tele10.site/m/ae/ewh/
79.98.29.29302 Found 0 B IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /m/ae/ewh/ HTTP/1.1
Host: tele10.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Fri, 03 Feb 2023 14:50:47 GMT
Server: Apache
Connection: Upgrade, Keep-Alive
Location: http://inumbreonr.com/4/5620708?var=ar_error
Keep-Alive: timeout=2, max=100
Transfer-Encoding: chunked
Content-Type: text/html
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14208
Expires: Fri, 03 Feb 2023 18:47:36 GMT
Date: Fri, 03 Feb 2023 14:50:48 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7541
Expires: Fri, 03 Feb 2023 16:56:29 GMT
Date: Fri, 03 Feb 2023 14:50:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 14:43:35 GMT
content-type: application/json
age: 433
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9435
Expires: Fri, 03 Feb 2023 17:28:03 GMT
Date: Fri, 03 Feb 2023 14:50:48 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 69Mv52wq9wteap0O8gkUpqLg+QseBPlbbFxVvKTVJ05PkmY39kM8GqZV7w7Qvl8bwzhmVCwFZRU=
x-amz-request-id: 5G1JMY7C3F56KPTW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 14:23:34 GMT
age: 1634
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
inumbreonr.com/4/5620708?var=ar_error
139.45.197.247200 OK 818 B URL HTTP/1.1 inumbreonr.com/4/5620708?var=ar_error
IP 139.45.197.247:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (378)
Hash 4d66db4de5580d4d61e3bed10c7f9fcc
ed858d2539f164be36f847b4860ec34a8aba0689
002a8419529d1ab016ee831519fbdfee9a89695fa40ed841e1bd7099580575c0
Analyzer Verdict Alert quad9 Sinkholed
GET /4/5620708?var=ar_error HTTP/1.1
Host: inumbreonr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 14:50:48 GMT
Content-Type: text/html; charset=utf8
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 3382154253db9ef005280434e8a4fd46
Link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch", <https://myeasetrack.com>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 86400
Timing-Allow-Origin: *
Set-Cookie: OAID=14b6bb5e8f084fd5a333c02b66609009; expires=Sat, 03 Feb 2024 14:50:48 GMT; path=/
oaidts=1675435848; expires=Sat, 03 Feb 2024 14:50:48 GMT; path=/
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
Pragma: no-cache, no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
Access-Control-Allow-Origin: *, *
Access-Control-Allow-Methods: GET, POST, OPTIONS, POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, Accept, Content-Type, Content-Length, Accept-Encoding
Content-Encoding: gzip
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 14:50:48 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
myeasetrack.com/ce2939e7-f18f-4e8d-b910-5d9b23a74541?zoneid=5620708&device=desktop&browser=firefox&os=windows&country=NO®ion=03&zonetype={zone_type}&useractivity=high&campaignid=6406879&banner=16042566&cost=0.002351&visitor_id=645387327170158741&rdk=rk1
18.192.108.151302 Found 0 B URL HTTP/2 myeasetrack.com/ce2939e7-f18f-4e8d-b910-5d9b23a74541?zoneid=5620708&device=desktop&browser=firefox&os=windows&country=NO®ion=03&zonetype={zone_type}&useractivity=high&campaignid=6406879&banner=16042566&cost=0.002351&visitor_id=645387327170158741&rdk=rk1
IP 18.192.108.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ce2939e7-f18f-4e8d-b910-5d9b23a74541?zoneid=5620708&device=desktop&browser=firefox&os=windows&country=NO®ion=03&zonetype={zone_type}&useractivity=high&campaignid=6406879&banner=16042566&cost=0.002351&visitor_id=645387327170158741&rdk=rk1 HTTP/1.1
Host: myeasetrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Fri, 03 Feb 2023 14:50:48 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://ntrfr.leovegas.com/redirect.aspx?pid=3747044&bid=15012&c=woborkfltpp976cm2bfhd33u
pragma: no-cache
set-cookie: ce2939e7-f18f-4e8d-b910-5d9b23a74541-v4=LUtzTItV0e1B_HNYddrKPiwkqSQgLwhayEfbCre_YrI; Max-Age=86400; Expires=Sat, 04-Feb-2023 14:50:48 GMT; Domain=myeasetrack.com; Path=/; Secure; HttpOnly;SameSite=None
cc-v4=6fCbImCSQF2TuD6ohSI42JsMQW37FX3nN7937zAVkpDRWle%2BJ3bUXsgscegyYs3En6Bykya%2Bw%2BRaGmhVbEPBbEvhzjHkPp0wbIi19NDW97RiDf4fxD%2FXz%2F0LhAKfTJRF9%2F8guI7a7dxGpwuQvDEdtw%3D%3D; Max-Age=31536000; Expires=Sat, 03-Feb-2024 14:50:48 GMT; Domain=myeasetrack.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 05295a6ef6a1e08350820742ca84d4cd
829cfdfb5f40a5cf0a9b80d787d46652df0ffdec
2864347c8cafc993e298b6c80a7e34b0c49710b9e8e35af6815ef685d4efdaf2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2864347C8CAFC993E298B6C80A7E34B0C49710B9E8E35AF6815EF685D4EFDAF2"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5135
Expires: Fri, 03 Feb 2023 16:16:23 GMT
Date: Fri, 03 Feb 2023 14:50:48 GMT
Connection: keep-alive
my.rtmark.net/img.gif?f=merge&userId=14b6bb5e8f084fd5a333c02b66609009
139.45.195.8200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=merge&userId=14b6bb5e8f084fd5a333c02b66609009
IP 139.45.195.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /img.gif?f=merge&userId=14b6bb5e8f084fd5a333c02b66609009 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 14:50:48 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: null
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=14b6bb5e8f084fd5a333c02b66609009; expires=Sat, 03 Feb 2024 14:50:48 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
inumbreonr.com/favicon.ico
139.45.197.247204 No Content 0 B URL HTTP/1.1 inumbreonr.com/favicon.ico
IP 139.45.197.247:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: inumbreonr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: OAID=14b6bb5e8f084fd5a333c02b66609009; oaidts=1675435848
HTTP/1.1 204 No Content
Server: nginx
Date: Fri, 03 Feb 2023 14:50:48 GMT
Connection: keep-alive
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Pragma: public
Cache-Control: max-age=315360000, public, must-revalidate, proxy-revalidate
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 14:49:06 GMT
age: 102
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ntrfr.leovegas.com/redirect.aspx?pid=3747044&bid=15012&c=woborkfltpp976cm2bfhd33u
95.101.10.168307 Temporary Redirect 0 B URL HTTP/2 ntrfr.leovegas.com/redirect.aspx?pid=3747044&bid=15012&c=woborkfltpp976cm2bfhd33u
IP 95.101.10.168:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=3747044&bid=15012&c=woborkfltpp976cm2bfhd33u HTTP/1.1
Host: ntrfr.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://www.leovegas.com/nb-no/livecasino?btag=667909_30882D957AA14842B84C06EBF564E211&c=woborkfltpp976cm2bfhd33u&pid=3747044&bid=15012
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Fri, 03 Feb 2023 14:50:48 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 03 Feb 2023 14:50:48 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15012%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675435848854)%5c%2f%22%2c%22CookieTag%22%3a%22150123747044451240919C2023231450%22%7d%5d; SameSite=None;; domain=.leovegas.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222803930797%7c1%22%7d%5d; domain=.leovegas.com; expires=Sun, 03-Feb-3022 14:50:48 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=25, origin; dur=39
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14766
Expires: Fri, 03 Feb 2023 18:56:54 GMT
Date: Fri, 03 Feb 2023 14:50:48 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 14ce1585885d0111913e10c5e4233619
0900480e0ed0800299b75ae5c375f786100c2017
b18f72471c58a32bbe1e67b247615e3bc6d583e70c7e47d88f7b84ecc318df4e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 642
Cache-Control: max-age=124761
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:49 GMT
Etag: "63dc6120-1d7"
Expires: Sun, 05 Feb 2023 01:30:10 GMT
Last-Modified: Fri, 03 Feb 2023 01:19:28 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.42.147.182101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.147.182:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KBM3C7QzwvuWT1VQfmuUgw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: LaZRV2ztLq+hRqVGrqjvO2BcC+g=
www.leovegas.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=2&cb=1949261974
107.154.248.168200 OK 19 kB URL HTTP/2 www.leovegas.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=2&cb=1949261974
IP 107.154.248.168:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 23870e58a59a606b3fca6068ec93a10b
a28334a177825143bbe987cacb03cd95ae302fe2
030a5e0f0d22d709c09c389f2330f1cda144aedb23c84f9cdff6ccb871c2168f
GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=2&cb=1949261974 HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/en-no/livecasino?btag=667909_30882D957AA14842B84C06EBF564E211&c=woborkfltpp976cm2bfhd33u&pid=3747044&bid=15012
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15012%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675435848854)%5c%2f%22%2c%22CookieTag%22%3a%22150123747044451240919C2023231450%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222803930797%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%228fff8ce6-aa63-4cbb-8d25-c117b3872cfb%22%7D; visid_incap_846569=nVHdRwrdQKqrU7ZbGlR5mkgf3WMAAAAAQUIPAAAAAACnb20MIjgQ3J+w7gsXSN3X; nlbi_846569=Cl/LJW9e/EJ5GKWgTJV9qQAAAADzI4382nkUncJO6PnlMJdQ; incap_ses_633_846569=Tl7fOpTJTFGucB2Apd7ICEgf3WMAAAAAcg1cX/3RIcjz44CRx6RqCw==; leobtag=667909_30882D957AA14842B84C06EBF564E211; leonrpid=3747044; leonrbid=15012; leonrmeta=[{"value":"woborkfltpp976cm2bfhd33u","key":"c"}]
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/javascript
content-encoding: gzip
x-robots-tag: noindex
content-length: 19268
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 19fcc19786a47451672be06f8a5182b5
59768d316511fa60ea3143fc2dc8f22f4ea7e4a9
c3eeec95b997691f8e23ed8f68214458b9a2001374d82039bfe481067bd6c867
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5032
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:50 GMT
Etag: "63dbfe81-1d7"
Last-Modified: Fri, 03 Feb 2023 13:26:58 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~493df0b3.e3a8cf8c790c63be4011.chunk.css?e=p
34.107.241.180200 OK 9.9 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~493df0b3.e3a8cf8c790c63be4011.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (17796)
Hash 5eb7226dc2575783709eccb6a4519e02
79d8d5cc2c5099ee653de2e4b62285a912a3c6cb
ba158e88bf0853c4c2e548c26fda44e0b347e97457aec514bb5f671ecab15706
GET /fulcrum/v4/master/dynamic/mobile.app~493df0b3.e3a8cf8c790c63be4011.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduY3aLSaeeAvs-kPVQxwpo505XP9SilP7OaXv_FXO43_jz8wXe8Or1X4Z1lxki_WZn9zH-pe800yKf7D3O2fc7iNQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675157189530005
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 9916
content-encoding: gzip
x-goog-hash: crc32c=x1FyTA==, md5=XrcibcJXV4Nwnsy2pFGeAg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 9916
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 31 Jan 2023 09:49:58 GMT
expires: Tue, 28 Feb 2023 09:49:58 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 31 Jan 2023 09:26:29 GMT
etag: "5eb7226dc2575783709eccb6a4519e02"
content-type: text/css
age: 277252
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 19fcc19786a47451672be06f8a5182b5
59768d316511fa60ea3143fc2dc8f22f4ea7e4a9
c3eeec95b997691f8e23ed8f68214458b9a2001374d82039bfe481067bd6c867
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5032
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:50 GMT
Etag: "63dbfe81-1d7"
Last-Modified: Fri, 03 Feb 2023 13:26:58 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.relay~93c72913.9d8920c9306f7917f5d4.chunk.js?e=p
34.107.241.180200 OK 25 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.relay~93c72913.9d8920c9306f7917f5d4.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 88cc9dfad78be7a8333a39c60b66409c
c40c8ddd7735becdfa00a3f800a7530dff0f5b03
7bddfaa30d3edd219ff0d9364982fd9d8f0d41854b57ecd50259dd4e24755358
GET /fulcrum/v4/master/dynamic/mobile.relay~93c72913.9d8920c9306f7917f5d4.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsS6odZ0J0F8vX67qIFcOHKjy0iw4giCk5C3v7WTdf1rB_zucNtgiry89qQQlYqS2d9G80uP0kXVXE5jfCLLp9vPw
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179704429
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 25189
content-encoding: gzip
x-goog-hash: crc32c=jLMiDQ==, md5=iMyd+teL56gzOjnGC2ZAnA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 25189
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "88cc9dfad78be7a8333a39c60b66409c"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~65914263.6f996d8b6ea9f23747f1.chunk.css?e=p
34.107.241.180200 OK 1.9 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~65914263.6f996d8b6ea9f23747f1.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (5028)
Hash 71b32aaf113588ee53a750afb9f91a02
7f378b3e6695c22fd99484613ffc4328d4d07816
068bf711982c24a8a09bd4432011c0e52355bb823392ab6421cbf62e0f082f97
GET /fulcrum/v4/master/dynamic/mobile.app~65914263.6f996d8b6ea9f23747f1.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduf7YmagK4Zo_-nM7YywpimWgdYm0BO33hs95hRzmVLcSLQKwf0T93Nd2VimGzFaIU1vCe75z2wjaZvUcXXIqDIWg
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1669028776140146
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1881
content-encoding: gzip
x-goog-hash: crc32c=ovdTiA==, md5=cbMqrxE1iO5Tp1CvufkaAg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1881
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Sun, 29 Jan 2023 14:15:53 GMT
expires: Sun, 26 Feb 2023 14:15:53 GMT
cache-control: public, max-age=2419200,no-transform
age: 434097
last-modified: Mon, 21 Nov 2022 11:06:16 GMT
etag: "71b32aaf113588ee53a750afb9f91a02"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bead5879.4ba62c335ac53fa2f433.chunk.css?e=p
34.107.241.180200 OK 1.6 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bead5879.4ba62c335ac53fa2f433.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (2303)
Hash e27a18cf1cd1a858e6bc1e56cfe231bd
73821fe3a5a2cff54c549ae91fb5347b5e6d8a9b
5a9ca458694d9b63411c902fe342f88de706187b5552a1670066753f502cd622
GET /fulcrum/v4/master/dynamic/mobile.app~bead5879.4ba62c335ac53fa2f433.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtpY502xIHyxrkTeSmoFrOmWb2de3gAqvcK8HBnZl3HcgkPM-XLWmidaVpkNeDITMVkTHJeBhoT8Q0LO2ebnB_HJA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1670506834496426
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1625
content-encoding: gzip
x-goog-hash: crc32c=igy0xQ==, md5=4noYzxzRqFjmvB5Wz+IxvQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1625
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Sun, 29 Jan 2023 14:15:53 GMT
expires: Sun, 26 Feb 2023 14:15:53 GMT
cache-control: public, max-age=2419200,no-transform
age: 434097
last-modified: Thu, 08 Dec 2022 13:40:34 GMT
etag: "e27a18cf1cd1a858e6bc1e56cfe231bd"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 19fcc19786a47451672be06f8a5182b5
59768d316511fa60ea3143fc2dc8f22f4ea7e4a9
c3eeec95b997691f8e23ed8f68214458b9a2001374d82039bfe481067bd6c867
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5032
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:50 GMT
Etag: "63dbfe81-1d7"
Last-Modified: Fri, 03 Feb 2023 13:26:58 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~9b312c24.4913fd26d7cc2d31e38d.chunk.js?e=p
34.107.241.180200 OK 12 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~9b312c24.4913fd26d7cc2d31e38d.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (35552), with no line terminators
Hash 0364586251fdaa810c67bf91fb7068b6
eb23a74db2aa2ee6f8ffd766e122b1dbaa4f8e15
f9bbbd7458ed6eba55479dc0c998ec916c89d5d2532dadaa716ea374e19de33f
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~9b312c24.4913fd26d7cc2d31e38d.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvcBpNpUS_q3oVWC_mF8QK2A3GNAH04XSLgJTAmpbIDKK17Zl2Qtp3EO4giFq3fuSoCQE_o2Qc5ooNXcax96Uhu_A
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180077247
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 11670
content-encoding: gzip
x-goog-hash: crc32c=PkWQmw==, md5=A2RYYlH9qoEMZ7+R+3Botg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 11670
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "0364586251fdaa810c67bf91fb7068b6"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.runtime.8d23bc5252eefef18874.js?e=p
34.107.241.180200 OK 12 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.runtime.8d23bc5252eefef18874.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (34420)
Hash 13de8c5357b759da601e1d62aa125ae3
c20b7e121b1b906b7fbdcde7718584f570f659a9
ad577c76fc3c6adad509384d190a218a036dc17392369be7948ccdf92f9b301e
GET /fulcrum/v4/master/dynamic/mobile.runtime.8d23bc5252eefef18874.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtlx-P1bkyIn7U-p1L047JQ3ZrfvvSuQj-9eP6UzkZXZDQjBy4khf0hNtZOS5BHCYN-2Bvi0WQRM9lpGFzw9UdgwPW2O8Qu
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675349647260716
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12188
content-encoding: gzip
x-goog-hash: crc32c=xo7Dqg==, md5=E96MU1e3WdpgHh1iqhJa4w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12188
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:58:14 GMT
expires: Thu, 02 Mar 2023 14:58:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:54:07 GMT
etag: "13de8c5357b759da601e1d62aa125ae3"
content-type: application/javascript
age: 85956
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ik.imagekit.io/leovegas/lv/games/e4raG1BNE/bldXYUedW8pZwb.jpg
54.230.111.62200 OK 23 kB URL HTTP/2 ik.imagekit.io/leovegas/lv/games/e4raG1BNE/bldXYUedW8pZwb.jpg
IP 54.230.111.62:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 278x278, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b3a70338ca6f11c6c6a27460250f46d9
f0f9f558bd68f785430f56805bdd0549771671eb
ba918e29c68bd7f70438c22e9823757e37676cc44025b2fddc2d22f8988cc1eb
GET /leovegas/lv/games/e4raG1BNE/bldXYUedW8pZwb.jpg HTTP/1.1
Host: ik.imagekit.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 22886
x-request-id: d6be8204-077b-402a-a5c0-3993abe4997c
x-server: ImageKit.io
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, s-maxage=15552000, max-age=15552000, must-revalidate
etag: W/"5966-8Pn1WL1o94VDD1aAW90FSXcWces"
date: Mon, 30 Jan 2023 12:55:08 GMT
vary: Accept
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: eP2Mlt5eZS9vbI6uAqIpvFdkHaVBED67eqX3KwmbqQ3Rx8F2NAns_g==
age: 352542
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.react~03cc5dce.7d492abff2b9f861ab9c.chunk.js?e=p
34.107.241.180200 OK 36 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.react~03cc5dce.7d492abff2b9f861ab9c.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (58423)
Hash 7e2b85c28d0e81c76370de82accb078a
0ca5410f13c25c339685f024d985e6cab22448f9
c29b6f6762707f9ac9fd8edca2e3d342b8d47c92bd2660fb5a2b9a7daea3a7b9
GET /fulcrum/v4/master/dynamic/mobile.react~03cc5dce.7d492abff2b9f861ab9c.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtB6HyvTXgLDMov6qIMmE6BXrLvemYWtjngivEo60Dt-9kyufscIGPBXzYAidYTUdNPFkvwWAYf84gbPg45DDVc7Q
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179664609
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 35667
content-encoding: gzip
x-goog-hash: crc32c=JB4Iyw==, md5=fiuFwo0OgcdjcN6CrMsHig==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 35667
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "7e2b85c28d0e81c76370de82accb078a"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ik.imagekit.io/leovegas/lv/games/xG0lXm0wL/Bwg8ofxygMmwkn.jpg
54.230.111.62200 OK 28 kB URL HTTP/2 ik.imagekit.io/leovegas/lv/games/xG0lXm0wL/Bwg8ofxygMmwkn.jpg
IP 54.230.111.62:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 278x278, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1e78db08b51bc5d4df8c34bb89ca2b74
926047fd5dcab1e1df64326c66bd42ffefe00199
65845a006378ed581930a86c5b387d4abeeff845c3b53618f067b4eaadfbdc97
GET /leovegas/lv/games/xG0lXm0wL/Bwg8ofxygMmwkn.jpg HTTP/1.1
Host: ik.imagekit.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 28228
x-request-id: 61557246-ccbc-4f6e-aa7c-77fded6dbce7
x-server: ImageKit.io
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, s-maxage=15552000, max-age=15552000, must-revalidate
etag: W/"6e44-kmBH/V3KseHfZDJsZr1C/+/gAZk"
date: Thu, 26 Jan 2023 13:31:58 GMT
vary: Accept
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: UZYqCMgiJ6HNQhOnI1n9gJxnXb5-2C32tQMAHum20mF1JtG2u6Bqgg==
age: 695932
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~a8f9656c.06731460c1fba01cd0fc.chunk.js?e=p
34.107.241.180200 OK 20 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~a8f9656c.06731460c1fba01cd0fc.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (52100)
Hash 9dfa61d3ec42bfecfa4f827dbe77a2dd
21dc2920dfe87863d7da1dde4295ee390b74c760
8ba56e2f4a0d1589afe4138ed68256d779d39fd240fcafd42bf8213ff3be840f
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~a8f9656c.06731460c1fba01cd0fc.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsa0Xm4c4sYWhHY--1T3Oy3Ounn7hcooNHCTvprsJUvVYDeaqOcMDZwSrxfVuOX6I0QMqfW2LQKWSbZxDTJYJbxbg
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180097198
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 20044
content-encoding: gzip
x-goog-hash: crc32c=SiynNg==, md5=nfph0+xCv+z6T4J9vnei3Q==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 20044
