moreit.click/Smart-3
301 Moved Permanently 707 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /Smart-3 HTTP/1.1
Host: moreit.click
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Thu, 02 Feb 2023 16:35:31 GMT
server: LiteSpeed
location: https://moreit.click/Smart-3
x-turbo-charged-by: LiteSpeed
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4516
Expires: Thu, 02 Feb 2023 17:50:47 GMT
Date: Thu, 02 Feb 2023 16:35:31 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9845
Expires: Thu, 02 Feb 2023 19:19:36 GMT
Date: Thu, 02 Feb 2023 16:35:31 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3382
Expires: Thu, 02 Feb 2023 17:31:53 GMT
Date: Thu, 02 Feb 2023 16:35:31 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 15:43:31 GMT
content-type: application/json
age: 3120
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LL3BHR2O0v6BCshsP3W+FAI63604KO1AHCBBtxp7X253ql67eTUEsHt3dRMyftuvw6mAucC3seg=
x-amz-request-id: 5Z5ZWD49HF2WBFGH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 15:52:02 GMT
age: 2609
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:35:31 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 5d6c82e6ad80d232b5dbf9f36de8174f
5e82c0b0c542399413e5c96aed0225303072ad57
baa054fa324d43dbf3be53d03ffe30b5398847a351981965f8efb2808791b586
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 16:35:31 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 23:24:04 GMT
Expires: Tue, 07 Feb 2023 23:24:03 GMT
Etag: "5e82c0b0c542399413e5c96aed0225303072ad57"
Cache-Control: max-age=455911,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7934572abd2ab4ed-OSL
moreit.click/Smart-3
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Smart-3 HTTP/1.1
Host: moreit.click
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=3ccff5832763c67568dff052dfb459eb; path=/; secure
short_55=1; expires=Thu, 02-Feb-2023 16:50:31 GMT; Max-Age=900; path=/; HttpOnly; secure
location: https://whoursie.com/4/5691723
content-type: text/html; charset=UTF-8
content-length: 0
date: Thu, 02 Feb 2023 16:35:31 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 16:07:19 GMT
age: 1692
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 031daab5d6ccea0dde8978c1d5e51557
fbdadddb7850e1ecdbf64c984b9bab86267b5304
3755b6b573566b4756886734035b137a7702574be7a0e0211f4935f33dc901ae
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3755B6B573566B4756886734035B137A7702574BE7A0E0211F4935F33DC901AE"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6596
Expires: Thu, 02 Feb 2023 18:25:28 GMT
Date: Thu, 02 Feb 2023 16:35:32 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14178
Expires: Thu, 02 Feb 2023 20:31:50 GMT
Date: Thu, 02 Feb 2023 16:35:32 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 05295a6ef6a1e08350820742ca84d4cd
829cfdfb5f40a5cf0a9b80d787d46652df0ffdec
2864347c8cafc993e298b6c80a7e34b0c49710b9e8e35af6815ef685d4efdaf2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2864347C8CAFC993E298B6C80A7E34B0C49710B9E8E35AF6815EF685D4EFDAF2"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6914
Expires: Thu, 02 Feb 2023 18:30:46 GMT
Date: Thu, 02 Feb 2023 16:35:32 GMT
Connection: keep-alive
whoursie.com/favicon.ico
204 No Content 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: whoursie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: OAID=5216509d6d954297b847ac11cfcfa22e; oaidts=1675355732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 02 Feb 2023 16:35:32 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
pragma: public
cache-control: max-age=315360000, public, must-revalidate, proxy-revalidate
X-Firefox-Spdy: h2
myeasetrack.com/ce2939e7-f18f-4e8d-b910-5d9b23a74541?zoneid=5691723&device=desktop&browser=firefox&os=windows&country=NO®ion=03&zonetype={zone_type}&useractivity=high&campaignid=6406879&banner=16042566&cost=0.001000&visitor_id=645051295891464364&rdk=rk1
302 Found 0 B URL HTTP/2 myeasetrack.com/ce2939e7-f18f-4e8d-b910-5d9b23a74541?zoneid=5691723&device=desktop&browser=firefox&os=windows&country=NO®ion=03&zonetype={zone_type}&useractivity=high&campaignid=6406879&banner=16042566&cost=0.001000&visitor_id=645051295891464364&rdk=rk1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ce2939e7-f18f-4e8d-b910-5d9b23a74541?zoneid=5691723&device=desktop&browser=firefox&os=windows&country=NO®ion=03&zonetype={zone_type}&useractivity=high&campaignid=6406879&banner=16042566&cost=0.001000&visitor_id=645051295891464364&rdk=rk1 HTTP/1.1
Host: myeasetrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 02 Feb 2023 16:35:32 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://ntrfr.leovegas.com/redirect.aspx?pid=3747044&bid=14983&c=w261g2ns5rsj8gbm2sk2vsam
pragma: no-cache
set-cookie: ce2939e7-f18f-4e8d-b910-5d9b23a74541-v4=nY-_VNidFAo_ujp0h9-e8_OTCHoUvwu3l4bZiWZf7h4; Max-Age=86400; Expires=Fri, 03-Feb-2023 16:35:32 GMT; Domain=myeasetrack.com; Path=/; Secure; HttpOnly;SameSite=None
cc-v4=2L3hROzlnpakmyGAMAkuqzWzSAKg0mGDicRKujASEXdzNIc4DxrQpclAF7oTMRK4sSz68dWF8ntWYi6eIRlUO55YOpUDXDR1UCdLxV9t5rdeRcIA1j4yiwAkmtRKbSLguNijdzV1xjFd9fyK40UtNQ%3D%3D; Max-Age=31536000; Expires=Fri, 02-Feb-2024 16:35:32 GMT; Domain=myeasetrack.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
my.rtmark.net/img.gif?f=merge&userId=5216509d6d954297b847ac11cfcfa22e
200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=merge&userId=5216509d6d954297b847ac11cfcfa22e
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /img.gif?f=merge&userId=5216509d6d954297b847ac11cfcfa22e HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:35:32 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: null
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=5216509d6d954297b847ac11cfcfa22e; expires=Fri, 02 Feb 2024 16:35:32 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Abz4p77OGNZXen8I5nmkvw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8RmQmegaibD9uQVXp9hSClkPp0w=
ntrfr.leovegas.com/redirect.aspx?pid=3747044&bid=14983&c=w261g2ns5rsj8gbm2sk2vsam
307 Temporary Redirect 0 B URL HTTP/2 ntrfr.leovegas.com/redirect.aspx?pid=3747044&bid=14983&c=w261g2ns5rsj8gbm2sk2vsam
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=3747044&bid=14983&c=w261g2ns5rsj8gbm2sk2vsam HTTP/1.1
Host: ntrfr.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://www.leovegas.com/nb-no/?btag=667909_96D4A5AA8AE8459AB9A937EF88828314&c=w261g2ns5rsj8gbm2sk2vsam&pid=3747044&bid=14983
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Thu, 02 Feb 2023 16:35:32 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 02 Feb 2023 16:35:32 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a14983%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675355732608)%5c%2f%22%2c%22CookieTag%22%3a%22149833747044451240919C2023221635%22%7d%5d; SameSite=None;; domain=.leovegas.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222802893973%7c1%22%7d%5d; domain=.leovegas.com; expires=Sat, 02-Feb-3022 16:35:32 GMT; path=/; secure; SameSite=Strict
server-timing: cdn-cache; desc=MISS, edge; dur=47, origin; dur=89
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash a7295a27c6e56b48eae1c5defeaf70cf
cfcd3454939e07d9e84808a20214a2225c95fe3d
72efa51956cd62ad32cbc75662b9f9d7c97ace6ef09e836a2ccd6f48c1adac9e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5895
Cache-Control: max-age=123729
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:32 GMT
Etag: "63db0f9f-1d7"
Expires: Sat, 04 Feb 2023 02:57:41 GMT
Last-Modified: Thu, 02 Feb 2023 01:19:27 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
www.leovegas.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=2&cb=1728996794
200 OK 21 kB URL HTTP/2 www.leovegas.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=2&cb=1728996794
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0384995130fda83ff03d7ef4766e0ce4
6571572a0f9e67b07627ef49a8a02a7a1af25f40
13db88b39430c5bee43777e87ac1b77aa7f1fe81672f9a3052fe843ebcdc0f2b
GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=2&cb=1728996794 HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/en-no/?btag=667909_96D4A5AA8AE8459AB9A937EF88828314&c=w261g2ns5rsj8gbm2sk2vsam&pid=3747044&bid=14983
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a14983%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675355732608)%5c%2f%22%2c%22CookieTag%22%3a%22149833747044451240919C2023221635%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222802893973%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%22d0d8c8fb-61d2-4d9b-9e48-01768de42dce%22%7D; visid_incap_846569=jZiJeixwS/aum7fnImgdolTm22MAAAAAQUIPAAAAAADAnwp47rQeHeZKtifTJHGF; nlbi_846569=c5fJbbafNhqVKTa8TJV9qQAAAABYKE3xo/5kp6ZtiiRXI/gW; incap_ses_633_846569=/ftMHue8mWyj381/pd7ICFTm22MAAAAAAsEzrENv6+6egkuhl/i8jQ==; leobtag=667909_96D4A5AA8AE8459AB9A937EF88828314; leonrpid=3747044; leonrbid=14983; leonrmeta=[{"value":"w261g2ns5rsj8gbm2sk2vsam","key":"c"}]
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/javascript
content-encoding: gzip
x-robots-tag: noindex
content-length: 21374
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash f54c8b7ed54bcd969f9c87a6b0a18cda
28645984a34c7809d7611db6efd20352e7885726
c735b5f18d77c2e4e85509208fc6d735b9b7a4a348ff6d54b49b9d4909b50097
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1679
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:33 GMT
Last-Modified: Thu, 02 Feb 2023 16:07:34 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~1152e2e7.1fa9ef0afcd69d2f27de.chunk.css?e=p
200 OK 1.8 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~1152e2e7.1fa9ef0afcd69d2f27de.chunk.css?e=p
IP
File type ASCII text, with very long lines (2696)
Hash 4d3f63e8cbd0ec629f2aff72093c300a
5347f5d957958a872b734b54ec907a8747ca342d
7d17d82ffb30ae85b4a6ab33f5ee0e3d0955e0e5ad071b6ddcce470f2d2570d5
GET /fulcrum/v4/master/dynamic/mobile.app~1152e2e7.1fa9ef0afcd69d2f27de.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdup5_ucUASjufA7wXeJPuLXHDx4lU8iynYZqZgGZq4rQfkef8VqnIX6MQopeLZwLq5THaNeJMSX5OSY05i-Y7ELb5JX-vd7
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1671454859052504
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1812
content-encoding: gzip
x-goog-hash: crc32c=kwTQpg==, md5=TT9j6MvQ7GKfKv9yCTwwCg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1812
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Sun, 29 Jan 2023 08:36:04 GMT
expires: Sun, 26 Feb 2023 08:36:04 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Mon, 19 Dec 2022 13:00:59 GMT
etag: "4d3f63e8cbd0ec629f2aff72093c300a"
content-type: text/css
age: 374369
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bead5879.4ba62c335ac53fa2f433.chunk.css?e=p
200 OK 1.6 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bead5879.4ba62c335ac53fa2f433.chunk.css?e=p
IP
File type ASCII text, with very long lines (2303)
Hash e27a18cf1cd1a858e6bc1e56cfe231bd
73821fe3a5a2cff54c549ae91fb5347b5e6d8a9b
5a9ca458694d9b63411c902fe342f88de706187b5552a1670066753f502cd622
GET /fulcrum/v4/master/dynamic/mobile.app~bead5879.4ba62c335ac53fa2f433.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdto5R5g6_AH_zWAonxntbcB-wVa2Wb0sA7OtjJoYaNXdAHqff6JqUf3A1cQd1OjR3IENGYuVhYDkVQXl0aGb9BVEA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1670506834496426
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1625
content-encoding: gzip
x-goog-hash: crc32c=igy0xQ==, md5=4noYzxzRqFjmvB5Wz+IxvQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1625
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Mon, 30 Jan 2023 08:28:02 GMT
expires: Mon, 27 Feb 2023 08:28:02 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:34 GMT
etag: "e27a18cf1cd1a858e6bc1e56cfe231bd"
content-type: text/css
age: 288451
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash f54c8b7ed54bcd969f9c87a6b0a18cda
28645984a34c7809d7611db6efd20352e7885726
c735b5f18d77c2e4e85509208fc6d735b9b7a4a348ff6d54b49b9d4909b50097
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1679
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:33 GMT
Last-Modified: Thu, 02 Feb 2023 16:07:34 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.relay~93c72913.9d8920c9306f7917f5d4.chunk.js?e=p
200 OK 25 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.relay~93c72913.9d8920c9306f7917f5d4.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 88cc9dfad78be7a8333a39c60b66409c
c40c8ddd7735becdfa00a3f800a7530dff0f5b03
7bddfaa30d3edd219ff0d9364982fd9d8f0d41854b57ecd50259dd4e24755358
GET /fulcrum/v4/master/dynamic/mobile.relay~93c72913.9d8920c9306f7917f5d4.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu9fAUDoA7ZMlOCrwYl1sHA1yacom2Cmp7zPi68y5_tUG6UUCsc3n-kKCUuknvVSoyAIOlEVAmanTqrUiO10qURsQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179704429
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 25189
content-encoding: gzip
x-goog-hash: crc32c=jLMiDQ==, md5=iMyd+teL56gzOjnGC2ZAnA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 25189
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "88cc9dfad78be7a8333a39c60b66409c"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.runtime.8d23bc5252eefef18874.js?e=p
200 OK 12 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.runtime.8d23bc5252eefef18874.js?e=p
IP
File type ASCII text, with very long lines (34420)
Hash 13de8c5357b759da601e1d62aa125ae3
c20b7e121b1b906b7fbdcde7718584f570f659a9
ad577c76fc3c6adad509384d190a218a036dc17392369be7948ccdf92f9b301e
GET /fulcrum/v4/master/dynamic/mobile.runtime.8d23bc5252eefef18874.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsvloR0RqVqxSDp9jP6WarT4T9N6SZHoIi4p30murZZx8pw2IgCGUC7OpuSa1T5AtNZzqZZwqb4qS9WjwixCPp7UCVdf5mN
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675349647260716
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12188
content-encoding: gzip
x-goog-hash: crc32c=xo7Dqg==, md5=E96MU1e3WdpgHh1iqhJa4w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12188
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:58:14 GMT
expires: Thu, 02 Mar 2023 14:58:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:54:07 GMT
etag: "13de8c5357b759da601e1d62aa125ae3"
content-type: application/javascript
age: 5839
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/static/c16b1b72809f0ebf0713c5d56aaaa998.svg
200 OK 2.9 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/static/c16b1b72809f0ebf0713c5d56aaaa998.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2945), with no line terminators
Hash 342bb69e34b5d81e1fab7241f0398da8
f12381655ac55a5b4a620595348576477dd61236
79387e649471e7a99751a3168ea95f57796929c435d7f1eb2cfca955bbf23c44
GET /fulcrum/v4/master/static/c16b1b72809f0ebf0713c5d56aaaa998.svg HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a14983%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675355732608)%5c%2f%22%2c%22CookieTag%22%3a%22149833747044451240919C2023221635%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222802893973%7c1%22%7d%5d; visid_incap_846569=jZiJeixwS/aum7fnImgdolTm22MAAAAAQUIPAAAAAADAnwp47rQeHeZKtifTJHGF; nlbi_846569=c5fJbbafNhqVKTa8TJV9qQAAAABYKE3xo/5kp6ZtiiRXI/gW; incap_ses_633_846569=/ftMHue8mWyj381/pd7ICFTm22MAAAAAAsEzrENv6+6egkuhl/i8jQ==; leobtag=667909_96D4A5AA8AE8459AB9A937EF88828314; leonrpid=3747044; leonrbid=14983; leonrmeta=[{"value":"w261g2ns5rsj8gbm2sk2vsam","key":"c"}]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvMoslgpGpzK8b7dZ-p3DcKTGVsNWQxRJtqup4StPfxGsVAcvzAQWKD9epBd6OM7upe50WksiuDt7wCXzivKCvDPDp3PE-o
x-goog-generation: 1674162223360069
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2945
x-goog-meta-goog-reserved-file-mtime: 1674162194
x-goog-hash: crc32c=T17Tvw==, md5=NCu2njS12B4fq3JB8DmNqA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2945
vary: Origin
server: UploadServer
date: Fri, 20 Jan 2023 13:32:08 GMT
expires: Fri, 17 Feb 2023 13:32:08 GMT
cache-control: public, max-age=2419200
last-modified: Thu, 19 Jan 2023 21:03:43 GMT
etag: "342bb69e34b5d81e1fab7241f0398da8"
content-type: image/svg+xml
age: 1134205
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~65914263.6f996d8b6ea9f23747f1.chunk.css?e=p
200 OK 1.9 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~65914263.6f996d8b6ea9f23747f1.chunk.css?e=p
IP
File type ASCII text, with very long lines (5028)
Hash 71b32aaf113588ee53a750afb9f91a02
7f378b3e6695c22fd99484613ffc4328d4d07816
068bf711982c24a8a09bd4432011c0e52355bb823392ab6421cbf62e0f082f97
GET /fulcrum/v4/master/dynamic/mobile.app~65914263.6f996d8b6ea9f23747f1.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvWEW-Vt3VQkhOnUyHFuuQ6eO0Qt79i-y7SYhOInLGY2G0BMjJ6F8hU0HudlQYwvKaSGT6UtGPVFRZuZ9RgEmJv8w
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1669028776140146
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1881
content-encoding: gzip
x-goog-hash: crc32c=ovdTiA==, md5=cbMqrxE1iO5Tp1CvufkaAg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1881
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Mon, 30 Jan 2023 08:16:25 GMT
expires: Mon, 27 Feb 2023 08:16:25 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Mon, 21 Nov 2022 11:06:16 GMT
etag: "71b32aaf113588ee53a750afb9f91a02"
content-type: text/css
age: 289148
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.react~03cc5dce.7d492abff2b9f861ab9c.chunk.js?e=p
200 OK 36 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.react~03cc5dce.7d492abff2b9f861ab9c.chunk.js?e=p
IP
File type ASCII text, with very long lines (58423)
Hash 7e2b85c28d0e81c76370de82accb078a
0ca5410f13c25c339685f024d985e6cab22448f9
c29b6f6762707f9ac9fd8edca2e3d342b8d47c92bd2660fb5a2b9a7daea3a7b9
GET /fulcrum/v4/master/dynamic/mobile.react~03cc5dce.7d492abff2b9f861ab9c.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvB8we4NCwjfojv2vNjxWJBAW1zPY96sGg_Ka_Su81ab6P4BkGimmWBztRKJTSORkrqQ6nlvSOc1HwZA-8-jqXNJg
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179664609
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 35667
content-encoding: gzip
x-goog-hash: crc32c=JB4Iyw==, md5=fiuFwo0OgcdjcN6CrMsHig==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 35667
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "7e2b85c28d0e81c76370de82accb078a"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~6b6ee712.162662eb90f6dec64b1e.chunk.js?e=p
200 OK 19 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~6b6ee712.162662eb90f6dec64b1e.chunk.js?e=p
IP
File type ASCII text, with very long lines (54811), with no line terminators
Hash 991d2b14040a4d33f5cbbe778d71d626
f0a9a6b943eca0c9f6c41b2223114293d8a197e4
4b690962c42f5b3537aea6fcf7dd311f6f32767e3f63a26b482322070a268030
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~6b6ee712.162662eb90f6dec64b1e.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtuf0IsnovMw5bEFAWJzvdd5JlHIzf4UA7aGr83jcs9Urq__zX8SZl286PLoMbRluL3a8_0fyvjDYMxUwOkYAOjrCTTL38y
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180089548
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 18815
content-encoding: gzip
x-goog-hash: crc32c=F3/tbA==, md5=mR0rFAQKTTP1y753jXHWJg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 18815
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "991d2b14040a4d33f5cbbe778d71d626"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~9b312c24.4913fd26d7cc2d31e38d.chunk.js?e=p
200 OK 12 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~9b312c24.4913fd26d7cc2d31e38d.chunk.js?e=p
IP
File type ASCII text, with very long lines (35552), with no line terminators
