v4/master/dynamic/mobile.Snackbar~9765a08b.bbb624b4c6a00e9ac79e.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdueyy59ATn6kizH7aD6yqPlKNV-sfhGVN2ddCY8mUR7CUtCkSMjoOat9OuVZYMebl_0Vn1jYAgOhUo454vReifVJA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1647331609164951
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 465
content-encoding: gzip
x-goog-hash: crc32c=wV6JEQ==, md5=mcCE3ZKmmeEyUdqSTpckyQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 465
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Mon, 30 Jan 2023 08:28:03 GMT
expires: Mon, 27 Feb 2023 08:28:03 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 15 Mar 2022 08:06:49 GMT
etag: "99c084dd92a699e13251da924e9724c9"
content-type: text/css
age: 463269
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Snackbar~9765a08b.9a5c54ec61062e2834ff.chunk.js?e=p
34.107.241.180200 OK 3.0 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Snackbar~9765a08b.9a5c54ec61062e2834ff.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (8081)
Hash 493e28757d589b29d3b72a04e075f312
430ff9d5fb801569accf7a888a1ca9015d00489d
e4421aef9e49760a7eea9877c73f8ee6078ca6724c133d3b9732b9da82ed1695
GET /fulcrum/v4/master/dynamic/mobile.Snackbar~9765a08b.9a5c54ec61062e2834ff.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvqLVYyZOi4w4fo8khW9jDUpPZdmjCMTXMXzxcfSd6Hkawe0zUsFqg1dNYPxk3kDG4TQYS-jGUTA0VvwftgtKFuvQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328178349833
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2976
content-encoding: gzip
x-goog-hash: crc32c=UDpjuQ==, md5=ST4odX1YmynTtyoE4HXzEg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2976
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:18 GMT
etag: "493e28757d589b29d3b72a04e075f312"
content-type: application/javascript
age: 201298
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ResponsibleGaming~4fd0ee19.3b98c102cd668b49803d.chunk.js?e=p
34.107.241.180200 OK 2.2 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ResponsibleGaming~4fd0ee19.3b98c102cd668b49803d.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (6180)
Hash 545f206167a51f83e9d81b68b2f61efa
0fd51f11ce7b7b4f15477f9b7b2e58cfc65383a7
9c869703bad7f9ecdd9885edd27f52218b247c19bb1c32a5359585e877ca1bb2
GET /fulcrum/v4/master/dynamic/mobile.ResponsibleGaming~4fd0ee19.3b98c102cd668b49803d.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdt6alTH-f9vPBNWGlPkLTJ-8nZFUm6ZVPhfOnt67jURSOdlMvKVDFpD4QaWa-f-DIFW5-dnevT7z4zni_dJ6BZaTQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328177616686
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2213
content-encoding: gzip
x-goog-hash: crc32c=KT33Pw==, md5=VF8gYWelH4Pp2BtosvYe+g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2213
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:17 GMT
etag: "545f206167a51f83e9d81b68b2f61efa"
content-type: application/javascript
age: 201298
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Experimentation~0035cfbb.8db5f4fe97c70a481ab2.chunk.js?e=p
34.107.241.180200 OK 1.4 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Experimentation~0035cfbb.8db5f4fe97c70a481ab2.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (2891)
Hash 8f0a8969aa34476131cb5e219e278ef3
fa84df48cac26285f96a811243978c270a8be2fe
55a43530ade66178614b0c2e723e75f21d8605042632f09eeda278fffaecc2f0
GET /fulcrum/v4/master/dynamic/mobile.Experimentation~0035cfbb.8db5f4fe97c70a481ab2.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduTYExs2aM-su9QENmZ7CEC_sGvHXp2xbJOKUdQPsaaiubxciutZB6_1gLAVKbg4xprSWqKVZkH2nI19w_OmCEHgdNQ-eWO
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328175707954
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1389
content-encoding: gzip
x-goog-hash: crc32c=xulZVg==, md5=jwqJaao0R2Exy14hnieO8w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1389
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:15 GMT
etag: "8f0a8969aa34476131cb5e219e278ef3"
content-type: application/javascript
age: 201298
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.DocumentTitle~344174d7.1ffa1d5eda6880559bda.chunk.js?e=p
34.107.241.180200 OK 1.0 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.DocumentTitle~344174d7.1ffa1d5eda6880559bda.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (1674)
Hash 4b902624aea440e410476f67355e3db4
fbe6e914cd16dcd39038f374fb25f7ebbe880d08
b255257a2447500b39bba5b0c4867e3032ecf65a62750bb747ca0d1def742513
GET /fulcrum/v4/master/dynamic/mobile.DocumentTitle~344174d7.1ffa1d5eda6880559bda.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduA10CNQ5fmSMAEeMurZO0e-4EwuQkrBYRBSbfV63rpRYth5Wp4NUyFaV0-wKv3Dfx6Z1eRfKNANlhrI9N0h5jGyw
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328175656035
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1045
content-encoding: gzip
x-goog-hash: crc32c=xKiw5A==, md5=S5AmJK6kQOQQR29nNV49tA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1045
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:15 GMT
etag: "4b902624aea440e410476f67355e3db4"
content-type: application/javascript
age: 201298
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~AutoWithdrawalModal~BankID~BankingVerification~BottomBarScreen~CasinoCategory~CasinoSearch~D~de24fdcb.e9cf84d35eb09462b84d.chunk.js?e=p
34.107.241.180200 OK 13 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~AutoWithdrawalModal~BankID~BankingVerification~BottomBarScreen~CasinoCategory~CasinoSearch~D~de24fdcb.e9cf84d35eb09462b84d.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (46539), with no line terminators
Hash 21bef447a4e27a6438bf7fce14f958af
7e9db1a07c926711e16f1ad89c8d04d80be4eb48
8e873b04b86b6ad2ada0497eb10cbcf4eb52e68efe3ed19160247e1c45c5022a
GET /fulcrum/v4/master/dynamic/mobile.vendors~AutoWithdrawalModal~BankID~BankingVerification~BottomBarScreen~CasinoCategory~CasinoSearch~D~de24fdcb.e9cf84d35eb09462b84d.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduM_ZWx4__yC6bAE_vBvKipO6OtsWPST2Rt-rEVhqEnIf0JN3C0WkaQyCfv52O66dFee6vmuZwwwnk4bz47RsKL
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179661485
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12838
content-encoding: gzip
x-goog-hash: crc32c=rauuEg==, md5=Ib70R6TiemQ4v3/OFPlYrw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12838
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "21bef447a4e27a6438bf7fce14f958af"
content-type: application/javascript
age: 201298
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScree~046c31a5.3a6f788d367a9b8d7a20.chunk.js?e=p
34.107.241.180200 OK 42 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScree~046c31a5.3a6f788d367a9b8d7a20.chunk.js?e=p
IP 34.107.241.180:0
File type Unicode text, UTF-8 text, with very long lines (48260)
Hash fe02e2c2245242f3f8d636d8390454df
f5171a6b5d9ae985303c8940ce864725f9fccaab
00e8362ae25c23be44fd20232e8a1e419e4c30a28946744d41ab643523ab0d30
GET /fulcrum/v4/master/dynamic/mobile.vendors~BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScree~046c31a5.3a6f788d367a9b8d7a20.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu-0-Jja7f27AgsBU_U-riTYN3ho0rC4dohznIKU96PJ_ZnsZdXoN0qhafZQxTE0PaE65PHgyigzDgnv0uRFxr5byHSd8iy
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179805484
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 41812
content-encoding: gzip
x-goog-hash: crc32c=34cdsQ==, md5=/gLiwiRSQvP41jbYOQRU3w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 41812
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "fe02e2c2245242f3f8d636d8390454df"
content-type: application/javascript
age: 201298
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScreen~LostPa~952074d0.d01d872af38a2b83fed6.chunk.css?e=p
34.107.241.180200 OK 3.2 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScreen~LostPa~952074d0.d01d872af38a2b83fed6.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (3276)
Hash 1f3980b31a459738edf6b8f64e0c549b
b0fe9692e7c1ee7205a291fbab885273aa9dfbfd
ede6d828fce80956c5cb66a8dc0211ede58718ce01a3da9867a6141e372752bf
GET /fulcrum/v4/master/dynamic/mobile.BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScreen~LostPa~952074d0.d01d872af38a2b83fed6.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdt3lJ9MFpEs1SySigWFL7h8PlnHeeE7tuaZk_rnUegZqOVgNyPyTuVT6kr1s2UBfUxIYzYwSqFyFyjVBF8WDtWO
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675167093338125
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 3216
content-encoding: gzip
x-goog-hash: crc32c=Okt9Ow==, md5=HzmAsxpFlzjt9rj2TgxUmw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 3216
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 31 Jan 2023 12:21:58 GMT
expires: Tue, 28 Feb 2023 12:21:58 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 31 Jan 2023 12:11:33 GMT
etag: "1f3980b31a459738edf6b8f64e0c549b"
content-type: text/css
age: 362834
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScreen~LostPa~952074d0.f4caeaeb95313452cebe.chunk.js?e=p
34.107.241.180200 OK 17 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScreen~LostPa~952074d0.f4caeaeb95313452cebe.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ea4c39af472b2e4f9c2604de9165b87b
e6c1d9707ad06d883f3f70082584919d02503faf
d7da3445d91d0918fab7dd3c70b145f5320c2b9b5f53625f8bea0564d609fe02
GET /fulcrum/v4/master/dynamic/mobile.BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScreen~LostPa~952074d0.f4caeaeb95313452cebe.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdscKSlvaGW-VcQpAf0JpIZ_Wd0FxVIDSaMsyNrddIsMgZTuf_X1fJ_TSk5L_XamDEKFZSlkaLWInoU_ouTfLieROe3FfC6X
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328174339672
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 17332
content-encoding: gzip
x-goog-hash: crc32c=AP/88g==, md5=6kw5r0crLk+cJgTekWW4ew==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 17332
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:14 GMT
etag: "ea4c39af472b2e4f9c2604de9165b87b"
content-type: application/javascript
age: 201298
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.FlowChecker~493df0b3.2a66ee60dd6219bafc56.chunk.css?e=p
34.107.241.180200 OK 1.7 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.FlowChecker~493df0b3.2a66ee60dd6219bafc56.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (1298)
Hash 7543b46c3dd3ee59e5532d971f2b5d5f
5d396f145a7e9b9b47fd7802b6d01613ae711f8f
14f434e87de14ce624414e3378b544ae3e4d6fc8ba68eae3623c73dd1c8e2bd6
GET /fulcrum/v4/master/dynamic/mobile.FlowChecker~493df0b3.2a66ee60dd6219bafc56.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu6ynmwMxVlz2juPnxNsO0j9oqMR7jiqDCwADpC90CLmq9B6LI5lPM-p8PbiH4ayKsfwNsZrY7ly_Mu0fBSDgfN
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1672760598499902
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1738
content-encoding: gzip
x-goog-hash: crc32c=xhs6+w==, md5=dUO0bD3T7lnlUy2XHytdXw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1738
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Mon, 30 Jan 2023 08:16:25 GMT
expires: Mon, 27 Feb 2023 08:16:25 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 03 Jan 2023 15:43:18 GMT
etag: "7543b46c3dd3ee59e5532d971f2b5d5f"
content-type: text/css
age: 463967
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.FlowChecker~493df0b3.b2b786f153df9940cb68.chunk.js?e=p
34.107.241.180200 OK 12 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.FlowChecker~493df0b3.b2b786f153df9940cb68.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (52536)
Hash 93504c3653e95e54548bd4970fd42f7d
5ad481f6fe8b95fc0faa030db1f7c2f17e036637
9f9f7a57e1fbcd363f3e332c1302240a3103b6bda0516b28a415f6c91aa893bb
GET /fulcrum/v4/master/dynamic/mobile.FlowChecker~493df0b3.b2b786f153df9940cb68.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycds-J0G2d508V5UF3N5_0cv4YOvfe9TmVqBeyfMfZ3jOx1Rcj--DsSUbrlezuGasofxHvs2g75ApLKoX00rN4MJERhLlSAoA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328175872878
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12475