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "9dfa61d3ec42bfecfa4f827dbe77a2dd"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/dVi66-kaLJo
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/dVi66-kaLJo
IP 142.250.74.131:0
Hash e022787c4cfdd47f2e7cf567597890da
a6cda5e69ea354157865a6531546b543a1273dd4
603fe40c6539723fffd9a6c45926b231a77963bb7f96457289c14a894d59e3e0
POST /s/gts1p5/dVi66-kaLJo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:50 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 19fcc19786a47451672be06f8a5182b5
59768d316511fa60ea3143fc2dc8f22f4ea7e4a9
c3eeec95b997691f8e23ed8f68214458b9a2001374d82039bfe481067bd6c867
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5032
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:50 GMT
Etag: "63dbfe81-1d7"
Last-Modified: Fri, 03 Feb 2023 13:26:58 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~4da73d43.545eda81f6d644ad31df.chunk.js?e=p
34.107.241.180200 OK 7.5 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~4da73d43.545eda81f6d644ad31df.chunk.js?e=p
IP 34.107.241.180:0
File type Unicode text, UTF-8 text, with very long lines (21356), with no line terminators
Hash 901800bf9e0f8a689e9e42974f045846
14a2eb1a04844e36954f06b42d3ad27cf144a426
cef389af57e9f715fc0fcca9faac05199cc762bd0808eef6c3d683e3d56b8194
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~4da73d43.545eda81f6d644ad31df.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsBhDm_c-U3IqpLPynDKM7wYq33wTQK3hZ1aeGV4c1NxnHSvjditSrEy13Svevtyp5yod4ZIyzIqQ5h9OqCWLoJPJrUmRMN
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179893609
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7524
content-encoding: gzip
x-goog-hash: crc32c=iD9+kw==, md5=kBgAv54PimienkKXTwRYRg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 7524
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "901800bf9e0f8a689e9e42974f045846"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~91835fe9.4c6c6e810b1dcde86c48.chunk.js?e=p
34.107.241.180200 OK 7.7 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~91835fe9.4c6c6e810b1dcde86c48.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (25581), with no line terminators
Hash eb010ae02917a1500b804e16a7810032
bb22ae2e40fa7a8fe21f1d64caad6b78fa656033
061ed2c2d9b28dcc0322d55ff556f2569b3aded1f39969885024f1275b85865f
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~91835fe9.4c6c6e810b1dcde86c48.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv1v2iYSpq6K6VqeYRe3fRZfgjWlrkRECFhHHm1QVVIaEqXyWpzizEQMsKWVYXNdaPdRdAUYlnO0rXVD9iSxrOZudhqonuB
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180009401
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7716
content-encoding: gzip
x-goog-hash: crc32c=sbwi2A==, md5=6wEK4CkXoVALgE4Wp4EAMg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 7716
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "eb010ae02917a1500b804e16a7810032"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~acf67890.15da669b4021ad83d058.chunk.js?e=p
34.107.241.180200 OK 12 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~acf67890.15da669b4021ad83d058.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (46125), with no line terminators
Hash 68465abfbaec3491818ac4636383161f
dc127f9610a639bc06db484be2287ff3250e0e69
79e46474c775953f2f9e957adddda206b3af0cea02070079aa19d86acfeff9b1
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~acf67890.15da669b4021ad83d058.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvixZjkipBWF8McRxbk_8eoxCTewN3OSM7ooQSCu_0QOaNo7-MLy2WBLzBvlvu_FRdyx9hxsAQx_qnUrK7TUIk3knK8Bvlj
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180163950
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12367
content-encoding: gzip
x-goog-hash: crc32c=Ny5aTQ==, md5=aEZav7rsNJGBisRjY4MWHw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12367
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "68465abfbaec3491818ac4636383161f"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ik.imagekit.io/leovegas/lv/games/DbDo4bXaZ/q5o5GtprB80qvj.jpg
54.230.111.62200 OK 35 kB URL HTTP/2 ik.imagekit.io/leovegas/lv/games/DbDo4bXaZ/q5o5GtprB80qvj.jpg
IP 54.230.111.62:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 278x278, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6e8fac780df90a424020629a33f6b247
cafd53a668a8c4480309bdab48415e7b60ec255e
96f1f3052f77e29c4d292b4dbaeca1320c9d1057a10e2bc932b2a4c0ab5a5287
GET /leovegas/lv/games/DbDo4bXaZ/q5o5GtprB80qvj.jpg HTTP/1.1
Host: ik.imagekit.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 35116
x-request-id: 13487164-ae7c-4192-bf03-6870a5cc8f54
x-server: ImageKit.io
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, s-maxage=15552000, max-age=15552000, must-revalidate
etag: W/"892c-yv1TpmioxEgDCb2rSEFee2DsJV4"
date: Mon, 30 Jan 2023 16:45:25 GMT
vary: Accept
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: _d15p1P2vnzmXh28fQ_Ek6TSchIWnG94UYxIE2cEOqYfniF9ZM5w2g==
age: 338725
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~23b211d4.9dd27998f83f955876f0.chunk.js?e=p
34.107.241.180200 OK 13 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~23b211d4.9dd27998f83f955876f0.chunk.js?e=p
IP 34.107.241.180:0
File type Unicode text, UTF-8 text, with very long lines (29772), with no line terminators
Hash a9a803eeac0782a4e2fd613481d5285b
ec9245cb5ed6125d90e922f0f798ce7b12019cb8
61190c753a1b862c8d56bca34174da3c3ff9db9c94c90c28da618206449e0d87
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~23b211d4.9dd27998f83f955876f0.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduWnyxpZpLv9w3SFt_c52zel6n1CH5nWWCi36RE_yrPim-00gl40dKQKmqz1xAlD61WgMqBddsML1lKQYPo1u734g
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179939177
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 13193
content-encoding: gzip
x-goog-hash: crc32c=9v/k/g==, md5=qagD7qwHgqTi/WE0gdUoWw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 13193
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "a9a803eeac0782a4e2fd613481d5285b"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 19fcc19786a47451672be06f8a5182b5
59768d316511fa60ea3143fc2dc8f22f4ea7e4a9
c3eeec95b997691f8e23ed8f68214458b9a2001374d82039bfe481067bd6c867
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5032
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:50 GMT
Etag: "63dbfe81-1d7"
Last-Modified: Fri, 03 Feb 2023 13:26:58 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~80e93ec1.cdd753cd2fd9b2b58452.chunk.js?e=p
34.107.241.180200 OK 22 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~80e93ec1.cdd753cd2fd9b2b58452.chunk.js?e=p
IP 34.107.241.180:0
File type Unicode text, UTF-8 text, with very long lines (29186), with LF, NEL line terminators
Hash e8c41d3c330ec4a5fa80c2f5bf9098a3
c036efcbd3f9736c82d71cba8d1717ecf56998eb
f9e59eeff9530e454c412b459e6b3762179bf1262072d83b619036dbb7b356c1
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~80e93ec1.cdd753cd2fd9b2b58452.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdt4fLccXzZxtOSzBTAeEJh1IOhprlfaojRjKAaCGAuf1SXplqBb8cAsMGles9u7xQaattD_OBKCA0xqNESobF1qzw
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180040437
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 22124
content-encoding: gzip
x-goog-hash: crc32c=Gw5y/Q==, md5=6MQdPDMOxKX6gML1v5CYow==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 22124
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "e8c41d3c330ec4a5fa80c2f5bf9098a3"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 19fcc19786a47451672be06f8a5182b5
59768d316511fa60ea3143fc2dc8f22f4ea7e4a9
c3eeec95b997691f8e23ed8f68214458b9a2001374d82039bfe481067bd6c867
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6421
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:50 GMT
Last-Modified: Fri, 03 Feb 2023 13:03:49 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
www.leovegas.com/nb-no/livecasino?btag=667909_30882D957AA14842B84C06EBF564E211&c=woborkfltpp976cm2bfhd33u&pid=3747044&bid=15012
107.154.248.168302 Found 14 kB URL HTTP/2 www.leovegas.com/nb-no/livecasino?btag=667909_30882D957AA14842B84C06EBF564E211&c=woborkfltpp976cm2bfhd33u&pid=3747044&bid=15012
IP 107.154.248.168:0
File type ASCII text, with very long lines (42449), with no line terminators
Hash b3aeab087f534513d586c3313b7aa577
35a28d73079ac3feebfca226ccfc781382df3cf3
43a2fdf9a51560bf98b0b6338d0581e08bdd5cb9f0e62ac54be1ea1e1425ceb8
GET /nb-no/livecasino?btag=667909_30882D957AA14842B84C06EBF564E211&c=woborkfltpp976cm2bfhd33u&pid=3747044&bid=15012 HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15012%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675435848854)%5c%2f%22%2c%22CookieTag%22%3a%22150123747044451240919C2023231450%22%7d%5d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Fri, 03 Feb 2023 14:50:49 GMT
content-type: application/json; charset=utf8
content-encoding: gzip
location: /en-no/livecasino?btag=667909_30882D957AA14842B84C06EBF564E211&c=woborkfltpp976cm2bfhd33u&pid=3747044&bid=15012
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
set-cookie: leo-essentials=%7B%22cid%22%3A%228fff8ce6-aa63-4cbb-8d25-c117b3872cfb%22%7D; Max-Age=31536000; Path=/; Secure
visid_incap_846569=nVHdRwrdQKqrU7ZbGlR5mkgf3WMAAAAAQUIPAAAAAACnb20MIjgQ3J+w7gsXSN3X; expires=Fri, 02 Feb 2024 22:50:38 GMT; HttpOnly; path=/; Domain=.leovegas.com; Secure; SameSite=None
nlbi_846569=Cl/LJW9e/EJ5GKWgTJV9qQAAAADzI4382nkUncJO6PnlMJdQ; path=/; Domain=.leovegas.com; Secure; SameSite=None
incap_ses_633_846569=Tl7fOpTJTFGucB2Apd7ICEgf3WMAAAAAcg1cX/3RIcjz44CRx6RqCw==; path=/; Domain=.leovegas.com; Secure; SameSite=None
x-cdn: Imperva
x-iinfo: 5-49815729-49812108 PNNy RT(1675435848625 50) q(0 0 0 1) r(1 1) U11
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~9675856e.566f1fb96598d7a7fb5d.chunk.js?e=p
34.107.241.180200 OK 31 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~9675856e.566f1fb96598d7a7fb5d.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1f05a249aeba1c6a25def9fe90dd804d
1ac6e3ecb9065a5289d9d1c71b923d82e0e8074c
1e90529b4a693a213d14047ee59232a7d54338cf53325af79e385a91884c1a19
GET /fulcrum/v4/master/dynamic/mobile.app~9675856e.566f1fb96598d7a7fb5d.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtiFLgqT9qcBrY48yOoBEW9eROQ54qGzwuj6BgiETs2VdzZaY8BJa8L19kvgzpEV2Hal1oaAGxOAkkyid0ll38cY-rlLgpW
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675346487692757
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 30614
content-encoding: gzip
x-goog-hash: crc32c=hZYmkw==, md5=HwWiSa66HGol3vn+kN2ATQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 30614
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:09:00 GMT
expires: Thu, 02 Mar 2023 14:09:00 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:01:27 GMT
etag: "1f05a249aeba1c6a25def9fe90dd804d"
content-type: application/javascript
age: 88910
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScreen~LostPa~952074d0.f4caeaeb95313452cebe.chunk.js?e=p
34.107.241.180200 OK 17 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScreen~LostPa~952074d0.f4caeaeb95313452cebe.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ea4c39af472b2e4f9c2604de9165b87b
e6c1d9707ad06d883f3f70082584919d02503faf
d7da3445d91d0918fab7dd3c70b145f5320c2b9b5f53625f8bea0564d609fe02
GET /fulcrum/v4/master/dynamic/mobile.BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScreen~LostPa~952074d0.f4caeaeb95313452cebe.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvtMqcPBqtb6Gx-EuUFanQFJIE2gi-p5L0j223eMYwvUkE4aNhjH0xY8nFT-Ugj2o0FItJE0mCAhbRIH1dMQx96ljQdnvvX
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328174339672
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 17332
content-encoding: gzip
x-goog-hash: crc32c=AP/88g==, md5=6kw5r0crLk+cJgTekWW4ew==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 17332
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:52 GMT
expires: Thu, 02 Mar 2023 09:14:52 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:14 GMT
etag: "ea4c39af472b2e4f9c2604de9165b87b"
content-type: application/javascript
age: 106558
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.FlowChecker~493df0b3.b2b786f153df9940cb68.chunk.js?e=p
34.107.241.180200 OK 12 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.FlowChecker~493df0b3.b2b786f153df9940cb68.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (52536)
Hash 93504c3653e95e54548bd4970fd42f7d
5ad481f6fe8b95fc0faa030db1f7c2f17e036637
9f9f7a57e1fbcd363f3e332c1302240a3103b6bda0516b28a415f6c91aa893bb
GET /fulcrum/v4/master/dynamic/mobile.FlowChecker~493df0b3.b2b786f153df9940cb68.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvXfaESr-cJX540I-7kf9NTfKSkT2flZT-y7gJCqwfcUKNnmhKHS_acrRhwOyas5chRogUusTxcAIyE_eJMeWFiv4misVR7
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328175872878
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12475
content-encoding: gzip
x-goog-hash: crc32c=aOncTg==, md5=k1BMNlPpXlRUi9SXD9QvfQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12475
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:52 GMT
expires: Thu, 02 Mar 2023 09:14:52 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:15 GMT
etag: "93504c3653e95e54548bd4970fd42f7d"
content-type: application/javascript
age: 106558
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScreen~LostPa~952074d0.d01d872af38a2b83fed6.chunk.css?e=p
34.107.241.180200 OK 3.2 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScreen~LostPa~952074d0.d01d872af38a2b83fed6.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (3276)
Hash 1f3980b31a459738edf6b8f64e0c549b
b0fe9692e7c1ee7205a291fbab885273aa9dfbfd
ede6d828fce80956c5cb66a8dc0211ede58718ce01a3da9867a6141e372752bf
GET /fulcrum/v4/master/dynamic/mobile.BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScreen~LostPa~952074d0.d01d872af38a2b83fed6.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu8YzE1Y7zgI6h7Ll3AZ16u7YHVagY508gILMXSvEnmybyfVfeAfYzvhs4axRYskQp3d7T3XrjS8qBTLc7w3pKrUg
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675167093338125
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 3216
content-encoding: gzip
x-goog-hash: crc32c=Okt9Ow==, md5=HzmAsxpFlzjt9rj2TgxUmw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 3216
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 31 Jan 2023 12:22:04 GMT
expires: Tue, 28 Feb 2023 12:22:04 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 31 Jan 2023 12:11:33 GMT
etag: "1f3980b31a459738edf6b8f64e0c549b"
content-type: text/css
age: 268126
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/static/c16b1b72809f0ebf0713c5d56aaaa998.svg
34.107.241.180200 OK 2.9 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/static/c16b1b72809f0ebf0713c5d56aaaa998.svg
IP 34.107.241.180:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2945), with no line terminators
Hash 342bb69e34b5d81e1fab7241f0398da8
f12381655ac55a5b4a620595348576477dd61236
79387e649471e7a99751a3168ea95f57796929c435d7f1eb2cfca955bbf23c44
GET /fulcrum/v4/master/static/c16b1b72809f0ebf0713c5d56aaaa998.svg HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15012%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675435848854)%5c%2f%22%2c%22CookieTag%22%3a%22150123747044451240919C2023231450%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222803930797%7c1%22%7d%5d; visid_incap_846569=nVHdRwrdQKqrU7ZbGlR5mkgf3WMAAAAAQUIPAAAAAACnb20MIjgQ3J+w7gsXSN3X; nlbi_846569=Cl/LJW9e/EJ5GKWgTJV9qQAAAADzI4382nkUncJO6PnlMJdQ; incap_ses_633_846569=Tl7fOpTJTFGucB2Apd7ICEgf3WMAAAAAcg1cX/3RIcjz44CRx6RqCw==; leobtag=667909_30882D957AA14842B84C06EBF564E211; leonrpid=3747044; leonrbid=15012; leonrmeta=[{"value":"woborkfltpp976cm2bfhd33u","key":"c"}]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtX85i5zAy4jNPsVIg_6Yj7YOVCZeWoSposDsNysHEcCSWgZ4sg6cB71-AqQ3H7_49BIn5SVLi-3b4B8xKVx3WDIQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675371725673331
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2945
x-goog-meta-goog-reserved-file-mtime: 1675371697
x-goog-hash: crc32c=T17Tvw==, md5=NCu2njS12B4fq3JB8DmNqA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2945
server: UploadServer
date: Thu, 02 Feb 2023 22:27:44 GMT
expires: Thu, 02 Mar 2023 22:27:44 GMT
cache-control: public, max-age=2419200
last-modified: Thu, 02 Feb 2023 21:02:05 GMT
etag: "342bb69e34b5d81e1fab7241f0398da8"
content-type: image/svg+xml
age: 58986
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.DocumentTitle~344174d7.1ffa1d5eda6880559bda.chunk.js?e=p
34.107.241.180200 OK 1.0 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.DocumentTitle~344174d7.1ffa1d5eda6880559bda.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (1674)
Hash 4b902624aea440e410476f67355e3db4
fbe6e914cd16dcd39038f374fb25f7ebbe880d08
b255257a2447500b39bba5b0c4867e3032ecf65a62750bb747ca0d1def742513
GET /fulcrum/v4/master/dynamic/mobile.DocumentTitle~344174d7.1ffa1d5eda6880559bda.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsdDTJV9Ate44XNivlzl5QdMWk62bNWjTEGInObeuLX5m8Zqz2wzjgSUwQlOFLkGgZzeu73Uzo2kU93tS-cqTYCMfRZUgTT
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328175656035
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1045
content-encoding: gzip
x-goog-hash: crc32c=xKiw5A==, md5=S5AmJK6kQOQQR29nNV49tA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1045
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:52 GMT
expires: Thu, 02 Mar 2023 09:14:52 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:15 GMT
etag: "4b902624aea440e410476f67355e3db4"
content-type: application/javascript
age: 106558
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ResponsibleGaming~4fd0ee19.3b98c102cd668b49803d.chunk.js?e=p
34.107.241.180200 OK 2.2 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ResponsibleGaming~4fd0ee19.3b98c102cd668b49803d.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (6180)
Hash 545f206167a51f83e9d81b68b2f61efa
0fd51f11ce7b7b4f15477f9b7b2e58cfc65383a7
9c869703bad7f9ecdd9885edd27f52218b247c19bb1c32a5359585e877ca1bb2
GET /fulcrum/v4/master/dynamic/mobile.ResponsibleGaming~4fd0ee19.3b98c102cd668b49803d.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdutgcUCuurrwrefG2TgpjgpGznTQlSJllva5w08fm7xNHZQj8WANYc3MuxRkPdvb0Wty8lh9YXifEU8MTpQolGtknezve9n
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328177616686
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2213
content-encoding: gzip
x-goog-hash: crc32c=KT33Pw==, md5=VF8gYWelH4Pp2BtosvYe+g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2213
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:52 GMT
expires: Thu, 02 Mar 2023 09:14:52 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:17 GMT
etag: "545f206167a51f83e9d81b68b2f61efa"
content-type: application/javascript
age: 106558
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Snackbar~9765a08b.9a5c54ec61062e2834ff.chunk.js?e=p
34.107.241.180200 OK 3.0 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Snackbar~9765a08b.9a5c54ec61062e2834ff.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (8081)
Hash 493e28757d589b29d3b72a04e075f312
430ff9d5fb801569accf7a888a1ca9015d00489d
e4421aef9e49760a7eea9877c73f8ee6078ca6724c133d3b9732b9da82ed1695
GET /fulcrum/v4/master/dynamic/mobile.Snackbar~9765a08b.9a5c54ec61062e2834ff.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvgYpsksyym6gY3dCFFagQG0snDV9t5Vyttnc86RncoLQ-n9X2Jl6WhrV8hQ3CfADc2RSwmHqOEKbRWLJZNFMrq1Xc2Miot
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328178349833
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2976
content-encoding: gzip
x-goog-hash: crc32c=UDpjuQ==, md5=ST4odX1YmynTtyoE4HXzEg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2976
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:52 GMT
expires: Thu, 02 Mar 2023 09:14:52 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:18 GMT
etag: "493e28757d589b29d3b72a04e075f312"
content-type: application/javascript
age: 106558
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.CasinoScreen~493df0b3.e15031f0e01316d9f8ee.chunk.css?e=p
34.107.241.180200 OK 3.6 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.CasinoScreen~493df0b3.e15031f0e01316d9f8ee.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (7159)
Hash 99d8d80a8e7281abf3857c31acf5b5f3
e3c598289429fcba372b3ad682934fa713d5d199
e595daf5a07b24e4db290400c934ac311927edc9712f5fcd6830b021503c5d40
GET /fulcrum/v4/master/dynamic/mobile.CasinoScreen~493df0b3.e15031f0e01316d9f8ee.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtYu2ofHos9sgdZYZlgLHjbtPksCONBvsCnjlDO8mvtjYCA0fpYH5IxA5XjgTHEhUYIHH3oTs6J00vAAhMkM12wOOBS5ycu
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675167093470823
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 3571
content-encoding: gzip
x-goog-hash: crc32c=cxXqQw==, md5=mdjYCo5ygavzhXwxrPW18w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 3571
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 31 Jan 2023 12:22:18 GMT
expires: Tue, 28 Feb 2023 12:22:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 31 Jan 2023 12:11:33 GMT
etag: "99d8d80a8e7281abf3857c31acf5b5f3"
content-type: text/css
age: 268112
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8990
Expires: Fri, 03 Feb 2023 17:20:40 GMT