Hash 0364586251fdaa810c67bf91fb7068b6
eb23a74db2aa2ee6f8ffd766e122b1dbaa4f8e15
f9bbbd7458ed6eba55479dc0c998ec916c89d5d2532dadaa716ea374e19de33f
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~9b312c24.4913fd26d7cc2d31e38d.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvxMbnPMWuyRv3AJeoW21l2vlREn6dfK6YZbGNCI7gil8M3_28PzsDDRghOjstUWla4D70fbFaNCEXXqc_vJ1cT2w
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180077247
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 11670
content-encoding: gzip
x-goog-hash: crc32c=PkWQmw==, md5=A2RYYlH9qoEMZ7+R+3Botg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 11670
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "0364586251fdaa810c67bf91fb7068b6"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash f54c8b7ed54bcd969f9c87a6b0a18cda
28645984a34c7809d7611db6efd20352e7885726
c735b5f18d77c2e4e85509208fc6d735b9b7a4a348ff6d54b49b9d4909b50097
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4054
Cache-Control: max-age=96656
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:33 GMT
Etag: "63daad0f-1d7"
Expires: Fri, 03 Feb 2023 19:26:29 GMT
Last-Modified: Wed, 01 Feb 2023 18:18:55 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~6ae16c75.61357cf1b5631a272bdf.chunk.js?e=p
200 OK 18 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~6ae16c75.61357cf1b5631a272bdf.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash c84385a3573afbcca36df84313cb5b7c
3a1054d9b012430ae6d7965d4485b7a42f4e8deb
ec2ca1f27b3f010330016ac91cc5cb286ba74b705e638865c3abd404487e6743
GET /fulcrum/v4/master/dynamic/mobile.app~6ae16c75.61357cf1b5631a272bdf.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvFnz6vJoC00lX51_WLXkza-5Y-msp7bBNkWJSUhKWBomn_XWCMU-zEgTPYBHKDmuQl8r2j8my6nQbj0wcmJMzCOE_bGdvb
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179623176
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 18243
content-encoding: gzip
x-goog-hash: crc32c=+TwEJA==, md5=yEOFo1c6+8yjbfhDE8tbfA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 18243
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "c84385a3573afbcca36df84313cb5b7c"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bfe0ed74.bb38c9744e90ac20e35f.chunk.js?e=p
200 OK 23 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bfe0ed74.bb38c9744e90ac20e35f.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6597bbb00b8874bb766e271a4236c4b3
432a5e738f1e4a207621044425849b77d228532b
4dee43006229ac032aab15f545e2d79130957e41710f0fa276f0fd6258cf8c13
GET /fulcrum/v4/master/dynamic/mobile.app~bfe0ed74.bb38c9744e90ac20e35f.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvnQXEXRy-7sXw6vnMzhwJBU6jZ6goQiyZUfJdyFm5Qmkp3PEfgQhkORQr8Qxu5sKGoqgAn_nmqoZjbpuGlqZmQL92L3buo
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675349647321370
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 23208
content-encoding: gzip
x-goog-hash: crc32c=hK0X5g==, md5=ZZe7sAuIdLt2bicaQjbEsw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 23208
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:58:14 GMT
expires: Thu, 02 Mar 2023 14:58:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:54:07 GMT
etag: "6597bbb00b8874bb766e271a4236c4b3"
content-type: application/javascript
age: 5839
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~bfe0ed74.2b24c86e70212735cbca.chunk.css?e=p
200 OK 3.9 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~bfe0ed74.2b24c86e70212735cbca.chunk.css?e=p
IP
File type ASCII text, with very long lines (3276)
Hash 2c59688df30d68955e99cbbec9aaa09e
3e6b905631027faa74cb05b37f0b67f7d865a420
b16e7772fcbc38983179aed4fee0507a4cdf36cd5850698b92d46304fc4a7c87
GET /fulcrum/v4/master/dynamic/mobile.BottomBarScreen~bfe0ed74.2b24c86e70212735cbca.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtgZtUSyUpijG9Ddy91LgiG7M0fRw45fayvS8MSZ_C1n_Kdh74tO61LFzc2vuXJzdMuoBse_p1UvbRPYH0ufdxdoA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675167093429499
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 3877
content-encoding: gzip
x-goog-hash: crc32c=BU+4Ww==, md5=LFlojfMNaJVemcu+yaqgng==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 3877
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 31 Jan 2023 12:21:58 GMT
expires: Tue, 28 Feb 2023 12:21:58 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 31 Jan 2023 12:11:33 GMT
etag: "2c59688df30d68955e99cbbec9aaa09e"
content-type: text/css
age: 188015
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~521067a8.06385421245227d2bbfd.chunk.js?e=p
200 OK 10 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~521067a8.06385421245227d2bbfd.chunk.js?e=p
IP
File type ASCII text, with very long lines (49063)
Hash c9f6afb2fa4e26f3d83bda9580a89775
539b5b23175d5bf1cef5be8c6bd28585fdcafc21
a15d70ea3a613863d101ff1332e7899cc0e336cd4bbfaeb1e26a25d0b7146dd7
GET /fulcrum/v4/master/dynamic/mobile.app~521067a8.06385421245227d2bbfd.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdszXrtT5q_1eN7Cgvb9SjPmrMTuTZV--FE7oT-4r0i_62M6hnVSzd_g7gkO69p5SsILaT8bShAwckLQS75-7Mpvwx3CfbI9
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179311342
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10268
content-encoding: gzip
x-goog-hash: crc32c=MPJYgQ==, md5=yfavsvpOJvPYO9qVgKiXdQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 10268
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "c9f6afb2fa4e26f3d83bda9580a89775"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11290
Expires: Thu, 02 Feb 2023 19:43:43 GMT
Date: Thu, 02 Feb 2023 16:35:33 GMT
Connection: keep-alive
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.AndroidAppScreen~BankID~BlogPostScreen~BlogPostsScreen~BonusInfoScreen~BonusTermsScreen~CampaignList~c348699f.a1dbc61bb6253f888934.chunk.css?e=p
200 OK 1.7 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.AndroidAppScreen~BankID~BlogPostScreen~BlogPostsScreen~BonusInfoScreen~BonusTermsScreen~CampaignList~c348699f.a1dbc61bb6253f888934.chunk.css?e=p
IP
File type ASCII text, with very long lines (5262)
Hash 6964f9a85404172d72a2be157e5e4437
ef03eeba68f633164b0b8e56d158e53cb296e76e
a107be28dab4ef8b16f81f323c0b1bbb3afd6a975647d39e52d0972ad2fe1959
GET /fulcrum/v4/master/dynamic/mobile.AndroidAppScreen~BankID~BlogPostScreen~BlogPostsScreen~BonusInfoScreen~BonusTermsScreen~CampaignList~c348699f.a1dbc61bb6253f888934.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdua4-wO1BxRZbwmHiKbxca1MKzS9cWvhFEl-6bEe50k7uXQEiafLaulOy44q9yecDr8Za1bWbB1yzNEausiKt4vmg
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1673882442408172
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1745
content-encoding: gzip
x-goog-hash: crc32c=oDzE7w==, md5=aWT5qFQEFy1yor4Vfl5ENw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1745
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Mon, 30 Jan 2023 08:28:02 GMT
expires: Mon, 27 Feb 2023 08:28:02 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Mon, 16 Jan 2023 15:20:42 GMT
etag: "6964f9a85404172d72a2be157e5e4437"
content-type: text/css
age: 288451
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~1152e2e7.75b89c58b5cad5b0fc2b.chunk.js?e=p
200 OK 22 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~1152e2e7.75b89c58b5cad5b0fc2b.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash dd00d335f35aae85c9fcd2cf3f43d937
4e18bf6e0c74ad4407f268521ddf2b0d31c54057
56dd2d07b2e5be8e9a7cf011fb1e3bb1eb637cb2ca1794dda9dea1c79dfdf3e8
GET /fulcrum/v4/master/dynamic/mobile.app~1152e2e7.75b89c58b5cad5b0fc2b.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv2RBoq9BlMF8keMetnydmROYDmqtCRgv0yyjGNxgzaNtWpTqPwpAfZroOruh-qh-I_BMIk-4UOPirDBZo_gCNMMg
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675346487652309
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 21995
content-encoding: gzip
x-goog-hash: crc32c=ItEhNw==, md5=3QDTNfNaroXJ/NLPP0PZNw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 21995
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:09:35 GMT
expires: Thu, 02 Mar 2023 14:09:35 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:01:27 GMT
etag: "dd00d335f35aae85c9fcd2cf3f43d937"
content-type: application/javascript
age: 8758
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ik.imagekit.io/leovegas/lv/games/72qpPZ6L4/M55X0IgwGxnyPm.jpg
200 OK 58 kB URL HTTP/2 ik.imagekit.io/leovegas/lv/games/72qpPZ6L4/M55X0IgwGxnyPm.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 390x390, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2cf66770aefba4af5576db83e3f5a560
90e992ad77ad8336a08792e6df353d9cb9d759e5
235f1bcf85913ea28dbaeb7afb16ab624067ebf05a72d3e5d477a25be60c8ced
GET /leovegas/lv/games/72qpPZ6L4/M55X0IgwGxnyPm.jpg HTTP/1.1
Host: ik.imagekit.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 58506
x-request-id: ec6ef41d-8743-4562-8394-caccac63bb08
x-server: ImageKit.io
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, s-maxage=15552000, max-age=15552000, must-revalidate
etag: W/"e48a-kOmSrXetgzagh5Lm3zU9nLnXWeU"
date: Sat, 14 Jan 2023 02:14:19 GMT
vary: Accept
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: aTTOWabwMA3VMjaP_aLT0-c1Ko-4ZgMK44eBUCXS6iM9d4PI9F8mcw==
age: 1693274
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bead5879.f2910eb15a0443467919.chunk.js?e=p
200 OK 5.3 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bead5879.f2910eb15a0443467919.chunk.js?e=p
IP
File type ASCII text, with very long lines (15783)
Hash 7132dd0a03838820b9157e635f8ae36b
672f251bcd0beab7c010bc00e4883075d8bff476
6947f2cb74f15ac19f5885e309c31ffe851a24bc42c664dc178378c61da530e2
GET /fulcrum/v4/master/dynamic/mobile.app~bead5879.f2910eb15a0443467919.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsZqxV0_M3nnN_CMoIwO28OqXnoAX5YbkWaV2xKOdfWqfTHw7cUdWL8wjOZkmqW9Ju15aHk6sXRv1fW9eQTnLwn31Xp6ttK
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675346487549865
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 5327
content-encoding: gzip
x-goog-hash: crc32c=fzbtfA==, md5=cTLdCgODiCC5FX5jX4rjaw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 5327
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:09:35 GMT
expires: Thu, 02 Mar 2023 14:09:35 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:01:27 GMT
etag: "7132dd0a03838820b9157e635f8ae36b"
content-type: application/javascript
age: 8758
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ik.imagekit.io/leovegas/lv/games/znJLEPZoQ/dX5ltjEQ7ArEe.jpg
200 OK 9.5 kB URL HTTP/2 ik.imagekit.io/leovegas/lv/games/znJLEPZoQ/dX5ltjEQ7ArEe.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 150x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash de7cd2f714d0dc022d17a5cbaddf93e0
3e8b9abf8ab4f5845737ffffadeb5fe72035d255
b288f02da7d9d609508bd7c0f821fad062df4bf7fef57c87cc2586454f96c205
GET /leovegas/lv/games/znJLEPZoQ/dX5ltjEQ7ArEe.jpg HTTP/1.1
Host: ik.imagekit.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 9452
x-request-id: cb022430-60f6-41bc-9439-eb4283b245b6
x-server: ImageKit.io
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, s-maxage=15552000, max-age=15552000, must-revalidate
etag: W/"24ec-Pouav4q09YRXN///retf5yA10lU"
date: Sun, 22 Jan 2023 07:37:10 GMT
vary: Accept
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 0cHdmjWsiwZdH_b-dtBdaP6uBGrqjGNs_7FautCBKqM1maNPDQJVVg==
age: 982703
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~493df0b3.f8b771413c312f3e2221.chunk.js?e=p
200 OK 29 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~493df0b3.f8b771413c312f3e2221.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash dfc12b022a2d063d1c5d0bd82bc35bd2
3c11222417d98653195d0d7de566438b7978c430
ce27a6a69386359dcb44defe51a4c51263ce03c937037902f0e73acc98ed1a4b
GET /fulcrum/v4/master/dynamic/mobile.app~493df0b3.f8b771413c312f3e2221.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvhg9avrja4cjcTRhJo9c-GA6u7Ejk10mPm5sWhdATzqvLE-XTgXAsa_cSH8AL4olfVPtYT6lL_iukCoW6dfI6Z2Q
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675346487679611
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 29128
content-encoding: gzip
x-goog-hash: crc32c=3mb5dQ==, md5=38ErAiotBj0cXQvYK8Nb0g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 29128
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:09:35 GMT
expires: Thu, 02 Mar 2023 14:09:35 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:01:27 GMT
etag: "dfc12b022a2d063d1c5d0bd82bc35bd2"
content-type: application/javascript
age: 8758
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ik.imagekit.io/leovegas/lv/games/BmnRz9Qjw/wk0XyUyKZL5eJW.jpg
200 OK 54 kB URL HTTP/2 ik.imagekit.io/leovegas/lv/games/BmnRz9Qjw/wk0XyUyKZL5eJW.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 390x390, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8c445b381b1bdbad163341f90e7c3d6f
77c379435bcea0e2ff070442d59fae8dbd433e16
f9da8dd52e4eb7c5a5fdb200d5048258fb7135c61fc56644141c23d7b087b9e8
GET /leovegas/lv/games/BmnRz9Qjw/wk0XyUyKZL5eJW.jpg HTTP/1.1
Host: ik.imagekit.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 53778
x-request-id: b4e42556-5136-40a4-99d8-364c7741c376
x-server: ImageKit.io
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, s-maxage=15552000, max-age=15552000, must-revalidate
etag: W/"d212-d8N5Q1vOoOL/BwRC1Z+ujb1DPhY"
date: Sat, 21 Jan 2023 16:52:57 GMT
vary: Accept
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: yl8pH-SQnFvI64jEur_xzvAuvZC1fXBavkAAeZMkidvkCeRi1NVSSQ==
age: 1035756
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11290
Expires: Thu, 02 Feb 2023 19:43:43 GMT
Date: Thu, 02 Feb 2023 16:35:33 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11290
Expires: Thu, 02 Feb 2023 19:43:43 GMT
Date: Thu, 02 Feb 2023 16:35:33 GMT
Connection: keep-alive
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~a8f9656c.06731460c1fba01cd0fc.chunk.js?e=p
200 OK 20 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~a8f9656c.06731460c1fba01cd0fc.chunk.js?e=p
IP
File type ASCII text, with very long lines (52100)
Hash 9dfa61d3ec42bfecfa4f827dbe77a2dd
21dc2920dfe87863d7da1dde4295ee390b74c760
8ba56e2f4a0d1589afe4138ed68256d779d39fd240fcafd42bf8213ff3be840f
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~a8f9656c.06731460c1fba01cd0fc.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdugopzXQTD0leBQyQS_N7DTdljQGaAEPHhPHGJ4yZLvuFL-eR0oAORAc75Es3284okSNcCgQTwbpadyeW_yLQs3643vKclj
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180097198
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 20044
content-encoding: gzip
x-goog-hash: crc32c=SiynNg==, md5=nfph0+xCv+z6T4J9vnei3Q==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 20044
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "9dfa61d3ec42bfecfa4f827dbe77a2dd"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash f54c8b7ed54bcd969f9c87a6b0a18cda
28645984a34c7809d7611db6efd20352e7885726
c735b5f18d77c2e4e85509208fc6d735b9b7a4a348ff6d54b49b9d4909b50097
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4054
Cache-Control: max-age=96656
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:33 GMT
Etag: "63daad0f-1d7"
Expires: Fri, 03 Feb 2023 19:26:29 GMT
Last-Modified: Wed, 01 Feb 2023 18:18:55 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/s/gts1p5/dVi66-kaLJo
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/dVi66-kaLJo
IP
Hash e022787c4cfdd47f2e7cf567597890da
a6cda5e69ea354157865a6531546b543a1273dd4
603fe40c6539723fffd9a6c45926b231a77963bb7f96457289c14a894d59e3e0
POST /s/gts1p5/dVi66-kaLJo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:33 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ik.imagekit.io/leovegas/lv/games/VPLpAYrJ7/abQ1FEMNGyLop.jpg
200 OK 43 kB URL HTTP/2 ik.imagekit.io/leovegas/lv/games/VPLpAYrJ7/abQ1FEMNGyLop.jpg
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x280, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f1fd7895ae54969ab372b61ac83d0b76
08c1f670094b658f8a4bba8c1da68ad91a6f573e
220aa337c786fa256905132437f53e589bd478428dc478e275a42007abf823b6
GET /leovegas/lv/games/VPLpAYrJ7/abQ1FEMNGyLop.jpg HTTP/1.1
Host: ik.imagekit.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 43226
x-request-id: 58e54a25-c1cb-4321-a0f5-035864f41862
x-server: ImageKit.io
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, s-maxage=15552000, max-age=15552000, must-revalidate
etag: W/"a8da-CMH2cAlLZY+KS7qMHaaK2RpvVz4"
date: Wed, 01 Feb 2023 08:22:43 GMT
vary: Accept
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: bE2XYqVGQq_zrX6eyLXZymConZa9Wd888IUsA3QtEQpQfp3cFSX4CA==
age: 115970
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~23b211d4.9dd27998f83f955876f0.chunk.js?e=p
200 OK 13 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~23b211d4.9dd27998f83f955876f0.chunk.js?e=p
IP
File type Unicode text, UTF-8 text, with very long lines (29772), with no line terminators
Hash a9a803eeac0782a4e2fd613481d5285b
ec9245cb5ed6125d90e922f0f798ce7b12019cb8
61190c753a1b862c8d56bca34174da3c3ff9db9c94c90c28da618206449e0d87
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~23b211d4.9dd27998f83f955876f0.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtT657bDUoe5rfWTDqT1OfuCDy20s_fAWd5CB39TU30VTfabDYH_hRVoLfYtg8IfbxPxTjWme9Zr3woHa0hK15yzlkDepxa
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179939177
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 13193
content-encoding: gzip
x-goog-hash: crc32c=9v/k/g==, md5=qagD7qwHgqTi/WE0gdUoWw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 13193
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "a9a803eeac0782a4e2fd613481d5285b"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:28:37 GMT
age: 32817
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~acf67890.15da669b4021ad83d058.chunk.js?e=p
200 OK 12 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~acf67890.15da669b4021ad83d058.chunk.js?e=p
IP
File type ASCII text, with very long lines (46125), with no line terminators
Hash 68465abfbaec3491818ac4636383161f
dc127f9610a639bc06db484be2287ff3250e0e69
79e46474c775953f2f9e957adddda206b3af0cea02070079aa19d86acfeff9b1
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~acf67890.15da669b4021ad83d058.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsnxqjULrZCc9MOp8lfrQQjqors1dHzJvgUVQB7yTdPzSIiMvHqImTysMkXFn19GvjA1hl1NHMFl9F3GMMndZJT
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180163950
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12367
content-encoding: gzip
x-goog-hash: crc32c=Ny5aTQ==, md5=aEZav7rsNJGBisRjY4MWHw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12367
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "68465abfbaec3491818ac4636383161f"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 395bb0f71f9eba82f5ca23548d08900f
b1fada280c7ea3eb775a6fa46ce173a51eb045f5
7443babb69532e1ee3ee779e05ad4f62de2c5bf62548bcb5702f8290a527664c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H1HIK6zdv95V96NxqSfHCqYtDQNPZ9NLAwG5oM5mwRr3nAUR0BPxlg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:25:11 GMT
age: 65423
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~127b6cf7.0d0525409bcc0c2bfe6a.chunk.js?e=p
200 OK 24 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~127b6cf7.0d0525409bcc0c2bfe6a.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3d7d79b60c8d684beeccd53a1155b2a5
8d4c4f6293beda5320b994228abad1c0483a6858
37de6e7c9c56259bf347969f1afcd40277460af9ee60187addcc323cc5f920c2