content-encoding: gzip
x-goog-hash: crc32c=aOncTg==, md5=k1BMNlPpXlRUi9SXD9QvfQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12475
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:15 GMT
etag: "93504c3653e95e54548bd4970fd42f7d"
content-type: application/javascript
age: 201298
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ROWBanner~bfe0ed74.0446bb98668232c5d3be.chunk.css?e=p
34.107.241.180200 OK 855 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ROWBanner~bfe0ed74.0446bb98668232c5d3be.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (2056)
Hash 4a16c5f59bea1f27ee21dbcff3c5a4c0
1a5ccf49d4297fe14b0586c5302a0c7666dfd89b
270812d18857fefd0d504acb0e07180ddd0bb6be0760ff6276551565bdde8da2
GET /fulcrum/v4/master/dynamic/mobile.ROWBanner~bfe0ed74.0446bb98668232c5d3be.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu-Wu4oatYKj3mQxvaUNpfrqLJNXAWLYmO1jYQ1dcXd948LxFCdkVue39n-KH8StfURPuOS68zIBImuxN4u8q1oZFsgU094
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675167093709299
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 855
content-encoding: gzip
x-goog-hash: crc32c=GXWvqw==, md5=ShbF9ZvqHyfuIdvP88WkwA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 855
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 31 Jan 2023 12:21:58 GMT
expires: Tue, 28 Feb 2023 12:21:58 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 31 Jan 2023 12:11:33 GMT
etag: "4a16c5f59bea1f27ee21dbcff3c5a4c0"
content-type: text/css
age: 362834
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.leovegas.com/stream?relay
107.154.248.168101 Switching Protocols 0 B URL HTTP/1.1 www.leovegas.com/stream?relay
IP 107.154.248.168:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stream?relay HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.leovegas.com
Sec-WebSocket-Protocol: graphql-ws
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: RsEH9TP6604f9fMDbzACHQ==
Connection: keep-alive, Upgrade
Cookie: leo-essentials=%7B%22cid%22%3A%223d4eb16b-3d03-42bd-8c2a-40d425a8ff91%22%7D; visid_incap_846569=7IzJdxydTKmcIot5CiW+8TaR3mMAAAAAQUIPAAAAAAAzRUDKC62y24zAR/1Mv2Lb; nlbi_846569=j9OBc5pYqzPM0FssTJV9qQAAAACiGSrn7APJyeUtf5aLjh0b; incap_ses_631_846569=ygsXGCIFmC7hrH9VDMTBCDaR3mMAAAAA1YDjNuGKm+BOZ1HfYx0A2A==; ___utmvc=mtiM5YHCxkn984cdGHy4Xcd1iHdCDzjbTbQsniuUQO8WX03uf59M7kAVFNHS2TAMSD8D9e+GqCBJ9S48g5CdLITmtSWvUZAxq9wkg/LsWKzHRnIeNhzr/Xh12ByEVRwi6RAAHSxGHwh4xa+kp8jy9wPVLNwngVT1Axx2wiu31MPSm1gS6OGsxUJnef59AJ7YjNTYkNnO4UlIvB4S546s7gcm3yVUXZNP5Q3z1KG4CKFS3NbBgbYHHIlRflEo8FnPcvzazE0QEYaCoxZqqRFJhlI6i08+N1mDjo2aI3o1L/2IyBPvqM1ePtCzZLKhe/7K/lSKbBNjVPUA9E4W3sCslN3XvceMAQIn5pYh/ne+9jfn5kUdjz/LMz5XMo0M/0IpeFDVBjZg786lli0GvbiMcKC9vwLHnajMhErtu+mPlaQ/khqlVtY1zDeJy+Re5YTyjWbL8N8uf4MgRJvdizZsK8JGGDC19/k7CBY51qVyXe+vlwpxfUrzRFVX9DShb1Hb6q0m1rqH+0msLzQKq68gYOm1bfvnSCS8MJIs6eq5Q7ng7EIseE+z2PULosah0oIGuTV4QbCQUbwMLmfDsWIsV3125iLPycUyU5pcF2sSJLDfHS3AfBEwCaaeZzlCpSNRZ6xy2lpMeECUY0nwpUn05Mk55r9RnZMvyZLzIBNjQUB7B9vuGtl9QIBiUVVLIMHMvIeJbX6WO04rvXJPp3k+D9P+ij40Fg7VoddjCUbh8DRrjM8bdLvcH1TQQO1mmThaoPZo8ACpHSqCbPC5K+gwAFf3cVkRTyp3kc5rFgMO2Po0cJcFSPDUrv69wkzxnV505jDGrFMEMze4RimDSfqIYzwJk8UGc3HrW3rbKuD003I4sMYIMGPfqidsYYOiYnMFwWVGyGSdk6tirhkYfv0q3gUVHUKKfry5Bqn7XWOMi56Pbtk0CRwE2ZIrjoletjvPgDT6vdSDJkka6fe/0m/xCixXM5z+EhccFdGRrkOOEhVzKDR3j6Ogosq2AG+o7Obh9eKDD9T03uxlgcVmDAhL7VtC6fV2riV5Fk/lgaIAz19HqdfANDazCrXDlmSM0vdWJMuy61BpeYkM/uInqAs4kRMrzRFl/FWCsYBuX8B2yvNf6i89BWazbPxJJ9dpQ/OcjhHIIztDu4PvDRe20O2LJ66quOZCodctAx1uCLOa9Ai7veY3vuQRd9f7hXCAMxhSHEgG8lbPyfOMVb71BJsdtpTw1LsqsDrHHfGuZlNSEKbxdA/bqb10RXlV0aCc6c+g4HOYae1c3x07evGIFdnbxo9ywpdBjU9Adw+J6bslojz/sZ6nUrwz+LGnDE0aiQQ8X/LvqaW7hPQlYDs7RH/OmJIaUD8sGuoRkS487pooTEEMjd7ihQwTM4Ub40xn3qQGTi8vimXHS3nehjZP6aUQwY2FWrCdMHbrtgz/KrqwWQ/t79LRYuL5EWurnt1+ezBLMSa8pc5Q97mgtrIfuDrgdyuXGIOLr4uG01IkQqlHNMLW7Qn3/GR2KOke91ywxZLebHzyUt0z+Vbs5kDQw/uxxwDvdGvM3xvP5qcaUrEKCK0dNO8MoYIY0PsK8lQl4bjg0cLnxb537dPExEN/4NJ6N32tJ3he6Sl9ZDjKhRb0OCWTmYJq0DDSVRw5QoAyxgF9av8Gnmd05Q/mYFRuXnAhicUcAeozsC85dJLHUiW5tjN4LPz2FAA8VkLY/BwxT0CfqVhiWx8AHahHZz3iJqdjCxBJqpYdw1Km78yIxtxht+eYtH1KEMFT2qHq9xitLxlmqQGBZzxhnpLCyTIr77aTSFRwX5gubfP9ew5VtiepZZBQcLGiYLQmKUgnaNnYNG9EKPD3DrD0E3ybOcTWYLT39aw4mmfIYicS46PNNgfPbcfp+uPBYapWHLlVyZgScmRV3eXkF+FrkKF1RLfMxZVFjmsZmkQehtFYOjzmnyJmWik3Ai9bibvmluC2r/It657f8izlKKVnOHWoaUMcLhkm6T+IBqF7bXQU3C5SHVEmo6S6C5EJCUf3l4t28JQ1yqXlSlyJRYz3WsHgKpYihPRKTBqEkOLplFCBYMUzWUlCHXDA4UnzQWv3JanBNYbqJuyZgPrH26EwPpB9E9gSCvqkuzGcL4I5UYCTHvcnpKUMBzBnfuF3rIEXjQFpm9s2yprqOuSsKeIxmZmUhVWYe0UdkVEg2GAA7GLce0g4SkgDPEK4vkZYI/mBaftL7i6VQSVyahZ98Z73DyAs3xYIRewHBNHR4ZFYN8wFqdHNBu4UH4mlb5GtROZYOxRWiaM10NzwBVIkfyBfUkZAXkEG5wb6wymS7nz8GVtKSMO1YokBZLqxSh0xtyHJJrOMB3Cf3SEmKSYfD2LRpEQY25F3v3ahksfVxi6FxNJJASVezpPGuSYcwMqm1aHYmiA3M3ZDSuij0Edas8oA+2wulM/Xsv2Vz/Wls/xbOMVhkogU9TpmFtT3/NmG6jDgiKYcdXqHTaNY0teHpJdogfPXBlWWj5UeAdQJFbfftYR2//NZfEP43Agzx2DRNkeIzAYHlEQK1s7te8JfrhQ8kRGxj2BitLMZvI36oRLTsWzyattdfnNeT8nBlHMc5djXVANgx5iMVMDCoPaa2ZBUsT4DrJ8oIsvN1qzTZupvhuNd0KVJ8ES5ujbo7e5emiGBL+rp6WDBvoyPnmTA8RQ00zK/EZBuzwhoCZ+NAe48YixkaWdlc3Q9MTg1MjQ3LHM9ODA2YTlkYTg4NGIxOTM4MDg2YWI5Y2FiOTI3ZTY2OWI3NWIwYTBhMTg2ODA5NjY2ODk4ZDg5OWM2YWE0NzlhNDg3YTRhNjZkN2M3OTcyNmY=
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sat, 04 Feb 2023 17:09:12 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yq01P10yF1fiQli1xTSmTLzKn1c=
Sec-WebSocket-Protocol: graphql-ws
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Set-Cookie: ___utmvc=a; Max-Age=0; path=/; expires=Tue, 24 Jan 2023 22:28:09 GMT
Strict-Transport-Security: max-age=63072000
X-CDN: Imperva
X-Iinfo: 7-11448790-11448791 NNNY CT(1 7 0) RT(1675530551525 16) q(0 0 0 -1) r(0 0) U11
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ROWBanner~bfe0ed74.8ae9ed685fbd9d01deba.chunk.js?e=p
34.107.241.180200 OK 1.5 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ROWBanner~bfe0ed74.8ae9ed685fbd9d01deba.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (3281)
Hash 99cdb8580e19e018e71adc541c74cffa
543448eefb71d086b7db5a9bfd23602cee7b8b4e
0c1605d15d38701d05f8be56a51fbbae1c7c192b55803091ae04b838b3204bc6
GET /fulcrum/v4/master/dynamic/mobile.ROWBanner~bfe0ed74.8ae9ed685fbd9d01deba.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvaZuzU-5RhzTUJ71-aX2Anzg6wswJog2xelO702fMG9iRDaa9iJmzvVpfCx0cfY4USd2PcdCpt9J8W_LGMxarqBw
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328177596085
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1501
content-encoding: gzip
x-goog-hash: crc32c=CEvY6A==, md5=mc24WA4Z4BjnGtxUHHTP+g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1501
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:17 GMT
etag: "99cdb8580e19e018e71adc541c74cffa"
content-type: application/javascript
age: 201298
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 07:51:59 GMT
expires: Thu, 01 Feb 2024 07:51:59 GMT
cache-control: public, max-age=31536000
age: 292633
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 13:09:06 GMT
expires: Wed, 31 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 360006
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
app.launchdarkly.com/sdk/goals/5b9627a39619fd15611a390c
151.101.2.217200 OK 23 B URL HTTP/2 app.launchdarkly.com/sdk/goals/5b9627a39619fd15611a390c
IP 151.101.2.217:0
Hash f0d79988b7772c003d04a28bd7417a62
58423a999eec2997bcfffb247e9ecd3dfd0abf44
30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f
OPTIONS /sdk/goals/5b9627a39619fd15611a390c HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-launchdarkly-user-agent
Referer: https://www.leovegas.com/
Origin: https://www.leovegas.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Authorization,X-Requested-With,X-LD-Private,X-LD-AccountId,X-LD-EnvId,X-LD-PrjId,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper,LD-API-Version,X-LaunchDarkly-Tags
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-max-age: 3600
allow: GET, OPTIONS, HEAD
content-encoding: gzip
ld-region: us-east-1
strict-transport-security: max-age=31536000
accept-ranges: bytes
date: Sat, 04 Feb 2023 17:09:12 GMT
via: 1.1 varnish
x-served-by: cache-bma1631-BMA
x-cache: HIT
x-cache-hits: 133
x-timer: S1675530552.485431,VS0,VE0
vary: Accept-Encoding
age: 0
content-length: 23
X-Firefox-Spdy: h2
app.launchdarkly.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?withReasons=true
151.101.2.217200 OK 23 B URL HTTP/2 app.launchdarkly.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?withReasons=true
IP 151.101.2.217:0
Hash f0d79988b7772c003d04a28bd7417a62
58423a999eec2997bcfffb247e9ecd3dfd0abf44
30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f
OPTIONS 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?withReasons=true HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-launchdarkly-user-agent
Referer: https://www.leovegas.com/
Origin: https://www.leovegas.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Authorization,X-Requested-With,X-LD-Private,X-LD-AccountId,X-LD-EnvId,X-LD-PrjId,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper,LD-API-Version,X-LaunchDarkly-Tags
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-max-age: 3600
allow: GET, OPTIONS, HEAD
content-encoding: gzip
ld-region: us-east-1
strict-transport-security: max-age=31536000
accept-ranges: bytes
date: Sat, 04 Feb 2023 17:09:12 GMT
via: 1.1 varnish
x-served-by: cache-bma1631-BMA
x-cache: HIT
x-cache-hits: 448
x-timer: S1675530552.488854,VS0,VE0
vary: Accept-Encoding
age: 0
content-length: 23
X-Firefox-Spdy: h2
app.launchdarkly.com/sdk/goals/5b9627a39619fd15611a390c
151.101.2.217200 OK 26 B URL HTTP/2 app.launchdarkly.com/sdk/goals/5b9627a39619fd15611a390c
IP 151.101.2.217:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 4895d253dd2c6acdb944f2bd7579cc89
9befc050756e1ec3b4b99e2579c0b86132f642a3
261feae8b4d06341989808887b33303dfb972c7566e389dbd8e1c1ea9b096a13
GET /sdk/goals/5b9627a39619fd15611a390c HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-LaunchDarkly-User-Agent: JSClient/2.24.2
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Authorization,X-Requested-With,X-LD-Private,X-LD-AccountId,X-LD-EnvId,X-LD-PrjId,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper,LD-API-Version,X-LaunchDarkly-Tags
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-max-age: 300
cache-control: max-age=0
content-encoding: gzip
content-md5: d751713988987e9331980363e24189ce
etag: "d751713988987e9331980363e24189ce"
ld-region: us-east-1
strict-transport-security: max-age=31536000
accept-ranges: bytes
date: Sat, 04 Feb 2023 17:09:12 GMT
via: 1.1 varnish
x-served-by: cache-bma1631-BMA
x-cache: HIT
x-cache-hits: 291
x-timer: S1675530552.495158,VS0,VE0
vary: Accept-Encoding
age: 0
content-length: 26
X-Firefox-Spdy: h2
app.launchdarkly.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?withReasons=true
151.101.2.217200 OK 3.6 kB URL HTTP/2 app.launchdarkly.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?withReasons=true
IP 151.101.2.217:0
File type JSON data\012- , ASCII text, with very long lines (23657), with no line terminators
Hash 68e0b1fb2dac24a5e13ba1851fa94b47
f057059a9d69b4bda9136f9a098bec539dc2c667
788df834fe3780f24f4afb44a0b126d8dfceeb319a0873d888b366fba76d29bd
GET /sdk/evalx/5b9627a39619fd15611a390c/users/eyJrZXkiOiIzZDRlYjE2Yi0zZDAzLTQyYmQtOGMyYS00MGQ0MjVhOGZmOTEiLCJjb3VudHJ5IjoiTk8iLCJhbm9ueW1vdXMiOnRydWUsImN1c3RvbSI6eyJjbGllbnRJZCI6ImFub255bW91cyIsImNvbnRleHRDb3VudHJ5IjoiTk8iLCJjb250ZXh0TGljZW5zZSI6Ik1HQSIsImN1cnJlbmN5IjoiIiwibGFuZ3VhZ2UiOiJFTiIsImxpY2Vuc2UiOiJNR0EiLCJtYXJrZXQiOiJOTyIsInBsYXRmb3JtVHlwZSI6Im1vYmlsZSIsInBsYXllcklkIjoiIiwicmVhbEtleSI6IjNkNGViMTZiLTNkMDMtNDJiZC04YzJhLTQwZDQyNWE4ZmY5MSIsInVuaXF1ZUlkIjoiM2Q0ZWIxNmItM2QwMy00MmJkLThjMmEtNDBkNDI1YThmZjkxIn19?withReasons=true HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-LaunchDarkly-User-Agent: JSClient/2.24.2
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
cache-control: max-age=0
etag: "5351dbb"