Date: Fri, 03 Feb 2023 14:50:50 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8990
Expires: Fri, 03 Feb 2023 17:20:40 GMT
Date: Fri, 03 Feb 2023 14:50:50 GMT
Connection: keep-alive
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Snackbar~9765a08b.bbb624b4c6a00e9ac79e.chunk.css?e=p
34.107.241.180200 OK 465 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Snackbar~9765a08b.bbb624b4c6a00e9ac79e.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (631)
Hash 99c084dd92a699e13251da924e9724c9
e005575addfea39ef22d6949f9c3dc92fb859389
20fa74d03ed880ed3615b72143b64547ed3ab72665e256e84b07157556903ec0
GET /fulcrum/v4/master/dynamic/mobile.Snackbar~9765a08b.bbb624b4c6a00e9ac79e.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvgax8Wi1AymnFQCRlewBIXcO_RPXyTkQnX5v04PXBZ6z-OeZy4iLNTfRLOcHKEO-Cx25eCrF0HIjVTFTfprJWjAMlrQBop
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1647331609164951
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 465
content-encoding: gzip
x-goog-hash: crc32c=wV6JEQ==, md5=mcCE3ZKmmeEyUdqSTpckyQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 465
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Wed, 01 Feb 2023 21:43:18 GMT
expires: Wed, 01 Mar 2023 21:43:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 15 Mar 2022 08:06:49 GMT
etag: "99c084dd92a699e13251da924e9724c9"
content-type: text/css
age: 148052
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Adform~e8e8aaba.732b6adb9ba9c968310e.chunk.js?e=p
34.107.241.180200 OK 2.7 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Adform~e8e8aaba.732b6adb9ba9c968310e.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (7023)
Hash 2bf4450cfc48e32b76f19becdba06fe6
505910ff4f3f30c3a37a4cda4b74860a9351fc05
fdc59f5aab0dcee3fb6bb3b6281cb679816e78a11f6591d24e0b1a954b285955
GET /fulcrum/v4/master/dynamic/mobile.Adform~e8e8aaba.732b6adb9ba9c968310e.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduppY4TNGFBTzEcxzGKKamjm8ax8nuX0pSIw8hYoNuKDiW5x4u9tmccuJwSTrtbUqhMpWgAFw4Egrg8g4_8ZBVAAfyb3kSK
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328173993949
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2716
content-encoding: gzip
x-goog-hash: crc32c=DkH48A==, md5=K/RFDPxI4yt28Zvs26Bv5g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2716
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:52 GMT
expires: Thu, 02 Mar 2023 09:14:52 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:14 GMT
etag: "2bf4450cfc48e32b76f19becdba06fe6"
content-type: application/javascript
age: 106558
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8990
Expires: Fri, 03 Feb 2023 17:20:40 GMT
Date: Fri, 03 Feb 2023 14:50:50 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8990
Expires: Fri, 03 Feb 2023 17:20:40 GMT
Date: Fri, 03 Feb 2023 14:50:50 GMT
Connection: keep-alive
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.CasinoCategory~CasinoScreen~bfe0ed74.32f7ef14756b3c933f66.chunk.css?e=p
34.107.241.180200 OK 1.6 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.CasinoCategory~CasinoScreen~bfe0ed74.32f7ef14756b3c933f66.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (2296)
Hash 904387c1183091eb71506755a0f61648
962998499c0b1144c919b0179fe9aeb6e7913772
c20668abf97b37d7a59c171ca17048e1c94b760133bebdea09aabf52e20f3d17
GET /fulcrum/v4/master/dynamic/mobile.CasinoCategory~CasinoScreen~bfe0ed74.32f7ef14756b3c933f66.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduTsBCunP6doQzsSrthw5zG0W7Cvl3Zyv_k9F8rOYnTDt8bxATmwBLiy7BdZFrUbMbqkuOXkgKTz8AbPQrdR6cSK6-RV6qQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675349647808413
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1592
content-encoding: gzip
x-goog-hash: crc32c=hk9aPA==, md5=kEOHwRgwketxUGdVoPYWSA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1592
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:58:14 GMT
expires: Thu, 02 Mar 2023 14:58:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:54:07 GMT
etag: "904387c1183091eb71506755a0f61648"
content-type: text/css
age: 85956
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~bfe0ed74.2b24c86e70212735cbca.chunk.css?e=p
34.107.241.180200 OK 3.9 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~bfe0ed74.2b24c86e70212735cbca.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (3276)
Hash 2c59688df30d68955e99cbbec9aaa09e
3e6b905631027faa74cb05b37f0b67f7d865a420
b16e7772fcbc38983179aed4fee0507a4cdf36cd5850698b92d46304fc4a7c87
GET /fulcrum/v4/master/dynamic/mobile.BottomBarScreen~bfe0ed74.2b24c86e70212735cbca.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvPR-p_NLU5Gh5lLSGBzbJfJ6j00iLH6yIoH0HGjZcn2r-z1qv4E-fbSj9BrwsqlYVz7JKhLrrgVLXdcUktS7o81g
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675167093429499
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 3877
content-encoding: gzip
x-goog-hash: crc32c=BU+4Ww==, md5=LFlojfMNaJVemcu+yaqgng==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 3877
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 31 Jan 2023 12:22:04 GMT
expires: Tue, 28 Feb 2023 12:22:04 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 31 Jan 2023 12:11:33 GMT
etag: "2c59688df30d68955e99cbbec9aaa09e"
content-type: text/css
age: 268126
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoCategory~CasinoScreen~index~bfe0ed74.ae87e6b7930c3880a32e.chunk.css?e=p
34.107.241.180200 OK 4.8 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoCategory~CasinoScreen~index~bfe0ed74.ae87e6b7930c3880a32e.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (6205)
Hash 838f9a441df96c4b61de7f17c23a4b1b
eda642acd06ed42b86d8f052b1b8b42c3bbf0b35
6023d44fd58600b6582d34445ccbb2f378304b27d4c835e51439efbe6118c3fa
GET /fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoCategory~CasinoScreen~index~bfe0ed74.ae87e6b7930c3880a32e.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvcleF6N-duMQjRmcYPDynzt5nXWRpzIXIsYb5y7c8F8mrRQc36yUdZnr9Z3mPT-xLcFrIsUlA80pk8IpdIsxpdPLYUdFvM
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1672743415974342
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 4806
content-encoding: gzip
x-goog-hash: crc32c=1eZ78g==, md5=g4+aRB35bEth3n8XwjpLGw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 4806
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Sun, 29 Jan 2023 14:16:46 GMT
expires: Sun, 26 Feb 2023 14:16:46 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 03 Jan 2023 10:56:56 GMT
etag: "838f9a441df96c4b61de7f17c23a4b1b"
content-type: text/css
age: 434044
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3490571dd2de0a747987b9a0e18cccc8
18e9f8f160d3515f1cb31fc7538ac762a6cab344
1c071d7f3b288b29254500f94f19c0db0633c6aa90812f2e92c4f64992f5221a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10796
x-amzn-requestid: 5c9b1a83-c99a-44b9-9a90-5edd7ef1e225
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi0XKG93oAMFtsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76760-01bf754d6c725c3275c02a1b;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 06:44:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vUJO-Pt9Hi1ndrCQQT1nNCGT7oDOYBpA8-EawHanESoZAsZv32dQdg==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 00:25:04 GMT
age: 51946
etag: "18e9f8f160d3515f1cb31fc7538ac762a6cab344"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~6ae16c75.61357cf1b5631a272bdf.chunk.js?e=p
34.107.241.180200 OK 18 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~6ae16c75.61357cf1b5631a272bdf.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash c84385a3573afbcca36df84313cb5b7c
3a1054d9b012430ae6d7965d4485b7a42f4e8deb
ec2ca1f27b3f010330016ac91cc5cb286ba74b705e638865c3abd404487e6743
GET /fulcrum/v4/master/dynamic/mobile.app~6ae16c75.61357cf1b5631a272bdf.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtn5zjuCQyg7rYBNkU3y-BUO3jqVLdCeca4PwFL-oVaxus6MEhvubvsaTMeHuOmSO_0Jpd7f4yVTD3GOMQ3_13LsNzhHg6P
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179623176
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 18243
content-encoding: gzip
x-goog-hash: crc32c=+TwEJA==, md5=yEOFo1c6+8yjbfhDE8tbfA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 18243
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "c84385a3573afbcca36df84313cb5b7c"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.AndroidAppScreen~BankID~BlogPostScreen~BlogPostsScreen~BonusInfoScreen~BonusTermsScreen~CampaignList~c348699f.a1dbc61bb6253f888934.chunk.css?e=p
34.107.241.180200 OK 1.7 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.AndroidAppScreen~BankID~BlogPostScreen~BlogPostsScreen~BonusInfoScreen~BonusTermsScreen~CampaignList~c348699f.a1dbc61bb6253f888934.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (5262)
Hash 6964f9a85404172d72a2be157e5e4437
ef03eeba68f633164b0b8e56d158e53cb296e76e
a107be28dab4ef8b16f81f323c0b1bbb3afd6a975647d39e52d0972ad2fe1959
GET /fulcrum/v4/master/dynamic/mobile.AndroidAppScreen~BankID~BlogPostScreen~BlogPostsScreen~BonusInfoScreen~BonusTermsScreen~CampaignList~c348699f.a1dbc61bb6253f888934.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsA7_JDtHW4Vs_ZXgLeu29V0Q-ny7ecfZrf2jKO7DFzNlOT0PT8m_liVcjr4BdzljlVjd6jatTT8Ow1UskvU3nE1A
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1673882442408172
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1745
content-encoding: gzip
x-goog-hash: crc32c=oDzE7w==, md5=aWT5qFQEFy1yor4Vfl5ENw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1745
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Sun, 29 Jan 2023 14:55:26 GMT
expires: Sun, 26 Feb 2023 14:55:26 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Mon, 16 Jan 2023 15:20:42 GMT
etag: "6964f9a85404172d72a2be157e5e4437"
content-type: text/css
age: 431724
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~7a676cbb.1011d686d38b3587b223.chunk.js?e=p
34.107.241.180200 OK 6.4 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~7a676cbb.1011d686d38b3587b223.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (51031)
Hash cc3739e3b574506881018eb6a4736b4b
ffc28597388f0c3bc1ffcf6705fbd4aba9bb373f
b98a76f329fd7b9e2fc330e699c30ac3d6f99dd1d386d3c15fa35bbd5ebba6c3
GET /fulcrum/v4/master/dynamic/mobile.app~7a676cbb.1011d686d38b3587b223.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsLOHJohPOI0UupkHP4Nub72uNhBQPz_aWVGAyqDQdsNFXfIDD8WEMeC4a3SzyJWQwux41PN4fQCVm-xiAWNWwhWQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179475373
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 6371
content-encoding: gzip
x-goog-hash: crc32c=DLaeTw==, md5=zDc547V0UGiBAY62pHNrSw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 6371
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "cc3739e3b574506881018eb6a4736b4b"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4041f3b5316bc84c9e6d88ddbc85b89
4978a4a20836b6f5d863d331bcedad782b7b4ac6
549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5641
x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzpHsXoAMFsuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:28:50 GMT
age: 58920
etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BonusChaserInGameCurtain~BonusChaserLobbyContainer~BonusChaserSwitcher~BottomBarScreen~CasinoCategor~5cd84f6f.05333c94070bd35e1307.chunk.css?e=p
34.107.241.180200 OK 1.9 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BonusChaserInGameCurtain~BonusChaserLobbyContainer~BonusChaserSwitcher~BottomBarScreen~CasinoCategor~5cd84f6f.05333c94070bd35e1307.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (7854)
Hash a2ae12a55f4b0779e648b0bb82ef554a
b0aa312826612b250d50cb96108592038b7c39f0
587f77ce304db6fd03c26391e41d40e5e3ef0695be34c7c672035d72959838ac
GET /fulcrum/v4/master/dynamic/mobile.BonusChaserInGameCurtain~BonusChaserLobbyContainer~BonusChaserSwitcher~BottomBarScreen~CasinoCategor~5cd84f6f.05333c94070bd35e1307.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtBtnltxhTPqct9X4LZ08GO1R_xTlzJYheAyZMqaZQEolOE0zmFzdUFrLi0_0KrJvFULbqArVHjQTTbVxwWIT6M_3CXXzkt
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675343754337478
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1939
content-encoding: gzip
x-goog-hash: crc32c=/XprrA==, md5=oq4SpV9LB3nmSLC7gu9VSg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1939
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 13:24:59 GMT
expires: Thu, 02 Mar 2023 13:24:59 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 13:15:54 GMT
etag: "a2ae12a55f4b0779e648b0bb82ef554a"
content-type: text/css
age: 91551
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 04:53:21 GMT
age: 35849
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~361546bd.9e9fc658b42b63778cd2.chunk.js?e=p
34.107.241.180200 OK 16 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~361546bd.9e9fc658b42b63778cd2.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash bb233299fff2abc4abfb55f2e18dcf43
8c88dae5382af38d1173b4db1cef4d5ac6a4c698
519bcd3b8037567d6f47a12aab2cd08b4117b51356a40ce689e936c25810d48a
GET /fulcrum/v4/master/dynamic/mobile.app~361546bd.9e9fc658b42b63778cd2.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtzuhVkVbwsW1QiqSu03AZ-Bf2wsxW6NP9jRO4op2lWeiJlyGu4mMIvIKAmuYUXI7BGKzUSzeaVCyr3PSOTjgDviA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675348740848123
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 15964
content-encoding: gzip
x-goog-hash: crc32c=AA32kA==, md5=uyMymf/yq8Sr+1Xy4Y3PQw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 15964
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:45:04 GMT
expires: Thu, 02 Mar 2023 14:45:04 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:39:00 GMT
etag: "bb233299fff2abc4abfb55f2e18dcf43"
content-type: application/javascript
age: 86746
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 114e345e134986d7451148fcea31b29d
541e878afee68c8802bb52b0cbbe5a5a0a185392
5030244d4babd1023166f39c935029d789a91ba90aa3a44c6f4c88ddc947b678
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8211
x-amzn-requestid: 2df5779a-a808-46ec-9246-1a9b9bddd9e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmKLVHwroAMF72Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bd7b-3cfe97e07d17958836425784;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:04:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZZXEXszbtmGh7kLfhabCGd41rZRnSmQvdcySUQRTDtJRBqZVUK3LaQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 07:19:27 GMT
age: 27083
etag: "541e878afee68c8802bb52b0cbbe5a5a0a185392"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a6aaf87a867f93dc9268a8b27973b97
f52ccbe6cbced1994acb13a00b05436553b6813e
3fbd7441712035f4d53c17eec93bc278e6c072043f3b5a721cac349fc0dabe77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10166
x-amzn-requestid: 54fe0d12-360f-4d97-bcf3-b24747d956aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY_4zHEcoAMF1iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d379d1-4ba89e44005f616a0ed3ed24;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:14:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G0R-0w9HtLB5OXb-w-RyR9QCnrddkS29FqF_GeAQa1CRWkqaUJwQoA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:27:53 GMT
age: 58977
etag: "f52ccbe6cbced1994acb13a00b05436553b6813e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 8b4e527f608c8cc39109cd731f64fb34
a41935e451a71a75cb8893d0558dc5c41f52b1cc
084cb44395c8aace2eb2f733c0b6fd97d6190179e3054d26a8c5da86a65b92e1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 03 Feb 2023 14:50:50 GMT
Last-Modified: Fri, 03 Feb 2023 14:03:03 GMT
Server: ECS (nyb/1D0F)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nX4mPeErOW_iVO3M5ebsWv_KAQnyK_xQ-10xO7plBO-VyKombTC7Qw==
Age: 2867
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bead5879.f2910eb15a0443467919.chunk.js?e=p
34.107.241.180200 OK 5.3 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bead5879.f2910eb15a0443467919.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (15783)
Hash 7132dd0a03838820b9157e635f8ae36b
672f251bcd0beab7c010bc00e4883075d8bff476
6947f2cb74f15ac19f5885e309c31ffe851a24bc42c664dc178378c61da530e2
GET /fulcrum/v4/master/dynamic/mobile.app~bead5879.f2910eb15a0443467919.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvK1pxOvBhEVfClp_MSyL1e-et6faHXLQvOFpPHTM3kgupUDAgjJ-b7DmgFdE18Df1KnAuJYIlzyorHESr6kqw4G962pZI4
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675346487549865
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 5327
content-encoding: gzip
x-goog-hash: crc32c=fzbtfA==, md5=cTLdCgODiCC5FX5jX4rjaw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 5327
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:09:00 GMT
expires: Thu, 02 Mar 2023 14:09:00 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:01:27 GMT
etag: "7132dd0a03838820b9157e635f8ae36b"
content-type: application/javascript
age: 88910
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aTs6L8dJENFRdtBn7ggAbY5yaYRAzSY2B0bmElV4YNPrJg-KRDAyNA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:46:56 GMT
age: 61434
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~521067a8.06385421245227d2bbfd.chunk.js?e=p
34.107.241.180200 OK 10 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~521067a8.06385421245227d2bbfd.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (49063)
Hash c9f6afb2fa4e26f3d83bda9580a89775
539b5b23175d5bf1cef5be8c6bd28585fdcafc21
a15d70ea3a613863d101ff1332e7899cc0e336cd4bbfaeb1e26a25d0b7146dd7
GET /fulcrum/v4/master/dynamic/mobile.app~521067a8.06385421245227d2bbfd.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdshL32ffhRbpOtCj4m-LasHxYjJMILo-pHSvSGBqBFaqUKETauEhCVzmMjWaEctXNN8afgdHdbLVS78OLnXVSNynA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179311342
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10268
content-encoding: gzip
x-goog-hash: crc32c=MPJYgQ==, md5=yfavsvpOJvPYO9qVgKiXdQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 10268
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "c9f6afb2fa4e26f3d83bda9580a89775"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bfe0ed74.bb38c9744e90ac20e35f.chunk.js?e=p
34.107.241.180200 OK 23 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bfe0ed74.bb38c9744e90ac20e35f.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6597bbb00b8874bb766e271a4236c4b3
432a5e738f1e4a207621044425849b77d228532b
4dee43006229ac032aab15f545e2d79130957e41710f0fa276f0fd6258cf8c13
GET /fulcrum/v4/master/dynamic/mobile.app~bfe0ed74.bb38c9744e90ac20e35f.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvkCPxmInkyzo1k75_zP7U9OjFTwSLfL8eFmq5PYwwLe0mWU-DKTGYoRBQBTZ-59A9Re5vBkNOLn65jGNJPJAQkTuJfFCaf
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675349647321370
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 23208
content-encoding: gzip
x-goog-hash: crc32c=hK0X5g==, md5=ZZe7sAuIdLt2bicaQjbEsw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 23208
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:58:14 GMT
expires: Thu, 02 Mar 2023 14:58:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:54:07 GMT
etag: "6597bbb00b8874bb766e271a4236c4b3"
content-type: application/javascript
age: 85956
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~0efdf0b8.d4ea2b83b2cf2182cc78.chunk.js?e=p
34.107.241.180200 OK 30 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~0efdf0b8.d4ea2b83b2cf2182cc78.chunk.js?e=p
IP 34.107.241.180:0
File type Unicode text, UTF-8 text, with very long lines (46939)
Hash e66ef353146ffbdf49e235f9145a71d5
b4d3fc764e56faf0e9b8a833b57392dfb5efe9ca
7bef4889a0f419c0ca5de2bfe9e563739fe152758f1312edd0704605f9495dbf
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~0efdf0b8.d4ea2b83b2cf2182cc78.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdstq423Jgt-vSPSBylC0RpWtWDt7VROEqW5RGQIHm-ZHDFJOKMadj93Hgf62NMWqJ7QdyP13sg9u91WxXlAmkvkL8SIOdMD
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180001485
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 30348
content-encoding: gzip
x-goog-hash: crc32c=i2jjBw==, md5=5m7zUxRv+99J4jX5FFpx1Q==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 30348
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "e66ef353146ffbdf49e235f9145a71d5"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~493df0b3.f8b771413c312f3e2221.chunk.js?e=p
34.107.241.180200 OK 29 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~493df0b3.f8b771413c312f3e2221.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash dfc12b022a2d063d1c5d0bd82bc35bd2
3c11222417d98653195d0d7de566438b7978c430
ce27a6a69386359dcb44defe51a4c51263ce03c937037902f0e73acc98ed1a4b
GET /fulcrum/v4/master/dynamic/mobile.app~493df0b3.f8b771413c312f3e2221.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduYBt265GBaeMMzTUJF0yQyYAoGkFadTeSDlgnk0E12j-sTmBLEsHF4gG1vREXAlBjy4oETiFikZVsGWfXivAMDWm0sVrN3
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675346487679611
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 29128
content-encoding: gzip
x-goog-hash: crc32c=3mb5dQ==, md5=38ErAiotBj0cXQvYK8Nb0g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 29128
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:09:00 GMT
expires: Thu, 02 Mar 2023 14:09:00 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:01:27 GMT
etag: "dfc12b022a2d063d1c5d0bd82bc35bd2"