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~127b6cf7.0d0525409bcc0c2bfe6a.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvp4Vdkm6wuJ7ihF7IdoylnGYtZ5pKsQ7GVCKCLYKuKJiQDlHPUEnlNSr9ip5EEyc0YIxSZMX9TNEB2Upd_ZDgPHQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179971354
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 23570
content-encoding: gzip
x-goog-hash: crc32c=h2O+Sg==, md5=PX15tgyNaEvuzNU6EVWypQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 23570
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "3d7d79b60c8d684beeccd53a1155b2a5"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 86qoRJHXcrnBGi3REMF5q3ANzKdqEs5F3yFUBmiIt6SCbBVnhGe2Kw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:58:57 GMT
age: 66997
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0f85742f336de59ca88f7f964a8b33f4
0fc7177f8cb06421a8807e93989f651bda743567
fbd5fd39c39c218b0fa956f8cb8050cbdbfcb109a92303f6175d73cc8c339526
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8642
x-amzn-requestid: 79840c68-3e99-428d-9c01-9e4a93a34486
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdUzH1-oAMFiwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc1e-5bb93c5126aaff474900da63;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Mc8C-oesi4njIn2K2f56GKuyt6erRJAqCU-B4InhTD8oIoqo4s5-Fg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:43 GMT
age: 65811
etag: "0fc7177f8cb06421a8807e93989f651bda743567"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~91835fe9.4c6c6e810b1dcde86c48.chunk.js?e=p
200 OK 7.7 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~91835fe9.4c6c6e810b1dcde86c48.chunk.js?e=p
IP
File type ASCII text, with very long lines (25581), with no line terminators
Hash eb010ae02917a1500b804e16a7810032
bb22ae2e40fa7a8fe21f1d64caad6b78fa656033
061ed2c2d9b28dcc0322d55ff556f2569b3aded1f39969885024f1275b85865f
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~91835fe9.4c6c6e810b1dcde86c48.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtjlsK2pb33w_DDcS5uQaATbiCJZzP8mxs-WxqxwWm7D0L0NO3erEGh8XKeSFAcZ3shVHDoRlv-_8Ao9RAjdoxvZg
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180009401
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7716
content-encoding: gzip
x-goog-hash: crc32c=sbwi2A==, md5=6wEK4CkXoVALgE4Wp4EAMg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 7716
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "eb010ae02917a1500b804e16a7810032"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg
200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0224e848c34cb32cf932ed99dfd8468a
31c1abac8979bca5a998a6649ca3e6f59c0fb2f5
f93d5a69758e57d4d2b0d307ce98ad5ea8d86b825108873e8ea5bc36567dc5c0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5061
x-amzn-requestid: a266acae-8f1e-4cd7-b93b-e40aa5393521
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdUpGcmoAMF16Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc1d-1fbae7785fccc58f71c1b3e9;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: PevXZz9rkBo3Cy6EooCVOpSoHyeKHMoYFjKRrvDld34WFWXzOmpANQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:11:31 GMT
age: 66243
etag: "31c1abac8979bca5a998a6649ca3e6f59c0fb2f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~80e93ec1.cdd753cd2fd9b2b58452.chunk.js?e=p
200 OK 22 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~80e93ec1.cdd753cd2fd9b2b58452.chunk.js?e=p
IP
File type Unicode text, UTF-8 text, with very long lines (29186), with LF, NEL line terminators
Hash e8c41d3c330ec4a5fa80c2f5bf9098a3
c036efcbd3f9736c82d71cba8d1717ecf56998eb
f9e59eeff9530e454c412b459e6b3762179bf1262072d83b619036dbb7b356c1
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~80e93ec1.cdd753cd2fd9b2b58452.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdumKysB5CufG-B7ckHVQZFqFCHHpC_ETynv_jwYE4POAimjl4XN6wY5wZUrwUZKKJ4fjHLLhGSsadiMqRpghR-l0A
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180040437
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 22124
content-encoding: gzip
x-goog-hash: crc32c=Gw5y/Q==, md5=6MQdPDMOxKX6gML1v5CYow==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 22124
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "e8c41d3c330ec4a5fa80c2f5bf9098a3"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~e9b2199d.4c6b788c457b66b2dd15.chunk.js?e=p
200 OK 14 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~e9b2199d.4c6b788c457b66b2dd15.chunk.js?e=p
IP
File type ASCII text, with very long lines (42449), with no line terminators
Hash 3c7b19f4a0f7ac55be57aee572fda218
90d9d47a0dd106d9d0e7ad2b299264148ac4fbe3
fdd778c1654295540dc0d7d6a87d9a42207426c17d0584e61e93f9a07266bf79
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~e9b2199d.4c6b788c457b66b2dd15.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdutN2E8LgrLozoIxIzwtHjmomuOTRUbXoeOa_i3nO4Xfnr05CJgUGVaR1_UvCLk5eart_9HCXG_BiMz_bShyLcgmQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180169481
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 13604
content-encoding: gzip
x-goog-hash: crc32c=Lq3TUg==, md5=PHsZ9KD3rFW+V67lcv2iGA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 13604
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "3c7b19f4a0f7ac55be57aee572fda218"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XyDZc0F-b0rxwoS5wvSXBuBfYE7JljMmuXseBjLOBk4HvxU5gE7Oqg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:55 GMT
age: 65799
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScreen~LostPa~952074d0.d01d872af38a2b83fed6.chunk.css?e=p
200 OK 3.2 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScreen~LostPa~952074d0.d01d872af38a2b83fed6.chunk.css?e=p
IP
File type ASCII text, with very long lines (3276)
Hash 1f3980b31a459738edf6b8f64e0c549b
b0fe9692e7c1ee7205a291fbab885273aa9dfbfd
ede6d828fce80956c5cb66a8dc0211ede58718ce01a3da9867a6141e372752bf
GET /fulcrum/v4/master/dynamic/mobile.BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScreen~LostPa~952074d0.d01d872af38a2b83fed6.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdt3lJ9MFpEs1SySigWFL7h8PlnHeeE7tuaZk_rnUegZqOVgNyPyTuVT6kr1s2UBfUxIYzYwSqFyFyjVBF8WDtWO
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675167093338125
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 3216
content-encoding: gzip
x-goog-hash: crc32c=Okt9Ow==, md5=HzmAsxpFlzjt9rj2TgxUmw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 3216
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 31 Jan 2023 12:21:58 GMT
expires: Tue, 28 Feb 2023 12:21:58 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 31 Jan 2023 12:11:33 GMT
etag: "1f3980b31a459738edf6b8f64e0c549b"
content-type: text/css
age: 188015
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScreen~LostPa~952074d0.f4caeaeb95313452cebe.chunk.js?e=p
200 OK 17 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScreen~LostPa~952074d0.f4caeaeb95313452cebe.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash ea4c39af472b2e4f9c2604de9165b87b
e6c1d9707ad06d883f3f70082584919d02503faf
d7da3445d91d0918fab7dd3c70b145f5320c2b9b5f53625f8bea0564d609fe02
GET /fulcrum/v4/master/dynamic/mobile.BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScreen~LostPa~952074d0.f4caeaeb95313452cebe.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdscKSlvaGW-VcQpAf0JpIZ_Wd0FxVIDSaMsyNrddIsMgZTuf_X1fJ_TSk5L_XamDEKFZSlkaLWInoU_ouTfLieROe3FfC6X
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328174339672
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 17332
content-encoding: gzip
x-goog-hash: crc32c=AP/88g==, md5=6kw5r0crLk+cJgTekWW4ew==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 17332
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:14 GMT
etag: "ea4c39af472b2e4f9c2604de9165b87b"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.FlowChecker~493df0b3.2a66ee60dd6219bafc56.chunk.css?e=p
200 OK 1.7 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.FlowChecker~493df0b3.2a66ee60dd6219bafc56.chunk.css?e=p
IP
File type ASCII text, with very long lines (1298)
Hash 7543b46c3dd3ee59e5532d971f2b5d5f
5d396f145a7e9b9b47fd7802b6d01613ae711f8f
14f434e87de14ce624414e3378b544ae3e4d6fc8ba68eae3623c73dd1c8e2bd6
GET /fulcrum/v4/master/dynamic/mobile.FlowChecker~493df0b3.2a66ee60dd6219bafc56.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu6ynmwMxVlz2juPnxNsO0j9oqMR7jiqDCwADpC90CLmq9B6LI5lPM-p8PbiH4ayKsfwNsZrY7ly_Mu0fBSDgfN
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1672760598499902
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1738
content-encoding: gzip
x-goog-hash: crc32c=xhs6+w==, md5=dUO0bD3T7lnlUy2XHytdXw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1738
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Mon, 30 Jan 2023 08:16:25 GMT
expires: Mon, 27 Feb 2023 08:16:25 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 03 Jan 2023 15:43:18 GMT
etag: "7543b46c3dd3ee59e5532d971f2b5d5f"
content-type: text/css
age: 289148
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~748942c6.b53734c1bca4cfe0f1df.chunk.js?e=p
200 OK 33 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~748942c6.b53734c1bca4cfe0f1df.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash c454ddf2e6046c01ef6c979bee666bff
15f805e6b99b2796aaef1c2791bc68cdb116616c
2f51c31349daf69bfebca77950b0561905dd054e441c8f200a892329b47eb469
GET /fulcrum/v4/master/dynamic/mobile.app~748942c6.b53734c1bca4cfe0f1df.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtrRsNf7tRHVWNMRgb6-0q5p5yZEEcf0Nqlrh92az_FLxRxXfDNIRZoB3krJM2dwuwTuB4hY2EYL534bYWmDf5d2g
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675346487777510
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 33027
content-encoding: gzip
x-goog-hash: crc32c=0v3AYg==, md5=xFTd8uYEbAHvbJeb7mZr/w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 33027
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:09:35 GMT
expires: Thu, 02 Mar 2023 14:09:35 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:01:27 GMT
etag: "c454ddf2e6046c01ef6c979bee666bff"
content-type: application/javascript
age: 8758
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.CasinoCategory~CasinoScreen~bfe0ed74.32f7ef14756b3c933f66.chunk.css?e=p
200 OK 1.6 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.CasinoCategory~CasinoScreen~bfe0ed74.32f7ef14756b3c933f66.chunk.css?e=p
IP
File type ASCII text, with very long lines (2296)
Hash 904387c1183091eb71506755a0f61648
962998499c0b1144c919b0179fe9aeb6e7913772
c20668abf97b37d7a59c171ca17048e1c94b760133bebdea09aabf52e20f3d17
GET /fulcrum/v4/master/dynamic/mobile.CasinoCategory~CasinoScreen~bfe0ed74.32f7ef14756b3c933f66.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsHWvsgsiUwAgM9VItJ1_N4lLCCI-boK3lLzNZhDnWI1AjNyLI32lBAYpRuR89Ym8EPkmyXqA-nY11YixIwC6VQcvVPPC7Y
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675349647808413
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1592
content-encoding: gzip
x-goog-hash: crc32c=hk9aPA==, md5=kEOHwRgwketxUGdVoPYWSA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1592
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:58:14 GMT
expires: Thu, 02 Mar 2023 14:58:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:54:07 GMT
etag: "904387c1183091eb71506755a0f61648"
content-type: text/css
age: 5839
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoCategory~CasinoScreen~index~bfe0ed74.ae87e6b7930c3880a32e.chunk.css?e=p
200 OK 4.8 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoCategory~CasinoScreen~index~bfe0ed74.ae87e6b7930c3880a32e.chunk.css?e=p
IP
File type ASCII text, with very long lines (6205)
Hash 838f9a441df96c4b61de7f17c23a4b1b
eda642acd06ed42b86d8f052b1b8b42c3bbf0b35
6023d44fd58600b6582d34445ccbb2f378304b27d4c835e51439efbe6118c3fa
GET /fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoCategory~CasinoScreen~index~bfe0ed74.ae87e6b7930c3880a32e.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvcZ70u7nsDzyvlSlQitJzlimOlXaCD8MZl8OZsE6xETv0b4UzyqwcIDDALEi1soYE9F5IJ6WeOssK8Egjmr1N_BA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1672743415974342
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 4806
content-encoding: gzip
x-goog-hash: crc32c=1eZ78g==, md5=g4+aRB35bEth3n8XwjpLGw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 4806
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Sun, 29 Jan 2023 16:02:57 GMT
expires: Sun, 26 Feb 2023 16:02:57 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 03 Jan 2023 10:56:56 GMT
etag: "838f9a441df96c4b61de7f17c23a4b1b"
content-type: text/css
age: 347556
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~7a676cbb.1011d686d38b3587b223.chunk.js?e=p
200 OK 6.4 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~7a676cbb.1011d686d38b3587b223.chunk.js?e=p
IP
File type ASCII text, with very long lines (51031)
Hash cc3739e3b574506881018eb6a4736b4b
ffc28597388f0c3bc1ffcf6705fbd4aba9bb373f
b98a76f329fd7b9e2fc330e699c30ac3d6f99dd1d386d3c15fa35bbd5ebba6c3
GET /fulcrum/v4/master/dynamic/mobile.app~7a676cbb.1011d686d38b3587b223.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvOsNk3rKLBlvVPNAB8nl-7vlV84L6KwT120SnnMOruTXCrgHC8_Qt2F2CVzEc8ax7dA037zHsdELRFXVb2krNNbw
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179475373
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 6371
content-encoding: gzip
x-goog-hash: crc32c=DLaeTw==, md5=zDc547V0UGiBAY62pHNrSw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 6371
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "cc3739e3b574506881018eb6a4736b4b"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ResponsibleGaming~4fd0ee19.3b98c102cd668b49803d.chunk.js?e=p
200 OK 2.2 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ResponsibleGaming~4fd0ee19.3b98c102cd668b49803d.chunk.js?e=p
IP
File type ASCII text, with very long lines (6180)
Hash 545f206167a51f83e9d81b68b2f61efa
0fd51f11ce7b7b4f15477f9b7b2e58cfc65383a7
9c869703bad7f9ecdd9885edd27f52218b247c19bb1c32a5359585e877ca1bb2
GET /fulcrum/v4/master/dynamic/mobile.ResponsibleGaming~4fd0ee19.3b98c102cd668b49803d.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdt6alTH-f9vPBNWGlPkLTJ-8nZFUm6ZVPhfOnt67jURSOdlMvKVDFpD4QaWa-f-DIFW5-dnevT7z4zni_dJ6BZaTQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328177616686
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2213
content-encoding: gzip
x-goog-hash: crc32c=KT33Pw==, md5=VF8gYWelH4Pp2BtosvYe+g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2213
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:17 GMT
etag: "545f206167a51f83e9d81b68b2f61efa"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~1d14d743.970bb9f2fd2ca616ce3d.chunk.js?e=p
200 OK 4.8 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~1d14d743.970bb9f2fd2ca616ce3d.chunk.js?e=p
IP
File type ASCII text, with very long lines (11224)
Hash 11c0e63f74e14e5e25068b9da8372396
1ac3b79d91c0c85283fc9a6527ed89b2fe19519e
c39d9b1f6ba4b413a7972d10dbc46057869343e864596d47c56fae059812695c
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~1d14d743.970bb9f2fd2ca616ce3d.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdt89lXlbNK3zFpBJi9QLkuCP97dWINsITIONq65Qu1yoalaBP16EBa38EJ5xiLcio9lOwrdwtsPR7IgQSKsyu0-AQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179942071
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 4799
content-encoding: gzip
x-goog-hash: crc32c=nSZfng==, md5=EcDmP3ThTl4lBoudqDcjlg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 4799
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "11c0e63f74e14e5e25068b9da8372396"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BonusChaserInGameCurtain~BonusChaserLobbyContainer~BonusChaserSwitcher~BottomBarScreen~CasinoCategor~5cd84f6f.05333c94070bd35e1307.chunk.css?e=p
200 OK 1.9 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BonusChaserInGameCurtain~BonusChaserLobbyContainer~BonusChaserSwitcher~BottomBarScreen~CasinoCategor~5cd84f6f.05333c94070bd35e1307.chunk.css?e=p
IP
File type ASCII text, with very long lines (7854)
Hash a2ae12a55f4b0779e648b0bb82ef554a
b0aa312826612b250d50cb96108592038b7c39f0
587f77ce304db6fd03c26391e41d40e5e3ef0695be34c7c672035d72959838ac
GET /fulcrum/v4/master/dynamic/mobile.BonusChaserInGameCurtain~BonusChaserLobbyContainer~BonusChaserSwitcher~BottomBarScreen~CasinoCategor~5cd84f6f.05333c94070bd35e1307.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdta1O50asCb2552IISLgzwOPfGBdJoZid2MEP7XfPQfIWiKVpf_XYm_PCQ_EbjlSpvUYDta7I5JzNo5LXaY4OYOEg
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675343754337478
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1939
content-encoding: gzip
x-goog-hash: crc32c=/XprrA==, md5=oq4SpV9LB3nmSLC7gu9VSg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1939
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 13:25:39 GMT
expires: Thu, 02 Mar 2023 13:25:39 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 13:15:54 GMT
etag: "a2ae12a55f4b0779e648b0bb82ef554a"
content-type: text/css
age: 11394
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~65914263.77a6484c7d72d3f5f775.chunk.js?e=p
200 OK 11 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~65914263.77a6484c7d72d3f5f775.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 64edfa4b338fa3310097b1472eff5af2
d6cc981efdc19e94acbfa1092d1a5754197836cb
33753d838b203db2c32719f047c4770d235757f0eecb8ddd90db5e8141c72880
GET /fulcrum/v4/master/dynamic/mobile.app~65914263.77a6484c7d72d3f5f775.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtiKl6BiLksKjHrP1Gz0nE_N3yvl2zkpYKuoNKqPmMHb1uY8czj5rJs5DbvSoSpsarx2zotkrhx4cB6e-FYkNCz6_nAI7g5
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675348740819954
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10746
content-encoding: gzip
x-goog-hash: crc32c=to3Pkw==, md5=ZO36SzOPozEAl7FHLv9a8g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 10746
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:44:50 GMT
expires: Thu, 02 Mar 2023 14:44:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:39:00 GMT
etag: "64edfa4b338fa3310097b1472eff5af2"
content-type: application/javascript
age: 6643
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.DocumentTitle~344174d7.1ffa1d5eda6880559bda.chunk.js?e=p
200 OK 1.0 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.DocumentTitle~344174d7.1ffa1d5eda6880559bda.chunk.js?e=p
IP
File type ASCII text, with very long lines (1674)
Hash 4b902624aea440e410476f67355e3db4
fbe6e914cd16dcd39038f374fb25f7ebbe880d08
b255257a2447500b39bba5b0c4867e3032ecf65a62750bb747ca0d1def742513
GET /fulcrum/v4/master/dynamic/mobile.DocumentTitle~344174d7.1ffa1d5eda6880559bda.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduA10CNQ5fmSMAEeMurZO0e-4EwuQkrBYRBSbfV63rpRYth5Wp4NUyFaV0-wKv3Dfx6Z1eRfKNANlhrI9N0h5jGyw
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328175656035
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1045
content-encoding: gzip
x-goog-hash: crc32c=xKiw5A==, md5=S5AmJK6kQOQQR29nNV49tA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1045
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:15 GMT
etag: "4b902624aea440e410476f67355e3db4"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.CasinoScreen~493df0b3.e15031f0e01316d9f8ee.chunk.css?e=p
200 OK 3.6 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.CasinoScreen~493df0b3.e15031f0e01316d9f8ee.chunk.css?e=p
IP
File type ASCII text, with very long lines (7159)
Hash 99d8d80a8e7281abf3857c31acf5b5f3
e3c598289429fcba372b3ad682934fa713d5d199
e595daf5a07b24e4db290400c934ac311927edc9712f5fcd6830b021503c5d40