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-methods: OPTIONS, GET
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization, X-Requested-With, X-LD-Private, X-LD-AccountId, X-LD-EnvId, X-LD-PrjId, X-LaunchDarkly-Event-Schema, X-LaunchDarkly-User-Agent, X-LaunchDarkly-Wrapper, Ld-Api-Version
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 17:09:12 GMT
via: 1.1 varnish
x-served-by: cache-bma1648-BMA, cache-bma1631-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675530553.503226,VS0,VE65
vary: Authorization, Accept-Encoding
age: 0
content-length: 3617
X-Firefox-Spdy: h2
www.leovegas.com/static/fulcrum/apple-touch-icon.png
107.154.248.168200 OK 21 kB URL HTTP/2 www.leovegas.com/static/fulcrum/apple-touch-icon.png
IP 107.154.248.168:0
File type PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Hash f9a35c0fdecb2ee483d7badb5e03dd5b
6b9e2d23f188021f914eb2f58ce74d4753afd996
5137e8fe669f23cfe46ec272e9621157210a5e4b3f985520d22ed65f37ad3e0b
GET /static/fulcrum/apple-touch-icon.png HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/en-no/signup
Cookie: leo-essentials=%7B%22cid%22%3A%223d4eb16b-3d03-42bd-8c2a-40d425a8ff91%22%7D; visid_incap_846569=7IzJdxydTKmcIot5CiW+8TaR3mMAAAAAQUIPAAAAAAAzRUDKC62y24zAR/1Mv2Lb; nlbi_846569=j9OBc5pYqzPM0FssTJV9qQAAAACiGSrn7APJyeUtf5aLjh0b; incap_ses_631_846569=ygsXGCIFmC7hrH9VDMTBCDaR3mMAAAAA1YDjNuGKm+BOZ1HfYx0A2A==; ___utmvc=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
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "87ff2fdf"
last-modified: Thu, 02 Feb 2023 14:49:36 GMT
content-type: image/png
content-length: 21096
content-encoding: gzip
cache-control: max-age=3438, public
expires: Sat, 04 Feb 2023 18:06:29 GMT
date: Sat, 04 Feb 2023 17:09:11 GMT
set-cookie: ___utmvc=a; Max-Age=0; path=/; expires=Tue, 24 Jan 2023 22:28:09 GMT
strict-transport-security: max-age=63072000
x-cdn: Imperva
x-iinfo: 5-55402630-0 0CNN RT(1675530550065 1721) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
www.leovegas.com/static/fulcrum/favicon.ico
107.154.248.168200 OK 2.7 kB URL HTTP/2 www.leovegas.com/static/fulcrum/favicon.ico
IP 107.154.248.168:0
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash a3384f0c4aa8c4b99449ef21ae4eb17b
ca4a677f9a641d29862da6cc2fd3aa8c2d9ecdda
5e0a3867060cb39118639f3b57bf79f646b0836c6279ac09f41b4a156eb6c4b2
GET /static/fulcrum/favicon.ico HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/en-no/signup
Cookie: leo-essentials=%7B%22cid%22%3A%223d4eb16b-3d03-42bd-8c2a-40d425a8ff91%22%7D; visid_incap_846569=7IzJdxydTKmcIot5CiW+8TaR3mMAAAAAQUIPAAAAAAAzRUDKC62y24zAR/1Mv2Lb; nlbi_846569=j9OBc5pYqzPM0FssTJV9qQAAAACiGSrn7APJyeUtf5aLjh0b; incap_ses_631_846569=ygsXGCIFmC7hrH9VDMTBCDaR3mMAAAAA1YDjNuGKm+BOZ1HfYx0A2A==; ___utmvc=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
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "d5630a7c"
last-modified: Thu, 02 Feb 2023 14:49:36 GMT
content-type: image/x-icon
content-length: 2663
content-encoding: gzip
cache-control: max-age=283, public
expires: Sat, 04 Feb 2023 17:13:54 GMT
date: Sat, 04 Feb 2023 17:09:11 GMT
set-cookie: ___utmvc=a; Max-Age=0; path=/; expires=Tue, 24 Jan 2023 22:28:09 GMT
strict-transport-security: max-age=63072000
x-cdn: Imperva
x-iinfo: 5-55402630-0 0CNN RT(1675530550065 1724) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
www.leovegas.com/mobile.sw.js?e=p
107.154.248.168200 OK 11 kB URL HTTP/2 www.leovegas.com/mobile.sw.js?e=p
IP 107.154.248.168:0
File type ASCII text, with very long lines (34776)
Hash 63cfb578e4b806f79f1c531d81ab3ca6
f8ec0faadea7b5871dc3461c0de77576691ba2fd
4744b20160952080d1ce9cfcfb21afb16305b4d86a4e008035ea14ae1e7e9cb9
GET /mobile.sw.js?e=p HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: leo-essentials=%7B%22cid%22%3A%223d4eb16b-3d03-42bd-8c2a-40d425a8ff91%22%7D; visid_incap_846569=7IzJdxydTKmcIot5CiW+8TaR3mMAAAAAQUIPAAAAAAAzRUDKC62y24zAR/1Mv2Lb; nlbi_846569=j9OBc5pYqzPM0FssTJV9qQAAAACiGSrn7APJyeUtf5aLjh0b; incap_ses_631_846569=ygsXGCIFmC7hrH9VDMTBCDaR3mMAAAAA1YDjNuGKm+BOZ1HfYx0A2A==
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 02 Feb 2023 14:53:33 GMT
content-type: application/javascript
content-length: 10707
content-encoding: gzip
cache-control: max-age=255, public
expires: Sat, 04 Feb 2023 17:13:26 GMT
date: Sat, 04 Feb 2023 17:09:11 GMT
strict-transport-security: max-age=63072000
x-cdn: Imperva
x-iinfo: 5-55402630-0 0CNN RT(1675530550065 1770) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
app.launchdarkly.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?withReasons=true
151.101.2.217304 Not Modified 0 B URL HTTP/2 app.launchdarkly.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?withReasons=true
IP 151.101.2.217:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET 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?withReasons=true HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-LaunchDarkly-User-Agent: JSClient/2.24.2
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "5351dbb"
TE: trailers
HTTP/2 304 Not Modified
server: Varnish
retry-after: 0
etag: "5351dbb"
accept-ranges: bytes
date: Sat, 04 Feb 2023 17:09:12 GMT
via: 1.1 varnish
x-served-by: cache-bma1631-BMA
x-cache: HIT
x-cache-hits: 0
x-timer: S1675530553.708425,VS0,VE0
age: 0
cache-control: max-age=0
vary: Authorization, Accept-Encoding
X-Firefox-Spdy: h2
app.launchdarkly.com/sdk/evalx/5b9627a39619fd15611a390c/users/eyJrZXkiOiIzZDRlYjE2Yi0zZDAzLTQyYmQtOGMyYS00MGQ0MjVhOGZmOTEiLCJjb3VudHJ5IjoiTk8iLCJhbm9ueW1vdXMiOnRydWUsImN1c3RvbSI6eyJjbGllbnRJZCI6ImFub255bW91cyIsImNvbnRleHRDb3VudHJ5IjoiTk8iLCJjb250ZXh0TGljZW5zZSI6Ik1HQSIsImN1cnJlbmN5IjoiTk9LIiwibGFuZ3VhZ2UiOiJFTiIsImxpY2Vuc2UiOiJNR0EiLCJtYXJrZXQiOiJOTyIsInBsYXRmb3JtVHlwZSI6Im1vYmlsZSIsInBsYXllcklkIjoiIiwicmVhbEtleSI6IjNkNGViMTZiLTNkMDMtNDJiZC04YzJhLTQwZDQyNWE4ZmY5MSIsInVuaXF1ZUlkIjoiM2Q0ZWIxNmItM2QwMy00MmJkLThjMmEtNDBkNDI1YThmZjkxIn19?withReasons=true
151.101.2.217200 OK 23 B URL HTTP/2 app.launchdarkly.com/sdk/evalx/5b9627a39619fd15611a390c/users/eyJrZXkiOiIzZDRlYjE2Yi0zZDAzLTQyYmQtOGMyYS00MGQ0MjVhOGZmOTEiLCJjb3VudHJ5IjoiTk8iLCJhbm9ueW1vdXMiOnRydWUsImN1c3RvbSI6eyJjbGllbnRJZCI6ImFub255bW91cyIsImNvbnRleHRDb3VudHJ5IjoiTk8iLCJjb250ZXh0TGljZW5zZSI6Ik1HQSIsImN1cnJlbmN5IjoiTk9LIiwibGFuZ3VhZ2UiOiJFTiIsImxpY2Vuc2UiOiJNR0EiLCJtYXJrZXQiOiJOTyIsInBsYXRmb3JtVHlwZSI6Im1vYmlsZSIsInBsYXllcklkIjoiIiwicmVhbEtleSI6IjNkNGViMTZiLTNkMDMtNDJiZC04YzJhLTQwZDQyNWE4ZmY5MSIsInVuaXF1ZUlkIjoiM2Q0ZWIxNmItM2QwMy00MmJkLThjMmEtNDBkNDI1YThmZjkxIn19?withReasons=true
IP 151.101.2.217:0
Hash f0d79988b7772c003d04a28bd7417a62
58423a999eec2997bcfffb247e9ecd3dfd0abf44
30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f
OPTIONS /sdk/evalx/5b9627a39619fd15611a390c/users/eyJrZXkiOiIzZDRlYjE2Yi0zZDAzLTQyYmQtOGMyYS00MGQ0MjVhOGZmOTEiLCJjb3VudHJ5IjoiTk8iLCJhbm9ueW1vdXMiOnRydWUsImN1c3RvbSI6eyJjbGllbnRJZCI6ImFub255bW91cyIsImNvbnRleHRDb3VudHJ5IjoiTk8iLCJjb250ZXh0TGljZW5zZSI6Ik1HQSIsImN1cnJlbmN5IjoiTk9LIiwibGFuZ3VhZ2UiOiJFTiIsImxpY2Vuc2UiOiJNR0EiLCJtYXJrZXQiOiJOTyIsInBsYXRmb3JtVHlwZSI6Im1vYmlsZSIsInBsYXllcklkIjoiIiwicmVhbEtleSI6IjNkNGViMTZiLTNkMDMtNDJiZC04YzJhLTQwZDQyNWE4ZmY5MSIsInVuaXF1ZUlkIjoiM2Q0ZWIxNmItM2QwMy00MmJkLThjMmEtNDBkNDI1YThmZjkxIn19?withReasons=true HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-launchdarkly-user-agent
Referer: https://www.leovegas.com/
Origin: https://www.leovegas.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Authorization,X-Requested-With,X-LD-Private,X-LD-AccountId,X-LD-EnvId,X-LD-PrjId,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper,LD-API-Version,X-LaunchDarkly-Tags
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-max-age: 3600
allow: GET, OPTIONS, HEAD
content-encoding: gzip
ld-region: us-east-1
strict-transport-security: max-age=31536000
accept-ranges: bytes
date: Sat, 04 Feb 2023 17:09:12 GMT
via: 1.1 varnish
x-served-by: cache-bma1631-BMA
x-cache: HIT
x-cache-hits: 449
x-timer: S1675530553.818964,VS0,VE0
vary: Accept-Encoding
age: 0
content-length: 23
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 808c3ff8f22eef31b3794b4f58cb1ef2
a3d20b2fea0d1b319aea5f2b0937388ebb412ad4
3728c70904a6e7bc1eac9d2cc0ea48060b70c41c88c57792e3b616cf9ad1b4af
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 17:09:12 GMT
Last-Modified: Sat, 04 Feb 2023 15:57:46 GMT
Server: ECS (bsa/EB15)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TsLIl1rwmch-Lb5FSrEfDrzFAXGtDkeATXDol1jZ427KvUY3HU35ig==
Age: 4286
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash ee9d18ca31e8a51de59bfa2807aecb36
8bed5cd68796085bf5c453fd75a55ac095ff7259
af61892a5c72afb60358fed0347c4ad06d8af17927191241b07403dc073800f6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1824
Cache-Control: max-age=100666
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:12 GMT
Etag: "63dd7052-2d7"
Expires: Sun, 05 Feb 2023 21:06:58 GMT
Last-Modified: Fri, 03 Feb 2023 20:36:34 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 727
app.launchdarkly.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?withReasons=true
151.101.2.217200 OK 3.6 kB URL HTTP/2 app.launchdarkly.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?withReasons=true
IP 151.101.2.217:0
File type JSON data\012- , ASCII text, with very long lines (23657), with no line terminators
Hash 68e0b1fb2dac24a5e13ba1851fa94b47
f057059a9d69b4bda9136f9a098bec539dc2c667
788df834fe3780f24f4afb44a0b126d8dfceeb319a0873d888b366fba76d29bd
GET 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?withReasons=true HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-LaunchDarkly-User-Agent: JSClient/2.24.2
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
cache-control: max-age=0
etag: "5351dbb"
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-methods: OPTIONS, GET
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization, X-Requested-With, X-LD-Private, X-LD-AccountId, X-LD-EnvId, X-LD-PrjId, X-LaunchDarkly-Event-Schema, X-LaunchDarkly-User-Agent, X-LaunchDarkly-Wrapper, Ld-Api-Version
content-encoding: gzip
accept-ranges: bytes
date: Sat, 04 Feb 2023 17:09:12 GMT
via: 1.1 varnish
x-served-by: cache-bma1670-BMA, cache-bma1631-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675530553.848463,VS0,VE57
vary: Authorization, Accept-Encoding
age: 0
content-length: 3617
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 71 kB URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
File type gzip compressed data, from Unix\012- data
Hash 1b3b2754bd873d6e1b5460de0da9599a
f48852112250f5c8aa910f1b6918ec4adf6dc052
f3ffaf1ca374aa7bff3e0b134d4e9dc305776649a41f7560eb465d1dfd972b12
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 17:09:12 GMT
Last-Modified: Sat, 04 Feb 2023 16:16:48 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jdnSaXIFjHD-KJMGUGMNeYaOWDK6xFMd8NQuMuIakZ9Ai_IFHWG-0Q==
Age: 3144
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 76 kB URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
File type gzip compressed data, from Unix\012- data
Hash 274a50794d3193137a034f7240f3ac83
d057ea91c2595d5d3ba2b5c25240b4cc47c2e0bb
24f6ead7da3672d0b66b41cf2a57c6c5bec2d2b0c3779c3b6db9aea5fa499c98
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=128667
Date: Sat, 04 Feb 2023 17:09:12 GMT
Etag: "63ddd875-1d7"
Expires: Mon, 06 Feb 2023 04:53:39 GMT
Last-Modified: Sat, 04 Feb 2023 04:00:53 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: n4cNHctSEA1CnBtmsSI8s16YdfIK00hPD7E4N8i2akDTWPemUPWplA==
Age: 3166
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 808c3ff8f22eef31b3794b4f58cb1ef2
a3d20b2fea0d1b319aea5f2b0937388ebb412ad4
3728c70904a6e7bc1eac9d2cc0ea48060b70c41c88c57792e3b616cf9ad1b4af
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 17:09:12 GMT
Last-Modified: Sat, 04 Feb 2023 15:26:00 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: kpCekBkevgS5cL70MtLsGS_37wffIzJdJx1V1XFu8xS8KANpopTIRg==
Age: 6192
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15359