content-type: application/javascript
age: 88910
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~127b6cf7.0d0525409bcc0c2bfe6a.chunk.js?e=p
34.107.241.180200 OK 24 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~127b6cf7.0d0525409bcc0c2bfe6a.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3d7d79b60c8d684beeccd53a1155b2a5
8d4c4f6293beda5320b994228abad1c0483a6858
37de6e7c9c56259bf347969f1afcd40277460af9ee60187addcc323cc5f920c2
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~127b6cf7.0d0525409bcc0c2bfe6a.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtZru4XZVlF88FZUb8rXZZwzad0sLK8ILCk7VlDzWz7RxWPTsXHJX-LOIxpHNj4ioCXdSfJJf1Fqr4h6xEUKepmxQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179971354
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 23570
content-encoding: gzip
x-goog-hash: crc32c=h2O+Sg==, md5=PX15tgyNaEvuzNU6EVWypQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 23570
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "3d7d79b60c8d684beeccd53a1155b2a5"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~b60d9e2a.77e906acd52b72523ea9.chunk.js?e=p
34.107.241.180200 OK 40 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~b60d9e2a.77e906acd52b72523ea9.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7e11101ecbbe8af2b6fcbda133db99fe
82185521e7de2c32e05dffb1b3c6fdc382488c72
879d10487b2f2102e1419f1642b01472db7eb3db4efe09f0de8e661544672d66
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~b60d9e2a.77e906acd52b72523ea9.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduxcXlkmzar9SkPv3ee2k3flz2yGANeShaO6gcLP2HtE6rw1IHV0kVuHCku9ed_ss5Eb81USERkD_WQhuVUDfbyK9A43IZu
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180178706
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 39927
content-encoding: gzip
x-goog-hash: crc32c=cCrbLg==, md5=fhEQHsu+ivK2/L2hM9uZ/g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 39927
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "7e11101ecbbe8af2b6fcbda133db99fe"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScree~046c31a5.3a6f788d367a9b8d7a20.chunk.js?e=p
34.107.241.180200 OK 42 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScree~046c31a5.3a6f788d367a9b8d7a20.chunk.js?e=p
IP 34.107.241.180:0
File type Unicode text, UTF-8 text, with very long lines (48260)
Hash fe02e2c2245242f3f8d636d8390454df
f5171a6b5d9ae985303c8940ce864725f9fccaab
00e8362ae25c23be44fd20232e8a1e419e4c30a28946744d41ab643523ab0d30
GET /fulcrum/v4/master/dynamic/mobile.vendors~BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScree~046c31a5.3a6f788d367a9b8d7a20.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtQsXct8D3LtqbkcVZaNPHnkkjfk24zKfSbMBcXwn3JeeHuJ-CbyQaE1etU-mJs0VoOL6wbyqx_IBCymxFZfCMD6rBL874u
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179805484
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 41812
content-encoding: gzip
x-goog-hash: crc32c=34cdsQ==, md5=/gLiwiRSQvP41jbYOQRU3w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 41812
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:52 GMT
expires: Thu, 02 Mar 2023 09:14:52 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "fe02e2c2245242f3f8d636d8390454df"
content-type: application/javascript
age: 106558
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~e4dfd1bd.efabe06dcca0b93134c8.chunk.js?e=p
34.107.241.180200 OK 40 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~e4dfd1bd.efabe06dcca0b93134c8.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (40178)
Hash 07ef144974b50f57a4b67dc73aec1ea5
d82a6952908ba7558c925afc79250f19b11e2560
ff9bb69a5b4e41a57f7c1c74ae1810af3d48956030605ece2729ffd5357410cd
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~e4dfd1bd.efabe06dcca0b93134c8.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvMvQRpQhHb9IR8LDPViq0BmjouLkozpBN18PfpPRloS-O_-0UVk-rvT8qZUO9HT9GnzErTcfYe38yJF3f8gu4erw
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180253656
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 40018
content-encoding: gzip
x-goog-hash: crc32c=GkLgKQ==, md5=B+8USXS1D1ektn3HOuwepQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 40018
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "07ef144974b50f57a4b67dc73aec1ea5"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~c7b8ce09.a7ba145b7ffb82742c2f.chunk.js?e=p
34.107.241.180200 OK 38 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~c7b8ce09.a7ba145b7ffb82742c2f.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 442a97213d095b355bed29d77dc563c2
bef6a1aa8501dda048fcc6125268d5428fb0fa96
5756601734ebfa591299bdfdd4ef4987e56d4985d5be673fedf221c86a78dd12
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~c7b8ce09.a7ba145b7ffb82742c2f.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu_xMxgw7XwWYGqc1Rdjh6oNDCf-nP0iIIAnbnMSoxVvdb5otcOzAscGV9Q8BHFAspAmtfUPPdVCk1nf1r7tsxcwQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180170244
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 37623
content-encoding: gzip
x-goog-hash: crc32c=qG4coA==, md5=RCqXIT0JWzVb7SnXfcVjwg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 37623
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "442a97213d095b355bed29d77dc563c2"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~112c8377.fefc9d505ba77a59ab90.chunk.js?e=p
34.107.241.180200 OK 45 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~112c8377.fefc9d505ba77a59ab90.chunk.js?e=p
IP 34.107.241.180:0
File type Unicode text, UTF-8 text, with very long lines (34517)
Hash b2b00374ffeb1db10774b23dce472540
63e3b108c3419daf6b9c4981faabfb61a4978f9b
5d9ade74c0d20456e4658632184c48c7d7b3e5782aee51fc25678b5305161479
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~112c8377.fefc9d505ba77a59ab90.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvJhuJqNqhjGp3C3jbfzngm3hf6_NWv7tc9C-aIe8Zm4ltU3codZ1Fqvl4Wv0AIZsB4vtlvCAKSFnmHHOXj4cWdsA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180049006
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 44753
content-encoding: gzip
x-goog-hash: crc32c=R3Uoaw==, md5=srADdP/rHbEHdLI9zkclQA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 44753
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "b2b00374ffeb1db10774b23dce472540"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.FlowChecker~493df0b3.2a66ee60dd6219bafc56.chunk.css?e=p
34.107.241.180200 OK 1.7 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.FlowChecker~493df0b3.2a66ee60dd6219bafc56.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (1298)
Hash 7543b46c3dd3ee59e5532d971f2b5d5f
5d396f145a7e9b9b47fd7802b6d01613ae711f8f
14f434e87de14ce624414e3378b544ae3e4d6fc8ba68eae3623c73dd1c8e2bd6
GET /fulcrum/v4/master/dynamic/mobile.FlowChecker~493df0b3.2a66ee60dd6219bafc56.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvCPY0XmeFWkgPBuO509dDyiZvG2I1m-C2EfKgN5h4qZuIS-ufFVkOCREUsNb95ixo8M3xK6y9HdzzKbLCEyAcwrmVFoPjP
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1672760598499902
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1738
content-encoding: gzip
x-goog-hash: crc32c=xhs6+w==, md5=dUO0bD3T7lnlUy2XHytdXw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1738
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Wed, 01 Feb 2023 21:43:18 GMT
expires: Wed, 01 Mar 2023 21:43:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 03 Jan 2023 15:43:18 GMT
etag: "7543b46c3dd3ee59e5532d971f2b5d5f"
content-type: text/css
age: 148052
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoScreen~bfe0ed74.4757b9e4f5fb2c4487d8.chunk.css?e=p
34.107.241.180200 OK 4.2 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoScreen~bfe0ed74.4757b9e4f5fb2c4487d8.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (5257)
Hash a81c6a4191583e36881d30f56744dd02
ab7080df82e72821c10736da07897d0fa2b21cf2
575e5f86acc26412efef40f1e9fde5a467f19dbdd1cebd1004fd15e7ac6dbe31
GET /fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoScreen~bfe0ed74.4757b9e4f5fb2c4487d8.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtmrrVbwURYe0IuCXTTOS0HSL91uexdIFwpgtiAL94hj7sCaBsgoeeTANJlOxE9prMvsYNJ3pqzYQ8bDpxcNjPC0w
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675181240668062
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 4231
content-encoding: gzip
x-goog-hash: crc32c=88fhGg==, md5=qBxqQZFYPjaIHTD1Z0TdAg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 4231
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 13:07:18 GMT
expires: Thu, 02 Mar 2023 13:07:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 31 Jan 2023 16:07:20 GMT
etag: "a81c6a4191583e36881d30f56744dd02"
content-type: text/css
age: 92612
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Experimentation~0035cfbb.8db5f4fe97c70a481ab2.chunk.js?e=p
34.107.241.180200 OK 1.4 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Experimentation~0035cfbb.8db5f4fe97c70a481ab2.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (2891)
Hash 8f0a8969aa34476131cb5e219e278ef3
fa84df48cac26285f96a811243978c270a8be2fe
55a43530ade66178614b0c2e723e75f21d8605042632f09eeda278fffaecc2f0
GET /fulcrum/v4/master/dynamic/mobile.Experimentation~0035cfbb.8db5f4fe97c70a481ab2.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu4beIJNmpNIEul32IB_rSBrrmkiJcKFmY_8h8WDVfpdjKypCOv9WSocJagncR-rhTHCTb4HvgUnZCfyn4IHXlS5HgB5HVx
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328175707954
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1389
content-encoding: gzip
x-goog-hash: crc32c=xulZVg==, md5=jwqJaao0R2Exy14hnieO8w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1389
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:52 GMT
expires: Thu, 02 Mar 2023 09:14:52 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:15 GMT
etag: "8f0a8969aa34476131cb5e219e278ef3"
content-type: application/javascript
age: 106558
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ROWBanner~bfe0ed74.0446bb98668232c5d3be.chunk.css?e=p
34.107.241.180200 OK 855 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ROWBanner~bfe0ed74.0446bb98668232c5d3be.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (2056)
Hash 4a16c5f59bea1f27ee21dbcff3c5a4c0
1a5ccf49d4297fe14b0586c5302a0c7666dfd89b
270812d18857fefd0d504acb0e07180ddd0bb6be0760ff6276551565bdde8da2
GET /fulcrum/v4/master/dynamic/mobile.ROWBanner~bfe0ed74.0446bb98668232c5d3be.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvyy7tJjFS_4BJlvAHLLDeWk7k6DcZbAI6iMo7i3LKxUAECsVfzKQkZCKRmMgP6vwwPO61HNk9yaArCP2FMZIMgjznLae95
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675167093709299
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 855
content-encoding: gzip
x-goog-hash: crc32c=GXWvqw==, md5=ShbF9ZvqHyfuIdvP88WkwA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 855
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 31 Jan 2023 12:22:04 GMT
expires: Tue, 28 Feb 2023 12:22:04 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 31 Jan 2023 12:11:33 GMT
etag: "4a16c5f59bea1f27ee21dbcff3c5a4c0"
content-type: text/css
age: 268126
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~CasinoScreen~MyOffers~Payment~WelcomeOffer~b3c4a2ff.e17863f26bea8f1c020f.chunk.js?e=p
34.107.241.180200 OK 6.7 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~CasinoScreen~MyOffers~Payment~WelcomeOffer~b3c4a2ff.e17863f26bea8f1c020f.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (29702), with no line terminators
Hash 850743e3b3a2edc9622d81d6544d6803
97df0777a93948da2ee630b33cdd15fdfebafd37
f093e10ab04a5b16d2f674a0f3b910f372bb9b88df09d284b2b11536087906d3
GET /fulcrum/v4/master/dynamic/mobile.vendors~CasinoScreen~MyOffers~Payment~WelcomeOffer~b3c4a2ff.e17863f26bea8f1c020f.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsER8XvkrS83fZn2S7P3CqIkyrRWy5i2sm_Oub2WyfiX17QKtAo5Qyqhbjt3kbDl1Ca2o2_1IH0m7hD4U3LxfgVLw
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179817291
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 6715
content-encoding: gzip
x-goog-hash: crc32c=CHwJ+w==, md5=hQdD47Oi7cliLYHWVE1oAw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 6715
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:15 GMT
expires: Thu, 02 Mar 2023 09:14:15 GMT
cache-control: public, max-age=2419200,no-transform
age: 106595
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "850743e3b3a2edc9622d81d6544d6803"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~bfe0ed74.e8b0b2c7ba07abf73567.chunk.js?e=p
34.107.241.180200 OK 27 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~bfe0ed74.e8b0b2c7ba07abf73567.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4ca3fa9bcb86851a99fa3148879c1220
f5477e4d7f6b74035735203f9dc873919afb7db6
bfc173832f6b818fbf06e92847dbddee4b125a46fbfc4fa4a16197d0c426d6e0
GET /fulcrum/v4/master/dynamic/mobile.BottomBarScreen~bfe0ed74.e8b0b2c7ba07abf73567.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdssIPtg-GPIXwmxSn6RinDWQbSNBNyBqdG6Zp72c52iLSh7k42vUyfJ7QSvwLu-rRQfzL4LsKXBYwZrLBNvM7aayUrpqwKZ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675346486841302
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 26688
content-encoding: gzip
x-goog-hash: crc32c=hi0iVA==, md5=TKP6m8uGhRqZ+jFIh5wSIA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 26688
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:09:00 GMT
expires: Thu, 02 Mar 2023 14:09:00 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:01:26 GMT
etag: "4ca3fa9bcb86851a99fa3148879c1220"
content-type: application/javascript
age: 88910
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BonusChaserInGameCurtain~BonusChaserLobbyContainer~BonusChaserSwitcher~BottomBarScreen~CasinoCategor~5cd84f6f.11df6600d9074a745c15.chunk.js?e=p
34.107.241.180200 OK 15 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BonusChaserInGameCurtain~BonusChaserLobbyContainer~BonusChaserSwitcher~BottomBarScreen~CasinoCategor~5cd84f6f.11df6600d9074a745c15.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1fe3cac3d4176681990caf7b2534ac26
bc3f337d4336653833835f9cef31d83b071213df
6e09e5f433764fd2bf56514d39a413a9add25a2666d435cf064fccca077c5efb
GET /fulcrum/v4/master/dynamic/mobile.BonusChaserInGameCurtain~BonusChaserLobbyContainer~BonusChaserSwitcher~BottomBarScreen~CasinoCategor~5cd84f6f.11df6600d9074a745c15.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduI2K4fQGrdM-EYKBbq_E07MZt3AtplhAoNWPKLiaPQJyU5k3_L8vknqcIeuy3yMhxf04aUUuJowrjWDjq6nuTO8jazntqv
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328174893232
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 14848
content-encoding: gzip
x-goog-hash: crc32c=3rZ4Yg==, md5=H+PKw9QXZoGZDK97JTSsJg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 14848
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:52 GMT
expires: Thu, 02 Mar 2023 09:14:52 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:14 GMT
etag: "1fe3cac3d4176681990caf7b2534ac26"
content-type: application/javascript
age: 106558
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~BottomBarScreen~9b1fde68.b50b9355d8dc752bc62d.chunk.js?e=p
34.107.241.180200 OK 7.5 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~BottomBarScreen~9b1fde68.b50b9355d8dc752bc62d.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (16961)
Hash 1340e43638ed7452931324bd03c3c73d
a5f59685ef37c888851455ea5ccf24a054442dbd
6d94fe002fde68fcb90cbc6e8276f4a26e3264da31e8b27e3d3f97e0bcfafb60
GET /fulcrum/v4/master/dynamic/mobile.vendors~BottomBarScreen~9b1fde68.b50b9355d8dc752bc62d.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsGnSFivRDgUTVdS5PNGUyTnOQ-_PZ3P8ZheKg5lXRkLKGOwR5DzNV1_B4LIEILodje8SCVCd-KOWwCXNjVgnrzZg
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179732614
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7463
content-encoding: gzip
x-goog-hash: crc32c=2m6guA==, md5=E0DkNjjtdFKTEyS9A8PHPQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 7463
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
age: 106596
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "1340e43638ed7452931324bd03c3c73d"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.AuthorizationBar~faa51968.de409b88722424e18602.chunk.js?e=p
34.107.241.180200 OK 5.8 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.AuthorizationBar~faa51968.de409b88722424e18602.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (26298)
Hash 190f5f44c8685b1795d78d85c4d7e20f
062d22ecba30d96a2e4cd5c2209a348dc39dc59f
079f528ab08b5c9ed14deddc60c24d57b0d1fda7a387b9d1759d23d532e8bd5f
GET /fulcrum/v4/master/dynamic/mobile.AuthorizationBar~faa51968.de409b88722424e18602.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvNdKXiYZjTFKoWUhy6A802CHSjE8jZL8v6wf2sY-3-BxQtlIF-Tnf64l5wGSBMrOkZkrpeqCHJDRrX1D9sPsgI765sikfa
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328174139237
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 5828
content-encoding: gzip
x-goog-hash: crc32c=UF8bCQ==, md5=GQ9fRMhoWxeV142FxNfiDw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 5828
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:15 GMT
expires: Thu, 02 Mar 2023 09:14:15 GMT
cache-control: public, max-age=2419200,no-transform
age: 106595
last-modified: Thu, 02 Feb 2023 08:56:14 GMT
etag: "190f5f44c8685b1795d78d85c4d7e20f"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.AndroidAppScreen~BankID~BlogPostScreen~BlogPostsScreen~BonusInfoScreen~BonusTermsScreen~CampaignList~c348699f.6b9ef37a3fb35a118ff5.chunk.js?e=p
34.107.241.180200 OK 17 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.AndroidAppScreen~BankID~BlogPostScreen~BlogPostsScreen~BonusInfoScreen~BonusTermsScreen~CampaignList~c348699f.6b9ef37a3fb35a118ff5.chunk.js?e=p
IP 34.107.241.180:0
File type Unicode text, UTF-8 text, with very long lines (65521), with no line terminators
Hash 859584405b165a0c593ff10b27fb5e19
8c50ebb7fd68ef86c281611d43facbdabc2b52a8
6055f9ba588b7810ee0154fedfc8f799c5ae2d17ad0a0ba2e2f5d47cdc809e85
GET /fulcrum/v4/master/dynamic/mobile.AndroidAppScreen~BankID~BlogPostScreen~BlogPostsScreen~BonusInfoScreen~BonusTermsScreen~CampaignList~c348699f.6b9ef37a3fb35a118ff5.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsqcxvOBQbWUHWMVZXd_vbV4b_d0Zj0I2c6cVfSyHdUplFvSgZqUGi_F3K7z0XC2Ad0YPuiH85QM3G5C0ZhUv5_4RQRh2d4
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675346486635429
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 17162
content-encoding: gzip
x-goog-hash: crc32c=ykOnJg==, md5=hZWEQFsWWgxZP/ELJ/teGQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 17162
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:09:00 GMT
expires: Thu, 02 Mar 2023 14:09:00 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:01:26 GMT
etag: "859584405b165a0c593ff10b27fb5e19"
content-type: application/javascript
age: 88910
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.AndroidAppScreen~BankID~BonusInfoScreen~BonusTermsScreen~CampaignScreen~CasinoScreen~CommonContentSc~2f699297.a5aa39abf59295f9ed10.chunk.js?e=p
34.107.241.180200 OK 6.1 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.AndroidAppScreen~BankID~BonusInfoScreen~BonusTermsScreen~CampaignScreen~CasinoScreen~CommonContentSc~2f699297.a5aa39abf59295f9ed10.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (20694)
Hash 6c8ac9a77f25ceb91779167c926952c3
a5c8300bffdeb0e178eb9caa0398aa8d2ad2f535
25b1f82bd1676823ab0a1797f32c1556b06b5e6bc7c411bf22ab7ecefc6f2fba
GET /fulcrum/v4/master/dynamic/mobile.AndroidAppScreen~BankID~BonusInfoScreen~BonusTermsScreen~CampaignScreen~CasinoScreen~CommonContentSc~2f699297.a5aa39abf59295f9ed10.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtkJbhWeD5tY7x0eAcwsD5vxW87bB1qIxOEXQTFn142PqM_uzNkj18EMG9QUNt9bf7ptdxcL_qL8_pH4yvjL7OeAupxkbeW
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328174198389
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 6131
content-encoding: gzip
x-goog-hash: crc32c=qaStvw==, md5=bIrJp38lzrkXeRZ8kmlSww==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 6131
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:52 GMT
expires: Thu, 02 Mar 2023 09:14:52 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:14 GMT
etag: "6c8ac9a77f25ceb91779167c926952c3"
content-type: application/javascript
age: 106558
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~AndroidAppScreen~BankID~BonusInfoScreen~BonusTermsScreen~CampaignScreen~CasinoScreen~CommonC~3e8f83d7.97b8a2d63afa6f7f09ac.chunk.js?e=p
34.107.241.180200 OK 4.1 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~AndroidAppScreen~BankID~BonusInfoScreen~BonusTermsScreen~CampaignScreen~CasinoScreen~CommonC~3e8f83d7.97b8a2d63afa6f7f09ac.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (10428), with no line terminators
Hash e05c298774789223dc711c0aeb172604
12c5e710b67649e24d102b5b31c5975b5e573703
84a8aa1918697e54b9ef9c22f789a4c43934501d5301120252ada3e74222eb53
GET /fulcrum/v4/master/dynamic/mobile.vendors~AndroidAppScreen~BankID~BonusInfoScreen~BonusTermsScreen~CampaignScreen~CasinoScreen~CommonC~3e8f83d7.97b8a2d63afa6f7f09ac.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvOPbq8zs50M5bF1rWWHs_Js0SddfH1F6GGICArWHzxbOZxLqmSgyLrU-KNr2jvXJMNxE7eWxtFnZ-6CWOCkKGMfDFuXLXn
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179558039