GET /fulcrum/v4/master/dynamic/mobile.CasinoScreen~493df0b3.e15031f0e01316d9f8ee.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtES1gRMgH107LOkE3S3CMZJycAopPZdIhz_-5vuIIQn0s3CsN3uGw6Z5NQ7qa-k95Ut4BsDuaJbD9LUwSzaIN3URrslzFo
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675167093470823
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 3571
content-encoding: gzip
x-goog-hash: crc32c=cxXqQw==, md5=mdjYCo5ygavzhXwxrPW18w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 3571
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 31 Jan 2023 12:21:58 GMT
expires: Tue, 28 Feb 2023 12:21:58 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 31 Jan 2023 12:11:33 GMT
etag: "99d8d80a8e7281abf3857c31acf5b5f3"
content-type: text/css
age: 188015
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 0e346b4a29db5832f1a90075cbb42d5e
b1f09383beddccd030299bd22da3c74198e5fb2d
af89e91aaf091bf4c1049ac7acbcc62738be918e13127b3acb92dc075bb3e6ea
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 02 Feb 2023 16:35:34 GMT
Last-Modified: Thu, 02 Feb 2023 15:10:10 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HDfrn9Zq0T7ay6qd41FqxVdAowWrwRGJXSUYIIvpXvmY3HPvJ14CJQ==
Age: 5124
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Snackbar~9765a08b.9a5c54ec61062e2834ff.chunk.js?e=p
200 OK 3.0 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Snackbar~9765a08b.9a5c54ec61062e2834ff.chunk.js?e=p
IP
File type ASCII text, with very long lines (8081)
Hash 493e28757d589b29d3b72a04e075f312
430ff9d5fb801569accf7a888a1ca9015d00489d
e4421aef9e49760a7eea9877c73f8ee6078ca6724c133d3b9732b9da82ed1695
GET /fulcrum/v4/master/dynamic/mobile.Snackbar~9765a08b.9a5c54ec61062e2834ff.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvqLVYyZOi4w4fo8khW9jDUpPZdmjCMTXMXzxcfSd6Hkawe0zUsFqg1dNYPxk3kDG4TQYS-jGUTA0VvwftgtKFuvQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328178349833
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2976
content-encoding: gzip
x-goog-hash: crc32c=UDpjuQ==, md5=ST4odX1YmynTtyoE4HXzEg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2976
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:18 GMT
etag: "493e28757d589b29d3b72a04e075f312"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~361546bd.9e9fc658b42b63778cd2.chunk.js?e=p
200 OK 16 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~361546bd.9e9fc658b42b63778cd2.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash bb233299fff2abc4abfb55f2e18dcf43
8c88dae5382af38d1173b4db1cef4d5ac6a4c698
519bcd3b8037567d6f47a12aab2cd08b4117b51356a40ce689e936c25810d48a
GET /fulcrum/v4/master/dynamic/mobile.app~361546bd.9e9fc658b42b63778cd2.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtOY8AnNjpaIIGYB2LY6dB2c7prQsK2ap5d7g-snTi40LUZDiNvfUgVu7kKPejRCPfEP7FJMDHoYTQzfuJ5sdPMWA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675348740848123
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 15964
content-encoding: gzip
x-goog-hash: crc32c=AA32kA==, md5=uyMymf/yq8Sr+1Xy4Y3PQw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 15964
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:44:50 GMT
expires: Thu, 02 Mar 2023 14:44:50 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:39:00 GMT
etag: "bb233299fff2abc4abfb55f2e18dcf43"
content-type: application/javascript
age: 6643
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoScreen~bfe0ed74.4757b9e4f5fb2c4487d8.chunk.css?e=p
200 OK 4.2 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoScreen~bfe0ed74.4757b9e4f5fb2c4487d8.chunk.css?e=p
IP
File type ASCII text, with very long lines (5257)
Hash a81c6a4191583e36881d30f56744dd02
ab7080df82e72821c10736da07897d0fa2b21cf2
575e5f86acc26412efef40f1e9fde5a467f19dbdd1cebd1004fd15e7ac6dbe31
GET /fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoScreen~bfe0ed74.4757b9e4f5fb2c4487d8.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdt14UodFFVCnX8Aee90B_3RXBKAmiXnpY9HCxmXSc6jkSuSJzrLLw3-hBcN5HXyaJLws_0gR0jk6kgQcm82BkxwrA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675181240668062
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 4231
content-encoding: gzip
x-goog-hash: crc32c=88fhGg==, md5=qBxqQZFYPjaIHTD1Z0TdAg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 4231
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 31 Jan 2023 16:14:12 GMT
expires: Tue, 28 Feb 2023 16:14:12 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 31 Jan 2023 16:07:20 GMT
etag: "a81c6a4191583e36881d30f56744dd02"
content-type: text/css
age: 174081
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Adform~e8e8aaba.732b6adb9ba9c968310e.chunk.js?e=p
200 OK 2.7 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Adform~e8e8aaba.732b6adb9ba9c968310e.chunk.js?e=p
IP
File type ASCII text, with very long lines (7023)
Hash 2bf4450cfc48e32b76f19becdba06fe6
505910ff4f3f30c3a37a4cda4b74860a9351fc05
fdc59f5aab0dcee3fb6bb3b6281cb679816e78a11f6591d24e0b1a954b285955
GET /fulcrum/v4/master/dynamic/mobile.Adform~e8e8aaba.732b6adb9ba9c968310e.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdscQnX8FPWfw92DkVYZF-l-WT9BohXmjyx_V7SaR7ETtODm1NjeB--Un6gNVfyfrcFULLTxkBl8MmwMFuWvTEsbi3T-S9aw
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328173993949
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2716
content-encoding: gzip
x-goog-hash: crc32c=DkH48A==, md5=K/RFDPxI4yt28Zvs26Bv5g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2716
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:14 GMT
etag: "2bf4450cfc48e32b76f19becdba06fe6"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Experimentation~0035cfbb.8db5f4fe97c70a481ab2.chunk.js?e=p
200 OK 1.4 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Experimentation~0035cfbb.8db5f4fe97c70a481ab2.chunk.js?e=p
IP
File type ASCII text, with very long lines (2891)
Hash 8f0a8969aa34476131cb5e219e278ef3
fa84df48cac26285f96a811243978c270a8be2fe
55a43530ade66178614b0c2e723e75f21d8605042632f09eeda278fffaecc2f0
GET /fulcrum/v4/master/dynamic/mobile.Experimentation~0035cfbb.8db5f4fe97c70a481ab2.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduTYExs2aM-su9QENmZ7CEC_sGvHXp2xbJOKUdQPsaaiubxciutZB6_1gLAVKbg4xprSWqKVZkH2nI19w_OmCEHgdNQ-eWO
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328175707954
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1389
content-encoding: gzip
x-goog-hash: crc32c=xulZVg==, md5=jwqJaao0R2Exy14hnieO8w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1389
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:15 GMT
etag: "8f0a8969aa34476131cb5e219e278ef3"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~112c8377.fefc9d505ba77a59ab90.chunk.js?e=p
200 OK 45 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~112c8377.fefc9d505ba77a59ab90.chunk.js?e=p
IP
File type Unicode text, UTF-8 text, with very long lines (34517)
Hash b2b00374ffeb1db10774b23dce472540
63e3b108c3419daf6b9c4981faabfb61a4978f9b
5d9ade74c0d20456e4658632184c48c7d7b3e5782aee51fc25678b5305161479
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~112c8377.fefc9d505ba77a59ab90.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdst8vvz9Wtwk2a0zg17-bARLcxcEcDelDZevn4F4TSntVXBXmFoY7JtyqYdRuv0Ig9nieg_fgcEROX6gJLEHvAw9eXr0c9G
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180049006
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 44753
content-encoding: gzip
x-goog-hash: crc32c=R3Uoaw==, md5=srADdP/rHbEHdLI9zkclQA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 44753
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "b2b00374ffeb1db10774b23dce472540"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~c7b8ce09.a7ba145b7ffb82742c2f.chunk.js?e=p
200 OK 38 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~c7b8ce09.a7ba145b7ffb82742c2f.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 442a97213d095b355bed29d77dc563c2
bef6a1aa8501dda048fcc6125268d5428fb0fa96
5756601734ebfa591299bdfdd4ef4987e56d4985d5be673fedf221c86a78dd12
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~c7b8ce09.a7ba145b7ffb82742c2f.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvZgMqvvQkTWzkfVglre12bLOCQ0Nzdbhden6JHcgrW8LXxEvAUdxRU7uMT2Mnqj7WPAgx-kKiQ6dVw2-p0JJKfjw
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180170244
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 37623
content-encoding: gzip
x-goog-hash: crc32c=qG4coA==, md5=RCqXIT0JWzVb7SnXfcVjwg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 37623
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "442a97213d095b355bed29d77dc563c2"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScree~046c31a5.3a6f788d367a9b8d7a20.chunk.js?e=p
200 OK 42 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScree~046c31a5.3a6f788d367a9b8d7a20.chunk.js?e=p
IP
File type Unicode text, UTF-8 text, with very long lines (48260)
Hash fe02e2c2245242f3f8d636d8390454df
f5171a6b5d9ae985303c8940ce864725f9fccaab
00e8362ae25c23be44fd20232e8a1e419e4c30a28946744d41ab643523ab0d30
GET /fulcrum/v4/master/dynamic/mobile.vendors~BankID~BankingVerification~DEVerification~Deposit~FlowChecker~GameScreen~KYCCheck~LoginScree~046c31a5.3a6f788d367a9b8d7a20.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu-0-Jja7f27AgsBU_U-riTYN3ho0rC4dohznIKU96PJ_ZnsZdXoN0qhafZQxTE0PaE65PHgyigzDgnv0uRFxr5byHSd8iy
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179805484
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 41812
content-encoding: gzip
x-goog-hash: crc32c=34cdsQ==, md5=/gLiwiRSQvP41jbYOQRU3w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 41812
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "fe02e2c2245242f3f8d636d8390454df"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~e4dfd1bd.efabe06dcca0b93134c8.chunk.js?e=p
200 OK 40 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~e4dfd1bd.efabe06dcca0b93134c8.chunk.js?e=p
IP
File type ASCII text, with very long lines (40178)
Hash 07ef144974b50f57a4b67dc73aec1ea5
d82a6952908ba7558c925afc79250f19b11e2560
ff9bb69a5b4e41a57f7c1c74ae1810af3d48956030605ece2729ffd5357410cd
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~e4dfd1bd.efabe06dcca0b93134c8.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtzYbVJQ94G6n6rDqpywp_kLH0nVgwF2QFTARjAnsqkdnmeL7xn0C1AHaVwjRMoC1mBzIl3AijOLZiuJoBSBOW0ag
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180253656
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 40018
content-encoding: gzip
x-goog-hash: crc32c=GkLgKQ==, md5=B+8USXS1D1ektn3HOuwepQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 40018
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "07ef144974b50f57a4b67dc73aec1ea5"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.FlowChecker~493df0b3.b2b786f153df9940cb68.chunk.js?e=p
200 OK 12 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.FlowChecker~493df0b3.b2b786f153df9940cb68.chunk.js?e=p
IP
File type ASCII text, with very long lines (52536)
Hash 93504c3653e95e54548bd4970fd42f7d
5ad481f6fe8b95fc0faa030db1f7c2f17e036637
9f9f7a57e1fbcd363f3e332c1302240a3103b6bda0516b28a415f6c91aa893bb
GET /fulcrum/v4/master/dynamic/mobile.FlowChecker~493df0b3.b2b786f153df9940cb68.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycds-J0G2d508V5UF3N5_0cv4YOvfe9TmVqBeyfMfZ3jOx1Rcj--DsSUbrlezuGasofxHvs2g75ApLKoX00rN4MJERhLlSAoA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328175872878
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12475
content-encoding: gzip
x-goog-hash: crc32c=aOncTg==, md5=k1BMNlPpXlRUi9SXD9QvfQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12475
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:15 GMT
etag: "93504c3653e95e54548bd4970fd42f7d"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~BottomBarScreen~9b1fde68.b50b9355d8dc752bc62d.chunk.js?e=p
200 OK 7.5 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~BottomBarScreen~9b1fde68.b50b9355d8dc752bc62d.chunk.js?e=p
IP
File type ASCII text, with very long lines (16961)
Hash 1340e43638ed7452931324bd03c3c73d
a5f59685ef37c888851455ea5ccf24a054442dbd
6d94fe002fde68fcb90cbc6e8276f4a26e3264da31e8b27e3d3f97e0bcfafb60
GET /fulcrum/v4/master/dynamic/mobile.vendors~BottomBarScreen~9b1fde68.b50b9355d8dc752bc62d.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsGnSFivRDgUTVdS5PNGUyTnOQ-_PZ3P8ZheKg5lXRkLKGOwR5DzNV1_B4LIEILodje8SCVCd-KOWwCXNjVgnrzZg
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179732614
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7463
content-encoding: gzip
x-goog-hash: crc32c=2m6guA==, md5=E0DkNjjtdFKTEyS9A8PHPQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 7463
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "1340e43638ed7452931324bd03c3c73d"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ROWBanner~bfe0ed74.8ae9ed685fbd9d01deba.chunk.js?e=p
200 OK 1.5 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ROWBanner~bfe0ed74.8ae9ed685fbd9d01deba.chunk.js?e=p
IP
File type ASCII text, with very long lines (3281)
Hash 99cdb8580e19e018e71adc541c74cffa
543448eefb71d086b7db5a9bfd23602cee7b8b4e
0c1605d15d38701d05f8be56a51fbbae1c7c192b55803091ae04b838b3204bc6
GET /fulcrum/v4/master/dynamic/mobile.ROWBanner~bfe0ed74.8ae9ed685fbd9d01deba.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvaZuzU-5RhzTUJ71-aX2Anzg6wswJog2xelO702fMG9iRDaa9iJmzvVpfCx0cfY4USd2PcdCpt9J8W_LGMxarqBw
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328177596085
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1501
content-encoding: gzip
x-goog-hash: crc32c=CEvY6A==, md5=mc24WA4Z4BjnGtxUHHTP+g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1501
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:17 GMT
etag: "99cdb8580e19e018e71adc541c74cffa"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BonusChaserInGameCurtain~BonusChaserLobbyContainer~BonusChaserSwitcher~BottomBarScreen~CasinoCategor~5cd84f6f.11df6600d9074a745c15.chunk.js?e=p
200 OK 15 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BonusChaserInGameCurtain~BonusChaserLobbyContainer~BonusChaserSwitcher~BottomBarScreen~CasinoCategor~5cd84f6f.11df6600d9074a745c15.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1fe3cac3d4176681990caf7b2534ac26
bc3f337d4336653833835f9cef31d83b071213df
6e09e5f433764fd2bf56514d39a413a9add25a2666d435cf064fccca077c5efb
GET /fulcrum/v4/master/dynamic/mobile.BonusChaserInGameCurtain~BonusChaserLobbyContainer~BonusChaserSwitcher~BottomBarScreen~CasinoCategor~5cd84f6f.11df6600d9074a745c15.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtgbqzU2F5RYGMkiEjTWIK6wHUgCco4t9Od3n3o5xprdaDAH8KHeQKmQNKyX4gUWqADMHrxznX4iLdT1emSnTh20g
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328174893232
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 14848
content-encoding: gzip
x-goog-hash: crc32c=3rZ4Yg==, md5=H+PKw9QXZoGZDK97JTSsJg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 14848
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:14 GMT
etag: "1fe3cac3d4176681990caf7b2534ac26"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoCategory~CasinoScreen~index~bfe0ed74.4f7ea40cf7ed2b6e2a73.chunk.js?e=p
200 OK 18 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoCategory~CasinoScreen~index~bfe0ed74.4f7ea40cf7ed2b6e2a73.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 33fbfbcbef119ce825dc758842291bbe
2617188c95878f2455381f3f0e4df1c3eb26b032
d576aac6f6c4f47584d567c0e7fffd03307c878614e85393b126cce6efbebe44
GET /fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoCategory~CasinoScreen~index~bfe0ed74.4f7ea40cf7ed2b6e2a73.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv3BYRL6iXoBQ3hX6JFXOPE6dV_7yKAUy8U4ExHQ8GibxrY3QxVF4V5waif_8RvMUyH_p1A9nkrjsC8ObOKbCR6Uge_OnK2
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328174911532
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 17547
content-encoding: gzip
x-goog-hash: crc32c=ZjGg4A==, md5=M/v7y+8RnOgl3HWIQikbvg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 17547
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:14 GMT
etag: "33fbfbcbef119ce825dc758842291bbe"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoScreen~bfe0ed74.85c03cd3cbde05fb76b2.chunk.js?e=p
200 OK 16 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoScreen~bfe0ed74.85c03cd3cbde05fb76b2.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash f5fb702d44966d4b39e43dec6ee77573
7ed3b614678888949166b1b5862c88016609c017
c965d15330cde45e3a13500eb098350c69f3f1c278e4057183e4a86bd97456d0
GET /fulcrum/v4/master/dynamic/mobile.BottomBarScreen~CasinoScreen~bfe0ed74.85c03cd3cbde05fb76b2.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdupHz9DaliXh9MrN7dof7hbmi5dUJ0az1JdpsoSzW06PyxIMC_7thmybx5vdpHuv5_r4n7fiSLnX2-aTsJYMNUtfA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328175023410
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 16085
content-encoding: gzip
x-goog-hash: crc32c=YN2lGQ==, md5=9ftwLUSWbUs55D3sbud1cw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 16085
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:15 GMT
expires: Thu, 02 Mar 2023 09:14:15 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:15 GMT
etag: "f5fb702d44966d4b39e43dec6ee77573"
content-type: application/javascript
age: 26478
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~bfe0ed74.e8b0b2c7ba07abf73567.chunk.js?e=p
200 OK 27 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.BottomBarScreen~bfe0ed74.e8b0b2c7ba07abf73567.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4ca3fa9bcb86851a99fa3148879c1220
f5477e4d7f6b74035735203f9dc873919afb7db6
bfc173832f6b818fbf06e92847dbddee4b125a46fbfc4fa4a16197d0c426d6e0
GET /fulcrum/v4/master/dynamic/mobile.BottomBarScreen~bfe0ed74.e8b0b2c7ba07abf73567.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtRqRdCcf5RIxMeoax-YxBZUrqDrIV3JiZJayuwKomvKf-UV0nKEHPPJxkdAyYsLey8vCN_uWfLh_05rLzarjv-EA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675346486841302
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 26688
content-encoding: gzip
x-goog-hash: crc32c=hi0iVA==, md5=TKP6m8uGhRqZ+jFIh5wSIA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 26688
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:09:36 GMT
expires: Thu, 02 Mar 2023 14:09:36 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:01:26 GMT
etag: "4ca3fa9bcb86851a99fa3148879c1220"
content-type: application/javascript
age: 8757
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.AuthorizationBar~faa51968.96d7b9660bac924e9e28.chunk.css?e=p
200 OK 825 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.AuthorizationBar~faa51968.96d7b9660bac924e9e28.chunk.css?e=p
IP
File type ASCII text, with very long lines (862)
Hash fd587e74839b1c5b1633eb0dc71cdbb3
4112fb16194b143a25e6944fa47c324db0efc7c0
05181e87f506d22c56e19cb8bacf26d7c5bea740cc1b5024a098a311d2a7f9b4
GET /fulcrum/v4/master/dynamic/mobile.AuthorizationBar~faa51968.96d7b9660bac924e9e28.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdt5uGwCEKqfQsgqR2KwX0qcsgkWEGJZs3r96L4W6WlVNdAKKMHeNTIb0rh4p8O64-XVDnaOABPfclotDgxxQHT1lwwwlXua
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1669118795773812
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 825
content-encoding: gzip
x-goog-hash: crc32c=4EUfsA==, md5=/Vh+dIObHFsWM+sNxxzbsw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 825
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Mon, 30 Jan 2023 03:02:08 GMT
expires: Mon, 27 Feb 2023 03:02:08 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 22 Nov 2022 12:06:35 GMT