Expires: Sat, 04 Feb 2023 21:25:12 GMT
Date: Sat, 04 Feb 2023 17:09:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15359
Expires: Sat, 04 Feb 2023 21:25:12 GMT
Date: Sat, 04 Feb 2023 17:09:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15359
Expires: Sat, 04 Feb 2023 21:25:12 GMT
Date: Sat, 04 Feb 2023 17:09:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10640252-429d-4110-bf18-1908ac233402.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10253
x-amzn-requestid: a90cb6b3-8a72-4b4b-b4f5-6dafc8c6752a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7GGv5IAMFu8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-3ca59e7c52800a4e44bda8fd;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G8F3Fflod6HB4QFtjpD09xzi-2LKPw_DBJT0PKYKU3bs3pvOwO_LRw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:32 GMT
age: 68321
etag: "d2de32b52e0d3f4fc6acaf687b3521294b01dc03"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: f95a2821-ae89-4ea9-93b2-43e570285df3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEC3FyboAMFe0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8078-7e2177f11d5715d4092cad2c;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dcFgY5x3Ef0J__7wGn3llTjZ9as5nX1H4HErIT3VlKfeQaQTjymW2g==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:33 GMT
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
age: 68320
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
sgtm.leovegas.com/gtm.js?id=GTM-PNLF5QG
34.107.236.224200 OK 53 kB URL HTTP/2 sgtm.leovegas.com/gtm.js?id=GTM-PNLF5QG
IP 34.107.236.224:0
File type ASCII text, with very long lines (12717)
Hash 74ba63de98124d32873c06cf55b4aaaa
c555b951df8c2af4dd11267624a1ce420fae92d2
4fc1a7643ac822d1a7632653d6733c0498d229281669b1061d9a2572035d4bd0
GET /gtm.js?id=GTM-PNLF5QG HTTP/1.1
Host: sgtm.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Cookie: visid_incap_846569=7IzJdxydTKmcIot5CiW+8TaR3mMAAAAAQUIPAAAAAAAzRUDKC62y24zAR/1Mv2Lb; nlbi_846569=j9OBc5pYqzPM0FssTJV9qQAAAACiGSrn7APJyeUtf5aLjh0b; incap_ses_631_846569=ygsXGCIFmC7hrH9VDMTBCDaR3mMAAAAA1YDjNuGKm+BOZ1HfYx0A2A==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx/1.23.2
date: Sat, 04 Feb 2023 17:09:12 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
cache-control: private, max-age=900
expires: Sat, 04 Feb 2023 17:24:08 GMT
last-modified: Sat, 04 Feb 2023 15:00:00 GMT
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 68332
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7101f6e43855cb76ce48271a847ffbd
8e674830a97d8ce3818132fda197db4f0289d316
e78a83a4024e238bcdec3b9c4d5c12a99f49aabd57e34952f6a4cc8ed4422f55
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9141
x-amzn-requestid: ed7db574-6bca-4f3e-8879-c3e836549339
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD8zE5lIAMF1HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8051-4480112f11d4ced0037d1ad8;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6kDIOqhM4aVL80sF02uFu2TuGbiBE7_L_S2W7x-P46hO5YZFmuL9nQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:13:30 GMT
age: 68143
etag: "8e674830a97d8ce3818132fda197db4f0289d316"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd74fd89c-32f8-4ed4-ab23-e95f810fbc57.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd74fd89c-32f8-4ed4-ab23-e95f810fbc57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b5c35cdff2fb0758db780212b0b1f77
edbb557a3bf57128467335685aebbd4831d802f8
e0fa59843073ba8bd171c66610bc1b3d59a1a94c4991e6023507b9453ca0edba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd74fd89c-32f8-4ed4-ab23-e95f810fbc57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9349
x-amzn-requestid: ecd1913d-7dbe-4ffd-ba85-0549aab51a06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyayOGPlIAMFQ7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dda4da-6a9b8d146155fa8b6c1c02d6;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 00:20:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jGBEz2d-SXXPBZhwlJgR4w248y-NY2c-18euLre5PULjWUIfhfUmNQ==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 00:20:43 GMT
etag: "edbb557a3bf57128467335685aebbd4831d802f8"
content-type: image/jpeg
age: 60510
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:48:04 GMT
age: 69669
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
usage.trackjs.com/usage.gif?token=c7755ba8906e4776818012e627c020ba&correlationId=9a497169-c3dd-416b-8cf2-0c131aa4937a&application=fulcrum-mobile&x=a5661533-812f-41d6-b19a-15457294fd7f&
158.69.52.117200 OK 43 B URL HTTP/1.1 usage.trackjs.com/usage.gif?token=c7755ba8906e4776818012e627c020ba&correlationId=9a497169-c3dd-416b-8cf2-0c131aa4937a&application=fulcrum-mobile&x=a5661533-812f-41d6-b19a-15457294fd7f&
IP 158.69.52.117:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /usage.gif?token=c7755ba8906e4776818012e627c020ba&correlationId=9a497169-c3dd-416b-8cf2-0c131aa4937a&application=fulcrum-mobile&x=a5661533-812f-41d6-b19a-15457294fd7f& HTTP/1.1
Host: usage.trackjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 17:09:13 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: keep-alive
events.launchdarkly.com/events/diagnostic/5b9627a39619fd15611a390c
18.213.222.105202 Accepted 0 B URL HTTP/2 events.launchdarkly.com/events/diagnostic/5b9627a39619fd15611a390c
IP 18.213.222.105:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /events/diagnostic/5b9627a39619fd15611a390c HTTP/1.1
Host: events.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-LaunchDarkly-User-Agent: JSClient/2.24.2
Content-Length: 733
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Sat, 04 Feb 2023 17:09:13 GMT
content-type: application/json
content-length: 0
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Payload-ID,X-LaunchDarkly-Wrapper,X-LaunchDarkly-Tags
access-control-allow-methods: POST,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Date
access-control-max-age: 300
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 21 kB IP 216.58.211.3:0
File type gzip compressed data, from Unix\012- data
Hash d8cbdeea8b632e57b8d4d86912c0e7f7
dbadc72a65b07141f4e79956411111e0bc8d8f22
844b3898a663277e934cc0a8d74ff41f7332a5f813a59be01f421fc05ed062d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-25600410-6&cid=1688288637.1675530589&jid=1250715329&_gid=263069554.1675530589&gjid=1790360294&_v=j99&z=350194954
64.233.165.156302 Found 366 B URL HTTP/2 stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-25600410-6&cid=1688288637.1675530589&jid=1250715329&_gid=263069554.1675530589&gjid=1790360294&_v=j99&z=350194954
IP 64.233.165.156:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash a0857fcbfd929e493ddd4d358bb957df
6076f67bf990f40ce60b819e6667b55cf71949f9
2e388a3b469b0f8dab14a3f2c0344dc4d1f769fd611173cd52aaabfffa5edca9
GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-25600410-6&cid=1688288637.1675530589&jid=1250715329&_gid=263069554.1675530589&gjid=1790360294&_v=j99&z=350194954 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=1688288637.1675530589&jid=1250715329&_v=j99&z=350194954
access-control-allow-origin: null
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 04 Feb 2023 17:09:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 366
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e379fae7c3d88412e8a2375cc4f0ee5e
0f31e9b9d09c589430f5ba988a41e69be78011f5
cb983be0dbcbea192940025d32fe95dda78f74427fec724f0e2c600a47146be0
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "CB983BE0DBCBEA192940025D32FE95DDA78F74427FEC724F0E2C600A47146BE0"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4485
Expires: Sat, 04 Feb 2023 18:23:58 GMT
Date: Sat, 04 Feb 2023 17:09:13 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e379fae7c3d88412e8a2375cc4f0ee5e
0f31e9b9d09c589430f5ba988a41e69be78011f5
cb983be0dbcbea192940025d32fe95dda78f74427fec724f0e2c600a47146be0
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "CB983BE0DBCBEA192940025D32FE95DDA78F74427FEC724F0E2C600A47146BE0"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4485
Expires: Sat, 04 Feb 2023 18:23:58 GMT
Date: Sat, 04 Feb 2023 17:09:13 GMT
Connection: keep-alive
www.leovegas.com/static/fulcrum/offline.html?e=p
107.154.248.168200 OK 12 kB URL HTTP/2 www.leovegas.com/static/fulcrum/offline.html?e=p
IP 107.154.248.168:0
Hash 78f0c58f1246f4ee047322f5cd0784aa
07af510efec45179cae85a6ad3e5e939a3616015
0b3683bbe0747d2d1b4db464b75cbc48e6f321a3dda4a84b33e848de269690e9
GET /static/fulcrum/offline.html?e=p HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/mobile.sw.js?e=p
Connection: keep-alive
Cookie: leo-essentials=%7B%22cid%22%3A%223d4eb16b-3d03-42bd-8c2a-40d425a8ff91%22%7D; visid_incap_846569=7IzJdxydTKmcIot5CiW+8TaR3mMAAAAAQUIPAAAAAAAzRUDKC62y24zAR/1Mv2Lb; nlbi_846569=j9OBc5pYqzPM0FssTJV9qQAAAACiGSrn7APJyeUtf5aLjh0b; incap_ses_631_846569=ygsXGCIFmC7hrH9VDMTBCDaR3mMAAAAA1YDjNuGKm+BOZ1HfYx0A2A==; _ga=GA1.2.1688288637.1675530589; _gid=GA1.2.263069554.1675530589; _gat_leo=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 17:09:12 GMT
content-type: text/html
content-encoding: gzip
cache-control: public, max-age=3600
last-modified: Thu, 02 Feb 2023 14:53:33 GMT
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-cdn: Imperva
x-iinfo: 5-55402630-55401394 PNNy RT(1675530550065 2033) q(0 0 0 -1) r(1 1) U12
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/1vmhpXYvMQg
216.58.211.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/1vmhpXYvMQg
IP 216.58.211.3:0
Hash 80f9925e64b74559678bc9c2e450e6d8
b7194a8842e69c0ed33864acf82c278d5fe13e4f
f96f2c74df2db2d44dca9fbfdebd1c0147f5caea5f435471c19914fe0a5630eb
POST /s/gts1d4/1vmhpXYvMQg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:13 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tgtag.io/tg.js?pid=tg-g-002415-002
34.120.230.83200 OK 32 kB URL HTTP/2 tgtag.io/tg.js?pid=tg-g-002415-002
IP 34.120.230.83:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 508072c63a35c84745dd1ef33706f34f
5db9b0f2db74f01c0a450f7c0a5d0901cc61d749
f10eba601f45922924f18cd57fdf391d29bacdf5098e3d0433b0d8b58c5d3358
GET /tg.js?pid=tg-g-002415-002 HTTP/1.1
Host: tgtag.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtwNiIoTrkh1r_H6h2TFii6HD7NZ6BGTVo_9pb7v61OOEBuqLrenSmi_hOUtLurUhiZj6eqFUVkyuavMUvu0HKBPhiXgYSz
vary: X-Goog-Allowed-Resources
x-goog-generation: 1675327980026762
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 31667
content-encoding: gzip
x-goog-hash: crc32c=oV25fg==, md5=UIByxjo1yEdF3R7zNwbzTw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 31667
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Access-Control-Allow-Origin
server: UploadServer
date: Sat, 04 Feb 2023 08:57:12 GMT
expires: Sun, 05 Feb 2023 08:57:12 GMT
cache-control: public, no-transform, max-age=86400, s-maxage=86400
age: 29521
last-modified: Thu, 02 Feb 2023 08:53:00 GMT
etag: "508072c63a35c84745dd1ef33706f34f"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 185b62fe607d5d833cc1717b68f3f7b7
ab6b571fdfcd1d1cdb923c48f53df4ecd74d85c2
656d98d306ebfcdea0dff590c34a6ce1496faa95ba05fb86f72a5e57e295f61b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash d2e174531b474d26a32c11aaa9965c69
6356e52468c57397bd01afe8c7cb861b4fe931ee
5eefef5a21ca2e611d0904b3adcff0005053a0d1f23a024808b436141cadd6b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/1vmhpXYvMQg
216.58.211.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/1vmhpXYvMQg
IP 216.58.211.3:0
Hash 80f9925e64b74559678bc9c2e450e6d8
b7194a8842e69c0ed33864acf82c278d5fe13e4f
f96f2c74df2db2d44dca9fbfdebd1c0147f5caea5f435471c19914fe0a5630eb
POST /s/gts1d4/1vmhpXYvMQg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:13 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
9915903.fls.doubleclick.net/activityi;src=9915903;type=pagev0;cat=pagev0;ord=1675530589919.z1qtgmd;gtm=45Fe3210;auiddc=1773323002.1675530590;u4=signup;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1?