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 4148
content-encoding: gzip
x-goog-hash: crc32c=S9SbkQ==, md5=4Fwph3R4kiPccRwK6xcmBA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 4148
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 13:07:17 GMT
expires: Thu, 02 Mar 2023 13:07:17 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "e05c298774789223dc711c0aeb172604"
content-type: application/javascript
age: 92613
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.AuthorizationBar~faa51968.96d7b9660bac924e9e28.chunk.css?e=p
34.107.241.180200 OK 825 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.AuthorizationBar~faa51968.96d7b9660bac924e9e28.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (862)
Hash fd587e74839b1c5b1633eb0dc71cdbb3
4112fb16194b143a25e6944fa47c324db0efc7c0
05181e87f506d22c56e19cb8bacf26d7c5bea740cc1b5024a098a311d2a7f9b4
GET /fulcrum/v4/master/dynamic/mobile.AuthorizationBar~faa51968.96d7b9660bac924e9e28.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvh9ww8OzLLGlJE7sE-BwGd5QvjkLsuIjKzK_yFXycMyq6EmpjbZ1H9dbWV2cQ6GYzZmFSnnqatGnExTFshBnHbJg
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1669118795773812
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 825
content-encoding: gzip
x-goog-hash: crc32c=4EUfsA==, md5=/Vh+dIObHFsWM+sNxxzbsw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 825
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Sun, 29 Jan 2023 14:15:30 GMT
expires: Sun, 26 Feb 2023 14:15:30 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 22 Nov 2022 12:06:35 GMT
etag: "fd587e74839b1c5b1633eb0dc71cdbb3"
content-type: text/css
age: 434120
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~CasinoCategory~CasinoScreen~9b1fde68.cf4a279f0ca8fa7ad6ea.chunk.js?e=p
34.107.241.180200 OK 6.4 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~CasinoCategory~CasinoScreen~9b1fde68.cf4a279f0ca8fa7ad6ea.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (12295)
Hash 3f61b8810335946e268b042a8f3f45ef
85367cd476d50821235317e6d1d60230bc558fa4
c71fa8c1b620a177f06684ebf9ef53f3531a240bf6bcec587c68d67586257884
GET /fulcrum/v4/master/dynamic/mobile.vendors~CasinoCategory~CasinoScreen~9b1fde68.cf4a279f0ca8fa7ad6ea.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdviwswi6fzTtRoKi4ije7Gb7D64bawOPOPZ0P5ASl2J18YEXSDcNQux34MMxq_oV5nIi3YIThSxe24dpPEEhG1gyQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179736797
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 6398
content-encoding: gzip
x-goog-hash: crc32c=ILnT5A==, md5=P2G4gQM1lG4miwQqjz9F7w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 6398
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:15 GMT
expires: Thu, 02 Mar 2023 09:14:15 GMT
cache-control: public, max-age=2419200,no-transform
age: 106595
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "3f61b8810335946e268b042a8f3f45ef"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.CasinoScreen~493df0b3.6be3e13e2c652dc10482.chunk.js?e=p
27 kB URL cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.CasinoScreen~493df0b3.6be3e13e2c652dc10482.chunk.js?e=p
IP :0
File type gzip compressed data, was "tmpbo0ydj9b", last modified: Thu Feb 2 08:56:14 2023, max compression\012- data
Hash 705455639c8e10bdbc6336fae14719bf
365a001c97822fbb4574aebc9b1f3ac758ec340e
b36868bd5da56f3239254c3ee0eb3d53f10d24f90bd2de86edc2eb9a702fd9b5
GET /fulcrum/v4/master/dynamic/mobile.CasinoScreen~493df0b3.6be3e13e2c652dc10482.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.CasinoCategory~CasinoScreen~bfe0ed74.017fa8d298e9d8e863f5.chunk.js?e=p
34.107.241.180200 OK 6.8 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.CasinoCategory~CasinoScreen~bfe0ed74.017fa8d298e9d8e863f5.chunk.js?e=p
IP 34.107.241.180:0
File type Unicode text, UTF-8 text, with very long lines (25242)
Hash e9f20d50728bd23df98c0f27c4d5d55b
17bc3681045f9a27b0d6af3e95596baf82826750
d5bda3a7bcf2be3902532c1f39bfa519b0921ee41c46dd47b2267aed9880116c
GET /fulcrum/v4/master/dynamic/mobile.CasinoCategory~CasinoScreen~bfe0ed74.017fa8d298e9d8e863f5.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv_BW46paBBM0HCrlW_9F6e2nzXPyRYlneGTq-NbX-cD97bwnE7sFzwwlGlpZDD9gkBImcmBADYZMSLj_a-BjP9oj368Wlr
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328175089639
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 6787
content-encoding: gzip
x-goog-hash: crc32c=RGXJ3w==, md5=6fINUHKL0j35jA8nxNXVWw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 6787
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:15 GMT
expires: Thu, 02 Mar 2023 09:14:15 GMT
cache-control: public, max-age=2419200,no-transform
age: 106595
last-modified: Thu, 02 Feb 2023 08:56:15 GMT
etag: "e9f20d50728bd23df98c0f27c4d5d55b"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.DepositLogos~ef512817.616a126988b8ace38c74.chunk.js?e=p
34.107.241.180200 OK 638 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.DepositLogos~ef512817.616a126988b8ace38c74.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (911)
Hash d3b74fb650427effc38056e939d35a45
5eee3c90ec9a5c91a1a770132c090219ada418ab
9e1d7787620d77d660c1a844a5fc31cb10fc6cbd090eded33164a2903e3b3df9
GET /fulcrum/v4/master/dynamic/mobile.DepositLogos~ef512817.616a126988b8ace38c74.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdswX_5PLGRWwI-z2JHJiigpPh9Fb8W_alrcLuXN-i2C4VZ9phItesLwImMaFwBzdmBHMzVJDW_EiIzdywYnltStnsoVUcBQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328175319635
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 638
content-encoding: gzip
x-goog-hash: crc32c=AMDTyw==, md5=07dPtlBCfv/DgFbpOdNaRQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 638
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:58 GMT
expires: Thu, 02 Mar 2023 09:14:58 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:15 GMT
etag: "d3b74fb650427effc38056e939d35a45"
content-type: application/javascript
age: 106552
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Icons-OPL~6f2a7a41.b969c50257cef78d4600.chunk.js?e=p
34.107.241.180200 OK 9.5 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Icons-OPL~6f2a7a41.b969c50257cef78d4600.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (30076)
Hash 52e9c4a5ae6ef39e46bd6844c53befb8
64b1a5a7b23d9e95422162979c9b4a7bfb77fbf6
0c5ff9aaf416cfeaa79780d38d753d8483410f9b714e8a0be1d0474c316d9b11
GET /fulcrum/v4/master/dynamic/mobile.Icons-OPL~6f2a7a41.b969c50257cef78d4600.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduQOsYCjmt2rAtcBlrp9DMfAHupY8o2Q05g9KQ7Mqc9274tKOJWO9dCdJTNqhXXMX17c6QJ0eVSm8s1hInriSj9EQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328176289838
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 9509
content-encoding: gzip
x-goog-hash: crc32c=BQmOtw==, md5=UunEpa5u855GvWhExTvvuA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 9509
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:53 GMT
expires: Thu, 02 Mar 2023 09:14:53 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:16 GMT
etag: "52e9c4a5ae6ef39e46bd6844c53befb8"
content-type: application/javascript
age: 106557
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ZendeskHelpCenter~9c9801fa.9dc9e25f20b45c00396d.chunk.js?e=p
34.107.241.180200 OK 6.8 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ZendeskHelpCenter~9c9801fa.9dc9e25f20b45c00396d.chunk.js?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (22670)
Hash 2323325c6dfdb0baf19f658f95519762
33bfa725127de818fbceaf790a6a53b6317ca796
294e55a689903e11a7a45e6640db5aaf9581229aa74e7b2186027d1333fb1992
GET /fulcrum/v4/master/dynamic/mobile.ZendeskHelpCenter~9c9801fa.9dc9e25f20b45c00396d.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdt4gB01NZzJ0XBHt2_l-_XuZ7CRxeYxoT-mZYK9K3o1leA3NigpNsDxuZ9eonLHW8stjS4m9NP-UTMxnASAyNmD4mM-Ofxa
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179117627
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 6767
content-encoding: gzip
x-goog-hash: crc32c=Raf0JA==, md5=IyMyXG39sLrxn2WPlVGXYg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 6767
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:52 GMT
expires: Thu, 02 Mar 2023 09:14:52 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "2323325c6dfdb0baf19f658f95519762"
content-type: application/javascript
age: 106558
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~521067a8.89f65db9ae423b9197b1.chunk.css?e=p
34.107.241.180200 OK 283 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~521067a8.89f65db9ae423b9197b1.chunk.css?e=p
IP 34.107.241.180:0
Hash 327122b5334eeb33cd79c886dd49beb3
e58dfacbb2db54d6652889e2dad8ce19f2d2fe2f
9df65c43857dea61bc65232b1e3fd20a82475f77563d3999ac0a9b9ed6d90f38
GET /fulcrum/v4/master/dynamic/mobile.app~521067a8.89f65db9ae423b9197b1.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvwZtvZW475Pi0HLfrIjdKde01yrowgczfnCzcTvDDIN4pLGCrRnxBqM-nGI_MSHrYBkA4rnLMi8huS5_FHJpKomw
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1663591116440358
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 283
content-encoding: gzip
x-goog-hash: crc32c=uA/axQ==, md5=MnEitTNO6zPNeciG3Um+sw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 283
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Mon, 30 Jan 2023 00:22:26 GMT
expires: Mon, 27 Feb 2023 00:22:26 GMT
cache-control: public, max-age=2419200,no-transform
age: 397704
last-modified: Mon, 19 Sep 2022 12:38:36 GMT
etag: "327122b5334eeb33cd79c886dd49beb3"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bfe0ed74.f5afd94bdac610591557.chunk.css?e=p
34.107.241.180200 OK 585 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bfe0ed74.f5afd94bdac610591557.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (1286)
Hash 27c4a2615df59ed93991f6b354671dd6
0e0d88a402dc646af5a4c199145ac8a422d2d448
a98cad2dd71c709b26875e33ae112f368fac45aa666664ba7c94fc2e7a2b9df5
GET /fulcrum/v4/master/dynamic/mobile.app~bfe0ed74.f5afd94bdac610591557.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvRTaj6e5PG977X2Qurg4y9U-oNrugAEXZCVowpLYUvuxZt5cvM036yMCqFgBgOk1qVscbq7ePlSqVZpTpON57r1FlOZ-us
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1666691230328646
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 585
content-encoding: gzip
x-goog-hash: crc32c=K8QcbA==, md5=J8SiYV31ntk5kfazVGcd1g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 585
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Sun, 29 Jan 2023 14:15:28 GMT
expires: Sun, 26 Feb 2023 14:15:28 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 25 Oct 2022 09:47:10 GMT
etag: "27c4a2615df59ed93991f6b354671dd6"
content-type: text/css
age: 434122
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~1152e2e7.1fa9ef0afcd69d2f27de.chunk.css?e=p
34.107.241.180200 OK 1.8 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~1152e2e7.1fa9ef0afcd69d2f27de.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (2696)
Hash 4d3f63e8cbd0ec629f2aff72093c300a
5347f5d957958a872b734b54ec907a8747ca342d
7d17d82ffb30ae85b4a6ab33f5ee0e3d0955e0e5ad071b6ddcce470f2d2570d5
GET /fulcrum/v4/master/dynamic/mobile.app~1152e2e7.1fa9ef0afcd69d2f27de.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv1x3imOO9mtDZ-x9z6Lbs5Q0r-UdNG5o9UImaKmY4ph9PJIdI1s9OcqTwDqh29DI0lzDK-uz37_D37uJhxdntXLoGP9okb
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1671454859052504
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1812
content-encoding: gzip
x-goog-hash: crc32c=kwTQpg==, md5=TT9j6MvQ7GKfKv9yCTwwCg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1812
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Sun, 29 Jan 2023 14:15:28 GMT
expires: Sun, 26 Feb 2023 14:15:28 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Mon, 19 Dec 2022 13:00:59 GMT
etag: "4d3f63e8cbd0ec629f2aff72093c300a"
content-type: text/css
age: 434122
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~9675856e.dd984e891c8a0e00c45b.chunk.css?e=p
34.107.241.180200 OK 2.1 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~9675856e.dd984e891c8a0e00c45b.chunk.css?e=p
IP 34.107.241.180:0
File type ASCII text, with very long lines (2605)
Hash 8bf6d4e9191247f34f49910ff4bce36c
083cc5e954c1cadc64847b769796b4f783194a8d
a26135400ddfc9dcb572f5cee188ef7cd5faf61bbb851a25b74738bc12cc0477
GET /fulcrum/v4/master/dynamic/mobile.app~9675856e.dd984e891c8a0e00c45b.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdt0iIJit5R5CLY-LPiIzCmzQbGj9Cghruf2E-90D-r01UkuaGuB-9aY_7ZgkLLe_5M4V3err1VvC4zKEs8UfpFHuFPHSztr
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1670506834487828
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2102
content-encoding: gzip
x-goog-hash: crc32c=xSTuIQ==, md5=i/bU6RkSR/NPSZEP9LzjbA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2102
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Sun, 29 Jan 2023 14:15:28 GMT
expires: Sun, 26 Feb 2023 14:15:28 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:34 GMT
etag: "8bf6d4e9191247f34f49910ff4bce36c"
content-type: text/css
age: 434122
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 03:13:04 GMT
expires: Fri, 02 Feb 2024 03:13:04 GMT
cache-control: public, max-age=31536000
age: 128267
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 14:07:32 GMT
expires: Thu, 01 Feb 2024 14:07:32 GMT
cache-control: public, max-age=31536000
age: 175399
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoCategory~CasinoScreen~index~bfe0ed74.4f7ea40cf7ed2b6e2a73.chunk.js?e=p
34.107.241.180200 OK 13 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoCategory~CasinoScreen~index~bfe0ed74.4f7ea40cf7ed2b6e2a73.chunk.js?e=p
IP 34.107.241.180:0
Hash 5c02543fd50416d417c4fde1410008d5
82803a4554e56c2247c2ce50e9a0a3c77b5e0730
084c044e1a353a41a04f9c923b418d582f8e8d3a1996053c8e4912a57d158799
GET /fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoCategory~CasinoScreen~index~bfe0ed74.4f7ea40cf7ed2b6e2a73.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv3BYRL6iXoBQ3hX6JFXOPE6dV_7yKAUy8U4ExHQ8GibxrY3QxVF4V5waif_8RvMUyH_p1A9nkrjsC8ObOKbCR6Uge_OnK2
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328174911532
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 17547
content-encoding: gzip
x-goog-hash: crc32c=ZjGg4A==, md5=M/v7y+8RnOgl3HWIQikbvg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 17547
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
age: 106596
last-modified: Thu, 02 Feb 2023 08:56:14 GMT
etag: "33fbfbcbef119ce825dc758842291bbe"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 12:46:12 GMT
expires: Mon, 29 Jan 2024 12:46:12 GMT
cache-control: public, max-age=31536000
age: 439479
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoScreen~bfe0ed74.85c03cd3cbde05fb76b2.chunk.js?e=p
34.107.241.180200 OK 16 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoScreen~bfe0ed74.85c03cd3cbde05fb76b2.chunk.js?e=p
IP 34.107.241.180:0
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoScreen~bfe0ed74.85c03cd3cbde05fb76b2.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdupHz9DaliXh9MrN7dof7hbmi5dUJ0az1JdpsoSzW06PyxIMC_7thmybx5vdpHuv5_r4n7fiSLnX2-aTsJYMNUtfA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328175023410
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 16085
content-encoding: gzip
x-goog-hash: crc32c=YN2lGQ==, md5=9ftwLUSWbUs55D3sbud1cw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 16085
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:15 GMT
expires: Thu, 02 Mar 2023 09:14:15 GMT
cache-control: public, max-age=2419200,no-transform
age: 106595
last-modified: Thu, 02 Feb 2023 08:56:15 GMT
etag: "f5fb702d44966d4b39e43dec6ee77573"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
372fc806295528bc5fbf-83c638ca2a0b52c62d893afeac24561e.ssl.cf3.rackcdn.com/GenericLiveCasino.jpg
2.18.172.147200 OK 88 kB URL HTTP/1.1 372fc806295528bc5fbf-83c638ca2a0b52c62d893afeac24561e.ssl.cf3.rackcdn.com/GenericLiveCasino.jpg
IP 2.18.172.147:0
File type JPEG image data, baseline, precision 8, 600x117, components 3\012- data
Hash 354579f5e2bbf9efee9ef5b730b02bf0
494e7620512430459d1f3233366dee956897ff0a
08893d543a20215b5ee2d85fa344a9bb3470490285fd3693e9952adf979ca619
GET /GenericLiveCasino.jpg HTTP/1.1
Host: 372fc806295528bc5fbf-83c638ca2a0b52c62d893afeac24561e.ssl.cf3.rackcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Tue, 03 Dec 2019 10:23:28 GMT
ETag: 354579f5e2bbf9efee9ef5b730b02bf0
Unused62: 8096267
X-Trans-Id: tx4f3a66b713364770acb5b-0060d2026dlon3
Content-Length: 88183
Accept-Ranges: bytes
X-Timestamp: 1575368607.19877
Content-Type: image/jpeg
Cache-Control: public, max-age=185582
Expires: Sun, 05 Feb 2023 18:23:53 GMT
Date: Fri, 03 Feb 2023 14:50:51 GMT
Connection: keep-alive
www.leovegas.com/_Incapsula_Resource?SWKMTFSR=1&e=0.5232601894664664
107.154.248.168200 OK 1 B URL HTTP/2 www.leovegas.com/_Incapsula_Resource?SWKMTFSR=1&e=0.5232601894664664
IP 107.154.248.168:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
GET /_Incapsula_Resource?SWKMTFSR=1&e=0.5232601894664664 HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/en-no/livecasino?btag=667909_30882D957AA14842B84C06EBF564E211&c=woborkfltpp976cm2bfhd33u&pid=3747044&bid=15012
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15012%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675435848854)%5c%2f%22%2c%22CookieTag%22%3a%22150123747044451240919C2023231450%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222803930797%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%228fff8ce6-aa63-4cbb-8d25-c117b3872cfb%22%7D; visid_incap_846569=nVHdRwrdQKqrU7ZbGlR5mkgf3WMAAAAAQUIPAAAAAACnb20MIjgQ3J+w7gsXSN3X; nlbi_846569=Cl/LJW9e/EJ5GKWgTJV9qQAAAADzI4382nkUncJO6PnlMJdQ; incap_ses_633_846569=Tl7fOpTJTFGucB2Apd7ICEgf3WMAAAAAcg1cX/3RIcjz44CRx6RqCw==; leobtag=667909_30882D957AA14842B84C06EBF564E211; leonrpid=3747044; leonrbid=15012; leonrmeta=[{"value":"woborkfltpp976cm2bfhd33u","key":"c"}]; ___utmvc=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
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: text/plain
x-robots-tag: noindex
content-length: 1
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
www.leovegas.com/static/fulcrum/apple-touch-icon.png
107.154.248.168200 OK 21 kB URL HTTP/2 www.leovegas.com/static/fulcrum/apple-touch-icon.png
IP 107.154.248.168:0
File type PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Hash f9a35c0fdecb2ee483d7badb5e03dd5b
6b9e2d23f188021f914eb2f58ce74d4753afd996
5137e8fe669f23cfe46ec272e9621157210a5e4b3f985520d22ed65f37ad3e0b
GET /static/fulcrum/apple-touch-icon.png HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/en-no/livecasino?btag=667909_30882D957AA14842B84C06EBF564E211&c=woborkfltpp976cm2bfhd33u&pid=3747044&bid=15012
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15012%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675435848854)%5c%2f%22%2c%22CookieTag%22%3a%22150123747044451240919C2023231450%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222803930797%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%228fff8ce6-aa63-4cbb-8d25-c117b3872cfb%22%7D; visid_incap_846569=nVHdRwrdQKqrU7ZbGlR5mkgf3WMAAAAAQUIPAAAAAACnb20MIjgQ3J+w7gsXSN3X; nlbi_846569=Cl/LJW9e/EJ5GKWgTJV9qQAAAADzI4382nkUncJO6PnlMJdQ; incap_ses_633_846569=Tl7fOpTJTFGucB2Apd7ICEgf3WMAAAAAcg1cX/3RIcjz44CRx6RqCw==; leobtag=667909_30882D957AA14842B84C06EBF564E211; leonrpid=3747044; leonrbid=15012; leonrmeta=[{"value":"woborkfltpp976cm2bfhd33u","key":"c"}]; ___utmvc=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
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "87ff2fdf"
last-modified: Thu, 02 Feb 2023 14:49:36 GMT
content-type: image/png
content-length: 21096
content-encoding: gzip
cache-control: max-age=812, public
expires: Fri, 03 Feb 2023 15:04:22 GMT
date: Fri, 03 Feb 2023 14:50:50 GMT
set-cookie: ___utmvc=a; Max-Age=0; path=/; expires=Tue, 24 Jan 2023 22:43:55 GMT
strict-transport-security: max-age=63072000
x-cdn: Imperva
x-iinfo: 5-49815729-0 0CNN RT(1675435848625 2266) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
www.leovegas.com/static/fulcrum/favicon.ico
107.154.248.168200 OK 2.7 kB URL HTTP/2 www.leovegas.com/static/fulcrum/favicon.ico
IP 107.154.248.168:0
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash a3384f0c4aa8c4b99449ef21ae4eb17b
ca4a677f9a641d29862da6cc2fd3aa8c2d9ecdda
5e0a3867060cb39118639f3b57bf79f646b0836c6279ac09f41b4a156eb6c4b2
GET /static/fulcrum/favicon.ico HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/en-no/livecasino?btag=667909_30882D957AA14842B84C06EBF564E211&c=woborkfltpp976cm2bfhd33u&pid=3747044&bid=15012