etag: "fd587e74839b1c5b1633eb0dc71cdbb3"
content-type: text/css
age: 308005
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/dVi66-kaLJo
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/dVi66-kaLJo
IP
Hash e022787c4cfdd47f2e7cf567597890da
a6cda5e69ea354157865a6531546b543a1273dd4
603fe40c6539723fffd9a6c45926b231a77963bb7f96457289c14a894d59e3e0
POST /s/gts1p5/dVi66-kaLJo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:34 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~AndroidAppScreen~BankID~BonusInfoScreen~BonusTermsScreen~CampaignScreen~CasinoScreen~CommonC~3e8f83d7.97b8a2d63afa6f7f09ac.chunk.js?e=p
200 OK 4.1 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~AndroidAppScreen~BankID~BonusInfoScreen~BonusTermsScreen~CampaignScreen~CasinoScreen~CommonC~3e8f83d7.97b8a2d63afa6f7f09ac.chunk.js?e=p
IP
File type ASCII text, with very long lines (10428), with no line terminators
Hash e05c298774789223dc711c0aeb172604
12c5e710b67649e24d102b5b31c5975b5e573703
84a8aa1918697e54b9ef9c22f789a4c43934501d5301120252ada3e74222eb53
GET /fulcrum/v4/master/dynamic/mobile.vendors~AndroidAppScreen~BankID~BonusInfoScreen~BonusTermsScreen~CampaignScreen~CasinoScreen~CommonC~3e8f83d7.97b8a2d63afa6f7f09ac.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdum0f4S1s3wB0WpgmXKwyOA4_hk6lElK1e8hE0-kMsJfVXEBdU7AImjd5dvSq3uwL1ArFeDMmNfxvPBIBJrbLQMZQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179558039
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 4148
content-encoding: gzip
x-goog-hash: crc32c=S9SbkQ==, md5=4Fwph3R4kiPccRwK6xcmBA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 4148
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:15 GMT
expires: Thu, 02 Mar 2023 09:14:15 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "e05c298774789223dc711c0aeb172604"
content-type: application/javascript
age: 26478
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~CasinoScreen~MyOffers~Payment~WelcomeOffer~b3c4a2ff.e17863f26bea8f1c020f.chunk.js?e=p
200 OK 6.7 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~CasinoScreen~MyOffers~Payment~WelcomeOffer~b3c4a2ff.e17863f26bea8f1c020f.chunk.js?e=p
IP
File type ASCII text, with very long lines (29702), with no line terminators
Hash 850743e3b3a2edc9622d81d6544d6803
97df0777a93948da2ee630b33cdd15fdfebafd37
f093e10ab04a5b16d2f674a0f3b910f372bb9b88df09d284b2b11536087906d3
GET /fulcrum/v4/master/dynamic/mobile.vendors~CasinoScreen~MyOffers~Payment~WelcomeOffer~b3c4a2ff.e17863f26bea8f1c020f.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsER8XvkrS83fZn2S7P3CqIkyrRWy5i2sm_Oub2WyfiX17QKtAo5Qyqhbjt3kbDl1Ca2o2_1IH0m7hD4U3LxfgVLw
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179817291
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 6715
content-encoding: gzip
x-goog-hash: crc32c=CHwJ+w==, md5=hQdD47Oi7cliLYHWVE1oAw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 6715
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:15 GMT
expires: Thu, 02 Mar 2023 09:14:15 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "850743e3b3a2edc9622d81d6544d6803"
content-type: application/javascript
age: 26478
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.AuthorizationBar~faa51968.de409b88722424e18602.chunk.js?e=p
200 OK 5.8 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.AuthorizationBar~faa51968.de409b88722424e18602.chunk.js?e=p
IP
File type ASCII text, with very long lines (26298)
Hash 190f5f44c8685b1795d78d85c4d7e20f
062d22ecba30d96a2e4cd5c2209a348dc39dc59f
079f528ab08b5c9ed14deddc60c24d57b0d1fda7a387b9d1759d23d532e8bd5f
GET /fulcrum/v4/master/dynamic/mobile.AuthorizationBar~faa51968.de409b88722424e18602.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvNdKXiYZjTFKoWUhy6A802CHSjE8jZL8v6wf2sY-3-BxQtlIF-Tnf64l5wGSBMrOkZkrpeqCHJDRrX1D9sPsgI765sikfa
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328174139237
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 5828
content-encoding: gzip
x-goog-hash: crc32c=UF8bCQ==, md5=GQ9fRMhoWxeV142FxNfiDw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 5828
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:15 GMT
expires: Thu, 02 Mar 2023 09:14:15 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:14 GMT
etag: "190f5f44c8685b1795d78d85c4d7e20f"
content-type: application/javascript
age: 26478
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~CasinoCategory~CasinoScreen~9b1fde68.cf4a279f0ca8fa7ad6ea.chunk.js?e=p
200 OK 6.4 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~CasinoCategory~CasinoScreen~9b1fde68.cf4a279f0ca8fa7ad6ea.chunk.js?e=p
IP
File type ASCII text, with very long lines (12295)
Hash 3f61b8810335946e268b042a8f3f45ef
85367cd476d50821235317e6d1d60230bc558fa4
c71fa8c1b620a177f06684ebf9ef53f3531a240bf6bcec587c68d67586257884
GET /fulcrum/v4/master/dynamic/mobile.vendors~CasinoCategory~CasinoScreen~9b1fde68.cf4a279f0ca8fa7ad6ea.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdviwswi6fzTtRoKi4ije7Gb7D64bawOPOPZ0P5ASl2J18YEXSDcNQux34MMxq_oV5nIi3YIThSxe24dpPEEhG1gyQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179736797
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 6398
content-encoding: gzip
x-goog-hash: crc32c=ILnT5A==, md5=P2G4gQM1lG4miwQqjz9F7w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 6398
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:15 GMT
expires: Thu, 02 Mar 2023 09:14:15 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "3f61b8810335946e268b042a8f3f45ef"
content-type: application/javascript
age: 26478
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.AndroidAppScreen~BankID~BlogPostScreen~BlogPostsScreen~BonusInfoScreen~BonusTermsScreen~CampaignList~c348699f.6b9ef37a3fb35a118ff5.chunk.js?e=p
200 OK 17 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.AndroidAppScreen~BankID~BlogPostScreen~BlogPostsScreen~BonusInfoScreen~BonusTermsScreen~CampaignList~c348699f.6b9ef37a3fb35a118ff5.chunk.js?e=p
IP
File type Unicode text, UTF-8 text, with very long lines (65521), with no line terminators
Hash 859584405b165a0c593ff10b27fb5e19
8c50ebb7fd68ef86c281611d43facbdabc2b52a8
6055f9ba588b7810ee0154fedfc8f799c5ae2d17ad0a0ba2e2f5d47cdc809e85
GET /fulcrum/v4/master/dynamic/mobile.AndroidAppScreen~BankID~BlogPostScreen~BlogPostsScreen~BonusInfoScreen~BonusTermsScreen~CampaignList~c348699f.6b9ef37a3fb35a118ff5.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduNoZW5Votag1fYpuoRdmNQezcwMJcQwCu4Ac5STFCPUBigA-n6GoiWDVrMPckeMznfvrc9lKivdDy1z0G_8LwGdQ
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675346486635429
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 17162
content-encoding: gzip
x-goog-hash: crc32c=ykOnJg==, md5=hZWEQFsWWgxZP/ELJ/teGQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 17162
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 14:09:36 GMT
expires: Thu, 02 Mar 2023 14:09:36 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 14:01:26 GMT
etag: "859584405b165a0c593ff10b27fb5e19"
content-type: application/javascript
age: 8758
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.CasinoCategory~CasinoScreen~bfe0ed74.017fa8d298e9d8e863f5.chunk.js?e=p
200 OK 6.8 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.CasinoCategory~CasinoScreen~bfe0ed74.017fa8d298e9d8e863f5.chunk.js?e=p
IP
File type Unicode text, UTF-8 text, with very long lines (25242)
Hash e9f20d50728bd23df98c0f27c4d5d55b
17bc3681045f9a27b0d6af3e95596baf82826750
d5bda3a7bcf2be3902532c1f39bfa519b0921ee41c46dd47b2267aed9880116c
GET /fulcrum/v4/master/dynamic/mobile.CasinoCategory~CasinoScreen~bfe0ed74.017fa8d298e9d8e863f5.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv_BW46paBBM0HCrlW_9F6e2nzXPyRYlneGTq-NbX-cD97bwnE7sFzwwlGlpZDD9gkBImcmBADYZMSLj_a-BjP9oj368Wlr
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328175089639
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 6787
content-encoding: gzip
x-goog-hash: crc32c=RGXJ3w==, md5=6fINUHKL0j35jA8nxNXVWw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 6787
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:15 GMT
expires: Thu, 02 Mar 2023 09:14:15 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:15 GMT
etag: "e9f20d50728bd23df98c0f27c4d5d55b"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.CasinoScreen~493df0b3.6be3e13e2c652dc10482.chunk.js?e=p
200 OK 27 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.CasinoScreen~493df0b3.6be3e13e2c652dc10482.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 705455639c8e10bdbc6336fae14719bf
365a001c97822fbb4574aebc9b1f3ac758ec340e
b36868bd5da56f3239254c3ee0eb3d53f10d24f90bd2de86edc2eb9a702fd9b5
GET /fulcrum/v4/master/dynamic/mobile.CasinoScreen~493df0b3.6be3e13e2c652dc10482.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu9OJvvhiV6cU965ksIVeHm1LaFFum7HwXXbaSVHB-rAAscrvIG-zfH0eOmhxmLcu4MvFLfYSFOch7aXM8msPCYXPDjnlQj
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328175205062
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 27358
content-encoding: gzip
x-goog-hash: crc32c=8mO1rw==, md5=cFRVY5yOEL28Yzb64UcZvw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 27358
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:15 GMT
expires: Thu, 02 Mar 2023 09:14:15 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:15 GMT
etag: "705455639c8e10bdbc6336fae14719bf"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Icons-Categories~4c719359.62e5ddd37866fa6636f8.chunk.js?e=p
200 OK 30 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Icons-Categories~4c719359.62e5ddd37866fa6636f8.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9c89e38d6ba6e0f46642095b5e79aacb
7df5547d1402f3f0e3ecca7a44fc0f9c6c8bcfb4
dd83a640141e8662386de132a55a297488dcb8582435df7c654cf055d7bd144c
GET /fulcrum/v4/master/dynamic/mobile.Icons-Categories~4c719359.62e5ddd37866fa6636f8.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtRcp4AxGjNqFX0mz45niL925ARSXOw6_4ciido7cchz7n_hMFWLPEIch6WqzVKDWetbXuevUdN8m6q8bFw19c6kbAfGH5q
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328176237402
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 29837
content-encoding: gzip
x-goog-hash: crc32c=4zjL0Q==, md5=nInjjWum4PRmQglbXnmqyw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 29837
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:15 GMT
expires: Thu, 02 Mar 2023 09:14:15 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:16 GMT
etag: "9c89e38d6ba6e0f46642095b5e79aacb"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ZendeskHelpCenter~9c9801fa.9dc9e25f20b45c00396d.chunk.js?e=p
200 OK 6.8 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.ZendeskHelpCenter~9c9801fa.9dc9e25f20b45c00396d.chunk.js?e=p
IP
File type ASCII text, with very long lines (22670)
Hash 2323325c6dfdb0baf19f658f95519762
33bfa725127de818fbceaf790a6a53b6317ca796
294e55a689903e11a7a45e6640db5aaf9581229aa74e7b2186027d1333fb1992
GET /fulcrum/v4/master/dynamic/mobile.ZendeskHelpCenter~9c9801fa.9dc9e25f20b45c00396d.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvujTl4EANbSur27_tq8KLd0_YBiFjxJrQer3TPQF-AlAQshP9VPtPISaunPRYZjVXjG53dlXzVCYxwBP6he-isllcG_hTO
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179117627
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 6767
content-encoding: gzip
x-goog-hash: crc32c=Raf0JA==, md5=IyMyXG39sLrxn2WPlVGXYg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 6767
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:15 GMT
expires: Thu, 02 Mar 2023 09:14:15 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "2323325c6dfdb0baf19f658f95519762"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~521067a8.89f65db9ae423b9197b1.chunk.css?e=p
200 OK 283 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~521067a8.89f65db9ae423b9197b1.chunk.css?e=p
IP
Hash 327122b5334eeb33cd79c886dd49beb3
e58dfacbb2db54d6652889e2dad8ce19f2d2fe2f
9df65c43857dea61bc65232b1e3fd20a82475f77563d3999ac0a9b9ed6d90f38
GET /fulcrum/v4/master/dynamic/mobile.app~521067a8.89f65db9ae423b9197b1.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvr2vM1CLIhWErAihgnPFSak9IycOV3qAuItXvxGVTwIuRgfQ5_IBXPSes8P98V0W1IY8NgystDxkc1SV4XcezP0g
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1663591116440358
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 283
content-encoding: gzip
x-goog-hash: crc32c=uA/axQ==, md5=MnEitTNO6zPNeciG3Um+sw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 283
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Mon, 30 Jan 2023 08:28:02 GMT
expires: Mon, 27 Feb 2023 08:28:02 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Mon, 19 Sep 2022 12:38:36 GMT
etag: "327122b5334eeb33cd79c886dd49beb3"
content-type: text/css
age: 288452
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~493df0b3.e3a8cf8c790c63be4011.chunk.css?e=p
200 OK 9.9 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~493df0b3.e3a8cf8c790c63be4011.chunk.css?e=p
IP
File type ASCII text, with very long lines (17796)
Hash 5eb7226dc2575783709eccb6a4519e02
79d8d5cc2c5099ee653de2e4b62285a912a3c6cb
ba158e88bf0853c4c2e548c26fda44e0b347e97457aec514bb5f671ecab15706
GET /fulcrum/v4/master/dynamic/mobile.app~493df0b3.e3a8cf8c790c63be4011.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvS2Bt_qQjo9l4ym_dI7Gt8QbrLNbfCJ8TYrPDFp1lXiqY8f8Nq2DB7Olkvzp0SxPsukFTr_1OqjY0PkUL4R4-rRjeeSz6J
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675157189530005
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 9916
content-encoding: gzip
x-goog-hash: crc32c=x1FyTA==, md5=XrcibcJXV4Nwnsy2pFGeAg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 9916
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 31 Jan 2023 09:49:36 GMT
expires: Tue, 28 Feb 2023 09:49:36 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 31 Jan 2023 09:26:29 GMT
etag: "5eb7226dc2575783709eccb6a4519e02"
content-type: text/css
age: 197158
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~748942c6.ae767656cbb1ec0a4ab9.chunk.css?e=p
200 OK 1.7 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~748942c6.ae767656cbb1ec0a4ab9.chunk.css?e=p
IP
File type ASCII text, with very long lines (1772)
Hash 598b253bf510e57911fbd5fd86511a47
4209a7bdfdee81b9eeae3b1414146c97e294c847
7ebcb687ea0b9907a0ae2d2443e1b6d39de4f4b9f0a23b70c06163874247d2ab
GET /fulcrum/v4/master/dynamic/mobile.app~748942c6.ae767656cbb1ec0a4ab9.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduqfl1IJyu-8KE8VtM687UidT0_gZokmpO_qtTjsLcEiC74YSRZE4GfLWRjBcW5dGmoCChm1CFMjNePPE4x2bKbxg
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328181413771
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1663
content-encoding: gzip
x-goog-hash: crc32c=Q0P26g==, md5=WYslO/UQ5XkR+9X9hlEaRw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1663
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:21 GMT
etag: "598b253bf510e57911fbd5fd86511a47"
content-type: text/css
age: 26480
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bfe0ed74.f5afd94bdac610591557.chunk.css?e=p
200 OK 585 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~bfe0ed74.f5afd94bdac610591557.chunk.css?e=p
IP
File type ASCII text, with very long lines (1286)
Hash 27c4a2615df59ed93991f6b354671dd6
0e0d88a402dc646af5a4c199145ac8a422d2d448
a98cad2dd71c709b26875e33ae112f368fac45aa666664ba7c94fc2e7a2b9df5
GET /fulcrum/v4/master/dynamic/mobile.app~bfe0ed74.f5afd94bdac610591557.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtTX_8CdJb3TJFu0rvRYi-z-zSPIoUPmiMGSsj5ytXcuu4NxWZj4pqSREa2EZ5bHkXa6h3pr2BpjHajU2MIGRXd
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1666691230328646
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 585
content-encoding: gzip
x-goog-hash: crc32c=K8QcbA==, md5=J8SiYV31ntk5kfazVGcd1g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 585
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Sun, 29 Jan 2023 13:42:33 GMT
expires: Sun, 26 Feb 2023 13:42:33 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 25 Oct 2022 09:47:10 GMT
etag: "27c4a2615df59ed93991f6b354671dd6"
content-type: text/css
age: 355981
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~9675856e.dd984e891c8a0e00c45b.chunk.css?e=p
200 OK 2.1 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.app~9675856e.dd984e891c8a0e00c45b.chunk.css?e=p
IP
File type ASCII text, with very long lines (2605)
Hash 8bf6d4e9191247f34f49910ff4bce36c
083cc5e954c1cadc64847b769796b4f783194a8d
a26135400ddfc9dcb572f5cee188ef7cd5faf61bbb851a25b74738bc12cc0477
GET /fulcrum/v4/master/dynamic/mobile.app~9675856e.dd984e891c8a0e00c45b.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycds23EoE_4Dnjej6UNJqueAIXqWX-bElTkYvnK2C85NT5yCjjL02fxjPufteD9KMX5nmfBx1wwQgDmzQdX6LmTgxuFazZssP
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1670506834487828
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2102
content-encoding: gzip
x-goog-hash: crc32c=xSTuIQ==, md5=i/bU6RkSR/NPSZEP9LzjbA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2102
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Sun, 29 Jan 2023 22:01:52 GMT
expires: Sun, 26 Feb 2023 22:01:52 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:34 GMT
etag: "8bf6d4e9191247f34f49910ff4bce36c"
content-type: text/css
age: 326022
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 326014
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.seondf.com/js/v4/agent.js
200 OK 101 kB URL HTTP/2 cdn.seondf.com/js/v4/agent.js
IP
File type C source, ASCII text, with very long lines (65536), with no line terminators
Size 101 kB (101320 bytes)
Hash 253371027b8d96c3b8ef50260bf86375
74b9b1b5980df81bafa1e3e0fef1d2d2b8565047
708c27b835023b30f20c34166700846ce3918f632de8f9c3ac72d59c154f53cd
GET /js/v4/agent.js HTTP/1.1
Host: cdn.seondf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:34 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 20 Dec 2022 16:00:08 GMT
etag: W/"c34c3067f651e0fea2609171ab7bfec0"
cache-control: max-age=14400
x-amz-version-id: oBwuMALhSWNlluJ4Z9BGO_.GELHIAD3H
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: r3vBq8zJ-CY-NYQu_l7H4C5pSplwPeCF8zFIyJyqVW6saqZZag2g2w==
cf-cache-status: HIT
age: 2805
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fVozDw674TQEAKQQ%2FCnULjY%2BsOw4X8UtnOzkuxcRRekbEh0%2FW%2BrVdLEWyaQM%2BAsN7udyqN8bZr%2BvvA6XB0qb61tp088kTO6PurADaVlT3WPeYuq%2FtwifFs%2FVI9g27%2FrPgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79345739df7ab512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotoslab/v24/BngbUXZYTXPIvIBgJJSb6s3BzlRRfKOFbvjoa4Omb2Rj.woff2
200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/robotoslab/v24/BngbUXZYTXPIvIBgJJSb6s3BzlRRfKOFbvjoa4Omb2Rj.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12820, version 1.0\012- data
Hash 5c02543fd50416d417c4fde1410008d5
82803a4554e56c2247c2ce50e9a0a3c77b5e0730
084c044e1a353a41a04f9c923b418d582f8e8d3a1996053c8e4912a57d158799
GET /s/robotoslab/v24/BngbUXZYTXPIvIBgJJSb6s3BzlRRfKOFbvjoa4Omb2Rj.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 10:50:39 GMT
expires: Mon, 29 Jan 2024 10:50:39 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 19:15:07 GMT
content-type: font/woff2
age: 366295
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~4da73d43.545eda81f6d644ad31df.chunk.js?e=p
200 OK 16 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~4da73d43.545eda81f6d644ad31df.chunk.js?e=p
IP
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~4da73d43.545eda81f6d644ad31df.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvc9FHGNwOGJ7wiXI9a06_Wuty9BiUkb7VuiuRaygeklKgZvTy68TzgVUKNvjUrj3YSJg_v1K3qYwFVVzI41lR9uA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328179893609