142.250.74.134200 OK 250 B URL HTTP/2 9915903.fls.doubleclick.net/activityi;src=9915903;type=pagev0;cat=pagev0;ord=1675530589919.z1qtgmd;gtm=45Fe3210;auiddc=1773323002.1675530590;u4=signup;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1?
IP 142.250.74.134:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (492), with no line terminators
Hash 1aa40864323580c11a8d13e9e8bcdf48
80d873484c5d1c0ea332e146b1541a8d48ce41b2
6cf9bcebf54af35f59f5a72b1dea81e7e3acde82e19330cfed89f3b0df73e143
GET /activityi;src=9915903;type=pagev0;cat=pagev0;ord=1675530589919.z1qtgmd;gtm=45Fe3210;auiddc=1773323002.1675530590;u4=signup;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1? HTTP/1.1
Host: 9915903.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 17:09:13 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 250
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 04-Feb-2023 17:24:13 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
9915903.fls.doubleclick.net/activityi;src=9915903;type=pagev0;cat=pagev0;ord=1675530589892.aii1jqza;gtm=45Fe3210;auiddc=1773323002.1675530590;u4=signup;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1?
142.250.74.134200 OK 255 B URL HTTP/2 9915903.fls.doubleclick.net/activityi;src=9915903;type=pagev0;cat=pagev0;ord=1675530589892.aii1jqza;gtm=45Fe3210;auiddc=1773323002.1675530590;u4=signup;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1?
IP 142.250.74.134:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (493), with no line terminators
Hash 7bcdde69102ec25771a9ad642aa446db
99c1bee3430aa9bfc1a8572af9b4f043377ca713
545e7f05a4d9eed62f2bac3b79cf62453ed982fe3f051bd8c7ea6506ba2d44bc
GET /activityi;src=9915903;type=pagev0;cat=pagev0;ord=1675530589892.aii1jqza;gtm=45Fe3210;auiddc=1773323002.1675530590;u4=signup;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1? HTTP/1.1
Host: 9915903.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 17:09:13 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 255
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 04-Feb-2023 17:24:13 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash d2e174531b474d26a32c11aaa9965c69
6356e52468c57397bd01afe8c7cb861b4fe931ee
5eefef5a21ca2e611d0904b3adcff0005053a0d1f23a024808b436141cadd6b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e379fae7c3d88412e8a2375cc4f0ee5e
0f31e9b9d09c589430f5ba988a41e69be78011f5
cb983be0dbcbea192940025d32fe95dda78f74427fec724f0e2c600a47146be0
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "CB983BE0DBCBEA192940025D32FE95DDA78F74427FEC724F0E2C600A47146BE0"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4485
Expires: Sat, 04 Feb 2023 18:23:58 GMT
Date: Sat, 04 Feb 2023 17:09:13 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 621b586028d5acaf29b8777ca0872ce1
9d2a358576d0acab58e2eacf7765b686cee9181f
a7c99a5217e394c715679780ae1e3e60202653547212b0a4fd2efab0e1a01015
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=1688288637.1675530589&jid=1250715329&_v=j99&z=350194954
216.58.207.228302 Found 0 B URL HTTP/2 www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=1688288637.1675530589&jid=1250715329&_v=j99&z=350194954
IP 216.58.207.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=1688288637.1675530589&jid=1250715329&_v=j99&z=350194954 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 17:09:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=1688288637.1675530589&jid=1250715329&_v=j99&z=350194954&slf_rd=1&random=3793393534
access-control-allow-origin: null
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8176ac8bbb8fa05f36bdfa163da09e0c
b936c84c5fa7e781b12a17952c82bca546ca0575
1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8176ac8bbb8fa05f36bdfa163da09e0c
b936c84c5fa7e781b12a17952c82bca546ca0575
1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8176ac8bbb8fa05f36bdfa163da09e0c
b936c84c5fa7e781b12a17952c82bca546ca0575
1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
scripts.prdredir.com/scripts/k_leovegas.js
104.21.4.89200 OK 1.1 kB URL HTTP/2 scripts.prdredir.com/scripts/k_leovegas.js
IP 104.21.4.89:0
File type ASCII text, with very long lines (1749)
Hash 127c6ab3108ff6566272b8ecc9065f61
ee28e230535a96fc5e90ab844624d38ab3723a43
67e00dfb0912d4cde425d59a74510e50341d69ac53ce14f5563f782e850cf18e
GET /scripts/k_leovegas.js HTTP/1.1
Host: scripts.prdredir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 17:09:13 GMT
content-type: text/javascript; charset=utf-8
status: 200 OK
cache-control: no-cache
access-control-allow-origin: *
x-request-id: 7366e4b7-3d36-47c4-981c-7a4b6bda242b
etag: W/"dc15e72bb78bf3e1f68429fb2ffb04e1"
x-runtime: 0.009891
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eR1FEXBUsMae4aXbuOV9id1kIE9cBfya3%2BvB%2FZgrwaIvlHk5zLBcJkbw8%2FVT4OSfcVGYZdXa3RYHfJipx7gfN1ALmdjW8C1ZhuiIJGiRQfyCjjcH23eMO%2FDedknC1hNZuZaTd6MoOw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 794503478b2ab4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675530589892.aii1jqza;gtm=45Fe3210;auiddc=1773323002.1675530590;u4=signup;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1
142.250.74.2200 OK 254 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675530589892.aii1jqza;gtm=45Fe3210;auiddc=1773323002.1675530590;u4=signup;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1
IP 142.250.74.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (492), with no line terminators
Hash 3f8f31dbf015210bef16ae9e83a0b025
bed6bbdb7fe1c9b0a5ac66bca859a48eb14d80da
de00fcb81a04e780b043619fda3aa6b744192bd2a82e05e1e44df80b505a4cc9
GET /ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675530589892.aii1jqza;gtm=45Fe3210;auiddc=1773323002.1675530590;u4=signup;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1 HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9915903.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 17:09:13 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 254
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash de88149c85daf1f2f8f183d16f581394
4b88639d92a9defef7e575ff50f00348d7a4fc91
5bcde8fa6ee36e3a745249b5a5d1c583b0b17e1bd37a3d5b83ce9255b818680d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
scripts.prdredir.com/scripts/k_leovegas.js
104.21.4.89304 Not Modified 0 B URL HTTP/2 scripts.prdredir.com/scripts/k_leovegas.js
IP 104.21.4.89:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /scripts/k_leovegas.js HTTP/1.1
Host: scripts.prdredir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: W/"dc15e72bb78bf3e1f68429fb2ffb04e1"
TE: trailers
HTTP/2 304 Not Modified
date: Sat, 04 Feb 2023 17:09:13 GMT
status: 304 Not Modified
cache-control: no-cache
access-control-allow-origin: *
x-request-id: 9a4adffa-b369-432d-adc2-603451a50266
etag: W/"dc15e72bb78bf3e1f68429fb2ffb04e1"
x-runtime: 0.012853
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fltbSKy6BsdrldV%2B%2FDcy6yeei0v2vN77CC9wW%2B3L5OvfeMIo4B9WEDA9hdBMMNoxIn5IERR4%2FXAOR62OB538eWv8%2FLmtVgXVNFDusE8zHaiWv8bE%2BD%2FO1jlabLfDjH%2BKeRQd5Epi6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 794503485c42b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=1688288637.1675530589&jid=1250715329&_v=j99&z=350194954&slf_rd=1&random=3793393534
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=1688288637.1675530589&jid=1250715329&_v=j99&z=350194954&slf_rd=1&random=3793393534
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=1688288637.1675530589&jid=1250715329&_v=j99&z=350194954&slf_rd=1&random=3793393534 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 17:09:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
access-control-allow-origin: null
access-control-allow-credentials: true
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 561 B IP 216.58.211.3:0
File type gzip compressed data, from Unix\012- data
Hash 476671ccd3056cb934e83b5ec43a9a03
acec0fd235546946458f92317916971125ead17d
4833277b81d5e67ddeb9d6cb3b08faf7e0ec0c700929e510ac35faca5b657355
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675530589919.z1qtgmd;gtm=45Fe3210;auiddc=1773323002.1675530590;u4=signup;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1
216.58.211.2200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675530589919.z1qtgmd;gtm=45Fe3210;auiddc=1773323002.1675530590;u4=signup;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1
IP 216.58.211.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675530589919.z1qtgmd;gtm=45Fe3210;auiddc=1773323002.1675530590;u4=signup;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 17:09:13 GMT
expires: Sat, 04 Feb 2023 17:09:13 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/M7vREfWOEdc
216.58.211.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/M7vREfWOEdc
IP 216.58.211.3:0
Hash ef9e1d0cb112a16640b86c2df26c0fc9
b007e1437346b3312ef0b5138db89bc7f58aa558
6e45b8c3f3aac31b75dd683f996fa4c35fdf59e3b845318dc1afa53289b33e97
POST /s/gts1d4/M7vREfWOEdc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:13 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
7360e731-5ae3-4681-b62f-b0297167b407.seondnsresolve.com/
143.204.55.88200 OK 633 B URL HTTP/2 7360e731-5ae3-4681-b62f-b0297167b407.seondnsresolve.com/
IP 143.204.55.88:0
File type JSON data\012- , ASCII text, with very long lines (633), with no line terminators
Hash 6df69753d4a429873bc16fda45bd7007
ef1ec04dc07d929ff954a136f3781996e3ae4c83
15500635ef003cd18be4ddb2049f424aa440b41610f6b9712f1a2b926c92b850
POST / HTTP/1.1
Host: 7360e731-5ae3-4681-b62f-b0297167b407.seondnsresolve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 6137
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 633
date: Sat, 04 Feb 2023 17:09:13 GMT
x-amzn-requestid: 2a5224bd-8ca1-4edb-8964-a85332ea2acd
access-control-allow-origin: *
x-amz-apigw-id: f0uhEFeZjoEF6Lg=
x-amzn-trace-id: Root=1-63de9139-02dc15d735ee456075d86009;Sampled=0
access-control-allow-credentials: true
x-cache: Miss from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jIxxneGafCbxZo4PtVKk1YdpiG3Cwp7QZyCZ_svpv0DEv9TO1z3glA==
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675530589892.aii1jqza;gtm=45Fe3210;auiddc=1773323002.1675530590;u4=signup;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1
216.58.211.2200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675530589892.aii1jqza;gtm=45Fe3210;auiddc=1773323002.1675530590;u4=signup;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1
IP 216.58.211.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675530589892.aii1jqza;gtm=45Fe3210;auiddc=1773323002.1675530590;u4=signup;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 17:09:13 GMT
expires: Sat, 04 Feb 2023 17:09:13 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api.trafficguard.ai/tg-g-002415-002/api/v4/client-side/validate/event
34.120.121.20200 OK 61 B URL HTTP/2 api.trafficguard.ai/tg-g-002415-002/api/v4/client-side/validate/event
IP 34.120.121.20:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1ee7cd02b35c7097455eca23d537d40b
f95ae0ab0201aaef86698c9ac66d680fd4e046a0
18cccf9f3ae615df065ef20111e050bb202254d4cf780c150927f51d00d6bffc
POST /tg-g-002415-002/api/v4/client-side/validate/event HTTP/1.1
Host: api.trafficguard.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
Content-Length: 2049
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expect-ct: max-age=0, report-uri="https://trafficguard.report-uri.com/r/d/ct/reportOnly"
x-xss-protection: 0
x-content-type-options: nosniff
access-control-allow-origin: https://www.leovegas.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-Requested-With, Access-Control-Allow-Origin, Access-Control-Allow-Credentials
set-cookie: geid=0201003d-7a4f-43c6-9600-0f2263de9139; Domain=.trafficguard.ai; Path=/; Expires=Sun, 04 Feb 2024 17:09:13 GMT; HttpOnly; Secure; SameSite=None