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15012%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675435848854)%5c%2f%22%2c%22CookieTag%22%3a%22150123747044451240919C2023231450%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222803930797%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%228fff8ce6-aa63-4cbb-8d25-c117b3872cfb%22%7D; visid_incap_846569=nVHdRwrdQKqrU7ZbGlR5mkgf3WMAAAAAQUIPAAAAAACnb20MIjgQ3J+w7gsXSN3X; nlbi_846569=Cl/LJW9e/EJ5GKWgTJV9qQAAAADzI4382nkUncJO6PnlMJdQ; incap_ses_633_846569=Tl7fOpTJTFGucB2Apd7ICEgf3WMAAAAAcg1cX/3RIcjz44CRx6RqCw==; leobtag=667909_30882D957AA14842B84C06EBF564E211; leonrpid=3747044; leonrbid=15012; leonrmeta=[{"value":"woborkfltpp976cm2bfhd33u","key":"c"}]; ___utmvc=pS/BGB06ZKV57hztrXpa1pSSSHtb3uMD0L9WEWCTwWM6nh4/Hm3PBtLF9FYKgR6KqI4H2vXCLjT3xjAYUsXm9vYxlD3iKiMeG3kh5H6iPyZZ/5HTjR9IucFb6gZoI1LGn9vK62LAtMjjeBO9qpTa1NRoIU1KxPMX1X2PtWpyhu9ul2dhXk6z1o0oJoawt8fdFZs8SZpPgH2KU46U7fOE0JwPsPvSv+JitBNW5QQZVl76XRpvWEX9T8JlOEx6VDxvvD+C0oAjDiAli9SzWsl6uapxUQ/GGnpC8ByWJh7ewzlI7suXQ0ezCfACDoZxGygrrDk0+bLGKNAT8/YVEJ2Kq482OyBfZ7p7DZrbHCZ8kSIg3qdyRTEgui3alz6HiigMq60JeA/baMsk+orkETQ2NmrfQjLcjirbphbw9Ll5qz5xCirj1bCQiSCaz7qmSq4J8SqKzqNfH7E2qugJH2TSKiL8ug45aWNnr1di16zNsyeF+frS3KC0smmTxeeedkYWouhLhhejyF1hPoOTMHI7+VciwFYx/NnY/JwHRXNOdQyVcuAKrMsSpDp4N42UAeU74XwgwPMP2TvUuDL3UoGgYT+LVA2o0Gw30UpxN+pKYzG6ifKrLGAcDFWRhDe7zxF5wpX4AxyvEN20X5M+LD4184UFivDdAnqewW+jqqNI/eon402UuHSaLXNzuFLIKvTtNaVOlXzn2yJXOgu5PL6t2v+Lc0x+UIKOfWDoF+gVp9uxk8roI08IU2AutQj0gaQLG/Y4bPeCwYLBX2akjL0KZ2Tbe5GDoG+Xwe6eFyRP/irHp29lWw0D01gooOzHOQ4teiuMuja0JMkJF0/RUlJ5L0tqgverogiJ5W5EV3vPcv6klUx8w1NOfr/vR1+AKJdTM7FMxpzW5RnV51/tlGyjZOWwxwsOud20X3S2jRSoKF99m8YV4n1WdGHBBYUeMIQ/JOnfJjA3sa8zxuz0eyx7rmaTZ3qtA7dhT3ZYmVJv3lNgxJ/BEZM1K0Dwnpmi+geL/bI0O+B4wW9QxQS5WRuzRbuv0N/+NQ/Mfo5SQlUdqCesupKsTAtCNkqbzderXaiPbKwUsjoJ/0i8UY5J0uJol0SEM+xWmaqrYPIYy1Q1ryBErnHDyyZJaCfSBEqH/h6VOnUEzEgCmgIUKQo1C9DKWQVf0P6nWNV5vM/v5iDmIado985XmtCgZuy1uOkQ+uLRCsWJcnT2yUpNtXKg8mtLA4xyAFNpTjkc7EVw0a9/BOXCf9V99qJmzEOYUEh345KGc8HUoYaZkQgzc2hYiJkMw6UIDbPTVvWuMK/HwqV3zox1ou4kFbtJN0zaINuk7B/CWI/0isX5BbjmdZ7m00HSfBr3/ZvHGtq7rp3Tstdvv8nhKzqyqXLIEfe4FF3PNSAfX9+ehSEbvU6ChKRYNIEWrqxVMYyM8nU+pHY+/6RH5IBCjohoCcl/rD8lAyBXliRCiEWFRdV+y81tEFwddr5tIjKt9ivZLshQAMMJCK0icNxmSpwBhMUgrKzGFP7oIeyGPJmW4Dk2YId49ULUwRwpsmJXWfQG6NhiT+FYXJS6euKuXnc3M5v8wXGyKxa/PV2GlVcJa+CdRVVzCWud/3HDJB7NXzMSZPiGrrN4xAJYir9howLcVEdy55evnoaI7qlkYZUDeQeQEKwV1gJzhULhQ8bX+k+kKl2LcOkSLqlqL2v8PRF1V111EjtG+GWaxcAdLk+8DPMv7Y+aWlxS2CRh3vcezHgQUQFo8TSVCFuxyRYfwGa0TjEi1frgqBVGCEuWiE/paLS5X8UqWb/RZ+2uw8OkAx8wjayDcn3ji358/JitJqQPvWx4jy/4fvU8M7M5EO8UTQJPWg6Xg1/PfEFy/pGUO+Q6VUUeL5xyWzfE428RNf52zV/ul163cLMMrnTcch+eXil07GLwx/H8ULb7SKqLIh0Pwxh1D1iTMDm6t1hGOXfKzwMFIepjt9q6U/X8tDWjCDUTRBohv/I+ue4n69eLR29fhNHDWBtL/vvS75EIh/Km830M1JgK1XJPjr8ZQ5umrqTE7TDKm7dvTZJWrGrooaAZWQNj3RirSJcqA9BSvR/Ht5IeT0cXPdJBVXDV90limdqCrPY2mFW25/2Ej5GDNj5H16h6Ai5VGhwackzL88B310a/Yacovtwqe7TkBLm03RWd0GawPReiQt4KBk7oz3UCR1Z7lJfceLYq7OCfqGflbwGsHpkzekCAV5Vg76PsF6kt4EN8royWDXpbxtpB4NbjFpwDRrvxtxXMa3P7qp25upQ5jmSpH68MuSqfXXYUHdwg/wDX22ML7wRUBQVVnm4nwLTYMJ72lb2QjD6SK/rwC3SBMovcETqpK2jWOtFLs+Khz/bC6oso6gTz4fg/95dyA/knqN4sZUlhWWcjNWsuI2eevRULpXSGDYKdlUYBnieU+OWA228Tx9Gk1Iq2TFDzOGVh8S8nRZICuJaUWCfyxr7zwb8q41VSPJH8g0fpDTwGq0163MaGYqK+iqFRbOJsyOozFnf47VDkgR92G9dJ9LnRJB/liou17nVYpE9p7hO+9MEjQnbT8HUZA/JqAmSG/OEWrwEFYJJiGqQfiyEsu37kv0tZPahyefb1s+eIZZzcnonsuPTL+t42MI2NkS0RvpOlwKY8s50J1qH9p4Oe74p8dM/mMMeMCADCBsgWIXTTOhjaY/1uJzH054m6Tj/xuixkaWdlc3Q9MTg1MzcxLHM9Njc2ZTZiNjk5YTljOWQ4ZTg2OWNhMDc2OWI5YjYwYTZhZjgxNjJhNDdkYWI5YzhiOTM3YjlmNzViMDk3YTQ2ZjhkYTRhYTY4OTNhZjcyNzA=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "d5630a7c"
last-modified: Thu, 02 Feb 2023 14:49:36 GMT
content-type: image/x-icon
content-length: 2663
content-encoding: gzip
cache-control: max-age=1373, public
expires: Fri, 03 Feb 2023 15:13:43 GMT
date: Fri, 03 Feb 2023 14:50:50 GMT
set-cookie: ___utmvc=a; Max-Age=0; path=/; expires=Tue, 24 Jan 2023 22:43:55 GMT
strict-transport-security: max-age=63072000
x-cdn: Imperva
x-iinfo: 5-49815729-0 0CNN RT(1675435848625 2271) q(0 -1 -1 -1) r(1 -1)
X-Firefox-Spdy: h2
www.leovegas.com/stream?relay
107.154.248.168101 Switching Protocols 0 B URL HTTP/1.1 www.leovegas.com/stream?relay
IP 107.154.248.168:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stream?relay HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.leovegas.com
Sec-WebSocket-Protocol: graphql-ws
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2UnBNUn0yo7ruAC587OstA==
Connection: keep-alive, Upgrade
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15012%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675435848854)%5c%2f%22%2c%22CookieTag%22%3a%22150123747044451240919C2023231450%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222803930797%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%228fff8ce6-aa63-4cbb-8d25-c117b3872cfb%22%7D; visid_incap_846569=nVHdRwrdQKqrU7ZbGlR5mkgf3WMAAAAAQUIPAAAAAACnb20MIjgQ3J+w7gsXSN3X; nlbi_846569=Cl/LJW9e/EJ5GKWgTJV9qQAAAADzI4382nkUncJO6PnlMJdQ; incap_ses_633_846569=Tl7fOpTJTFGucB2Apd7ICEgf3WMAAAAAcg1cX/3RIcjz44CRx6RqCw==; leobtag=667909_30882D957AA14842B84C06EBF564E211; leonrpid=3747044; leonrbid=15012; leonrmeta=[{"value":"woborkfltpp976cm2bfhd33u","key":"c"}]; ___utmvc=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
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 03 Feb 2023 14:50:51 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RvXLOTIhbH/zAz5K+88qiClh3Kc=
Sec-WebSocket-Protocol: graphql-ws
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Set-Cookie: ___utmvc=a; Max-Age=0; path=/; expires=Tue, 24 Jan 2023 22:43:55 GMT
Strict-Transport-Security: max-age=63072000
X-CDN: Imperva
X-Iinfo: 10-31428232-31427381 PNNy RT(1675435850903 13) q(0 0 0 -1) r(0 0) U11
app.launchdarkly.com/sdk/goals/5b9627a39619fd15611a390c
151.101.194.217200 OK 23 B URL HTTP/2 app.launchdarkly.com/sdk/goals/5b9627a39619fd15611a390c
IP 151.101.194.217:0
Hash f0d79988b7772c003d04a28bd7417a62
58423a999eec2997bcfffb247e9ecd3dfd0abf44
30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f
OPTIONS /sdk/goals/5b9627a39619fd15611a390c HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-launchdarkly-user-agent
Referer: https://www.leovegas.com/
Origin: https://www.leovegas.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Authorization,X-Requested-With,X-LD-Private,X-LD-AccountId,X-LD-EnvId,X-LD-PrjId,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper,LD-API-Version,X-LaunchDarkly-Tags
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-max-age: 3600
allow: GET, OPTIONS, HEAD
content-encoding: gzip
ld-region: us-east-1
strict-transport-security: max-age=31536000
accept-ranges: bytes
date: Fri, 03 Feb 2023 14:50:51 GMT
via: 1.1 varnish
x-served-by: cache-bma1634-BMA
x-cache: HIT
x-cache-hits: 45
x-timer: S1675435852.564461,VS0,VE0
vary: Accept-Encoding
age: 0
content-length: 23
X-Firefox-Spdy: h2
app.launchdarkly.com/sdk/goals/5b9627a39619fd15611a390c
151.101.194.217200 OK 26 B URL HTTP/2 app.launchdarkly.com/sdk/goals/5b9627a39619fd15611a390c
IP 151.101.194.217:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 4895d253dd2c6acdb944f2bd7579cc89
9befc050756e1ec3b4b99e2579c0b86132f642a3
261feae8b4d06341989808887b33303dfb972c7566e389dbd8e1c1ea9b096a13
GET /sdk/goals/5b9627a39619fd15611a390c HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-LaunchDarkly-User-Agent: JSClient/2.24.2
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Authorization,X-Requested-With,X-LD-Private,X-LD-AccountId,X-LD-EnvId,X-LD-PrjId,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper,LD-API-Version,X-LaunchDarkly-Tags
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-max-age: 300
cache-control: max-age=0
content-encoding: gzip
content-md5: d751713988987e9331980363e24189ce
etag: "d751713988987e9331980363e24189ce"
ld-region: us-east-1
strict-transport-security: max-age=31536000
accept-ranges: bytes
date: Fri, 03 Feb 2023 14:50:51 GMT
via: 1.1 varnish
x-served-by: cache-bma1634-BMA
x-cache: HIT
x-cache-hits: 64
x-timer: S1675435852.574950,VS0,VE0
vary: Accept-Encoding
age: 0
content-length: 26
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 89d4cca556346b409532ff6de7376041
99bd0178e7335d7e9a9a4676aaf6e465f0404362
fd00c68316619feccb487d44d2c0f7fd338ea7bfc706b0ffb4ccede7faba9a14
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2532
Cache-Control: max-age=106792
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:51 GMT
Etag: "63dc138f-1d7"
Expires: Sat, 04 Feb 2023 20:30:43 GMT
Last-Modified: Thu, 02 Feb 2023 19:48:31 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
www.leovegas.com/api?relay
107.154.248.168200 OK 635 B URL HTTP/2 www.leovegas.com/api?relay
IP 107.154.248.168:0
Hash e6ab15b11e16dc922cf4aabd31cb4103
2138d77ac87bcf894b67ebfc8feba96a63e0404e
cf9b51468b3c5b812c861f2691bb84e855d5fed1fed351d17adcf7710ed42b7b
POST /api?relay HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/en-no/livecasino?btag=667909_30882D957AA14842B84C06EBF564E211&c=woborkfltpp976cm2bfhd33u&pid=3747044&bid=15012
x-request-id: 5d28a268-950c-4eb2-90bc-0cf7d32438b0
content-type: application/json
x-leo-locale: en-no
Origin: https://www.leovegas.com
Content-Length: 230
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15012%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675435848854)%5c%2f%22%2c%22CookieTag%22%3a%22150123747044451240919C2023231450%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222803930797%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%228fff8ce6-aa63-4cbb-8d25-c117b3872cfb%22%7D; visid_incap_846569=nVHdRwrdQKqrU7ZbGlR5mkgf3WMAAAAAQUIPAAAAAACnb20MIjgQ3J+w7gsXSN3X; nlbi_846569=Cl/LJW9e/EJ5GKWgTJV9qQAAAADzI4382nkUncJO6PnlMJdQ; incap_ses_633_846569=Tl7fOpTJTFGucB2Apd7ICEgf3WMAAAAAcg1cX/3RIcjz44CRx6RqCw==; leobtag=667909_30882D957AA14842B84C06EBF564E211; leonrpid=3747044; leonrbid=15012; leonrmeta=[{"value":"woborkfltpp976cm2bfhd33u","key":"c"}]
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 14:50:51 GMT
content-type: application/json
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-cdn: Imperva
x-iinfo: 5-49815729-49815919 NNNY CT(2 6 0) RT(1675435848625 2532) q(0 0 0 -1) r(0 0) U6
X-Firefox-Spdy: h2
app.launchdarkly.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?withReasons=true
151.101.194.217200 OK 23 B URL HTTP/2 app.launchdarkly.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?withReasons=true
IP 151.101.194.217:0
Hash f0d79988b7772c003d04a28bd7417a62
58423a999eec2997bcfffb247e9ecd3dfd0abf44
30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f
OPTIONS /sdk/evalx/5b9627a39619fd15611a390c/users/eyJrZXkiOiI4ZmZmOGNlNi1hYTYzLTRjYmItOGQyNS1jMTE3YjM4NzJjZmIiLCJjb3VudHJ5IjoiTk8iLCJhbm9ueW1vdXMiOnRydWUsImN1c3RvbSI6eyJjbGllbnRJZCI6ImFub255bW91cyIsImNvbnRleHRDb3VudHJ5IjoiTk8iLCJjb250ZXh0TGljZW5zZSI6Ik1HQSIsImN1cnJlbmN5IjoiIiwibGFuZ3VhZ2UiOiJFTiIsImxpY2Vuc2UiOiJNR0EiLCJtYXJrZXQiOiJOTyIsInBsYXRmb3JtVHlwZSI6Im1vYmlsZSIsInBsYXllcklkIjoiIiwicmVhbEtleSI6IjhmZmY4Y2U2LWFhNjMtNGNiYi04ZDI1LWMxMTdiMzg3MmNmYiIsInVuaXF1ZUlkIjoiOGZmZjhjZTYtYWE2My00Y2JiLThkMjUtYzExN2IzODcyY2ZiIn19?withReasons=true HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-launchdarkly-user-agent
Referer: https://www.leovegas.com/
Origin: https://www.leovegas.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Authorization,X-Requested-With,X-LD-Private,X-LD-AccountId,X-LD-EnvId,X-LD-PrjId,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper,LD-API-Version,X-LaunchDarkly-Tags
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-max-age: 3600
allow: GET, OPTIONS, HEAD
content-encoding: gzip
ld-region: us-east-1
strict-transport-security: max-age=31536000
accept-ranges: bytes
date: Fri, 03 Feb 2023 14:50:51 GMT
via: 1.1 varnish
x-served-by: cache-bma1634-BMA
x-cache: HIT
x-cache-hits: 177
x-timer: S1675435852.671681,VS0,VE0
vary: Accept-Encoding
age: 0
content-length: 23
X-Firefox-Spdy: h2
track.adform.net/serving/cookie/?adfaction=getjs;adfcookname=uid
37.157.4.23200 OK 180 B URL HTTP/2 track.adform.net/serving/cookie/?adfaction=getjs;adfcookname=uid
IP 37.157.4.23:0
File type ASCII text, with no line terminators
Hash 2255005e68a8880fe8846b0ce53772ad
36ba75259314950e35818b9d871b02b09dab56ce
28df773657a07be0bbc8ab226c401438dacd6a9bc8662f38f0a69252c0089fc5
GET /serving/cookie/?adfaction=getjs;adfcookname=uid HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 14:50:51 GMT
content-type: text/javascript; charset=utf-8
content-length: 180
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.leovegas.com/api?relay
107.154.248.168200 OK 14 kB URL HTTP/2 www.leovegas.com/api?relay
IP 107.154.248.168:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ce309cd106a01a1e2908bb664d5718ac
a86860293db3626397603c3385cd85c7c629ed58
6e9c8cecd9a0184b8fe18ae0ec89fe5b9755922d77d4642534231eafad13392d
POST /api?relay HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/en-no/livecasino?btag=667909_30882D957AA14842B84C06EBF564E211&c=woborkfltpp976cm2bfhd33u&pid=3747044&bid=15012
x-request-id: 576e6e15-0452-4d02-808e-c4b3ae98b135
content-type: application/json
x-leo-locale: en-no
Origin: https://www.leovegas.com
Content-Length: 10899
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15012%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675435848854)%5c%2f%22%2c%22CookieTag%22%3a%22150123747044451240919C2023231450%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222803930797%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%228fff8ce6-aa63-4cbb-8d25-c117b3872cfb%22%7D; visid_incap_846569=nVHdRwrdQKqrU7ZbGlR5mkgf3WMAAAAAQUIPAAAAAACnb20MIjgQ3J+w7gsXSN3X; nlbi_846569=Cl/LJW9e/EJ5GKWgTJV9qQAAAADzI4382nkUncJO6PnlMJdQ; incap_ses_633_846569=Tl7fOpTJTFGucB2Apd7ICEgf3WMAAAAAcg1cX/3RIcjz44CRx6RqCw==; leobtag=667909_30882D957AA14842B84C06EBF564E211; leonrpid=3747044; leonrbid=15012; leonrmeta=[{"value":"woborkfltpp976cm2bfhd33u","key":"c"}]
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 14:50:51 GMT
content-type: application/json
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-cdn: Imperva
x-iinfo: 5-49815729-49807178 PNNN RT(1675435848625 2516) q(0 0 0 -1) r(1 1) U6
X-Firefox-Spdy: h2
app.launchdarkly.com/sdk/evalx/5b9627a39619fd15611a390c/users/eyJrZXkiOiI4ZmZmOGNlNi1hYTYzLTRjYmItOGQyNS1jMTE3YjM4NzJjZmIiLCJjb3VudHJ5IjoiTk8iLCJhbm9ueW1vdXMiOnRydWUsImN1c3RvbSI6eyJjbGllbnRJZCI6ImFub255bW91cyIsImNvbnRleHRDb3VudHJ5IjoiTk8iLCJjb250ZXh0TGljZW5zZSI6Ik1HQSIsImN1cnJlbmN5IjoiTk9LIiwibGFuZ3VhZ2UiOiJFTiIsImxpY2Vuc2UiOiJNR0EiLCJtYXJrZXQiOiJOTyIsInBsYXRmb3JtVHlwZSI6Im1vYmlsZSIsInBsYXllcklkIjoiIiwicmVhbEtleSI6IjhmZmY4Y2U2LWFhNjMtNGNiYi04ZDI1LWMxMTdiMzg3MmNmYiIsInVuaXF1ZUlkIjoiOGZmZjhjZTYtYWE2My00Y2JiLThkMjUtYzExN2IzODcyY2ZiIn19?withReasons=true
151.101.194.217200 OK 3.6 kB URL HTTP/2 app.launchdarkly.com/sdk/evalx/5b9627a39619fd15611a390c/users/eyJrZXkiOiI4ZmZmOGNlNi1hYTYzLTRjYmItOGQyNS1jMTE3YjM4NzJjZmIiLCJjb3VudHJ5IjoiTk8iLCJhbm9ueW1vdXMiOnRydWUsImN1c3RvbSI6eyJjbGllbnRJZCI6ImFub255bW91cyIsImNvbnRleHRDb3VudHJ5IjoiTk8iLCJjb250ZXh0TGljZW5zZSI6Ik1HQSIsImN1cnJlbmN5IjoiTk9LIiwibGFuZ3VhZ2UiOiJFTiIsImxpY2Vuc2UiOiJNR0EiLCJtYXJrZXQiOiJOTyIsInBsYXRmb3JtVHlwZSI6Im1vYmlsZSIsInBsYXllcklkIjoiIiwicmVhbEtleSI6IjhmZmY4Y2U2LWFhNjMtNGNiYi04ZDI1LWMxMTdiMzg3MmNmYiIsInVuaXF1ZUlkIjoiOGZmZjhjZTYtYWE2My00Y2JiLThkMjUtYzExN2IzODcyY2ZiIn19?withReasons=true
IP 151.101.194.217:0
File type JSON data\012- , ASCII text, with very long lines (23664), with no line terminators
Hash 87571cfea1e3dc2fbba0584582f41d0f
3d335d6099a6317fd86521098ecfff41696831a4
34bb69846e6624f9bac764c1aefa770d7cd2321e46fd39836615bdb300411f71
GET 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?withReasons=true HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-LaunchDarkly-User-Agent: JSClient/2.24.2
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
cache-control: max-age=0
etag: "5349dbb"
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-methods: OPTIONS, GET
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization, X-Requested-With, X-LD-Private, X-LD-AccountId, X-LD-EnvId, X-LD-PrjId, X-LaunchDarkly-Event-Schema, X-LaunchDarkly-User-Agent, X-LaunchDarkly-Wrapper, Ld-Api-Version
content-encoding: gzip
accept-ranges: bytes
date: Fri, 03 Feb 2023 14:50:51 GMT
via: 1.1 varnish
x-served-by: cache-bma1680-BMA, cache-bma1634-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675435852.692269,VS0,VE49
vary: Authorization, Accept-Encoding
age: 0
content-length: 3623
X-Firefox-Spdy: h2
app.launchdarkly.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?withReasons=true
151.101.194.217200 OK 3.6 kB URL HTTP/2 app.launchdarkly.com/sdk/evalx/5b9627a39619fd15611a390c/users/eyJrZXkiOiI4ZmZmOGNlNi1hYTYzLTRjYmItOGQyNS1jMTE3YjM4NzJjZmIiLCJjb3VudHJ5IjoiTk8iLCJhbm9ueW1vdXMiOnRydWUsImN1c3RvbSI6eyJjbGllbnRJZCI6ImFub255bW91cyIsImNvbnRleHRDb3VudHJ5IjoiTk8iLCJjb250ZXh0TGljZW5zZSI6Ik1HQSIsImN1cnJlbmN5IjoiIiwibGFuZ3VhZ2UiOiJFTiIsImxpY2Vuc2UiOiJNR0EiLCJtYXJrZXQiOiJOTyIsInBsYXRmb3JtVHlwZSI6Im1vYmlsZSIsInBsYXllcklkIjoiIiwicmVhbEtleSI6IjhmZmY4Y2U2LWFhNjMtNGNiYi04ZDI1LWMxMTdiMzg3MmNmYiIsInVuaXF1ZUlkIjoiOGZmZjhjZTYtYWE2My00Y2JiLThkMjUtYzExN2IzODcyY2ZiIn19?withReasons=true
IP 151.101.194.217:0
File type JSON data\012- , ASCII text, with very long lines (23664), with no line terminators
Hash 87571cfea1e3dc2fbba0584582f41d0f
3d335d6099a6317fd86521098ecfff41696831a4
34bb69846e6624f9bac764c1aefa770d7cd2321e46fd39836615bdb300411f71
GET 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?withReasons=true HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-LaunchDarkly-User-Agent: JSClient/2.24.2
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
cache-control: max-age=0
etag: "5349dbb"
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-methods: OPTIONS, GET
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization, X-Requested-With, X-LD-Private, X-LD-AccountId, X-LD-EnvId, X-LD-PrjId, X-LaunchDarkly-Event-Schema, X-LaunchDarkly-User-Agent, X-LaunchDarkly-Wrapper, Ld-Api-Version
content-encoding: gzip
accept-ranges: bytes
date: Fri, 03 Feb 2023 14:50:51 GMT
via: 1.1 varnish
x-served-by: cache-bma1626-BMA, cache-bma1634-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675435852.684919,VS0,VE61
vary: Authorization, Accept-Encoding
age: 0
content-length: 3623
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-25600410-6&cid=730142529.1675435883&jid=535067971&_gid=345268091.1675435883&gjid=1627637368&_v=j99&z=1444676923
64.233.164.155302 Found 365 B URL HTTP/2 stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-25600410-6&cid=730142529.1675435883&jid=535067971&_gid=345268091.1675435883&gjid=1627637368&_v=j99&z=1444676923
IP 64.233.164.155:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash c3ad0978a447aff0c9b5c3a169dae52d
057289456654dc5ebb266a110209d49ab4a3ba4d
9de9a60c41e6b5d3ca5700a9322cf06862d5b841b32a5aa936617c8e3958b22c
GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-25600410-6&cid=730142529.1675435883&jid=535067971&_gid=345268091.1675435883&gjid=1627637368&_v=j99&z=1444676923 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=730142529.1675435883&jid=535067971&_v=j99&z=1444676923
access-control-allow-origin: null
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 03 Feb 2023 14:50:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 365
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 71 kB IP 142.250.74.131:0
File type gzip compressed data, from Unix\012- data
Hash 67aefe5e2372dc820036a3c12a948462
fa9c32edf4b2efd59ddc193df3e4a80c5c281145
b28a7e22cc91341b9c3e4515c13ced4360bd60a3db568c681e3ae41c4f5f482f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=730142529.1675435883&jid=535067971&_v=j99&z=1444676923
216.58.207.228302 Found 0 B URL HTTP/2 www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=730142529.1675435883&jid=535067971&_v=j99&z=1444676923
IP 216.58.207.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=730142529.1675435883&jid=535067971&_v=j99&z=1444676923 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 14:50:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=730142529.1675435883&jid=535067971&_v=j99&z=1444676923&slf_rd=1&random=312276012
access-control-allow-origin: null
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8176ac8bbb8fa05f36bdfa163da09e0c
b936c84c5fa7e781b12a17952c82bca546ca0575
1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de88149c85daf1f2f8f183d16f581394
4b88639d92a9defef7e575ff50f00348d7a4fc91
5bcde8fa6ee36e3a745249b5a5d1c583b0b17e1bd37a3d5b83ce9255b818680d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=730142529.1675435883&jid=535067971&_v=j99&z=1444676923&slf_rd=1&random=312276012
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=730142529.1675435883&jid=535067971&_v=j99&z=1444676923&slf_rd=1&random=312276012
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=730142529.1675435883&jid=535067971&_v=j99&z=1444676923&slf_rd=1&random=312276012 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 14:50:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
access-control-allow-origin: null
access-control-allow-credentials: true
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=LeoVegas%7C%2Flive-casino&ADFdivider=%7C&ord=214422113987&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.4.23200 OK 716 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=LeoVegas%7C%2Flive-casino&ADFdivider=%7C&ord=214422113987&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.4.23:0
File type HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 92b934327115998dc8405f095c7c4437
c75e79d8709098e1429b7d162c91c9fa24d59169
0ec4f8255ed97da53acdd311e56eb875d8b8324e4d55dd14d8877f63da5e3272
GET /Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=LeoVegas%7C%2Flive-casino&ADFdivider=%7C&ord=214422113987&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 14:50:52 GMT