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7524
content-encoding: gzip
x-goog-hash: crc32c=iD9+kw==, md5=kBgAv54PimienkKXTwRYRg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 7524
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:19 GMT
etag: "901800bf9e0f8a689e9e42974f045846"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 01:49:59 GMT
expires: Sat, 27 Jan 2024 01:49:59 GMT
cache-control: public, max-age=31536000
age: 571535
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 13:09:06 GMT
expires: Wed, 31 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 185188
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
372fc806295528bc5fbf-83c638ca2a0b52c62d893afeac24561e.ssl.cf3.rackcdn.com/Generic_HalfHeader_600x117_D86343_MM_052022.jpg
200 OK 73 kB URL HTTP/1.1 372fc806295528bc5fbf-83c638ca2a0b52c62d893afeac24561e.ssl.cf3.rackcdn.com/Generic_HalfHeader_600x117_D86343_MM_052022.jpg
IP
File type JPEG image data, progressive, precision 8, 600x117, components 3\012- data
Hash de1f1cd99653a801fd50db8b282f8066
318747ed8b21a923bc8e16ccdd8c9fb8a119c1ab
153a26d32316cb2e39e2e34434443afd53f4c99a2b59bc3914603df8824d1d9c
GET /Generic_HalfHeader_600x117_D86343_MM_052022.jpg HTTP/1.1
Host: 372fc806295528bc5fbf-83c638ca2a0b52c62d893afeac24561e.ssl.cf3.rackcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Tue, 27 Sep 2022 08:24:00 GMT
ETag: de1f1cd99653a801fd50db8b282f8066
X-Trans-Id: tx772d0a0454894b41ace20-0063cb16d0lon3
Content-Length: 72558
Accept-Ranges: bytes
X-Timestamp: 1664267039.98832
Content-Type: image/jpeg
Cache-Control: public, max-age=43530
Expires: Fri, 03 Feb 2023 04:41:04 GMT
Date: Thu, 02 Feb 2023 16:35:34 GMT
Connection: keep-alive
www.leovegas.com/_Incapsula_Resource?SWKMTFSR=1&e=0.1753518431942983
200 OK 1 B URL HTTP/2 www.leovegas.com/_Incapsula_Resource?SWKMTFSR=1&e=0.1753518431942983
IP
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
GET /_Incapsula_Resource?SWKMTFSR=1&e=0.1753518431942983 HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/en-no/?btag=667909_96D4A5AA8AE8459AB9A937EF88828314&c=w261g2ns5rsj8gbm2sk2vsam&pid=3747044&bid=14983
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a14983%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675355732608)%5c%2f%22%2c%22CookieTag%22%3a%22149833747044451240919C2023221635%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222802893973%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%22d0d8c8fb-61d2-4d9b-9e48-01768de42dce%22%7D; visid_incap_846569=jZiJeixwS/aum7fnImgdolTm22MAAAAAQUIPAAAAAADAnwp47rQeHeZKtifTJHGF; nlbi_846569=c5fJbbafNhqVKTa8TJV9qQAAAABYKE3xo/5kp6ZtiiRXI/gW; incap_ses_633_846569=/ftMHue8mWyj381/pd7ICFTm22MAAAAAAsEzrENv6+6egkuhl/i8jQ==; leobtag=667909_96D4A5AA8AE8459AB9A937EF88828314; leonrpid=3747044; leonrbid=14983; leonrmeta=[{"value":"w261g2ns5rsj8gbm2sk2vsam","key":"c"}]; ___utmvc=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
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: text/plain
x-robots-tag: noindex
content-length: 1
set-cookie: ___utmvc=a; Max-Age=0; path=/; expires=Tue, 24 Jan 2023 22:43:55 GMT
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
www.leovegas.com/static/fulcrum/apple-touch-icon.png
200 OK 21 kB URL HTTP/2 www.leovegas.com/static/fulcrum/apple-touch-icon.png
IP
File type PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Hash f9a35c0fdecb2ee483d7badb5e03dd5b
6b9e2d23f188021f914eb2f58ce74d4753afd996
5137e8fe669f23cfe46ec272e9621157210a5e4b3f985520d22ed65f37ad3e0b
GET /static/fulcrum/apple-touch-icon.png HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/en-no/?btag=667909_96D4A5AA8AE8459AB9A937EF88828314&c=w261g2ns5rsj8gbm2sk2vsam&pid=3747044&bid=14983
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a14983%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675355732608)%5c%2f%22%2c%22CookieTag%22%3a%22149833747044451240919C2023221635%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222802893973%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%22d0d8c8fb-61d2-4d9b-9e48-01768de42dce%22%7D; visid_incap_846569=jZiJeixwS/aum7fnImgdolTm22MAAAAAQUIPAAAAAADAnwp47rQeHeZKtifTJHGF; nlbi_846569=c5fJbbafNhqVKTa8TJV9qQAAAABYKE3xo/5kp6ZtiiRXI/gW; incap_ses_633_846569=/ftMHue8mWyj381/pd7ICFTm22MAAAAAAsEzrENv6+6egkuhl/i8jQ==; leobtag=667909_96D4A5AA8AE8459AB9A937EF88828314; leonrpid=3747044; leonrbid=14983; leonrmeta=[{"value":"w261g2ns5rsj8gbm2sk2vsam","key":"c"}]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "87ff2fdf"
last-modified: Thu, 02 Feb 2023 14:49:36 GMT
content-type: image/png
content-length: 21096
content-encoding: gzip
cache-control: max-age=1619, public
expires: Thu, 02 Feb 2023 17:02:33 GMT
date: Thu, 02 Feb 2023 16:35:34 GMT
strict-transport-security: max-age=63072000
x-cdn: Imperva
x-iinfo: 4-28337031-0 0CNN RT(1675355732376 2254) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
www.leovegas.com/static/fulcrum/favicon.ico
200 OK 2.7 kB URL HTTP/2 www.leovegas.com/static/fulcrum/favicon.ico
IP
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash a3384f0c4aa8c4b99449ef21ae4eb17b
ca4a677f9a641d29862da6cc2fd3aa8c2d9ecdda
5e0a3867060cb39118639f3b57bf79f646b0836c6279ac09f41b4a156eb6c4b2
GET /static/fulcrum/favicon.ico HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/en-no/?btag=667909_96D4A5AA8AE8459AB9A937EF88828314&c=w261g2ns5rsj8gbm2sk2vsam&pid=3747044&bid=14983
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a14983%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675355732608)%5c%2f%22%2c%22CookieTag%22%3a%22149833747044451240919C2023221635%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222802893973%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%22d0d8c8fb-61d2-4d9b-9e48-01768de42dce%22%7D; visid_incap_846569=jZiJeixwS/aum7fnImgdolTm22MAAAAAQUIPAAAAAADAnwp47rQeHeZKtifTJHGF; nlbi_846569=c5fJbbafNhqVKTa8TJV9qQAAAABYKE3xo/5kp6ZtiiRXI/gW; incap_ses_633_846569=/ftMHue8mWyj381/pd7ICFTm22MAAAAAAsEzrENv6+6egkuhl/i8jQ==; leobtag=667909_96D4A5AA8AE8459AB9A937EF88828314; leonrpid=3747044; leonrbid=14983; leonrmeta=[{"value":"w261g2ns5rsj8gbm2sk2vsam","key":"c"}]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
etag: "d5630a7c"
last-modified: Thu, 02 Feb 2023 14:49:36 GMT
content-type: image/x-icon
content-length: 2663
content-encoding: gzip
cache-control: max-age=2270, public
expires: Thu, 02 Feb 2023 17:13:24 GMT
date: Thu, 02 Feb 2023 16:35:34 GMT
strict-transport-security: max-age=63072000
x-cdn: Imperva
x-iinfo: 4-28337031-0 0CNN RT(1675355732376 2257) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
www.leovegas.com/stream?relay
101 Switching Protocols 0 B URL HTTP/1.1 www.leovegas.com/stream?relay
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stream?relay HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.leovegas.com
Sec-WebSocket-Protocol: graphql-ws
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oORe4Llbi7+5i9zVdxYiCw==
Connection: keep-alive, Upgrade
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a14983%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675355732608)%5c%2f%22%2c%22CookieTag%22%3a%22149833747044451240919C2023221635%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222802893973%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%22d0d8c8fb-61d2-4d9b-9e48-01768de42dce%22%7D; visid_incap_846569=jZiJeixwS/aum7fnImgdolTm22MAAAAAQUIPAAAAAADAnwp47rQeHeZKtifTJHGF; nlbi_846569=c5fJbbafNhqVKTa8TJV9qQAAAABYKE3xo/5kp6ZtiiRXI/gW; incap_ses_633_846569=/ftMHue8mWyj381/pd7ICFTm22MAAAAAAsEzrENv6+6egkuhl/i8jQ==; leobtag=667909_96D4A5AA8AE8459AB9A937EF88828314; leonrpid=3747044; leonrbid=14983; leonrmeta=[{"value":"w261g2ns5rsj8gbm2sk2vsam","key":"c"}]
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Thu, 02 Feb 2023 16:35:35 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WbU2Y3+7BUnPXO/4/80k2/H/P4Q=
Sec-WebSocket-Protocol: graphql-ws
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Strict-Transport-Security: max-age=63072000
X-CDN: Imperva
X-Iinfo: 10-27987980-27987318 PNNy RT(1675355734643 18) q(0 0 0 -1) r(0 0) U11
ocsp.digicert.com/
200 OK 471 B IP
Hash 704b99c86e891ea21bb191920c4a5fad
a42ef1fa5904ad8259a68f48843ea548d89c7319
575814e38b5d0c0303dbed2b6dcd403895229c082711ccaf1f6c319831990c8f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1980
Cache-Control: max-age=99956
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:35 GMT
Etag: "63dac20f-1d7"
Expires: Fri, 03 Feb 2023 20:21:31 GMT
Last-Modified: Wed, 01 Feb 2023 19:48:31 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 704b99c86e891ea21bb191920c4a5fad
a42ef1fa5904ad8259a68f48843ea548d89c7319
575814e38b5d0c0303dbed2b6dcd403895229c082711ccaf1f6c319831990c8f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1862
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:35 GMT
Last-Modified: Thu, 02 Feb 2023 16:04:33 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
track.adform.net/serving/cookie/?adfaction=getjs;adfcookname=uid
200 OK 180 B URL HTTP/2 track.adform.net/serving/cookie/?adfaction=getjs;adfcookname=uid
IP
File type ASCII text, with no line terminators
Hash 2255005e68a8880fe8846b0ce53772ad
36ba75259314950e35818b9d871b02b09dab56ce
28df773657a07be0bbc8ab226c401438dacd6a9bc8662f38f0a69252c0089fc5
GET /serving/cookie/?adfaction=getjs;adfcookname=uid HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:35:35 GMT
content-type: text/javascript; charset=utf-8
content-length: 180
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
app.launchdarkly.com/sdk/goals/5b9627a39619fd15611a390c
200 OK 23 B URL HTTP/2 app.launchdarkly.com/sdk/goals/5b9627a39619fd15611a390c
IP
Hash f0d79988b7772c003d04a28bd7417a62
58423a999eec2997bcfffb247e9ecd3dfd0abf44
30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f
OPTIONS /sdk/goals/5b9627a39619fd15611a390c HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-launchdarkly-user-agent
Referer: https://www.leovegas.com/
Origin: https://www.leovegas.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Authorization,X-Requested-With,X-LD-Private,X-LD-AccountId,X-LD-EnvId,X-LD-PrjId,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper,LD-API-Version,X-LaunchDarkly-Tags
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-max-age: 3600
allow: GET, OPTIONS, HEAD
content-encoding: gzip
ld-region: us-east-1
strict-transport-security: max-age=31536000
accept-ranges: bytes
date: Thu, 02 Feb 2023 16:35:35 GMT
via: 1.1 varnish
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 29
x-timer: S1675355735.381726,VS0,VE0
vary: Accept-Encoding
age: 0
content-length: 23
X-Firefox-Spdy: h2
app.launchdarkly.com/sdk/goals/5b9627a39619fd15611a390c
200 OK 26 B URL HTTP/2 app.launchdarkly.com/sdk/goals/5b9627a39619fd15611a390c
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 4895d253dd2c6acdb944f2bd7579cc89
9befc050756e1ec3b4b99e2579c0b86132f642a3
261feae8b4d06341989808887b33303dfb972c7566e389dbd8e1c1ea9b096a13
GET /sdk/goals/5b9627a39619fd15611a390c HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-LaunchDarkly-User-Agent: JSClient/2.24.2
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Authorization,X-Requested-With,X-LD-Private,X-LD-AccountId,X-LD-EnvId,X-LD-PrjId,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper,LD-API-Version,X-LaunchDarkly-Tags
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-max-age: 300
cache-control: max-age=0
content-encoding: gzip
content-md5: d751713988987e9331980363e24189ce
etag: "d751713988987e9331980363e24189ce"
ld-region: us-east-1
strict-transport-security: max-age=31536000
accept-ranges: bytes
date: Thu, 02 Feb 2023 16:35:35 GMT
via: 1.1 varnish
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 170
x-timer: S1675355735.392563,VS0,VE0
vary: Accept-Encoding
age: 0
content-length: 26
X-Firefox-Spdy: h2
app.launchdarkly.com/sdk/evalx/5b9627a39619fd15611a390c/users/eyJrZXkiOiJkMGQ4YzhmYi02MWQyLTRkOWItOWU0OC0wMTc2OGRlNDJkY2UiLCJjb3VudHJ5IjoiTk8iLCJhbm9ueW1vdXMiOnRydWUsImN1c3RvbSI6eyJjbGllbnRJZCI6ImFub255bW91cyIsImNvbnRleHRDb3VudHJ5IjoiTk8iLCJjb250ZXh0TGljZW5zZSI6Ik1HQSIsImN1cnJlbmN5IjoiIiwibGFuZ3VhZ2UiOiJFTiIsImxpY2Vuc2UiOiJNR0EiLCJtYXJrZXQiOiJOTyIsInBsYXRmb3JtVHlwZSI6Im1vYmlsZSIsInBsYXllcklkIjoiIiwicmVhbEtleSI6ImQwZDhjOGZiLTYxZDItNGQ5Yi05ZTQ4LTAxNzY4ZGU0MmRjZSIsInVuaXF1ZUlkIjoiZDBkOGM4ZmItNjFkMi00ZDliLTllNDgtMDE3NjhkZTQyZGNlIn19?withReasons=true
200 OK 23 B URL HTTP/2 app.launchdarkly.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?withReasons=true
IP
Hash f0d79988b7772c003d04a28bd7417a62
58423a999eec2997bcfffb247e9ecd3dfd0abf44
30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f
OPTIONS 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?withReasons=true HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-launchdarkly-user-agent
Referer: https://www.leovegas.com/
Origin: https://www.leovegas.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Authorization,X-Requested-With,X-LD-Private,X-LD-AccountId,X-LD-EnvId,X-LD-PrjId,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper,LD-API-Version,X-LaunchDarkly-Tags
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-max-age: 3600
allow: GET, OPTIONS, HEAD
content-encoding: gzip
ld-region: us-east-1
strict-transport-security: max-age=31536000
accept-ranges: bytes
date: Thu, 02 Feb 2023 16:35:35 GMT
via: 1.1 varnish
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 151
x-timer: S1675355736.510451,VS0,VE0
vary: Accept-Encoding
age: 0
content-length: 23
X-Firefox-Spdy: h2
app.launchdarkly.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?withReasons=true
200 OK 23 B URL HTTP/2 app.launchdarkly.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?withReasons=true
IP
Hash f0d79988b7772c003d04a28bd7417a62
58423a999eec2997bcfffb247e9ecd3dfd0abf44
30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f
OPTIONS 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?withReasons=true HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-launchdarkly-user-agent
Referer: https://www.leovegas.com/
Origin: https://www.leovegas.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,Authorization,X-Requested-With,X-LD-Private,X-LD-AccountId,X-LD-EnvId,X-LD-PrjId,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Wrapper,LD-API-Version,X-LaunchDarkly-Tags
access-control-allow-methods: GET, OPTIONS, HEAD
access-control-allow-origin: *
access-control-max-age: 3600
allow: GET, OPTIONS, HEAD
content-encoding: gzip
ld-region: us-east-1
strict-transport-security: max-age=31536000
accept-ranges: bytes
date: Thu, 02 Feb 2023 16:35:35 GMT
via: 1.1 varnish
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 152
x-timer: S1675355736.517993,VS0,VE0
vary: Accept-Encoding
age: 0
content-length: 23
X-Firefox-Spdy: h2
app.launchdarkly.com/sdk/evalx/5b9627a39619fd15611a390c/users/eyJrZXkiOiJkMGQ4YzhmYi02MWQyLTRkOWItOWU0OC0wMTc2OGRlNDJkY2UiLCJjb3VudHJ5IjoiTk8iLCJhbm9ueW1vdXMiOnRydWUsImN1c3RvbSI6eyJjbGllbnRJZCI6ImFub255bW91cyIsImNvbnRleHRDb3VudHJ5IjoiTk8iLCJjb250ZXh0TGljZW5zZSI6Ik1HQSIsImN1cnJlbmN5IjoiIiwibGFuZ3VhZ2UiOiJFTiIsImxpY2Vuc2UiOiJNR0EiLCJtYXJrZXQiOiJOTyIsInBsYXRmb3JtVHlwZSI6Im1vYmlsZSIsInBsYXllcklkIjoiIiwicmVhbEtleSI6ImQwZDhjOGZiLTYxZDItNGQ5Yi05ZTQ4LTAxNzY4ZGU0MmRjZSIsInVuaXF1ZUlkIjoiZDBkOGM4ZmItNjFkMi00ZDliLTllNDgtMDE3NjhkZTQyZGNlIn19?withReasons=true
200 OK 3.6 kB URL HTTP/2 app.launchdarkly.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?withReasons=true
IP
File type JSON data\012- , ASCII text, with very long lines (23663), with no line terminators
Hash d4de3b3bc4e813c48e8c4b5ed7430fc3
551580d29a8c13e14bd486b8a759720bb7250a66
6f8f5c4faac722ac8a03ac9b1aa4efefe1f60ab6fdd6cd245ad57d57be7dedc4
GET /sdk/evalx/5b9627a39619fd15611a390c/users/eyJrZXkiOiJkMGQ4YzhmYi02MWQyLTRkOWItOWU0OC0wMTc2OGRlNDJkY2UiLCJjb3VudHJ5IjoiTk8iLCJhbm9ueW1vdXMiOnRydWUsImN1c3RvbSI6eyJjbGllbnRJZCI6ImFub255bW91cyIsImNvbnRleHRDb3VudHJ5IjoiTk8iLCJjb250ZXh0TGljZW5zZSI6Ik1HQSIsImN1cnJlbmN5IjoiIiwibGFuZ3VhZ2UiOiJFTiIsImxpY2Vuc2UiOiJNR0EiLCJtYXJrZXQiOiJOTyIsInBsYXRmb3JtVHlwZSI6Im1vYmlsZSIsInBsYXllcklkIjoiIiwicmVhbEtleSI6ImQwZDhjOGZiLTYxZDItNGQ5Yi05ZTQ4LTAxNzY4ZGU0MmRjZSIsInVuaXF1ZUlkIjoiZDBkOGM4ZmItNjFkMi00ZDliLTllNDgtMDE3NjhkZTQyZGNlIn19?withReasons=true HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-LaunchDarkly-User-Agent: JSClient/2.24.2
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
cache-control: max-age=0
etag: "5342dbb"
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-methods: OPTIONS, GET
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization, X-Requested-With, X-LD-Private, X-LD-AccountId, X-LD-EnvId, X-LD-PrjId, X-LaunchDarkly-Event-Schema, X-LaunchDarkly-User-Agent, X-LaunchDarkly-Wrapper, Ld-Api-Version
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Feb 2023 16:35:35 GMT
via: 1.1 varnish
x-served-by: cache-bma1660-BMA, cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675355736.521275,VS0,VE47
vary: Authorization, Accept-Encoding
age: 0
content-length: 3631
X-Firefox-Spdy: h2
app.launchdarkly.com/sdk/evalx/5b9627a39619fd15611a390c/users/eyJrZXkiOiJkMGQ4YzhmYi02MWQyLTRkOWItOWU0OC0wMTc2OGRlNDJkY2UiLCJjb3VudHJ5IjoiTk8iLCJhbm9ueW1vdXMiOnRydWUsImN1c3RvbSI6eyJjbGllbnRJZCI6ImFub255bW91cyIsImNvbnRleHRDb3VudHJ5IjoiTk8iLCJjb250ZXh0TGljZW5zZSI6Ik1HQSIsImN1cnJlbmN5IjoiTk9LIiwibGFuZ3VhZ2UiOiJFTiIsImxpY2Vuc2UiOiJNR0EiLCJtYXJrZXQiOiJOTyIsInBsYXRmb3JtVHlwZSI6Im1vYmlsZSIsInBsYXllcklkIjoiIiwicmVhbEtleSI6ImQwZDhjOGZiLTYxZDItNGQ5Yi05ZTQ4LTAxNzY4ZGU0MmRjZSIsInVuaXF1ZUlkIjoiZDBkOGM4ZmItNjFkMi00ZDliLTllNDgtMDE3NjhkZTQyZGNlIn19?withReasons=true
200 OK 3.6 kB URL HTTP/2 app.launchdarkly.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?withReasons=true
IP
File type JSON data\012- , ASCII text, with very long lines (23663), with no line terminators
Hash d4de3b3bc4e813c48e8c4b5ed7430fc3
551580d29a8c13e14bd486b8a759720bb7250a66
6f8f5c4faac722ac8a03ac9b1aa4efefe1f60ab6fdd6cd245ad57d57be7dedc4
GET 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?withReasons=true HTTP/1.1
Host: app.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-LaunchDarkly-User-Agent: JSClient/2.24.2
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
cache-control: max-age=0
etag: "5342dbb"
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-methods: OPTIONS, GET
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization, X-Requested-With, X-LD-Private, X-LD-AccountId, X-LD-EnvId, X-LD-PrjId, X-LaunchDarkly-Event-Schema, X-LaunchDarkly-User-Agent, X-LaunchDarkly-Wrapper, Ld-Api-Version
content-encoding: gzip
accept-ranges: bytes
date: Thu, 02 Feb 2023 16:35:35 GMT
via: 1.1 varnish
x-served-by: cache-bma1650-BMA, cache-bma1651-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675355736.530854,VS0,VE55
vary: Authorization, Accept-Encoding
age: 0
content-length: 3631
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s2.adform.net/banners/scripts/st/trackpoint-async.js
200 OK 31 kB URL HTTP/2 s2.adform.net/banners/scripts/st/trackpoint-async.js
IP
Hash a934a610f2d6e4a29b8f3d6b0ef10c09
5e68220bc11f8fbeb989fd6eb0386c2239687b6f
ff8e4cf68d9b49dd5d98c7cf7c75366fc321c73b8133ed47032db22857b8736e
GET /banners/scripts/st/trackpoint-async.js HTTP/1.1
Host: s2.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:35:35 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 29 Nov 2022 10:23:25 GMT