geid-legacy=0201003d-7a4f-43c6-9600-0f2263de9139; Domain=.trafficguard.ai; Path=/; Expires=Sun, 04 Feb 2024 17:09:13 GMT; HttpOnly
content-type: application/json; charset=utf-8
content-length: 61
etag: W/"3d-+VrgqwIBqu+GaYyaxm1oD9TgRqA"
date: Sat, 04 Feb 2023 17:09:13 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/M7vREfWOEdc
216.58.211.3200 OK 514 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/M7vREfWOEdc
IP 216.58.211.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash a123889514fdd4dd9ff861d230c72a12
add44e42aece40c531af3c7be30d5ef71a6a1e24
dcdd9b45683925a759d5e1ab0bd09b4ce5d8416d7d945dd61b495ee75a51e9e2
POST /s/gts1d4/M7vREfWOEdc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
websdk.appsflyer.com/?st=pba&
23.36.76.88200 OK 9.6 kB URL HTTP/1.1 websdk.appsflyer.com/?st=pba&
IP 23.36.76.88:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21856)
Hash 1214b03c1da1942cfdd2183b216ba3c8
1a46d03ac7bd9bae1b849b610918d1fbe18efe76
ba7e3eba24eaccfae9be9adda9397b5a1692da83bddc9b1e08e2d9700ac271f0
GET /?st=pba& HTTP/1.1
Host: websdk.appsflyer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: NXyIgSXUOYVTcHzvnciOA3LGeHgClSYizLGladUsmZax/+QIoISs1Uq8ej9hl3zeB6FJ2LAwkNk=
x-amz-request-id: 47ABXCQ43YKJV6E5
Last-Modified: Thu, 26 Jan 2023 08:01:30 GMT
ETag: "3f70a47c03cc36fb3ee43dea835e4d0d"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1957
Expires: Sat, 04 Feb 2023 17:41:51 GMT
Date: Sat, 04 Feb 2023 17:09:14 GMT
Content-Length: 9578
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 994e21b70c95eb7dd513bcc9fb3cb36e
30265438e8ccb5c0b74c2b9c673e18fdcd210a33
660ebe5cefd5ac620b17399879db991ffecefe28d5b209cda648eec005e0ec83
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b2225cc2d185fde75131092ad660d637
cd30900570650f2f02b61ec691a71885f72e1974
870dd465ebcd3c268152c2f77ac12fddf0c22e4b388ff0ca1df9cf5e20724546
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1388
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:14 GMT
Last-Modified: Sat, 04 Feb 2023 16:46:06 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ac85d3e0a8ec2827b2e3f0eca3336919
4b630e134dcb05e77c44e313f22f2214b51841a2
d1747dfa46c4ca2dcc3239bd1376ae7401b4b3e7b8d260dc4162b9b8208cd6f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3719
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:14 GMT
Last-Modified: Sat, 04 Feb 2023 16:07:15 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b2225cc2d185fde75131092ad660d637
cd30900570650f2f02b61ec691a71885f72e1974
870dd465ebcd3c268152c2f77ac12fddf0c22e4b388ff0ca1df9cf5e20724546
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1388
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:14 GMT
Last-Modified: Sat, 04 Feb 2023 16:46:06 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b2225cc2d185fde75131092ad660d637
cd30900570650f2f02b61ec691a71885f72e1974
870dd465ebcd3c268152c2f77ac12fddf0c22e4b388ff0ca1df9cf5e20724546
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4910
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:14 GMT
Last-Modified: Sat, 04 Feb 2023 15:47:24 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
apis.google.com/js/platform.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1429)
Hash 2354fa28c58e16af89e7da6224aeca93
6bd3430a81730ed77c5d53f5406ddb40306ecabd
dc35ae752b7be035bd3a3bd4ae205e41afce5fa8f88e1bfe0e9524610df10f3b
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20950
date: Sat, 04 Feb 2023 17:09:14 GMT
expires: Sat, 04 Feb 2023 17:09:14 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "03884666a30c671f"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
track.adform.net/serving/cookie/?adfaction=getjs;adfcookname=uid
37.157.6.233200 OK 180 B URL HTTP/2 track.adform.net/serving/cookie/?adfaction=getjs;adfcookname=uid
IP 37.157.6.233:0
File type ASCII text, with no line terminators
Hash 2255005e68a8880fe8846b0ce53772ad
36ba75259314950e35818b9d871b02b09dab56ce
28df773657a07be0bbc8ab226c401438dacd6a9bc8662f38f0a69252c0089fc5
GET /serving/cookie/?adfaction=getjs;adfcookname=uid HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 17:09:14 GMT
content-type: text/javascript; charset=utf-8
content-length: 180
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 22 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (28921)
Hash 6d964e2596cf7e7d48a459f0aa4ca249
05ce70e11abcca3eb2f308bc835b789ba53b4210
ae5fd325ce55a3fd0f7517fe90542d2e1ace5904166ccdb7268cbd88230617d5
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy-report-only: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: dEdT1X+FigImpU6Gcil26XcyCozUuOpIPC3VbJWbCfgt80H7wWSSzBdruoP29BtCi5ABerYN8A9jLmLKV2QPvg==
content-length: 22473
x-fb-trip-id: 1679558926
date: Sat, 04 Feb 2023 17:09:14 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ac85d3e0a8ec2827b2e3f0eca3336919
4b630e134dcb05e77c44e313f22f2214b51841a2
d1747dfa46c4ca2dcc3239bd1376ae7401b4b3e7b8d260dc4162b9b8208cd6f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3990
Cache-Control: max-age=148183
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:14 GMT
Etag: "63de217b-1d7"
Expires: Mon, 06 Feb 2023 10:18:57 GMT
Last-Modified: Sat, 04 Feb 2023 09:12:27 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
143.204.55.101200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP 143.204.55.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yC2eygwzn43zC0laIU6UdlTKxH_IA2_51kOveSw1--UG6lHtH3crRw==
age: 100748
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 5c4525486e9e4c580e54b0525ba4d10f
05a5b43fae5226960538ff04eae269bd89e8aa95
60a8a3dd0b4249d7dc82d3613c08578ed37bf90564c9b10dfc0d98cb5d43fbdb
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 17:09:14 GMT
Etag: "63dda4ef-1d7"
Last-Modified: Sat, 04 Feb 2023 15:21:09 GMT
Server: ECS (dcb/7ECB)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: J0wBFcPNw1vQHhsXXhHUTBw6gehN-ZkEyNVunfZCKJQDAtkuIgZ25w==
Age: 6485
wa.onelink.me/v1/onelink
52.210.10.85200 OK 13 B IP 52.210.10.85:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 593e8538d63f30de24fbb439dd424870
f838a78077c6d023e0d0bca95f0f335df4b8b468
38bc0f256821a9c0a02a1c0cedf8ff70c211e637ef77ac199de2fe0cf36ba9ec
GET /v1/onelink HTTP/1.1
Host: wa.onelink.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Allow-Origin: https://www.leovegas.com
Content-Type: application/json
Date: Sat, 04 Feb 2023 17:09:14 GMT
Content-Length: 13
Connection: keep-alive
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 7d992c8dea3fe3a1737cd530173b8a4c
03b7be1ab8373e1ca5f3a7864a9ad66c7014f19f
4bea2d33cf90ea141abc02ca25d8411b39e480f6df122a063449f0ee1479e737
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 17:09:14 GMT
Last-Modified: Sat, 04 Feb 2023 15:49:04 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0ojKNJM-mrWUxRSm_WtGzhQMxsjTq2Vm8c0s9GMzJwvB9UlYGO1yXA==
Age: 4810
wa.appsflyer.com/events?site-id=6d3a3941-6835-4f61-8644-5e8746828ef8
52.213.22.211200 OK 76 B URL HTTP/1.1 wa.appsflyer.com/events?site-id=6d3a3941-6835-4f61-8644-5e8746828ef8
IP 52.213.22.211:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a1a75115f20a04e676eaa5f2197e37a0
af5f81888bf6807d0511b364a95f45f6505dad9c
90864ca75c7b320de8a71af9e8ab4b9c330d765cd7b5041c2dc41121ac19a20c
POST /events?site-id=6d3a3941-6835-4f61-8644-5e8746828ef8 HTTP/1.1
Host: wa.appsflyer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 1299
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Allow-Origin: https://www.leovegas.com
Content-Type: application/json
Date: Sat, 04 Feb 2023 17:09:14 GMT
Set-Cookie: af_id=d7b074b1-c9c9-4477-855f-7072d3da965f-p; Domain=appsflyer.com; Expires=Mon, 03 Feb 2025 17:09:14 GMT
Content-Length: 76
Connection: keep-alive
events.launchdarkly.com/events/bulk/5b9627a39619fd15611a390c
18.213.222.105204 No Content 0 B URL HTTP/2 events.launchdarkly.com/events/bulk/5b9627a39619fd15611a390c
IP 18.213.222.105:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /events/bulk/5b9627a39619fd15611a390c HTTP/1.1
Host: events.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-launchdarkly-event-schema,x-launchdarkly-payload-id,x-launchdarkly-user-agent
Referer: https://www.leovegas.com/
Origin: https://www.leovegas.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 17:09:14 GMT
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Payload-ID,X-LaunchDarkly-Wrapper,X-LaunchDarkly-Tags
access-control-allow-methods: POST,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Date
access-control-max-age: 300
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
wa.onelink.me/v1/onelink?af_id=d7b074b1-c9c9-4477-855f-7072d3da965f-p
52.210.10.85200 OK 51 B URL HTTP/1.1 wa.onelink.me/v1/onelink?af_id=d7b074b1-c9c9-4477-855f-7072d3da965f-p
IP 52.210.10.85:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2c737d599ea5c3e48feb890f8b22a411
a26186b472705115d1fa5e10a9d000efe9ff5da2
ce712b64e89a1d752c938f77d1b64d549a923e1781b3cb2ee1c2b7836351b8ff
GET /v1/onelink?af_id=d7b074b1-c9c9-4477-855f-7072d3da965f-p HTTP/1.1
Host: wa.onelink.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Allow-Origin: https://www.leovegas.com
Content-Type: application/json
Date: Sat, 04 Feb 2023 17:09:14 GMT
Set-Cookie: af_id=d7b074b1-c9c9-4477-855f-7072d3da965f-p; Path=/; Domain=onelink.me; Expires=Mon, 03 Feb 2025 17:09:14 GMT
Content-Length: 51
Connection: keep-alive
events.launchdarkly.com/events/bulk/5b9627a39619fd15611a390c
18.213.222.105202 Accepted 0 B URL HTTP/2 events.launchdarkly.com/events/bulk/5b9627a39619fd15611a390c
IP 18.213.222.105:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /events/bulk/5b9627a39619fd15611a390c HTTP/1.1
Host: events.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-LaunchDarkly-User-Agent: JSClient/2.24.2
X-LaunchDarkly-Event-Schema: 3
X-LaunchDarkly-Payload-ID: bc6517c0-a4ae-11ed-8594-df3fc1ece3ba
Content-Length: 7262
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Sat, 04 Feb 2023 17:09:14 GMT
content-type: application/json
content-length: 0
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Payload-ID,X-LaunchDarkly-Wrapper,X-LaunchDarkly-Tags
access-control-allow-methods: POST,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Date
access-control-max-age: 300
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
script.hotjar.com/modules.bca0d1c28285412bb689.js
143.204.55.96200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.bca0d1c28285412bb689.js
IP 143.204.55.96:0
File type Unicode text, UTF-8 text, with very long lines (49086)
Hash e923aa360dc485b9df86355bd040c998
03c46dbd41e9d4bdf8a9e4bfbaba3f7f2e9280ec
9c7575553c5b81f9b905dbb27c8116b175b69e7472aa6597f8cace1c6434d676
GET /modules.bca0d1c28285412bb689.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 67924
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "e923aa360dc485b9df86355bd040c998"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UNnEIWk-LJeKkkSvohtWK3jZdq_a5RERZazerGXQa8IkbU9klaS-SA==
age: 100749
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 7815df9178e9a1b99aacd0e4b012d9e0
24d0c3c04404356ce1fbffabcf82fc196fa0e99c
02661905ba6f91909a98b1038f9b260f9e7e524515246775567d6ed26a0f4a48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 17:09:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
accounts.google.com/o/oauth2/iframe
142.250.74.109200 OK 35 kB URL HTTP/2 accounts.google.com/o/oauth2/iframe
IP 142.250.74.109:0
File type HTML document, ASCII text, with very long lines (1864)
Hash 6d629aaa1178a30f8dad911a636bfa1f
6b04f13404d25858e3b182f615aefca4a1f32665
f228130555bcda13204ea8ba17af363992251ee6ccabc4bb0d92298ca052ba2a
GET /o/oauth2/iframe HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 Feb 2023 17:09:15 GMT