content-type: text/javascript; charset=utf-8
content-length: 716
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 82dcc4b4a636c2ac98e0285c1afef196
85f3cb4072d6c49f5fb99f05698f5afe7df80140
03186d323363d456e092687bd594baa68593880f9a25e42c9112c0205826781d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=152866
Date: Fri, 03 Feb 2023 14:50:52 GMT
Etag: "63dcb99f-1d7"
Expires: Sun, 05 Feb 2023 09:18:38 GMT
Last-Modified: Fri, 03 Feb 2023 07:37:03 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZOh3srJDQI_W6gLMEd1HEkxK_A2b4bS80FfpspAmQ2CVj7G7DPbPEA==
Age: 6095
track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=40303867050&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.4.23200 OK 573 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=40303867050&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.4.23:0
File type HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 351c7a7421a138541018da39debee3ae
87f9afbf9bb4b440bc0eb139bd84c959c1cb5f2b
447c85044229bb6282b1cb85d1b0ff7344a36d34ece1d71ca1478272d27a0c86
GET /Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=40303867050&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 14:50:52 GMT
content-type: text/javascript; charset=utf-8
content-length: 573
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
dmp.adform.net/serving/cookie/match?party=1140&cid=&uid=-5932061713061764574
37.157.6.254302 Found 0 B URL HTTP/2 dmp.adform.net/serving/cookie/match?party=1140&cid=&uid=-5932061713061764574
IP 37.157.6.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /serving/cookie/match?party=1140&cid=&uid=-5932061713061764574 HTTP/1.1
Host: dmp.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Fri, 03 Feb 2023 14:50:52 GMT
content-length: 0
location: https://dmp.adform.net/serving/cookie/match?CC=1&party=1140&cid=&uid=-5932061713061764574
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
set-cookie: C=1; expires=Fri, 03 Mar 2023 14:50:52 GMT; domain=adform.net; path=/
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.leovegas.com/mobile.sw.js?e=p
107.154.248.168200 OK 11 kB URL HTTP/2 www.leovegas.com/mobile.sw.js?e=p
IP 107.154.248.168:0
File type ASCII text, with very long lines (34776)
Hash 63cfb578e4b806f79f1c531d81ab3ca6
f8ec0faadea7b5871dc3461c0de77576691ba2fd
4744b20160952080d1ce9cfcfb21afb16305b4d86a4e008035ea14ae1e7e9cb9
GET /mobile.sw.js?e=p HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15012%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675435848854)%5c%2f%22%2c%22CookieTag%22%3a%22150123747044451240919C2023231450%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222803930797%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%228fff8ce6-aa63-4cbb-8d25-c117b3872cfb%22%7D; visid_incap_846569=nVHdRwrdQKqrU7ZbGlR5mkgf3WMAAAAAQUIPAAAAAACnb20MIjgQ3J+w7gsXSN3X; nlbi_846569=Cl/LJW9e/EJ5GKWgTJV9qQAAAADzI4382nkUncJO6PnlMJdQ; incap_ses_633_846569=Tl7fOpTJTFGucB2Apd7ICEgf3WMAAAAAcg1cX/3RIcjz44CRx6RqCw==; leobtag=667909_30882D957AA14842B84C06EBF564E211; leonrpid=3747044; leonrbid=15012; leonrmeta=[{"value":"woborkfltpp976cm2bfhd33u","key":"c"}]; _ga=GA1.2.730142529.1675435883; _gid=GA1.2.345268091.1675435883; _gat_leo=1; leo_previous_page=https://www.leovegas.com/en-no/livecasino?btag=667909_30882D957AA14842B84C06EBF564E211&c=woborkfltpp976cm2bfhd33u&pid=3747044&bid=15012
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 02 Feb 2023 14:53:33 GMT
content-type: application/javascript
content-length: 10707
content-encoding: gzip
cache-control: max-age=1334, public
expires: Fri, 03 Feb 2023 15:13:06 GMT
date: Fri, 03 Feb 2023 14:50:52 GMT
strict-transport-security: max-age=63072000
x-cdn: Imperva
x-iinfo: 5-49815729-0 0CNN RT(1675435848625 3760) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 02c1079122d2bc7e5f0177cad64ccedc
b066b161e6583472c9460ae4feb85f482d15af76
d69cacc340a2ace5c57fc0d3a08aeef46a33eaaa354c0043304290bc5d84d078
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3665
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:52 GMT
Last-Modified: Fri, 03 Feb 2023 13:49:47 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 727
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 07308e2792e098a562686d93be9915a5
d5991441fc250841adcf8748b4d18b782eb187db
d3c11617893bf0fa7e2ef9c352145ca7791bade596abd3eb90d48a8bfb04c857
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=134741
Date: Fri, 03 Feb 2023 14:50:53 GMT
Etag: "63dc86f6-1d7"
Expires: Sun, 05 Feb 2023 04:16:34 GMT
Last-Modified: Fri, 03 Feb 2023 04:00:54 GMT
Server: ECS (nyb/1D04)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LkpxB7blf03evnWCRyZtjAOpp4lxeeM4YCsxb6CHxolRMFNgPZbLKw==
Age: 940
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 07308e2792e098a562686d93be9915a5
d5991441fc250841adcf8748b4d18b782eb187db
d3c11617893bf0fa7e2ef9c352145ca7791bade596abd3eb90d48a8bfb04c857
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=134757
Date: Fri, 03 Feb 2023 14:50:53 GMT
Etag: "63dc86f6-1d7"
Expires: Sun, 05 Feb 2023 04:16:50 GMT
Last-Modified: Fri, 03 Feb 2023 04:00:54 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: H7M0p6Rnk33jCp-mdueJTZZNcZ1VV83FrS8l-iJUgQXhrRBhk4YZBw==
Age: 956
events.launchdarkly.com/events/diagnostic/5b9627a39619fd15611a390c
3.88.238.34204 No Content 0 B URL HTTP/2 events.launchdarkly.com/events/diagnostic/5b9627a39619fd15611a390c
IP 3.88.238.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /events/diagnostic/5b9627a39619fd15611a390c HTTP/1.1
Host: events.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-launchdarkly-user-agent
Referer: https://www.leovegas.com/
Origin: https://www.leovegas.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 14:50:53 GMT
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Payload-ID,X-LaunchDarkly-Wrapper,X-LaunchDarkly-Tags
access-control-allow-methods: POST,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Date
access-control-max-age: 300
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
usage.trackjs.com/usage.gif?token=c7755ba8906e4776818012e627c020ba&correlationId=79763dd2-4796-4999-81fa-2612e830f30e&application=fulcrum-mobile&x=d66a72f0-b83e-491c-a5fb-6a2270ee82de&
167.114.119.127200 OK 43 B URL HTTP/1.1 usage.trackjs.com/usage.gif?token=c7755ba8906e4776818012e627c020ba&correlationId=79763dd2-4796-4999-81fa-2612e830f30e&application=fulcrum-mobile&x=d66a72f0-b83e-491c-a5fb-6a2270ee82de&
IP 167.114.119.127:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /usage.gif?token=c7755ba8906e4776818012e627c020ba&correlationId=79763dd2-4796-4999-81fa-2612e830f30e&application=fulcrum-mobile&x=d66a72f0-b83e-491c-a5fb-6a2270ee82de& HTTP/1.1
Host: usage.trackjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 03 Feb 2023 14:50:53 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 636897389814ca4d23aa4009b8fb1458
14394dbd8f0e226b71e1bd35c6da2278828feae4
85bcc6e816cf5ea2028e9dc4862f3de068d0606949b3fef3fcc5b32fab37ad86
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/1vmhpXYvMQg
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/1vmhpXYvMQg
IP 142.250.74.131:0
Hash 18d1991491b3b6e478bc4ecbb7736337
3bdae0c9824493fca93a6438dc0227ef85ca9ccc
e9913a2d9555fa1758d8c61f6c733e7d0f4073a849dcbd8eb7cd7dc2ccad2109
POST /s/gts1d4/1vmhpXYvMQg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:53 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
9915903.fls.doubleclick.net/activityi;src=9915903;type=pagev0;cat=pagev0;ord=1675435884407.gmxus2eh;gtm=45Fe3210;auiddc=692407255.1675435884;u4=livecasino;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012?
142.250.74.134200 OK 328 B URL HTTP/2 9915903.fls.doubleclick.net/activityi;src=9915903;type=pagev0;cat=pagev0;ord=1675435884407.gmxus2eh;gtm=45Fe3210;auiddc=692407255.1675435884;u4=livecasino;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012?
IP 142.250.74.134:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (599), with no line terminators
Hash 2c413e3542c7fa5d7d3d3a4836fbc7d7
5d7b4504dfb80a5476d97640674029c7ca809dcf
e6bad419c1e3cf0b2dcc7b7ed8b13ddfe5dc10ef4e4f54cf58ccbb81ce778e55
GET /activityi;src=9915903;type=pagev0;cat=pagev0;ord=1675435884407.gmxus2eh;gtm=45Fe3210;auiddc=692407255.1675435884;u4=livecasino;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012? HTTP/1.1
Host: 9915903.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 14:50:53 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 328
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 03-Feb-2023 15:05:53 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 345 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e379fae7c3d88412e8a2375cc4f0ee5e
0f31e9b9d09c589430f5ba988a41e69be78011f5
cb983be0dbcbea192940025d32fe95dda78f74427fec724f0e2c600a47146be0
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "CB983BE0DBCBEA192940025D32FE95DDA78F74427FEC724F0E2C600A47146BE0"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10266
Expires: Fri, 03 Feb 2023 17:41:59 GMT
Date: Fri, 03 Feb 2023 14:50:53 GMT
Connection: keep-alive
tgtag.io/tg.js?pid=tg-g-002415-002
34.120.230.83200 OK 32 kB URL HTTP/2 tgtag.io/tg.js?pid=tg-g-002415-002
IP 34.120.230.83:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 508072c63a35c84745dd1ef33706f34f
5db9b0f2db74f01c0a450f7c0a5d0901cc61d749
f10eba601f45922924f18cd57fdf391d29bacdf5098e3d0433b0d8b58c5d3358
GET /tg.js?pid=tg-g-002415-002 HTTP/1.1
Host: tgtag.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvO014vHksGTOU0po9v9OfeXkhKr-M4k39OIo8ldAlwf5bPbTaW5XO_fT3RZdfkd0ymb8uowmdnWP2UHtltOzBKZ19CLTyq
vary: X-Goog-Allowed-Resources
x-goog-generation: 1675327980026762
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 31667
content-encoding: gzip
x-goog-hash: crc32c=oV25fg==, md5=UIByxjo1yEdF3R7zNwbzTw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 31667
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Access-Control-Allow-Origin
server: UploadServer
date: Fri, 03 Feb 2023 08:57:00 GMT
expires: Sat, 04 Feb 2023 08:57:00 GMT
cache-control: public, no-transform, max-age=86400, s-maxage=86400
age: 21233
last-modified: Thu, 02 Feb 2023 08:53:00 GMT
etag: "508072c63a35c84745dd1ef33706f34f"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 636897389814ca4d23aa4009b8fb1458
14394dbd8f0e226b71e1bd35c6da2278828feae4
85bcc6e816cf5ea2028e9dc4862f3de068d0606949b3fef3fcc5b32fab37ad86
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
events.launchdarkly.com/events/diagnostic/5b9627a39619fd15611a390c
3.88.238.34202 Accepted 0 B URL HTTP/2 events.launchdarkly.com/events/diagnostic/5b9627a39619fd15611a390c
IP 3.88.238.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /events/diagnostic/5b9627a39619fd15611a390c HTTP/1.1
Host: events.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-LaunchDarkly-User-Agent: JSClient/2.24.2
Content-Length: 797
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Fri, 03 Feb 2023 14:50:53 GMT
content-type: application/json
content-length: 0
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Payload-ID,X-LaunchDarkly-Wrapper,X-LaunchDarkly-Tags
access-control-allow-methods: POST,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Date
access-control-max-age: 300
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/1vmhpXYvMQg
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/1vmhpXYvMQg
IP 142.250.74.131:0
Hash 18d1991491b3b6e478bc4ecbb7736337
3bdae0c9824493fca93a6438dc0227ef85ca9ccc
e9913a2d9555fa1758d8c61f6c733e7d0f4073a849dcbd8eb7cd7dc2ccad2109
POST /s/gts1d4/1vmhpXYvMQg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:53 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675435884407.gmxus2eh;gtm=45Fe3210;auiddc=692407255.1675435884;u4=livecasino;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012
216.58.207.226200 OK 330 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675435884407.gmxus2eh;gtm=45Fe3210;auiddc=692407255.1675435884;u4=livecasino;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012
IP 216.58.207.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (598), with no line terminators
Hash b3741a18dc668b12d70a95153c49bd65
7a746e6e00a541771b295765160c5a779a3ac783
75990e2b9908ea86620c4a2a83b3e30c23aaa9d77058b995503c35f388bfadad
GET /ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675435884407.gmxus2eh;gtm=45Fe3210;auiddc=692407255.1675435884;u4=livecasino;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012 HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9915903.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 14:50:53 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 330
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675435884407.gmxus2eh;gtm=45Fe3210;auiddc=692407255.1675435884;u4=livecasino;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012
142.250.74.66200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675435884407.gmxus2eh;gtm=45Fe3210;auiddc=692407255.1675435884;u4=livecasino;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675435884407.gmxus2eh;gtm=45Fe3210;auiddc=692407255.1675435884;u4=livecasino;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 14:50:53 GMT
expires: Fri, 03 Feb 2023 14:50:53 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
scripts.prdredir.com/scripts/k_leovegas.js
172.64.161.2200 OK 1.2 kB URL HTTP/2 scripts.prdredir.com/scripts/k_leovegas.js
IP 172.64.161.2:0
File type ASCII text, with very long lines (1749)
Hash b2c44a3af4709c45bf55fa3cb4b768c2
cbd6f73f8cf7ddb0a331367aef7801dc7e0a2ab8
0a78576df5283d37e295211f3aba50fef9e5f3d9dff1deff99fa469a8b41f7e5
GET /scripts/k_leovegas.js HTTP/1.1
Host: scripts.prdredir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:50:53 GMT
content-type: text/javascript; charset=utf-8
status: 200 OK
cache-control: no-cache
access-control-allow-origin: *
x-request-id: 7fcc466e-06ae-4bf2-9f1e-4837817c8591
etag: W/"dc15e72bb78bf3e1f68429fb2ffb04e1"
x-runtime: 0.007954
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GggnIzX7yzsZOStqBRzTajUxowLtEdCjj09a4rqvLYmn888ARgab7CUU33lOZ1Tjy98w8rbJJndKvnXzjfOJZTKuOxnoEPMEik%2FCtNFZA%2FR7cH1DebTNmjMizC6rv6B7Mqcm5XopMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793bfb42cfb8730f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/M7vREfWOEdc
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/M7vREfWOEdc
IP 142.250.74.131:0
Hash 55ab08c0d1309c545cc97afdacd7aaae
68eeadc614db9949019898dbd5c057031d711b30
055c62d9409b4f79f22ea5f72b9d2e81f93c422ebae63acdb9f68caff95c8364
POST /s/gts1d4/M7vREfWOEdc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:53 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.trafficguard.ai/tg-g-002415-002/api/v4/client-side/validate/event
34.120.121.20200 OK 151 B URL HTTP/2 api.trafficguard.ai/tg-g-002415-002/api/v4/client-side/validate/event
IP 34.120.121.20:0
File type gzip compressed data, from Unix\012- data
Hash fb4bace6738e5dfe7b75cc1d3beae423
af1a82fc9d33fa42266b7ab8a12588ec9810d5be
4258103a25648af622afe8a17885ef3499b66bd92c4abd957462e22aba3a7c8e
POST /tg-g-002415-002/api/v4/client-side/validate/event HTTP/1.1
Host: api.trafficguard.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
Content-Length: 2200
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expect-ct: max-age=0, report-uri="https://trafficguard.report-uri.com/r/d/ct/reportOnly"
x-xss-protection: 0
x-content-type-options: nosniff
access-control-allow-origin: https://www.leovegas.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-Requested-With, Access-Control-Allow-Origin, Access-Control-Allow-Credentials
set-cookie: geid=01010047-db4c-48d3-b000-01a663dd1f4d; Domain=.trafficguard.ai; Path=/; Expires=Sat, 03 Feb 2024 14:50:53 GMT; HttpOnly; Secure; SameSite=None
geid-legacy=01010047-db4c-48d3-b000-01a663dd1f4d; Domain=.trafficguard.ai; Path=/; Expires=Sat, 03 Feb 2024 14:50:53 GMT; HttpOnly
content-type: application/json; charset=utf-8
content-length: 61
etag: W/"3d-+VrgqwIBqu+GaYyaxm1oD9TgRqA"
date: Fri, 03 Feb 2023 14:50:53 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/M7vREfWOEdc
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/M7vREfWOEdc
IP 142.250.74.131:0
Hash 55ab08c0d1309c545cc97afdacd7aaae
68eeadc614db9949019898dbd5c057031d711b30
055c62d9409b4f79f22ea5f72b9d2e81f93c422ebae63acdb9f68caff95c8364
POST /s/gts1d4/M7vREfWOEdc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:53 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
websdk.appsflyer.com/?st=pba&
95.101.10.17200 OK 9.6 kB URL HTTP/1.1 websdk.appsflyer.com/?st=pba&
IP 95.101.10.17:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21856)
Hash 1214b03c1da1942cfdd2183b216ba3c8
1a46d03ac7bd9bae1b849b610918d1fbe18efe76
ba7e3eba24eaccfae9be9adda9397b5a1692da83bddc9b1e08e2d9700ac271f0
GET /?st=pba& HTTP/1.1
Host: websdk.appsflyer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: M44pSGH6vcjNlP5UaqybVYuuWdAAnTeV9hRgNPOK/tpE3okTq2NYkjNTtxo9PK8D2YrCkCdNTsE=
x-amz-request-id: DAGQS2QYCYYEYGCY
Last-Modified: Thu, 26 Jan 2023 08:01:30 GMT
ETag: "3f70a47c03cc36fb3ee43dea835e4d0d"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=2328
Expires: Fri, 03 Feb 2023 15:29:41 GMT
Date: Fri, 03 Feb 2023 14:50:53 GMT
Content-Length: 9578
Connection: keep-alive
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 8JD5UblnW5hDaRJB0g/NKWOdLq7fG87IRKx8WydBMycUEEaUyBYtvqIQjz7cRarP+b2/YA4nYrQWgiUcjUPOLQ==
content-length: 27843
x-fb-trip-id: 1904183273
date: Fri, 03 Feb 2023 14:50:53 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6407
Cache-Control: max-age=96286
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:53 GMT
Etag: "63dbdb64-1d7"
Expires: Sat, 04 Feb 2023 17:35:39 GMT
Last-Modified: Thu, 02 Feb 2023 15:48:52 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
143.204.55.105200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP 143.204.55.105:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yVuiAuyauiCrVKclhkj64OCJPZsXU0VTkvvtkjeWRDy6JPI_j6Ibjg==
age: 6048
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 629194259441fb6d8040a8bf0f8c4d03
06e4f473080fd8597bc61e96c93c3ef32212849e
91eb005c9cf3ba90626799083f3e96b7a374a1cacb80f38d58f4ac93d5a1f07f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=150753
Date: Fri, 03 Feb 2023 14:50:54 GMT
Etag: "63dcb6cc-1d7"
Expires: Sun, 05 Feb 2023 08:43:27 GMT
Last-Modified: Fri, 03 Feb 2023 07:25:00 GMT
Server: ECS (nyb/1D2F)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: f5iQ1SrihOP22ImKBkenJ39WjD32OLYMABgP9a9e5Bgzxu8NwCCp_g==
Age: 4707
wa.onelink.me/v1/onelink
46.51.206.175200 OK 13 B IP 46.51.206.175:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 593e8538d63f30de24fbb439dd424870
f838a78077c6d023e0d0bca95f0f335df4b8b468
38bc0f256821a9c0a02a1c0cedf8ff70c211e637ef77ac199de2fe0cf36ba9ec
GET /v1/onelink HTTP/1.1
Host: wa.onelink.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Allow-Origin: https://www.leovegas.com
Content-Type: application/json
Date: Fri, 03 Feb 2023 14:50:54 GMT
Content-Length: 13
Connection: keep-alive
script.hotjar.com/modules.bca0d1c28285412bb689.js
54.230.111.93200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.bca0d1c28285412bb689.js
IP 54.230.111.93:0
File type Unicode text, UTF-8 text, with very long lines (49086)
Hash e923aa360dc485b9df86355bd040c998
03c46dbd41e9d4bdf8a9e4bfbaba3f7f2e9280ec
9c7575553c5b81f9b905dbb27c8116b175b69e7472aa6597f8cace1c6434d676
GET /modules.bca0d1c28285412bb689.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 67924
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "e923aa360dc485b9df86355bd040c998"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vbOGfljlBdWEwolKpdGSAiUh9FpoVY0UTm4ktKOHnEA0w2pKJqrggQ==
age: 6048
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 810791ce91fffe56bb91ba6f17163139
b60208bda10423b7a0ac4cf805813b4b2958fb66
7983b12f34dde567d8922c779fe13046ed24576117353a8fb1ac0c4957599d72
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=127266
Date: Fri, 03 Feb 2023 14:50:54 GMT
Etag: "63dc5a06-1d7"
Expires: Sun, 05 Feb 2023 02:12:00 GMT
Last-Modified: Fri, 03 Feb 2023 00:49:10 GMT
Server: ECS (nyb/1D0F)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: e9lYb4xUBWy3Bzx3_eZGhRVuvLh6tGgw0oW5xuv88yRjUXvlllpLLA==
Age: 4970
rtg.prdredir.com/sync?ref=&lp=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&sh=1024&sw=1280&date=1675435884688&fp=uid-3095078792.9342145639
172.64.161.2200 OK 744 B URL HTTP/2 rtg.prdredir.com/sync?ref=&lp=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&sh=1024&sw=1280&date=1675435884688&fp=uid-3095078792.9342145639
IP 172.64.161.2:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ac5b13164e59a9529790caba7173776d
1c3d5f61eed978188b55a9ac9d71f3510ae945cc
77ed86ad93016ce22f550e70dcf67fdd4abf8d13d96858639f1324539782ca33
GET /sync?ref=&lp=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&sh=1024&sw=1280&date=1675435884688&fp=uid-3095078792.9342145639 HTTP/1.1
Host: rtg.prdredir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:50:53 GMT
content-type: image/gif
status: 200 OK
cache-control: no-cache
referrer-policy: strict-origin-when-cross-origin
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
x-request-id: 92e39d86-4769-41bd-8787-7718c44164b4