x-rgw-object-type: Normal
etag: W/"83eb5fafaa212c785f7393188ff817aa"
x-amz-request-id: tx00000ea5be29143837370-006385e0d3-32941e2b-default
access-control-allow-origin: *
cache-control: public, max-age=604800
x-cache-status: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash df4a6d84addba49571d9f6ae44c61a3f
28c8093de27e27645cf6dfd5ae93a62fc77b9be5
cb6623b08b6245ea11bb871729613e453046d427d738a8c6431c5da8347e6e05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ik.imagekit.io/leovegas/lv/games/BmDYpzxdy/Y1G5iEPB18wwN.jpg
200 OK 472 B URL HTTP/2 ik.imagekit.io/leovegas/lv/games/BmDYpzxdy/Y1G5iEPB18wwN.jpg
IP
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
GET /leovegas/lv/games/BmDYpzxdy/Y1G5iEPB18wwN.jpg HTTP/1.1
Host: ik.imagekit.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 21296
x-request-id: 66fa6a11-356d-42df-a09a-05e19c3b4c66
x-server: ImageKit.io
access-control-allow-origin: *
timing-allow-origin: *
cache-control: public, s-maxage=15552000, max-age=15552000, must-revalidate
etag: W/"5330-0Usspm7hSvkoe10SVqEc4LmkoGU"
date: Wed, 01 Feb 2023 08:22:44 GMT
vary: Accept
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: Ub5FwrtR0RYd7qQaCybBOjGxpi7aqlBIrqFVL5ESQyk0a_ez0qYBNA==
age: 115969
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=174098904.1675355763&jid=1433251640&_v=j99&z=1557988768
302 Found 0 B URL HTTP/2 www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=174098904.1675355763&jid=1433251640&_v=j99&z=1557988768
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=174098904.1675355763&jid=1433251640&_v=j99&z=1557988768 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 16:35:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=174098904.1675355763&jid=1433251640&_v=j99&z=1557988768&slf_rd=1&random=149388904
access-control-allow-origin: null
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 8af7a3593420117a221cb547e1e36f15
6bb20ea6308b9247acd09d8579b6280acfa19917
26f78b64399f22a31c4c1e48200df6ade75c23067724c615b22656886590f725
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=146798
Date: Thu, 02 Feb 2023 16:35:36 GMT
Etag: "63db681e-1d7"
Expires: Sat, 04 Feb 2023 09:22:14 GMT
Last-Modified: Thu, 02 Feb 2023 07:37:02 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: t_A68UUvbwR2TGJNjKoA3oWij3hDV1MX9j-aq3aPU_YhvAD-aJmBPg==
Age: 6312
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=174098904.1675355763&jid=1433251640&_v=j99&z=1557988768&slf_rd=1&random=149388904
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=174098904.1675355763&jid=1433251640&_v=j99&z=1557988768&slf_rd=1&random=149388904
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-25600410-6&cid=174098904.1675355763&jid=1433251640&_v=j99&z=1557988768&slf_rd=1&random=149388904 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 16:35:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
access-control-allow-origin: null
access-control-allow-credentials: true
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=LeoVegas%7C%2Fcasino&ADFdivider=%7C&ord=45769361869&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24
200 OK 807 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=LeoVegas%7C%2Fcasino&ADFdivider=%7C&ord=45769361869&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP
File type HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash f0da786ff6e7dc83bad7cce4050622f5
0a35be0f1d1836a6e363964341d8fbd1ac44228c
ccbb42b43cfe0f068bc0314b09f3e6eb225a35fc0b06ecc3aacc15eda75ddf38
GET /Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=LeoVegas%7C%2Fcasino&ADFdivider=%7C&ord=45769361869&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:35:36 GMT
content-type: text/javascript; charset=utf-8
content-length: 807
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=561476264163&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24
200 OK 573 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=561476264163&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP
File type HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 351c7a7421a138541018da39debee3ae
87f9afbf9bb4b440bc0eb139bd84c959c1cb5f2b
447c85044229bb6282b1cb85d1b0ff7344a36d34ece1d71ca1478272d27a0c86
GET /Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=561476264163&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:35:36 GMT
content-type: text/javascript; charset=utf-8
content-length: 573
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
dmp.adform.net/serving/cookie/match?party=1140&cid=&uid=-5932061713061764574
302 Found 0 B URL HTTP/2 dmp.adform.net/serving/cookie/match?party=1140&cid=&uid=-5932061713061764574
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /serving/cookie/match?party=1140&cid=&uid=-5932061713061764574 HTTP/1.1
Host: dmp.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 02 Feb 2023 16:35:36 GMT
content-length: 0
location: https://dmp.adform.net/serving/cookie/match?CC=1&party=1140&cid=&uid=-5932061713061764574
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
set-cookie: C=1; expires=Thu, 02 Mar 2023 16:35:36 GMT; domain=adform.net; path=/
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.leovegas.com/mobile.sw.js?e=p
200 OK 11 kB URL HTTP/2 www.leovegas.com/mobile.sw.js?e=p
IP
File type ASCII text, with very long lines (34776)
Hash 63cfb578e4b806f79f1c531d81ab3ca6
f8ec0faadea7b5871dc3461c0de77576691ba2fd
4744b20160952080d1ce9cfcfb21afb16305b4d86a4e008035ea14ae1e7e9cb9
GET /mobile.sw.js?e=p HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a14983%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675355732608)%5c%2f%22%2c%22CookieTag%22%3a%22149833747044451240919C2023221635%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222802893973%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%22d0d8c8fb-61d2-4d9b-9e48-01768de42dce%22%7D; visid_incap_846569=jZiJeixwS/aum7fnImgdolTm22MAAAAAQUIPAAAAAADAnwp47rQeHeZKtifTJHGF; nlbi_846569=c5fJbbafNhqVKTa8TJV9qQAAAABYKE3xo/5kp6ZtiiRXI/gW; incap_ses_633_846569=/ftMHue8mWyj381/pd7ICFTm22MAAAAAAsEzrENv6+6egkuhl/i8jQ==; leobtag=667909_96D4A5AA8AE8459AB9A937EF88828314; leonrpid=3747044; leonrbid=14983; leonrmeta=[{"value":"w261g2ns5rsj8gbm2sk2vsam","key":"c"}]; _ga=GA1.2.174098904.1675355763; _gid=GA1.2.1217614005.1675355763; _gat_leo=1; leo_previous_page=https://www.leovegas.com/en-no/?btag=667909_96D4A5AA8AE8459AB9A937EF88828314&c=w261g2ns5rsj8gbm2sk2vsam&pid=3747044&bid=14983
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 02 Feb 2023 14:53:33 GMT
content-type: application/javascript
content-length: 10707
content-encoding: gzip
cache-control: max-age=2241, public
expires: Thu, 02 Feb 2023 17:12:57 GMT
date: Thu, 02 Feb 2023 16:35:36 GMT
strict-transport-security: max-age=63072000
x-cdn: Imperva
x-iinfo: 4-28337031-0 0CNN RT(1675355732376 3844) q(0 -1 -1 -1) r(0 -1)
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 727 B IP
Hash 6c9492db97c58aec95d66592595492a3
b66bc6ce798ed9a9b8f975ee8e60cf9278f48ae9
11bd8a7412822ed17b424b0d92e8e8d44824feafb14e2e9214cf077311df9ebc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1541
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:36 GMT
Last-Modified: Thu, 02 Feb 2023 16:09:55 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 727
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 555ec211c886f36f125e1070b8ffe19c
cef380292e9e3876beaf7f14a65e00824ab4f633
f905f9431ced402cbc2c8cb1f5474853f3d7eb1ff007d32fa167248c0817b7f1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=127571
Date: Thu, 02 Feb 2023 16:35:36 GMT
Etag: "63db3577-1d7"
Expires: Sat, 04 Feb 2023 04:01:47 GMT
Last-Modified: Thu, 02 Feb 2023 04:00:55 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QneV1aav9V_qKHJ1heT_PuIpRdOFISaAGvwy-8mjbndgBfNCMAoMkQ==
Age: 52
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 555ec211c886f36f125e1070b8ffe19c
cef380292e9e3876beaf7f14a65e00824ab4f633
f905f9431ced402cbc2c8cb1f5474853f3d7eb1ff007d32fa167248c0817b7f1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133577
Date: Thu, 02 Feb 2023 16:35:36 GMT
Etag: "63db3577-1d7"
Expires: Sat, 04 Feb 2023 05:41:53 GMT
Last-Modified: Thu, 02 Feb 2023 04:00:55 GMT
Server: ECS (nyb/1D0F)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YFPGzqYoZXRG5mVhsaUS5-ufKNMhMy0YmvkHZMOHpya8ZcvXoAVozA==
Age: 6058
usage.trackjs.com/usage.gif?token=c7755ba8906e4776818012e627c020ba&correlationId=46242bd1-b73f-45a0-bcee-9f10846aef6e&application=fulcrum-mobile&x=e7cd77ab-3465-418b-bccd-b9752735aa02&
200 OK 43 B URL HTTP/1.1 usage.trackjs.com/usage.gif?token=c7755ba8906e4776818012e627c020ba&correlationId=46242bd1-b73f-45a0-bcee-9f10846aef6e&application=fulcrum-mobile&x=e7cd77ab-3465-418b-bccd-b9752735aa02&
IP
ASN #14061 DIGITALOCEAN-ASN
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /usage.gif?token=c7755ba8906e4776818012e627c020ba&correlationId=46242bd1-b73f-45a0-bcee-9f10846aef6e&application=fulcrum-mobile&x=e7cd77ab-3465-418b-bccd-b9752735aa02& HTTP/1.1
Host: usage.trackjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 16:35:36 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: keep-alive
track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=561476264163&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24
302 Found 494 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=561476264163&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP
Hash 477381c22e640c427f2fd8c53cf1edfb
1819c1261f7e68030feedfe7a63465030badca03
5fd4c99dd29c2c99641faa0dfc24f391100ecb370db13b08bf64dad98764951a
GET /Serving/TrackPoint/?pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=561476264163&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 02 Feb 2023 16:35:36 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=561476264163&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Thu, 02-Mar-2023 16:35:36 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.leovegas.com/static/fulcrum/offline.html?e=p
200 OK 176 kB URL HTTP/2 www.leovegas.com/static/fulcrum/offline.html?e=p
IP
File type ASCII text, with very long lines (45633)
Size 176 kB (175546 bytes)
Hash 7246f34e0bb661991ed7ed6106a10b63
ec7f4e5b72fda092fda72c9541b450c84933c68e
f4f9844b8a82238c056c7d8e3029c2a728e0ca30bb6ae9d95d896c968a9f8ce4
GET /static/fulcrum/offline.html?e=p HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/mobile.sw.js?e=p
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a14983%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675355732608)%5c%2f%22%2c%22CookieTag%22%3a%22149833747044451240919C2023221635%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222802893973%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%22d0d8c8fb-61d2-4d9b-9e48-01768de42dce%22%7D; visid_incap_846569=jZiJeixwS/aum7fnImgdolTm22MAAAAAQUIPAAAAAADAnwp47rQeHeZKtifTJHGF; nlbi_846569=c5fJbbafNhqVKTa8TJV9qQAAAABYKE3xo/5kp6ZtiiRXI/gW; incap_ses_633_846569=/ftMHue8mWyj381/pd7ICFTm22MAAAAAAsEzrENv6+6egkuhl/i8jQ==; leobtag=667909_96D4A5AA8AE8459AB9A937EF88828314; leonrpid=3747044; leonrbid=14983; leonrmeta=[{"value":"w261g2ns5rsj8gbm2sk2vsam","key":"c"}]; _ga=GA1.1.174098904.1675355763; _gid=GA1.2.1217614005.1675355763; _gat_leo=1; leo_previous_page=https://www.leovegas.com/en-no/?btag=667909_96D4A5AA8AE8459AB9A937EF88828314&c=w261g2ns5rsj8gbm2sk2vsam&pid=3747044&bid=14983; _ga_R99CHBN90V=GS1.1.1675355763.1.0.1675355763.60.0.0; FPLC=TAlgM%2FGN4zcjsQ7XL1b2Q0v2lYhex849Tlxbfmh8W%2BVGLwJDBgzqIG1pvhCFPePgqHb7MFqtZRykrAfxgehoYqFAP89dFeC%2BqVpw0c5ato36xEAWtztHjwEA4wXr6g%3D%3D; FPID=FPID2.2.E7XPVpwU1GR0cZz4foiHKhX%2Bx6Y1R3Idakg3DReVoD8%3D.1675355763
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:35:36 GMT
content-type: text/html
content-encoding: gzip
cache-control: public, max-age=3600
last-modified: Thu, 02 Feb 2023 14:53:33 GMT
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-cdn: Imperva
x-iinfo: 4-28337031-28336807 PNNy RT(1675355732376 3979) q(0 0 0 -1) r(0 0) U12
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/1vmhpXYvMQg
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/1vmhpXYvMQg
IP
Hash edef722788ccee454edcb2e0644ed93e
ec38659e225ea3ce590f6eae5f4da4b8acbbcf8c
103b934054b00a5515ca6332e15f4b119daea395963e26f1f703b4b3e87c7d2b
POST /s/gts1d4/1vmhpXYvMQg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:37 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 52104a66aec82cdc03b5303ba4b4e1b4
dc842551cf50a7dedb5f464e99f2065523a38d7e
b07cb29953de589ab181e3a13bf30bc70351a215c1d5c207cc71ef5114a6d7a9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B07CB29953DE589AB181E3A13BF30BC70351A215C1D5C207CC71EF5114A6D7A9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12283
Expires: Thu, 02 Feb 2023 20:00:20 GMT
Date: Thu, 02 Feb 2023 16:35:37 GMT
Connection: keep-alive
9915903.fls.doubleclick.net/activityi;src=9915903;type=pagev0;cat=pagev0;ord=1675355764034.31e71wul;gtm=2yg1u0;auiddc=1270666661.1675355764;u4=%2F;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983?
200 OK 332 B URL HTTP/2 9915903.fls.doubleclick.net/activityi;src=9915903;type=pagev0;cat=pagev0;ord=1675355764034.31e71wul;gtm=2yg1u0;auiddc=1270666661.1675355764;u4=%2F;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983?
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (581), with no line terminators
Hash d91282640d6346079e1a682ac8eb3e34
b6a69c5bfe8f732a894e1c926061fa5f533eb29a
0382325dfffc1c41b4423c70d1ac713690892f0f5a6f838c344c804fd5c33c4b
GET /activityi;src=9915903;type=pagev0;cat=pagev0;ord=1675355764034.31e71wul;gtm=2yg1u0;auiddc=1270666661.1675355764;u4=%2F;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983? HTTP/1.1
Host: 9915903.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 16:35:37 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 332
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 16:50:37 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tgtag.io/tg.js?pid=tg-g-002415-002
200 OK 32 kB URL HTTP/2 tgtag.io/tg.js?pid=tg-g-002415-002
IP
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 508072c63a35c84745dd1ef33706f34f
5db9b0f2db74f01c0a450f7c0a5d0901cc61d749
f10eba601f45922924f18cd57fdf391d29bacdf5098e3d0433b0d8b58c5d3358
GET /tg.js?pid=tg-g-002415-002 HTTP/1.1
Host: tgtag.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvmEiB07URJMSaBBQiAkQu_1stxZzPPW7VJHEnVzuTZAUp9zylOmSneWLQibIR4YXQdbdRA7JGz9hz0rCg3r1SSP-2vTgf1
vary: X-Goog-Allowed-Resources
x-goog-generation: 1675327980026762
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 31667
content-encoding: gzip
x-goog-hash: crc32c=oV25fg==, md5=UIByxjo1yEdF3R7zNwbzTw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 31667
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Access-Control-Allow-Origin
server: UploadServer
date: Thu, 02 Feb 2023 08:57:12 GMT
expires: Fri, 03 Feb 2023 08:57:12 GMT
cache-control: public, no-transform, max-age=86400, s-maxage=86400
age: 27505
last-modified: Thu, 02 Feb 2023 08:53:00 GMT
etag: "508072c63a35c84745dd1ef33706f34f"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/1vmhpXYvMQg
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/1vmhpXYvMQg
IP
Hash edef722788ccee454edcb2e0644ed93e
ec38659e225ea3ce590f6eae5f4da4b8acbbcf8c
103b934054b00a5515ca6332e15f4b119daea395963e26f1f703b4b3e87c7d2b
POST /s/gts1d4/1vmhpXYvMQg HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:37 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a456cd9684a2ff020b854f178c06b509
b5a9e34f112cbe6d41b695ce7234cfe83de1356e
75b3ff1ea527598880cd41f65ebc03440b0ed019d53f8de1b4588de04bc4919e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675355764034.31e71wul;gtm=2yg1u0;auiddc=1270666661.1675355764;u4=%2F;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983
200 OK 334 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675355764034.31e71wul;gtm=2yg1u0;auiddc=1270666661.1675355764;u4=%2F;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (580), with no line terminators
Hash 3e40c4fdd8b1fb880d5550c8ee64c718
9c8748c39f38d3cb42ae49ad562e0d472097df6d
2ba0f99f793eb07abd04a8bbf9f63532acfb94a0ab3d64f870d7ff6bc5694c1a
GET /ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675355764034.31e71wul;gtm=2yg1u0;auiddc=1270666661.1675355764;u4=%2F;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983 HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://9915903.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 16:35:37 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 334
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 52104a66aec82cdc03b5303ba4b4e1b4
dc842551cf50a7dedb5f464e99f2065523a38d7e
b07cb29953de589ab181e3a13bf30bc70351a215c1d5c207cc71ef5114a6d7a9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B07CB29953DE589AB181E3A13BF30BC70351A215C1D5C207CC71EF5114A6D7A9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12283
Expires: Thu, 02 Feb 2023 20:00:20 GMT
Date: Thu, 02 Feb 2023 16:35:37 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1d4/M7vREfWOEdc
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/M7vREfWOEdc
IP
Hash cb23c6d900cf3d52d66740a5ab6e1401
1a86e17e6f7284310d729df63a3b1f8158236556
35cd43264a1df6ccd1a8a5ecbf5caf8b8e5d36b3d3a4eab9c7d3d85fa68be49c
POST /s/gts1d4/M7vREfWOEdc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:37 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675355764034.31e71wul;gtm=2yg1u0;auiddc=1270666661.1675355764;u4=%2F;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983
200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675355764034.31e71wul;gtm=2yg1u0;auiddc=1270666661.1675355764;u4=%2F;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=9915903;type=pagev0;cat=pagev0;ord=1675355764034.31e71wul;gtm=2yg1u0;auiddc=1270666661.1675355764;u4=%2F;~oref=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983 HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 16:35:37 GMT
expires: Thu, 02 Feb 2023 16:35:37 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
scripts.prdredir.com/scripts/k_leovegas.js
200 OK 942 B URL HTTP/2 scripts.prdredir.com/scripts/k_leovegas.js
IP
File type ASCII text, with very long lines (1749)
Hash 7cfb3d600ad25768d0e298d15c4201a1
087e42ec5cf22a3b2c771d0219af093c5d430715
bfdcb83b68b89f6656da5a3640926eb2be1d1aaa3c6a0bcc34c0c3d6a0d5e655
GET /scripts/k_leovegas.js HTTP/1.1
Host: scripts.prdredir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 16:35:37 GMT
content-type: text/javascript; charset=utf-8
status: 200 OK
cache-control: no-cache
access-control-allow-origin: *
x-request-id: 23f854c5-635c-4d5d-b5be-6a50515dca16
etag: W/"dc15e72bb78bf3e1f68429fb2ffb04e1"
x-runtime: 0.014480
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f52QWlCeO4CljEkSMXpJ%2BPLzaMwTFvyqXcJi4c2Qx2SLez6bJPkQ9T2KzuJGHBjGf10kIT2GsLNkSGxwOc80WX85B%2BlSIr28CILeanWVF1WAwN60zJ7LbssQeSnTXu5D5Mt1GB7TLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7934574deb6e23b9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/M7vREfWOEdc
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/M7vREfWOEdc
IP
Hash cb23c6d900cf3d52d66740a5ab6e1401
1a86e17e6f7284310d729df63a3b1f8158236556
35cd43264a1df6ccd1a8a5ecbf5caf8b8e5d36b3d3a4eab9c7d3d85fa68be49c
POST /s/gts1d4/M7vREfWOEdc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:37 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
websdk.appsflyer.com/?st=pba&
200 OK 9.6 kB URL HTTP/1.1 websdk.appsflyer.com/?st=pba&
IP
ASN #20940 Akamai International B.V.