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-embedder-policy: require-corp
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"IdpIFrameHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/IdpIFrameHttp/external"}]}
content-security-policy: script-src 'nonce-vfMEuo8ds9xRoD-FdydRDA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/IdpIFrameHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/IdpIFrameHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/IdpIFrameHttp/cspreport
cross-origin-opener-policy: same-origin; report-to="IdpIFrameHttp"
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
vc.hotjar.io/sessions/380080?s=0.25&r=0.03758927184585692
54.230.111.70204 No Content 0 B URL HTTP/2 vc.hotjar.io/sessions/380080?s=0.25&r=0.03758927184585692
IP 54.230.111.70:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sessions/380080?s=0.25&r=0.03758927184585692 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Sat, 04 Feb 2023 17:09:15 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IFbFQeeHhFmY3XS4_mtGAz8yfhk8rcfHXmj9okEsIhx505ow-lDcqA==
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=24325294117&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.6.233200 OK 701 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=24325294117&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.6.233:0
File type HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash ee3d6dc4ff74dc0af805ba9cdc341812
4cee760b391a9c99555c8b21af8ebb8fb1404701
b3a06976769de16535b78d0f363ccffa8e040e436964609f594465ea933ab692
GET /Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=24325294117&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 17:09:15 GMT
content-type: text/javascript; charset=utf-8
content-length: 701
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=289195198179&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.6.233200 OK 701 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=289195198179&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.6.233:0
File type HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash ee3d6dc4ff74dc0af805ba9cdc341812
4cee760b391a9c99555c8b21af8ebb8fb1404701
b3a06976769de16535b78d0f363ccffa8e040e436964609f594465ea933ab692
GET /Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=289195198179&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 17:09:15 GMT
content-type: text/javascript; charset=utf-8
content-length: 701
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=LeoVegas%7C%2Fsignup&ADFdivider=%7C&ord=817664160802&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.6.233200 OK 713 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=LeoVegas%7C%2Fsignup&ADFdivider=%7C&ord=817664160802&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.6.233:0
File type HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 3391f7144a51aa5438a0e0ce95fbfc94
790d3589e1e383cd10f4cfe86793255260a1b8f0
6ff0636138333f30c66211b37a09322d4e953e12d1e08c6d3c78152140945737
GET /Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=LeoVegas%7C%2Fsignup&ADFdivider=%7C&ord=817664160802&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 17:09:15 GMT
content-type: text/javascript; charset=utf-8
content-length: 713
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=LeoVegas%7C%2Fsignup&ADFdivider=%7C&ord=817664160802&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.6.233302 Found 1.1 kB URL HTTP/2 track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=LeoVegas%7C%2Fsignup&ADFdivider=%7C&ord=817664160802&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.6.233:0
Hash 23dbb6ffa7109a16a2ee34af9f6454ff
31c6f19e70f0d07fb371fe7285e368aebcca27d7
d9d0192bfd3dea44df8cf6ee1efe2880e5ca5f96fb8f75c04bb6b7b63f5b0d47
GET /Serving/TrackPoint/?pm=497538&ADFPageName=LeoVegas%7C%2Fsignup&ADFdivider=%7C&ord=817664160802&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 17:09:15 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=LeoVegas%7C%2Fsignup&ADFdivider=%7C&ord=817664160802&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Sat, 04-Mar-2023 17:09:15 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1403116046706561&ev=PageView&dl=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&rl=&if=false&ts=1675530591535&sw=1280&sh=1024&v=2.9.5&r=c2&ec=0&o=30&fbp=fb.1.1675530591535.125346193&it=1675530590675&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1403116046706561&ev=PageView&dl=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&rl=&if=false&ts=1675530591535&sw=1280&sh=1024&v=2.9.5&r=c2&ec=0&o=30&fbp=fb.1.1675530591535.125346193&it=1675530590675&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1403116046706561&ev=PageView&dl=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&rl=&if=false&ts=1675530591535&sw=1280&sh=1024&v=2.9.5&r=c2&ec=0&o=30&fbp=fb.1.1675530591535.125346193&it=1675530590675&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 17:09:15 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1403116046706561&ev=PageView&dl=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&rl=&if=false&ts=1675530591538&sw=1280&sh=1024&v=2.9.5&r=c2&ec=1&o=30&fbp=fb.1.1675530591535.125346193&it=1675530590675&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1403116046706561&ev=PageView&dl=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&rl=&if=false&ts=1675530591538&sw=1280&sh=1024&v=2.9.5&r=c2&ec=1&o=30&fbp=fb.1.1675530591535.125346193&it=1675530590675&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1403116046706561&ev=PageView&dl=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&rl=&if=false&ts=1675530591538&sw=1280&sh=1024&v=2.9.5&r=c2&ec=1&o=30&fbp=fb.1.1675530591535.125346193&it=1675530590675&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 17:09:15 GMT
X-Firefox-Spdy: h2
dmp.adform.net/serving/cookie/match?party=1140&cid=&uid=-5932061713061764574
37.157.6.233302 Found 0 B URL HTTP/2 dmp.adform.net/serving/cookie/match?party=1140&cid=&uid=-5932061713061764574
IP 37.157.6.233:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /serving/cookie/match?party=1140&cid=&uid=-5932061713061764574 HTTP/1.1
Host: dmp.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 17:09:15 GMT
content-length: 0
location: https://dmp.adform.net/serving/cookie/match?CC=1&party=1140&cid=&uid=-5932061713061764574
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
set-cookie: C=1; expires=Sat, 04 Mar 2023 17:09:15 GMT; domain=adform.net; path=/
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-380080.js?sv=7
54.230.111.66200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-380080.js?sv=7
IP 54.230.111.66:0
GET /c/hotjar-380080.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sat, 04 Feb 2023 17:09:02 GMT
cache-control: max-age=60
etag: W/57ccdbacd4c28c88d37225ce1df2cb18
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eK0Gq13zOyprG4H54T2RhbbabLfrbt1XGClSUa9DOdVQNBDbXx-zaA==
age: 12
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=289195198179&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.6.233302 Found 0 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=289195198179&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.6.233:0
GET /Serving/TrackPoint/?pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=289195198179&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 17:09:14 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=289195198179&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Sat, 04-Mar-2023 17:09:14 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400,400i,500,500i,700,700i,900,900i|Roboto+Slab:700&subset=latin-ext&display=swap
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400,400i,500,500i,700,700i,900,900i|Roboto+Slab:700&subset=latin-ext&display=swap
IP 142.250.74.74:0
GET /css?family=Roboto:400,400i,500,500i,700,700i,900,900i|Roboto+Slab:700&subset=latin-ext&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 17:09:11 GMT
date: Sat, 04 Feb 2023 17:09:11 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.seondf.com/js/v4/agent.js
188.114.97.1200 OK 0 B URL HTTP/2 cdn.seondf.com/js/v4/agent.js
IP 188.114.97.1:0
GET /js/v4/agent.js HTTP/1.1
Host: cdn.seondf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 17:09:11 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 16:00:08 GMT
etag: W/"c34c3067f651e0fea2609171ab7bfec0"
cache-control: max-age=14400
x-amz-version-id: oBwuMALhSWNlluJ4Z9BGO_.GELHIAD3H
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: r3vBq8zJ-CY-NYQu_l7H4C5pSplwPeCF8zFIyJyqVW6saqZZag2g2w==
cf-cache-status: HIT
age: 1152
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wwPZSMmEh8HWGQSYnHvFRhzP4gGfv7PykvE8uLlCMfuWaGikl1n91ZI2R3uh4yLDn27WmDwCxjwuDUHqkMa9v0eAj4O44XFROxiFk2pcgFkbuLncjZ3V0OaJEyQ5Tt8OIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7945033cee3eb529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.leovegas.com/api?relay
107.154.248.168200 OK 0 B URL HTTP/2 www.leovegas.com/api?relay
IP 107.154.248.168:0
POST /api?relay HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/en-no/signup
x-request-id: 00d680e5-a2df-4d27-a1ba-f21618933546
content-type: application/json
x-leo-locale: en-no
Origin: https://www.leovegas.com
Content-Length: 651
Connection: keep-alive
Cookie: leo-essentials=%7B%22cid%22%3A%223d4eb16b-3d03-42bd-8c2a-40d425a8ff91%22%7D; visid_incap_846569=7IzJdxydTKmcIot5CiW+8TaR3mMAAAAAQUIPAAAAAAAzRUDKC62y24zAR/1Mv2Lb; nlbi_846569=j9OBc5pYqzPM0FssTJV9qQAAAACiGSrn7APJyeUtf5aLjh0b; incap_ses_631_846569=ygsXGCIFmC7hrH9VDMTBCDaR3mMAAAAA1YDjNuGKm+BOZ1HfYx0A2A==; ___utmvc=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
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 17:09:12 GMT
content-type: application/json
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
set-cookie: ___utmvc=a; Max-Age=0; path=/; expires=Tue, 24 Jan 2023 22:28:09 GMT
x-cdn: Imperva
x-iinfo: 5-55402630-55402712 NNNY CT(1 6 0) RT(1675530550065 1512) q(0 0 0 -1) r(1 1) U6
X-Firefox-Spdy: h2
www.leovegas.com/api?relay
107.154.248.168200 OK 0 B URL HTTP/2 www.leovegas.com/api?relay
IP 107.154.248.168:0
POST /api?relay HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/en-no/signup
x-request-id: 6c95c74c-21a2-4a57-8f4d-9e7893c09395
content-type: application/json
x-leo-locale: en-no
Origin: https://www.leovegas.com
Content-Length: 230
Connection: keep-alive
Cookie: leo-essentials=%7B%22cid%22%3A%223d4eb16b-3d03-42bd-8c2a-40d425a8ff91%22%7D; visid_incap_846569=7IzJdxydTKmcIot5CiW+8TaR3mMAAAAAQUIPAAAAAAAzRUDKC62y24zAR/1Mv2Lb; nlbi_846569=j9OBc5pYqzPM0FssTJV9qQAAAACiGSrn7APJyeUtf5aLjh0b; incap_ses_631_846569=ygsXGCIFmC7hrH9VDMTBCDaR3mMAAAAA1YDjNuGKm+BOZ1HfYx0A2A==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 17:09:12 GMT
content-type: application/json
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-cdn: Imperva
x-iinfo: 5-55402630-55402714 NNNY CT(2 6 0) RT(1675530550065 1534) q(0 1 1 -1) r(1 1) U6
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=LeoVegas%7C%2Fsignup&ADFdivider=%7C&ord=829980116975&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.6.233302 Found 0 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=LeoVegas%7C%2Fsignup&ADFdivider=%7C&ord=829980116975&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.6.233:0
GET /Serving/TrackPoint/?pm=497538&ADFPageName=LeoVegas%7C%2Fsignup&ADFdivider=%7C&ord=829980116975&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 17:09:15 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=LeoVegas%7C%2Fsignup&ADFdivider=%7C&ord=829980116975&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Sat, 04-Mar-2023 17:09:15 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
clientstream.launchdarkly.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?withReasons=true