content-disposition: inline; filename="pixel.gif"
x-download-options: noopen
content-transfer-encoding: binary
x-runtime: 0.001540
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: fp=4bf8eb16-a5e7-4105-b25e-aa7306ab97f6; domain=prdredir.com; path=/; expires=Wed, 03 May 2023 14:50:53 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y8NrVkDoG5JIerD2ilmtqIc9wrYpgiPzqqvVxtSrLE79vug%2Fjj29OW9DJKko7nTVYGWE7gc9qZx%2BHddk53bOEuCxnXTKBiWZvp%2FM4gQkaeEopBa7081dYlT%2BJnGRXAAtT5Ol"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793bfb43f918730f-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
wa.appsflyer.com/events?site-id=6d3a3941-6835-4f61-8644-5e8746828ef8
52.213.22.211200 OK 76 B URL HTTP/1.1 wa.appsflyer.com/events?site-id=6d3a3941-6835-4f61-8644-5e8746828ef8
IP 52.213.22.211:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d63e7ae844735b6ba3cb3144eedd3f52
7f828fc1f22cdb9270ee09822a3f4867f2ec7722
ae5d74dbc923ccbe1b736053947bf49e636cf5dc8b97170af0291e42bdd1cf41
POST /events?site-id=6d3a3941-6835-4f61-8644-5e8746828ef8 HTTP/1.1
Host: wa.appsflyer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 1575
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Allow-Origin: https://www.leovegas.com
Content-Type: application/json
Date: Fri, 03 Feb 2023 14:50:54 GMT
Set-Cookie: af_id=46d36926-73b9-4e36-8b89-81e8e32debc3-p; Domain=appsflyer.com; Expires=Sun, 02 Feb 2025 14:50:54 GMT
Content-Length: 76
Connection: keep-alive
wa.onelink.me/v1/onelink?af_id=46d36926-73b9-4e36-8b89-81e8e32debc3-p
46.51.206.175200 OK 51 B URL HTTP/1.1 wa.onelink.me/v1/onelink?af_id=46d36926-73b9-4e36-8b89-81e8e32debc3-p
IP 46.51.206.175:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b2e53c4667935c22df8b7d4c77fa1a37
68a2159f94b7181789a932230873aa0b73d48408
a1ef02656a8ed0e80a93d61d58a9c7c72f3230bc4d7fd68c5450da9b228f1c52
GET /v1/onelink?af_id=46d36926-73b9-4e36-8b89-81e8e32debc3-p HTTP/1.1
Host: wa.onelink.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Allow-Origin: https://www.leovegas.com
Content-Type: application/json
Date: Fri, 03 Feb 2023 14:50:54 GMT
Set-Cookie: af_id=46d36926-73b9-4e36-8b89-81e8e32debc3-p; Path=/; Domain=onelink.me; Expires=Sun, 02 Feb 2025 14:50:54 GMT
Content-Length: 51
Connection: keep-alive
track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=618063239090&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.4.23302 Found 1.0 kB URL HTTP/2 track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=618063239090&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.4.23:0
Hash 8e257984d384c29f4731bd312b56a110
3b46927b06bc0d67eb5bfa354f7b56a9cdd613b6
d98ade92cff5d1d7701957ccce1214998153b4710a4667f4d9243c7e659a9355
GET /Serving/TrackPoint/?pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=618063239090&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 03 Feb 2023 14:50:54 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=618063239090&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Fri, 03-Mar-2023 14:50:54 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1403116046706561&ev=PageView&dl=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&rl=&if=false&ts=1675435885765&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.1.1675435885764.716515697&it=1675435885230&coo=false&tm=1&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1403116046706561&ev=PageView&dl=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&rl=&if=false&ts=1675435885765&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.1.1675435885764.716515697&it=1675435885230&coo=false&tm=1&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1403116046706561&ev=PageView&dl=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&rl=&if=false&ts=1675435885765&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.1.1675435885764.716515697&it=1675435885230&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 03 Feb 2023 14:50:54 GMT
X-Firefox-Spdy: h2
events.launchdarkly.com/events/bulk/5b9627a39619fd15611a390c
3.88.238.34204 No Content 0 B URL HTTP/2 events.launchdarkly.com/events/bulk/5b9627a39619fd15611a390c
IP 3.88.238.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /events/bulk/5b9627a39619fd15611a390c HTTP/1.1
Host: events.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-launchdarkly-event-schema,x-launchdarkly-payload-id,x-launchdarkly-user-agent
Referer: https://www.leovegas.com/
Origin: https://www.leovegas.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 14:50:54 GMT
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Payload-ID,X-LaunchDarkly-Wrapper,X-LaunchDarkly-Tags
access-control-allow-methods: POST,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Date
access-control-max-age: 300
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 0 B IP 93.184.220.29:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6407
Cache-Control: max-age=96286
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 14:50:53 GMT
Etag: "63dbdb64-1d7"
Expires: Sat, 04 Feb 2023 17:35:39 GMT
Last-Modified: Thu, 02 Feb 2023 15:48:52 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
fonts.googleapis.com/css?family=Roboto:400,400i,500,500i,700,700i,900,900i|Roboto+Slab:700&subset=latin-ext&display=swap
142.250.74.138200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400,400i,500,500i,700,700i,900,900i|Roboto+Slab:700&subset=latin-ext&display=swap
IP 142.250.74.138:0
GET /css?family=Roboto:400,400i,500,500i,700,700i,900,900i|Roboto+Slab:700&subset=latin-ext&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Feb 2023 14:50:50 GMT
date: Fri, 03 Feb 2023 14:50:50 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=LeoVegas%7C%2Flive-casino&ADFdivider=%7C&ord=214422113987&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.4.23302 Found 0 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=LeoVegas%7C%2Flive-casino&ADFdivider=%7C&ord=214422113987&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.4.23:0
GET /Serving/TrackPoint/?pm=497538&ADFPageName=LeoVegas%7C%2Flive-casino&ADFdivider=%7C&ord=214422113987&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 03 Feb 2023 14:50:52 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=LeoVegas%7C%2Flive-casino&ADFdivider=%7C&ord=214422113987&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Fri, 03-Mar-2023 14:50:52 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=40303867050&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.4.23302 Found 0 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=40303867050&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.4.23:0
GET /Serving/TrackPoint/?pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=40303867050&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 03 Feb 2023 14:50:52 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=40303867050&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Fri, 03-Mar-2023 14:50:52 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-380080.js?sv=7
54.230.111.39200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-380080.js?sv=7
IP 54.230.111.39:0
GET /c/hotjar-380080.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Fri, 03 Feb 2023 14:50:26 GMT
cache-control: max-age=60
etag: W/ae38294078ff27013aca5032ecea19d0
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9Oit1ciQDPQ8iE6fO-gssCuUyUOCBKBq-JPmCwhG4Zs-dKhCXwElPg==
age: 27
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=655984877574&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24
37.157.4.23302 Found 0 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=655984877574&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP 37.157.4.23:0
GET /Serving/TrackPoint/?pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=655984877574&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 03 Feb 2023 14:50:54 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=655984877574&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2Flivecasino%3Fbtag%3D667909_30882D957AA14842B84C06EBF564E211%26c%3Dwoborkfltpp976cm2bfhd33u%26pid%3D3747044%26bid%3D15012&Set1=en-US%7Cen-US%7C1280x1024%7C24
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Fri, 03-Mar-2023 14:50:54 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.leovegas.com/en-no/livecasino?btag=667909_30882D957AA14842B84C06EBF564E211&c=woborkfltpp976cm2bfhd33u&pid=3747044&bid=15012
107.154.248.168200 OK 0 B URL HTTP/2 www.leovegas.com/en-no/livecasino?btag=667909_30882D957AA14842B84C06EBF564E211&c=woborkfltpp976cm2bfhd33u&pid=3747044&bid=15012
IP 107.154.248.168:0
GET /en-no/livecasino?btag=667909_30882D957AA14842B84C06EBF564E211&c=woborkfltpp976cm2bfhd33u&pid=3747044&bid=15012 HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15012%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675435848854)%5c%2f%22%2c%22CookieTag%22%3a%22150123747044451240919C2023231450%22%7d%5d; leo-essentials=%7B%22cid%22%3A%228fff8ce6-aa63-4cbb-8d25-c117b3872cfb%22%7D; visid_incap_846569=nVHdRwrdQKqrU7ZbGlR5mkgf3WMAAAAAQUIPAAAAAACnb20MIjgQ3J+w7gsXSN3X; nlbi_846569=Cl/LJW9e/EJ5GKWgTJV9qQAAAADzI4382nkUncJO6PnlMJdQ; incap_ses_633_846569=Tl7fOpTJTFGucB2Apd7ICEgf3WMAAAAAcg1cX/3RIcjz44CRx6RqCw==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 14:50:49 GMT
content-type: text/html; charset=utf-8
content-encoding: gzip
set-cookie: leobtag=667909_30882D957AA14842B84C06EBF564E211; Max-Age=3888000; Domain=.leovegas.com; Path=/; HttpOnly; Secure
leonrpid=3747044; Max-Age=3888000; Domain=.leovegas.com; Path=/; HttpOnly; Secure
leonrbid=15012; Max-Age=3888000; Domain=.leovegas.com; Path=/; HttpOnly; Secure
leonrmeta=[{"value":"woborkfltpp976cm2bfhd33u","key":"c"}]; Max-Age=3888000; Domain=.leovegas.com; Path=/; HttpOnly; Secure
etag: b1e2431d4d96095f176807cd8aa1272a82442e27
cache-control: public, must-revalidate
x-render-cache: 1
x-cache-key: b1e2431d4d96095f176807cd8aa1272a82442e27
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-cdn: Imperva
x-iinfo: 5-49815729-49812108 PNNy RT(1675435848625 139) q(0 0 0 -1) r(1 1) U12
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ROWBanner~bfe0ed74.8ae9ed685fbd9d01deba.chunk.js?e=p
34.107.241.180200 OK 0 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ROWBanner~bfe0ed74.8ae9ed685fbd9d01deba.chunk.js?e=p
IP 34.107.241.180:0
GET /fulcrum/v4/master/dynamic/mobile.ROWBanner~bfe0ed74.8ae9ed685fbd9d01deba.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdth-y30UJmQOoZhw1Xmt-jnrc2cT_aww1POrNGRmE9a9ZTBf69XofNNV8qjnMMY_S6hSPCR8Of5yREfXNiqp6ci964POkIB
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328177596085
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1501
content-encoding: gzip
x-goog-hash: crc32c=CEvY6A==, md5=mc24WA4Z4BjnGtxUHHTP+g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1501
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:52 GMT
expires: Thu, 02 Mar 2023 09:14:52 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:17 GMT
etag: "99cdb8580e19e018e71adc541c74cffa"
content-type: application/javascript
age: 106558
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Icons-Categories~4c719359.62e5ddd37866fa6636f8.chunk.js?e=p
34.107.241.180200 OK 0 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Icons-Categories~4c719359.62e5ddd37866fa6636f8.chunk.js?e=p
IP 34.107.241.180:0
GET /fulcrum/v4/master/dynamic/mobile.Icons-Categories~4c719359.62e5ddd37866fa6636f8.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtRcp4AxGjNqFX0mz45niL925ARSXOw6_4ciido7cchz7n_hMFWLPEIch6WqzVKDWetbXuevUdN8m6q8bFw19c6kbAfGH5q
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328176237402
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 29837
content-encoding: gzip
x-goog-hash: crc32c=4zjL0Q==, md5=nInjjWum4PRmQglbXnmqyw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 29837
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:15 GMT
expires: Thu, 02 Mar 2023 09:14:15 GMT
cache-control: public, max-age=2419200,no-transform
age: 106595
last-modified: Thu, 02 Feb 2023 08:56:16 GMT
etag: "9c89e38d6ba6e0f46642095b5e79aacb"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
track.adform.net/serving/scripts/trackpoint/async/
37.157.4.23301 Moved Permanently 0 B URL HTTP/2 track.adform.net/serving/scripts/trackpoint/async/
IP 37.157.4.23:0
GET /serving/scripts/trackpoint/async/ HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Fri, 03 Feb 2023 14:50:51 GMT
content-type: text/html
location: https://s2.adform.net/banners/scripts/st/trackpoint-async.js
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
dmp.adform.net/serving/cookie/match?CC=1&party=1140&cid=&uid=-5932061713061764574
37.157.6.254200 OK 0 B URL HTTP/2 dmp.adform.net/serving/cookie/match?CC=1&party=1140&cid=&uid=-5932061713061764574
IP 37.157.6.254:0
GET /serving/cookie/match?CC=1&party=1140&cid=&uid=-5932061713061764574 HTTP/1.1
Host: dmp.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 14:50:52 GMT
content-type: image/gif
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.leovegas.com/getMeta
107.154.248.168200 OK 0 B IP 107.154.248.168:0
GET /getMeta HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/en-no/livecasino?btag=667909_30882D957AA14842B84C06EBF564E211&c=woborkfltpp976cm2bfhd33u&pid=3747044&bid=15012
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15012%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675435848854)%5c%2f%22%2c%22CookieTag%22%3a%22150123747044451240919C2023231450%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222803930797%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%228fff8ce6-aa63-4cbb-8d25-c117b3872cfb%22%7D; visid_incap_846569=nVHdRwrdQKqrU7ZbGlR5mkgf3WMAAAAAQUIPAAAAAACnb20MIjgQ3J+w7gsXSN3X; nlbi_846569=Cl/LJW9e/EJ5GKWgTJV9qQAAAADzI4382nkUncJO6PnlMJdQ; incap_ses_633_846569=Tl7fOpTJTFGucB2Apd7ICEgf3WMAAAAAcg1cX/3RIcjz44CRx6RqCw==; leobtag=667909_30882D957AA14842B84C06EBF564E211; leonrpid=3747044; leonrbid=15012; leonrmeta=[{"value":"woborkfltpp976cm2bfhd33u","key":"c"}]
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 14:50:51 GMT
content-type: application/json; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-cdn: Imperva
x-iinfo: 5-49815729-49807178 PNNN RT(1675435848625 2672) q(0 0 0 -1) r(1 1) U12
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~AutoWithdrawalModal~BankID~BankingVerification~BottomBarScreen~CasinoCategory~CasinoSearch~D~de24fdcb.e9cf84d35eb09462b84d.chunk.js?e=p
34.107.241.180200 OK 0 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~AutoWithdrawalModal~BankID~BankingVerification~BottomBarScreen~CasinoCategory~CasinoSearch~D~de24fdcb.e9cf84d35eb09462b84d.chunk.js?e=p
IP 34.107.241.180:0
GET /fulcrum/v4/master/dynamic/mobile.vendors~AutoWithdrawalModal~BankID~BankingVerification~BottomBarScreen~CasinoCategory~CasinoSearch~D~de24fdcb.e9cf84d35eb09462b84d.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtA57mk4APluGNfLwC_39dEUUiK1HT_f72DjmLSKFN_yzX-GlZeDPTF0EBPn7V5KLtLcYhimqQuVOCidnabXRqplt6E2Rde
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179661485
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12838
content-encoding: gzip
x-goog-hash: crc32c=rauuEg==, md5=Ib70R6TiemQ4v3/OFPlYrw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12838
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:52 GMT
expires: Thu, 02 Mar 2023 09:14:52 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "21bef447a4e27a6438bf7fce14f958af"
content-type: application/javascript
age: 106558
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s2.adform.net/banners/scripts/st/trackpoint-async.js
37.157.2.248200 OK 0 B URL HTTP/2 s2.adform.net/banners/scripts/st/trackpoint-async.js
IP 37.157.2.248:0
GET /banners/scripts/st/trackpoint-async.js HTTP/1.1
Host: s2.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 14:50:51 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 29 Nov 2022 10:23:25 GMT
x-rgw-object-type: Normal
etag: W/"83eb5fafaa212c785f7393188ff817aa"
x-amz-request-id: tx0000062cf0e7d8446165f-006385e0d3-329354d9-default
access-control-allow-origin: *
cache-control: public, max-age=604800
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
clientstream.launchdarkly.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?withReasons=true
76.223.31.44200 OK 0 B URL HTTP/2 clientstream.launchdarkly.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?withReasons=true
IP 76.223.31.44:0
GET /eval/5b9627a39619fd15611a390c/eyJrZXkiOiI4ZmZmOGNlNi1hYTYzLTRjYmItOGQyNS1jMTE3YjM4NzJjZmIiLCJjb3VudHJ5IjoiTk8iLCJhbm9ueW1vdXMiOnRydWUsImN1c3RvbSI6eyJjbGllbnRJZCI6ImFub255bW91cyIsImNvbnRleHRDb3VudHJ5IjoiTk8iLCJjb250ZXh0TGljZW5zZSI6Ik1HQSIsImN1cnJlbmN5IjoiTk9LIiwibGFuZ3VhZ2UiOiJFTiIsImxpY2Vuc2UiOiJNR0EiLCJtYXJrZXQiOiJOTyIsInBsYXRmb3JtVHlwZSI6Im1vYmlsZSIsInBsYXllcklkIjoiIiwicmVhbEtleSI6IjhmZmY4Y2U2LWFhNjMtNGNiYi04ZDI1LWMxMTdiMzg3MmNmYiIsInVuaXF1ZUlkIjoiOGZmZjhjZTYtYWE2My00Y2JiLThkMjUtYzExN2IzODcyY2ZiIn19?withReasons=true HTTP/1.1
Host: clientstream.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/event-stream
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 03 Feb 2023 14:50:52 GMT
content-type: text/event-stream; charset=utf-8
accept-ranges: bytes
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Cache-Control,X-Requested-With,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: *
access-control-max-age: 300
cache-control: no-cache, no-store, must-revalidate
ld-region: eu-west-1
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~29a429d8.be7a25b5bebf4a6f484f.chunk.js?e=p
34.107.241.180200 OK 0 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~29a429d8.be7a25b5bebf4a6f484f.chunk.js?e=p
IP 34.107.241.180:0
GET /fulcrum/v4/master/dynamic/mobile.app~29a429d8.be7a25b5bebf4a6f484f.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsxLzh1kSlQh5iD_Wk0Xm2QFF6eB5VNaxjPhwuich6c0mXCQPboU8UMMqOJ-jlQzbfljP8u1ziWlX5YgoTD8vTkQw
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179360681
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 11446
content-encoding: gzip
x-goog-hash: crc32c=vBY9Cg==, md5=U8PVjR9++tjY4Lj5MEZvNA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 11446
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:50 GMT
expires: Thu, 02 Mar 2023 09:14:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "53c3d58d1f7efad8d8e0b8f930466f34"
content-type: application/javascript
age: 106560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.leovegas.com/static/fulcrum/offline.html?e=p
107.154.248.168200 OK 0 B URL HTTP/2 www.leovegas.com/static/fulcrum/offline.html?e=p
IP 107.154.248.168:0
GET /static/fulcrum/offline.html?e=p HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/mobile.sw.js?e=p
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15012%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675435848854)%5c%2f%22%2c%22CookieTag%22%3a%22150123747044451240919C2023231450%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222803930797%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%228fff8ce6-aa63-4cbb-8d25-c117b3872cfb%22%7D; visid_incap_846569=nVHdRwrdQKqrU7ZbGlR5mkgf3WMAAAAAQUIPAAAAAACnb20MIjgQ3J+w7gsXSN3X; nlbi_846569=Cl/LJW9e/EJ5GKWgTJV9qQAAAADzI4382nkUncJO6PnlMJdQ; incap_ses_633_846569=Tl7fOpTJTFGucB2Apd7ICEgf3WMAAAAAcg1cX/3RIcjz44CRx6RqCw==; leobtag=667909_30882D957AA14842B84C06EBF564E211; leonrpid=3747044; leonrbid=15012; leonrmeta=[{"value":"woborkfltpp976cm2bfhd33u","key":"c"}]; _ga=GA1.1.730142529.1675435883; _gid=GA1.2.345268091.1675435883; _gat_leo=1; leo_previous_page=https://www.leovegas.com/en-no/livecasino?btag=667909_30882D957AA14842B84C06EBF564E211&c=woborkfltpp976cm2bfhd33u&pid=3747044&bid=15012; _ga_R99CHBN90V=GS1.1.1675435884.1.0.1675435884.60.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 14:50:52 GMT
content-type: text/html
content-encoding: gzip
cache-control: public, max-age=3600
last-modified: Thu, 02 Feb 2023 14:53:33 GMT
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-cdn: Imperva
x-iinfo: 5-49815729-49807178 PNNN RT(1675435848625 3871) q(0 0 0 -1) r(1 1) U12
X-Firefox-Spdy: h2
sgtm.leovegas.com/gtm.js?id=GTM-PNLF5QG
34.107.236.224200 OK 0 B URL HTTP/2 sgtm.leovegas.com/gtm.js?id=GTM-PNLF5QG
IP 34.107.236.224:0
GET /gtm.js?id=GTM-PNLF5QG HTTP/1.1
Host: sgtm.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15012%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675435848854)%5c%2f%22%2c%22CookieTag%22%3a%22150123747044451240919C2023231450%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222803930797%7c1%22%7d%5d; visid_incap_846569=nVHdRwrdQKqrU7ZbGlR5mkgf3WMAAAAAQUIPAAAAAACnb20MIjgQ3J+w7gsXSN3X; nlbi_846569=Cl/LJW9e/EJ5GKWgTJV9qQAAAADzI4382nkUncJO6PnlMJdQ; incap_ses_633_846569=Tl7fOpTJTFGucB2Apd7ICEgf3WMAAAAAcg1cX/3RIcjz44CRx6RqCw==; leobtag=667909_30882D957AA14842B84C06EBF564E211; leonrpid=3747044; leonrbid=15012; leonrmeta=[{"value":"woborkfltpp976cm2bfhd33u","key":"c"}]
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx/1.23.3
date: Fri, 03 Feb 2023 14:50:51 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
cache-control: private, max-age=900
expires: Fri, 03 Feb 2023 15:05:20 GMT
last-modified: Fri, 03 Feb 2023 12:00:00 GMT
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2