Hash ba321ab712849c8589ce47f8b2221313
3d9057feba4fd56788af97e9aed8edd14434031c
3448200e21a343c1bb81e5f6ba78d26a0a4719a975b9c4f79913e68f23f8b7d6
GET /?st=pba& HTTP/1.1
Host: websdk.appsflyer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: NXyIgSXUOYVTcHzvnciOA3LGeHgClSYizLGladUsmZax/+QIoISs1Uq8ej9hl3zeB6FJ2LAwkNk=
x-amz-request-id: 47ABXCQ43YKJV6E5
Last-Modified: Thu, 26 Jan 2023 08:01:30 GMT
ETag: "3f70a47c03cc36fb3ee43dea835e4d0d"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3538
Expires: Thu, 02 Feb 2023 17:34:35 GMT
Date: Thu, 02 Feb 2023 16:35:37 GMT
Content-Length: 9578
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2077
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:37 GMT
Last-Modified: Thu, 02 Feb 2023 16:01:00 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64283)
Hash 0ce89aa8747090b54c9aa950033575ff
58ae5224667548b93c50b18008b658c9e629758d
4db41b0f0ce7313789d5ae2be969c725cf7883fcb0e998b066aaa51312fdf25c
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: Ijm7HFjI5m5aVBzRqb7ehKPU9PUpfs1DM3YpTCjZVUmfsGnWDu4OHlaQ8831yqx4V/rRqfy3S6xzGWdiiHlzVA==
content-length: 27843
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 16:35:37 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2077
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:35:37 GMT
Last-Modified: Thu, 02 Feb 2023 16:01:00 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
static.hotjar.com/c/hotjar-380080.js?sv=7
200 OK 4.5 kB URL HTTP/2 static.hotjar.com/c/hotjar-380080.js?sv=7
IP
File type ASCII text, with very long lines (7534)
Hash d3ffe6db352595982afa02027b3698f9
44877b29e3341051130036e0102da5707fb165d7
fe765d70f464e6dcb88892e37e0f0a71296eb71ad421e7eaef38127f73b1dd79
GET /c/hotjar-380080.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Thu, 02 Feb 2023 16:34:58 GMT
cache-control: max-age=60
etag: W/f37a231e82e9b75e4f4231c44d09a68b
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qVuKQv_5hP1jryOarX_uqaPVlqGCU2d6lpI7DFagtPdk_XquEKibwQ==
age: 43
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 57ab86192569119c824fdfc247ed8d3d
39590e9aa1cd2724fb013261011690617f05fc40
b129882e3c7bf3c63c15ec038b09373e32164f5fd256564846500ffd97a92392
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=145104
Date: Thu, 02 Feb 2023 16:35:37 GMT
Etag: "63db6542-1d7"
Expires: Sat, 04 Feb 2023 08:54:01 GMT
Last-Modified: Thu, 02 Feb 2023 07:24:50 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8jrrMf6AVfIEMC2UgA-_yqDly_SWxQrh1e3Ktqz34cgw_3jaHv7uyw==
Age: 5351
wa.onelink.me/v1/onelink
200 OK 13 B IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 593e8538d63f30de24fbb439dd424870
f838a78077c6d023e0d0bca95f0f335df4b8b468
38bc0f256821a9c0a02a1c0cedf8ff70c211e637ef77ac199de2fe0cf36ba9ec
GET /v1/onelink HTTP/1.1
Host: wa.onelink.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Allow-Origin: https://www.leovegas.com
Content-Type: application/json
Date: Thu, 02 Feb 2023 16:35:38 GMT
Content-Length: 13
Connection: keep-alive
script.hotjar.com/modules.4b160a4831adaf5337e6.js
200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.4b160a4831adaf5337e6.js
IP
File type Unicode text, UTF-8 text, with very long lines (48602)
Hash 3315b6999637291711ab85ba678211fa
d1bba723aa49e6276dfdb0f1313a9bf0b64be153
b3bd4f702044ae91c9227ce2d5c8411d3fec3abb82c9c1b7a9b69d2011c520e5
GET /modules.4b160a4831adaf5337e6.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68316
date: Mon, 30 Jan 2023 16:06:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "3315b6999637291711ab85ba678211fa"
last-modified: Mon, 30 Jan 2023 16:05:37 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ON87FrMbYx_yt70WCZq5G3r5cafkRaX9eT6IJ0oqDK1yLSbrGzJCyg==
age: 260972
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=562231999700&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24
302 Found 1.2 kB URL HTTP/2 track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=562231999700&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP
Hash bd574ed5400271a2292184bc0a874d9a
80a85318ce948bde5bbf187f3bb033537699ff85
ff4a0d4f57689b077ec5a9778370d56e1aa34b500f9bd83a28a9a14826879082
GET /Serving/TrackPoint/?pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=562231999700&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 02 Feb 2023 16:35:38 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=pageview&ADFdivider=%7C&ord=562231999700&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Thu, 02-Mar-2023 16:35:38 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
wa.appsflyer.com/events?site-id=6d3a3941-6835-4f61-8644-5e8746828ef8
200 OK 76 B URL HTTP/1.1 wa.appsflyer.com/events?site-id=6d3a3941-6835-4f61-8644-5e8746828ef8
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 43240f9f4f7a5713767748575170ca0f
433e95f4220f23bddb9402e86415e618002b2f10
7dba4e245c0e85bfbf50646e5ccd1b9df25f9ba0446008d9d02ddde2b942960e
POST /events?site-id=6d3a3941-6835-4f61-8644-5e8746828ef8 HTTP/1.1
Host: wa.appsflyer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 1565
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Allow-Origin: https://www.leovegas.com
Content-Type: application/json
Date: Thu, 02 Feb 2023 16:35:38 GMT
Set-Cookie: af_id=10750b90-2142-4fb3-b069-0b923830c901-p; Domain=appsflyer.com; Expires=Sat, 01 Feb 2025 16:35:38 GMT
Content-Length: 76
Connection: keep-alive
wa.onelink.me/v1/onelink?af_id=10750b90-2142-4fb3-b069-0b923830c901-p
200 OK 51 B URL HTTP/1.1 wa.onelink.me/v1/onelink?af_id=10750b90-2142-4fb3-b069-0b923830c901-p
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 15f1fd3a19e338e7ae147180fdb4a819
aa78aa20ea97deaf60d73dd1aa814b897679d2e5
b7a6f029077847195a1542386c98380b03cd226a7cc06058ce2f03d2aac3f1bf
GET /v1/onelink?af_id=10750b90-2142-4fb3-b069-0b923830c901-p HTTP/1.1
Host: wa.onelink.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Allow-Origin: https://www.leovegas.com
Content-Type: application/json
Date: Thu, 02 Feb 2023 16:35:38 GMT
Set-Cookie: af_id=10750b90-2142-4fb3-b069-0b923830c901-p; Path=/; Domain=onelink.me; Expires=Sat, 01 Feb 2025 16:35:38 GMT
Content-Length: 51
Connection: keep-alive
www.facebook.com/tr/?id=1403116046706561&ev=PageView&dl=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&rl=&if=false&ts=1675355765364&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.1.1675355765364.1953626572&it=1675355764779&coo=false&tm=1&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1403116046706561&ev=PageView&dl=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&rl=&if=false&ts=1675355765364&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.1.1675355765364.1953626572&it=1675355764779&coo=false&tm=1&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1403116046706561&ev=PageView&dl=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&rl=&if=false&ts=1675355765364&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.1.1675355765364.1953626572&it=1675355764779&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 02 Feb 2023 16:35:38 GMT
X-Firefox-Spdy: h2
events.launchdarkly.com/events/bulk/5b9627a39619fd15611a390c
204 No Content 0 B URL HTTP/2 events.launchdarkly.com/events/bulk/5b9627a39619fd15611a390c
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /events/bulk/5b9627a39619fd15611a390c HTTP/1.1
Host: events.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-launchdarkly-event-schema,x-launchdarkly-payload-id,x-launchdarkly-user-agent
Referer: https://www.leovegas.com/
Origin: https://www.leovegas.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 16:35:38 GMT
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Payload-ID,X-LaunchDarkly-Wrapper,X-LaunchDarkly-Tags
access-control-allow-methods: POST,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Date
access-control-max-age: 300
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=963666307093&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24
200 OK 573 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=963666307093&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP
File type HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 351c7a7421a138541018da39debee3ae
87f9afbf9bb4b440bc0eb139bd84c959c1cb5f2b
447c85044229bb6282b1cb85d1b0ff7344a36d34ece1d71ca1478272d27a0c86
GET /Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=963666307093&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:35:38 GMT
content-type: text/javascript; charset=utf-8
content-length: 573
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
content-encoding: gzip
expires: -1
vary: Accept-Encoding
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
events.launchdarkly.com/events/bulk/5b9627a39619fd15611a390c
202 Accepted 0 B URL HTTP/2 events.launchdarkly.com/events/bulk/5b9627a39619fd15611a390c
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /events/bulk/5b9627a39619fd15611a390c HTTP/1.1
Host: events.launchdarkly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-LaunchDarkly-User-Agent: JSClient/2.24.2
X-LaunchDarkly-Event-Schema: 3
X-LaunchDarkly-Payload-ID: b0409070-a317-11ed-ad41-8f3e4fde7f96
Content-Length: 5054
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 202 Accepted
date: Thu, 02 Feb 2023 16:35:38 GMT
content-type: application/json
content-length: 0
access-control-allow-headers: Accept,Content-Type,Content-Length,Accept-Encoding,X-LaunchDarkly-Event-Schema,X-LaunchDarkly-User-Agent,X-LaunchDarkly-Payload-ID,X-LaunchDarkly-Wrapper,X-LaunchDarkly-Tags
access-control-allow-methods: POST,OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Date
access-control-max-age: 300
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=963666307093&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24
302 Found 0 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=963666307093&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP
GET /Serving/TrackPoint/?pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=963666307093&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 02 Feb 2023 16:35:38 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=Sc_Ret&ADFdivider=%7C&ord=963666307093&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Thu, 02-Mar-2023 16:35:38 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Icons-OPL~6f2a7a41.b969c50257cef78d4600.chunk.js?e=p
200 OK 0 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.Icons-OPL~6f2a7a41.b969c50257cef78d4600.chunk.js?e=p
IP
GET /fulcrum/v4/master/dynamic/mobile.Icons-OPL~6f2a7a41.b969c50257cef78d4600.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtWxYGttvUS0P2Vhnt-7BzjSHGjQQZVTlEafP8M5uFo-Q3xKNM5Wbe2952GQ2Az7GhUobESFD8XqOi642cr3Eblxg
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328176289838
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 9509
content-encoding: gzip
x-goog-hash: crc32c=BQmOtw==, md5=UunEpa5u855GvWhExTvvuA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 9509
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:15 GMT
expires: Thu, 02 Mar 2023 09:14:15 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:16 GMT
etag: "52e9c4a5ae6ef39e46bd6844c53befb8"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
track.adform.net/serving/scripts/trackpoint/async/
301 Moved Permanently 0 B URL HTTP/2 track.adform.net/serving/scripts/trackpoint/async/
IP
GET /serving/scripts/trackpoint/async/ HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 02 Feb 2023 16:35:35 GMT
content-type: text/html
location: https://s2.adform.net/banners/scripts/st/trackpoint-async.js
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.leovegas.com/api?relay
200 OK 0 B URL HTTP/2 www.leovegas.com/api?relay
IP
POST /api?relay HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/en-no/?btag=667909_96D4A5AA8AE8459AB9A937EF88828314&c=w261g2ns5rsj8gbm2sk2vsam&pid=3747044&bid=14983
x-request-id: ea99cf3f-de1b-442f-83d2-47eb14b9827f
content-type: application/json
x-leo-locale: en-no
Origin: https://www.leovegas.com
Content-Length: 230
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a14983%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675355732608)%5c%2f%22%2c%22CookieTag%22%3a%22149833747044451240919C2023221635%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222802893973%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%22d0d8c8fb-61d2-4d9b-9e48-01768de42dce%22%7D; visid_incap_846569=jZiJeixwS/aum7fnImgdolTm22MAAAAAQUIPAAAAAADAnwp47rQeHeZKtifTJHGF; nlbi_846569=c5fJbbafNhqVKTa8TJV9qQAAAABYKE3xo/5kp6ZtiiRXI/gW; incap_ses_633_846569=/ftMHue8mWyj381/pd7ICFTm22MAAAAAAsEzrENv6+6egkuhl/i8jQ==; leobtag=667909_96D4A5AA8AE8459AB9A937EF88828314; leonrpid=3747044; leonrbid=14983; leonrmeta=[{"value":"w261g2ns5rsj8gbm2sk2vsam","key":"c"}]
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:35:35 GMT
content-type: application/json
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-cdn: Imperva
x-iinfo: 4-28337031-28336815 PNNN RT(1675355732376 2584) q(0 0 0 -1) r(1 1) U6
X-Firefox-Spdy: h2
sgtm.leovegas.com/gtm.js?id=GTM-PNLF5QG
200 OK 0 B URL HTTP/2 sgtm.leovegas.com/gtm.js?id=GTM-PNLF5QG
IP
GET /gtm.js?id=GTM-PNLF5QG HTTP/1.1
Host: sgtm.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a14983%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675355732608)%5c%2f%22%2c%22CookieTag%22%3a%22149833747044451240919C2023221635%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222802893973%7c1%22%7d%5d; visid_incap_846569=jZiJeixwS/aum7fnImgdolTm22MAAAAAQUIPAAAAAADAnwp47rQeHeZKtifTJHGF; nlbi_846569=c5fJbbafNhqVKTa8TJV9qQAAAABYKE3xo/5kp6ZtiiRXI/gW; incap_ses_633_846569=/ftMHue8mWyj381/pd7ICFTm22MAAAAAAsEzrENv6+6egkuhl/i8jQ==; leobtag=667909_96D4A5AA8AE8459AB9A937EF88828314; leonrpid=3747044; leonrbid=14983; leonrmeta=[{"value":"w261g2ns5rsj8gbm2sk2vsam","key":"c"}]
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx/1.23.3
date: Thu, 02 Feb 2023 16:35:35 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
cache-control: private, max-age=900
expires: Thu, 02 Feb 2023 16:49:39 GMT
last-modified: Thu, 02 Feb 2023 15:00:00 GMT
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
whoursie.com/4/5691723
200 OK 0 B IP
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /4/5691723 HTTP/1.1
Host: whoursie.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:35:32 GMT
content-type: text/html; charset=utf8
x-trace-id: 4189de5994f106021b17c688ebbcc116
link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch", <https://myeasetrack.com>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-credentials: true
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=5216509d6d954297b847ac11cfcfa22e; expires=Fri, 02 Feb 2024 16:35:32 GMT; path=/; secure; SameSite=None
oaidts=1675355732; expires=Fri, 02 Feb 2024 16:35:32 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *, *
access-control-allow-methods: GET, POST, OPTIONS, POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Accept, Content-Type, Content-Length, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.leovegas.com/nb-no/?btag=667909_96D4A5AA8AE8459AB9A937EF88828314&c=w261g2ns5rsj8gbm2sk2vsam&pid=3747044&bid=14983
302 Found 0 B URL HTTP/2 www.leovegas.com/nb-no/?btag=667909_96D4A5AA8AE8459AB9A937EF88828314&c=w261g2ns5rsj8gbm2sk2vsam&pid=3747044&bid=14983
IP
GET /nb-no/?btag=667909_96D4A5AA8AE8459AB9A937EF88828314&c=w261g2ns5rsj8gbm2sk2vsam&pid=3747044&bid=14983 HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a14983%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675355732608)%5c%2f%22%2c%22CookieTag%22%3a%22149833747044451240919C2023221635%22%7d%5d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 02 Feb 2023 16:35:32 GMT
content-type: application/json; charset=utf8
content-encoding: gzip
location: /en-no/?btag=667909_96D4A5AA8AE8459AB9A937EF88828314&c=w261g2ns5rsj8gbm2sk2vsam&pid=3747044&bid=14983
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
set-cookie: leo-essentials=%7B%22cid%22%3A%22d0d8c8fb-61d2-4d9b-9e48-01768de42dce%22%7D; Max-Age=31536000; Path=/; Secure
visid_incap_846569=jZiJeixwS/aum7fnImgdolTm22MAAAAAQUIPAAAAAADAnwp47rQeHeZKtifTJHGF; expires=Thu, 01 Feb 2024 22:50:37 GMT; HttpOnly; path=/; Domain=.leovegas.com; Secure; SameSite=None
nlbi_846569=c5fJbbafNhqVKTa8TJV9qQAAAABYKE3xo/5kp6ZtiiRXI/gW; path=/; Domain=.leovegas.com; Secure; SameSite=None
incap_ses_633_846569=/ftMHue8mWyj381/pd7ICFTm22MAAAAAAsEzrENv6+6egkuhl/i8jQ==; path=/; Domain=.leovegas.com; Secure; SameSite=None
x-cdn: Imperva
x-iinfo: 4-28337031-28336807 PNNy RT(1675355732376 33) q(0 0 0 0) r(0 0) U11
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~b60d9e2a.77e906acd52b72523ea9.chunk.js?e=p
200 OK 0 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/mobile.vendors~app~b60d9e2a.77e906acd52b72523ea9.chunk.js?e=p
IP
GET /fulcrum/v4/master/dynamic/mobile.vendors~app~b60d9e2a.77e906acd52b72523ea9.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtG-HiZLkA-l1_QZR4Jn0fm4DlWKRibTzPYSMCZIGzMLx7zuReto2RVxaLLVSdRuVjCnDa3wDQrpCwhBGjZULnKUA
vary: X-Goog-Allowed-Resources,Origin
x-goog-generation: 1675328180178706
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 39927
content-encoding: gzip
x-goog-hash: crc32c=cCrbLg==, md5=fhEQHsu+ivK2/L2hM9uZ/g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 39927
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Thu, 02 Feb 2023 09:14:14 GMT
expires: Thu, 02 Mar 2023 09:14:14 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 02 Feb 2023 08:56:20 GMT
etag: "7e11101ecbbe8af2b6fcbda133db99fe"
content-type: application/javascript
age: 26479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=LeoVegas%7C%2Fcasino&ADFdivider=%7C&ord=45769361869&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24
302 Found 0 B URL HTTP/2 track.adform.net/Serving/TrackPoint/?pm=497538&ADFPageName=LeoVegas%7C%2Fcasino&ADFdivider=%7C&ord=45769361869&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24
IP
GET /Serving/TrackPoint/?pm=497538&ADFPageName=LeoVegas%7C%2Fcasino&ADFdivider=%7C&ord=45769361869&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24 HTTP/1.1
Host: track.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 02 Feb 2023 16:35:36 GMT
content-type: text/html; charset=utf-8
location: https://track.adform.net/Serving/TrackPoint/?CC=1&pm=497538&ADFPageName=LeoVegas%7C%2Fcasino&ADFdivider=%7C&ord=45769361869&ADFtpmode=2&loc=https%3A%2F%2Fwww.leovegas.com%2Fen-no%2F%3Fbtag%3D667909_96D4A5AA8AE8459AB9A937EF88828314%26c%3Dw261g2ns5rsj8gbm2sk2vsam%26pid%3D3747044%26bid%3D14983&Set1=en-US%7Cen-US%7C1280x1024%7C24
cache-control: no-cache, no-store, must-revalidate, no-transform
pragma: no-cache
expires: -1
access-control-allow-origin: *
set-cookie: C=1; domain=adform.net; expires=Thu, 02-Mar-2023 16:35:36 GMT; path=/
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.leovegas.com/api?relay
200 OK 0 B URL HTTP/2 www.leovegas.com/api?relay
IP
POST /api?relay HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leovegas.com/en-no/?btag=667909_96D4A5AA8AE8459AB9A937EF88828314&c=w261g2ns5rsj8gbm2sk2vsam&pid=3747044&bid=14983
x-request-id: 076f52c1-2802-4965-8696-63640d89ee06
content-type: application/json
x-leo-locale: en-no
Origin: https://www.leovegas.com
Content-Length: 10899
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a14983%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1675355732608)%5c%2f%22%2c%22CookieTag%22%3a%22149833747044451240919C2023221635%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222802893973%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%22d0d8c8fb-61d2-4d9b-9e48-01768de42dce%22%7D; visid_incap_846569=jZiJeixwS/aum7fnImgdolTm22MAAAAAQUIPAAAAAADAnwp47rQeHeZKtifTJHGF; nlbi_846569=c5fJbbafNhqVKTa8TJV9qQAAAABYKE3xo/5kp6ZtiiRXI/gW; incap_ses_633_846569=/ftMHue8mWyj381/pd7ICFTm22MAAAAAAsEzrENv6+6egkuhl/i8jQ==; leobtag=667909_96D4A5AA8AE8459AB9A937EF88828314; leonrpid=3747044; leonrbid=14983; leonrmeta=[{"value":"w261g2ns5rsj8gbm2sk2vsam","key":"c"}]
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:35:35 GMT
content-type: application/json
content-encoding: gzip
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-cdn: Imperva
x-iinfo: 4-28337031-28336807 PNNy RT(1675355732376 2568) q(0 0 0 -1) r(3 3) U6
X-Firefox-Spdy: h2
162.0.217.157
142.250.74.131
157.240.205.11
23.36.76.226
63.33.53.130
37.157.5.142
88.221.16.142
138.197.155.84
104.18.32.68
188.114.97.1
18.192.108.151