13.248.151.210200 OK 0 B URL HTTP/2 clientstream.launchdarkly.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?withReasons=true
IP 13.248.151.210:0
GET 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?withReasons=true HTTP/1.1
Host: clientstream.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/event-stream
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 Feb 2023 17:09:13 GMT
content-type: text/event-stream; charset=utf-8
accept-ranges: bytes
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Cache-Control,X-Requested-With,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: *
access-control-max-age: 300
cache-control: no-cache, no-store, must-revalidate
ld-region: eu-west-1
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
s2.adform.net/banners/scripts/st/trackpoint-async.js
37.157.2.249200 OK 0 B URL HTTP/2 s2.adform.net/banners/scripts/st/trackpoint-async.js
IP 37.157.2.249:0
GET /banners/scripts/st/trackpoint-async.js HTTP/1.1
Host: s2.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 17:04:51 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 29 Nov 2022 10:23:25 GMT
x-rgw-object-type: Normal
etag: W/"83eb5fafaa212c785f7393188ff817aa"
x-amz-request-id: tx00000bdfae384ccf5a381-006385e0d4-329373d4-default
access-control-allow-origin: *
cache-control: public, max-age=604800
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
dmp.adform.net/serving/cookie/match?CC=1&party=1140&cid=&uid=-5932061713061764574
37.157.6.233200 OK 0 B URL HTTP/2 dmp.adform.net/serving/cookie/match?CC=1&party=1140&cid=&uid=-5932061713061764574
IP 37.157.6.233:0
GET /serving/cookie/match?CC=1&party=1140&cid=&uid=-5932061713061764574 HTTP/1.1
Host: dmp.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 17:09:15 GMT
content-type: image/gif
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=24325294117&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.6.233302 Found 0 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=24325294117&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.6.233:0
GET /Serving/TrackPoint/?pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=24325294117&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 17:09:14 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=24325294117&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Fsignup%3Fstep%3D1&Set1=en-US%7Cen-US%7C1280x1024%7C24
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Sat, 04-Mar-2023 17:09:14 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.leovegas.com/sv-se/registrering
107.154.248.168302 Found 0 B URL HTTP/2 www.leovegas.com/sv-se/registrering
IP 107.154.248.168:0
GET /sv-se/registrering HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 17:09:10 GMT
content-type: application/json; charset=utf8
content-encoding: gzip
location: /en-no/signup
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
set-cookie: leo-essentials=%7B%22cid%22%3A%223d4eb16b-3d03-42bd-8c2a-40d425a8ff91%22%7D; Max-Age=31536000; Path=/; Secure
visid_incap_846569=7IzJdxydTKmcIot5CiW+8TaR3mMAAAAAQUIPAAAAAAAzRUDKC62y24zAR/1Mv2Lb; expires=Sat, 03 Feb 2024 22:35:04 GMT; HttpOnly; path=/; Domain=.leovegas.com; Secure; SameSite=None
nlbi_846569=j9OBc5pYqzPM0FssTJV9qQAAAACiGSrn7APJyeUtf5aLjh0b; path=/; Domain=.leovegas.com; Secure; SameSite=None
incap_ses_631_846569=ygsXGCIFmC7hrH9VDMTBCDaR3mMAAAAA1YDjNuGKm+BOZ1HfYx0A2A==; path=/; Domain=.leovegas.com; Secure; SameSite=None
x-cdn: Imperva
x-iinfo: 5-55402630-55401394 PNNy RT(1675530550065 60) q(0 0 0 0) r(0 0) U11
X-Firefox-Spdy: h2
www.leovegas.com/en-no/signup
107.154.248.168200 OK 0 B URL HTTP/2 www.leovegas.com/en-no/signup
IP 107.154.248.168:0
GET /en-no/signup HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: leo-essentials=%7B%22cid%22%3A%223d4eb16b-3d03-42bd-8c2a-40d425a8ff91%22%7D; visid_incap_846569=7IzJdxydTKmcIot5CiW+8TaR3mMAAAAAQUIPAAAAAAAzRUDKC62y24zAR/1Mv2Lb; nlbi_846569=j9OBc5pYqzPM0FssTJV9qQAAAACiGSrn7APJyeUtf5aLjh0b; incap_ses_631_846569=ygsXGCIFmC7hrH9VDMTBCDaR3mMAAAAA1YDjNuGKm+BOZ1HfYx0A2A==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 17:09:11 GMT
content-type: text/html; charset=utf-8
content-encoding: gzip
cache-control: no-cache, no-store, must-revalidate
x-render-cache: 0
x-cache-key: disabled-0.02590589102770169
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-cdn: Imperva
x-iinfo: 5-55402630-55401394 PNNy RT(1675530550065 140) q(0 0 0 -1) r(0 0) U12
X-Firefox-Spdy: h2
www.leovegas.com/getMeta
107.154.248.168200 OK 0 B IP 107.154.248.168:0
GET /getMeta HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/en-no/signup
Connection: keep-alive
Cookie: leo-essentials=%7B%22cid%22%3A%223d4eb16b-3d03-42bd-8c2a-40d425a8ff91%22%7D; visid_incap_846569=7IzJdxydTKmcIot5CiW+8TaR3mMAAAAAQUIPAAAAAAAzRUDKC62y24zAR/1Mv2Lb; nlbi_846569=j9OBc5pYqzPM0FssTJV9qQAAAACiGSrn7APJyeUtf5aLjh0b; incap_ses_631_846569=ygsXGCIFmC7hrH9VDMTBCDaR3mMAAAAA1YDjNuGKm+BOZ1HfYx0A2A==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 17:09:12 GMT
content-type: application/json; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-cdn: Imperva
x-iinfo: 5-55402630-55402712 PNNy RT(1675530550065 1570) q(0 0 0 -1) r(0 0) U12
X-Firefox-Spdy: h2
www.leovegas.com/api?relay
107.154.248.168200 OK 0 B URL HTTP/2 www.leovegas.com/api?relay
IP 107.154.248.168:0
POST /api?relay HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/en-no/signup
x-request-id: 0bc2c83f-9884-44c4-b16a-be8059941167
content-type: application/json
x-leo-locale: en-no
Origin: https://www.leovegas.com
Content-Length: 20774
Connection: keep-alive
Cookie: leo-essentials=%7B%22cid%22%3A%223d4eb16b-3d03-42bd-8c2a-40d425a8ff91%22%7D; visid_incap_846569=7IzJdxydTKmcIot5CiW+8TaR3mMAAAAAQUIPAAAAAAAzRUDKC62y24zAR/1Mv2Lb; nlbi_846569=j9OBc5pYqzPM0FssTJV9qQAAAACiGSrn7APJyeUtf5aLjh0b; incap_ses_631_846569=ygsXGCIFmC7hrH9VDMTBCDaR3mMAAAAA1YDjNuGKm+BOZ1HfYx0A2A==; ___utmvc=mtiM5YHCxkn984cdGHy4Xcd1iHdCDzjbTbQsniuUQO8WX03uf59M7kAVFNHS2TAMSD8D9e+GqCBJ9S48g5CdLITmtSWvUZAxq9wkg/LsWKzHRnIeNhzr/Xh12ByEVRwi6RAAHSxGHwh4xa+kp8jy9wPVLNwngVT1Axx2wiu31MPSm1gS6OGsxUJnef59AJ7YjNTYkNnO4UlIvB4S546s7gcm3yVUXZNP5Q3z1KG4CKFS3NbBgbYHHIlRflEo8FnPcvzazE0QEYaCoxZqqRFJhlI6i08+N1mDjo2aI3o1L/2IyBPvqM1ePtCzZLKhe/7K/lSKbBNjVPUA9E4W3sCslN3XvceMAQIn5pYh/ne+9jfn5kUdjz/LMz5XMo0M/0IpeFDVBjZg786lli0GvbiMcKC9vwLHnajMhErtu+mPlaQ/khqlVtY1zDeJy+Re5YTyjWbL8N8uf4MgRJvdizZsK8JGGDC19/k7CBY51qVyXe+vlwpxfUrzRFVX9DShb1Hb6q0m1rqH+0msLzQKq68gYOm1bfvnSCS8MJIs6eq5Q7ng7EIseE+z2PULosah0oIGuTV4QbCQUbwMLmfDsWIsV3125iLPycUyU5pcF2sSJLDfHS3AfBEwCaaeZzlCpSNRZ6xy2lpMeECUY0nwpUn05Mk55r9RnZMvyZLzIBNjQUB7B9vuGtl9QIBiUVVLIMHMvIeJbX6WO04rvXJPp3k+D9P+ij40Fg7VoddjCUbh8DRrjM8bdLvcH1TQQO1mmThaoPZo8ACpHSqCbPC5K+gwAFf3cVkRTyp3kc5rFgMO2Po0cJcFSPDUrv69wkzxnV505jDGrFMEMze4RimDSfqIYzwJk8UGc3HrW3rbKuD003I4sMYIMGPfqidsYYOiYnMFwWVGyGSdk6tirhkYfv0q3gUVHUKKfry5Bqn7XWOMi56Pbtk0CRwE2ZIrjoletjvPgDT6vdSDJkka6fe/0m/xCixXM5z+EhccFdGRrkOOEhVzKDR3j6Ogosq2AG+o7Obh9eKDD9T03uxlgcVmDAhL7VtC6fV2riV5Fk/lgaIAz19HqdfANDazCrXDlmSM0vdWJMuy61BpeYkM/uInqAs4kRMrzRFl/FWCsYBuX8B2yvNf6i89BWazbPxJJ9dpQ/OcjhHIIztDu4PvDRe20O2LJ66quOZCodctAx1uCLOa9Ai7veY3vuQRd9f7hXCAMxhSHEgG8lbPyfOMVb71BJsdtpTw1LsqsDrHHfGuZlNSEKbxdA/bqb10RXlV0aCc6c+g4HOYae1c3x07evGIFdnbxo9ywpdBjU9Adw+J6bslojz/sZ6nUrwz+LGnDE0aiQQ8X/LvqaW7hPQlYDs7RH/OmJIaUD8sGuoRkS487pooTEEMjd7ihQwTM4Ub40xn3qQGTi8vimXHS3nehjZP6aUQwY2FWrCdMHbrtgz/KrqwWQ/t79LRYuL5EWurnt1+ezBLMSa8pc5Q97mgtrIfuDrgdyuXGIOLr4uG01IkQqlHNMLW7Qn3/GR2KOke91ywxZLebHzyUt0z+Vbs5kDQw/uxxwDvdGvM3xvP5qcaUrEKCK0dNO8MoYIY0PsK8lQl4bjg0cLnxb537dPExEN/4NJ6N32tJ3he6Sl9ZDjKhRb0OCWTmYJq0DDSVRw5QoAyxgF9av8Gnmd05Q/mYFRuXnAhicUcAeozsC85dJLHUiW5tjN4LPz2FAA8VkLY/BwxT0CfqVhiWx8AHahHZz3iJqdjCxBJqpYdw1Km78yIxtxht+eYtH1KEMFT2qHq9xitLxlmqQGBZzxhnpLCyTIr77aTSFRwX5gubfP9ew5VtiepZZBQcLGiYLQmKUgnaNnYNG9EKPD3DrD0E3ybOcTWYLT39aw4mmfIYicS46PNNgfPbcfp+uPBYapWHLlVyZgScmRV3eXkF+FrkKF1RLfMxZVFjmsZmkQehtFYOjzmnyJmWik3Ai9bibvmluC2r/It657f8izlKKVnOHWoaUMcLhkm6T+IBqF7bXQU3C5SHVEmo6S6C5EJCUf3l4t28JQ1yqXlSlyJRYz3WsHgKpYihPRKTBqEkOLplFCBYMUzWUlCHXDA4UnzQWv3JanBNYbqJuyZgPrH26EwPpB9E9gSCvqkuzGcL4I5UYCTHvcnpKUMBzBnfuF3rIEXjQFpm9s2yprqOuSsKeIxmZmUhVWYe0UdkVEg2GAA7GLce0g4SkgDPEK4vkZYI/mBaftL7i6VQSVyahZ98Z73DyAs3xYIRewHBNHR4ZFYN8wFqdHNBu4UH4mlb5GtROZYOxRWiaM10NzwBVIkfyBfUkZAXkEG5wb6wymS7nz8GVtKSMO1YokBZLqxSh0xtyHJJrOMB3Cf3SEmKSYfD2LRpEQY25F3v3ahksfVxi6FxNJJASVezpPGuSYcwMqm1aHYmiA3M3ZDSuij0Edas8oA+2wulM/Xsv2Vz/Wls/xbOMVhkogU9TpmFtT3/NmG6jDgiKYcdXqHTaNY0teHpJdogfPXBlWWj5UeAdQJFbfftYR2//NZfEP43Agzx2DRNkeIzAYHlEQK1s7te8JfrhQ8kRGxj2BitLMZvI36oRLTsWzyattdfnNeT8nBlHMc5djXVANgx5iMVMDCoPaa2ZBUsT4DrJ8oIsvN1qzTZupvhuNd0KVJ8ES5ujbo7e5emiGBL+rp6WDBvoyPnmTA8RQ00zK/EZBuzwhoCZ+NAe48YixkaWdlc3Q9MTg1MjQ3LHM9ODA2YTlkYTg4NGIxOTM4MDg2YWI5Y2FiOTI3ZTY2OWI3NWIwYTBhMTg2ODA5NjY2ODk4ZDg5OWM2YWE0NzlhNDg3YTRhNjZkN2M3OTcyNmY=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 17:09:12 GMT
content-type: application/json
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
set-cookie: ___utmvc=a; Max-Age=0; path=/; expires=Tue, 24 Jan 2023 22:28:09 GMT
x-cdn: Imperva
x-iinfo: 5-55402630-55402656 PNNy RT(1675530550065 1458) q(0 0 0 -1) r(1 1) U6
X-Firefox-Spdy: h2
www.leovegas.com/api?relay
107.154.248.168200 OK 0 B URL HTTP/2 www.leovegas.com/api?relay
IP 107.154.248.168:0
POST /api?relay HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/en-no/signup
x-request-id: f4a88d25-26f2-4b2b-a4f5-fbeb36cf873a
content-type: application/json
x-leo-locale: en-no
Origin: https://www.leovegas.com
Content-Length: 16646
Connection: keep-alive
Cookie: leo-essentials=%7B%22cid%22%3A%223d4eb16b-3d03-42bd-8c2a-40d425a8ff91%22%7D; visid_incap_846569=7IzJdxydTKmcIot5CiW+8TaR3mMAAAAAQUIPAAAAAAAzRUDKC62y24zAR/1Mv2Lb; nlbi_846569=j9OBc5pYqzPM0FssTJV9qQAAAACiGSrn7APJyeUtf5aLjh0b; incap_ses_631_846569=ygsXGCIFmC7hrH9VDMTBCDaR3mMAAAAA1YDjNuGKm+BOZ1HfYx0A2A==; ___utmvc=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
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 17:09:12 GMT
content-type: application/json
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
set-cookie: ___utmvc=a; Max-Age=0; path=/; expires=Tue, 24 Jan 2023 22:28:09 GMT
x-cdn: Imperva
x-iinfo: 5-55402630-55401394 PNNy RT(1675530550065 1510) q(0 0 0 -1) r(2 2) U6
X-Firefox-Spdy: h2
track.adform.net/serving/scripts/trackpoint/async/
37.157.6.233301 Moved Permanently 0 B URL HTTP/2 track.adform.net/serving/scripts/trackpoint/async/
IP 37.157.6.233:0
GET /serving/scripts/trackpoint/async/ HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 04 Feb 2023 17:09:14 GMT
content-type: text/html
location: https://s2.adform.net/banners/scripts/st/trackpoint-async.js
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.leovegas.com/api?relay
107.154.248.168200 OK 0 B URL HTTP/2 www.leovegas.com/api?relay
IP 107.154.248.168:0
POST /api?relay HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/en-no/signup?step=1
x-request-id: a06dc569-9576-46a9-8e94-255dc26495a6
content-type: application/json
x-leo-locale: en-no
Origin: https://www.leovegas.com
Content-Length: 378
Connection: keep-alive
Cookie: leo-essentials=%7B%22cid%22%3A%223d4eb16b-3d03-42bd-8c2a-40d425a8ff91%22%7D; visid_incap_846569=7IzJdxydTKmcIot5CiW+8TaR3mMAAAAAQUIPAAAAAAAzRUDKC62y24zAR/1Mv2Lb; nlbi_846569=j9OBc5pYqzPM0FssTJV9qQAAAACiGSrn7APJyeUtf5aLjh0b; incap_ses_631_846569=ygsXGCIFmC7hrH9VDMTBCDaR3mMAAAAA1YDjNuGKm+BOZ1HfYx0A2A==; _ga=GA1.2.1688288637.1675530589; _gid=GA1.2.263069554.1675530589; _gat_leo=1; data=db1b376916de2da967911d78f6f2696e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 17:09:13 GMT
content-type: application/json
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-cdn: Imperva
x-iinfo: 5-55402630-55401394 PNNy RT(1675530550065 2297) q(0 0 0 -1) r(2 2) U6
X-Firefox-Spdy: h2