| 1anoth3rdoman1.com/mCrnl9d0745f9c8757824933c881516f6b51678e7f13f?q=CRACK+Icecream+Ebook+Reader+Pro+5.19+Activator+[CracksMind]&s3=CRACK+Icecream+Ebook+Reader+Pro+5.19+Activator+[CracksMind]&s2=mmaa&s1=gfHsiY20iOiJNYWMiLCJzcyI6IjE2Njk2NTEwODkiLCJycyI6IjI1OTAiLCJkcyI6IjEwNjYyIn18 | 188.72.236.136 | 302 Found | 177 B |
URL HTTP/1.11anoth3rdoman1.com/mCrnl9d0745f9c8757824933c881516f6b51678e7f13f?q=CRACK+Icecream+Ebook+Reader+Pro+5.19+Activator+[CracksMind]&s3=CRACK+Icecream+Ebook+Reader+Pro+5.19+Activator+[CracksMind]&s2=mmaa&s1=gfHsiY20iOiJNYWMiLCJzcyI6IjE2Njk2NTEwODkiLCJycyI6IjI1OTAiLCJkcyI6IjEwNjYyIn18 IP188.72.236.136:0
File typeHTML document, ASCII text Hashaaa3680c32108f2b0da62e702fddacb3 cf69e8e074fb5cfb69e3abad978a1b2bd80d3f9e 2d9fc06c842cf7d0709a2006b93eef5bb08811e19ac24c6c8cc499bd977117a4
GET /mCrnl9d0745f9c8757824933c881516f6b51678e7f13f?q=CRACK+Icecream+Ebook+Reader+Pro+5.19+Activator+[CracksMind]&s3=CRACK+Icecream+Ebook+Reader+Pro+5.19+Activator+[CracksMind]&s2=mmaa&s1=gfHsiY20iOiJNYWMiLCJzcyI6IjE2Njk2NTEwODkiLCJycyI6IjI1OTAiLCJkcyI6IjEwNjYyIn18 HTTP/1.1
Host: 1anoth3rdoman1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 28 Jan 2023 16:36:37 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 177
Connection: keep-alive
Location: https://eu.karoon.xyz/postback/click?key=v2-1674923797209-4-7721-1204252-77858ffb-6a28-9978-0c3e-eec861bde4eb&aff_sub=ABVP1WPgiAAA70QCAE5PFwAMAH6spQQA
Set-Cookie: bd_context=qxVFuFfkL8bXCmmzNVhXSiuqr+k7MX9893edLsnAN45/Z61NAK+HyHVvqaXpnGe5i2zzAvSRRKtoXvewh28qGzrlq+gDQ3MFlzUY3azBCTmvY7JGSz4dt9mc0UvflUc44I4ckit/n99nhA4JAQs2GxrJPph87FX0ExpdapQufm/kvIScLUcRClWlIM+Sybf/LvPFtTiHDkwwXxutyhvCXAtE5RFtD4cD/LUF1SdTWQoi3OFma+k6CksnDx4yqjsyvk+yhfWcvxPNrcbob3YmDeGygZA4XO9thhByCMNZ4b2rdj9hZWKYDsuTmuB+krf5TCpREYoM806h; Expires=Sun, 28 Jan 2024 16:36:37 GMT
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash2405562765b49b2782ebd2e2994851d5 be7ac8e558f7875bb1fb86ab5ec674424a5ff269 422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3449
Expires: Sat, 28 Jan 2023 17:34:06 GMT
Date: Sat, 28 Jan 2023 16:36:37 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hasha2104f935c638b4767ca5ae0d738ef23 85c6af15af749be0ceeae6de17c36925b750f166 5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3453
Expires: Sat, 28 Jan 2023 17:34:10 GMT
Date: Sat, 28 Jan 2023 16:36:37 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashdcd75ca6daca51c5e39d431468511793 07f76d3bf23d65c9110d810fa71a994e39e085d3 73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 15:43:06 GMT
content-type: application/json
age: 3211
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash69f73ac59327cd9ad7d99816ccfcc03e c54844f82dbee0d5ee4c8ce344eb0139373e6c6b e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11609
Expires: Sat, 28 Jan 2023 19:50:06 GMT
Date: Sat, 28 Jan 2023 16:36:37 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 5J4W3rvwYybbfwmpsmgNAxl/Qgq6b77n6WA7UsXMp5INisiAWW8YAJuIsOzrcI/tI97NPV5V2v8=
x-amz-request-id: 08RGB6YWEKS4J9SC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 15:49:57 GMT
age: 2800
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash578da6fffd6149238671e57db5ce23fc 0585e6790df64ce5154508522671f3a8f2d66751 9b95fe2dd34ee8aca176d26c3160ae7476b0019143cd88237f25bfb246434461
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B95FE2DD34EE8ACA176D26C3160AE7476B0019143CD88237F25BFB246434461"
Last-Modified: Sat, 28 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1819
Expires: Sat, 28 Jan 2023 17:06:56 GMT
Date: Sat, 28 Jan 2023 16:36:37 GMT
Connection: keep-alive
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 16:36:37 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| eu.karoon.xyz/postback/click?key=v2-1674923797209-4-7721-1204252-77858ffb-6a28-9978-0c3e-eec861bde4eb&aff_sub=ABVP1WPgiAAA70QCAE5PFwAMAH6spQQA | 38.100.129.196 | 302 Found | 0 B |
URL HTTP/2eu.karoon.xyz/postback/click?key=v2-1674923797209-4-7721-1204252-77858ffb-6a28-9978-0c3e-eec861bde4eb&aff_sub=ABVP1WPgiAAA70QCAE5PFwAMAH6spQQA IP38.100.129.196:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /postback/click?key=v2-1674923797209-4-7721-1204252-77858ffb-6a28-9978-0c3e-eec861bde4eb&aff_sub=ABVP1WPgiAAA70QCAE5PFwAMAH6spQQA HTTP/1.1
Host: eu.karoon.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: openresty/1.15.8.3
date: Sat, 28 Jan 2023 16:36:37 GMT
content-length: 0
set-cookie: platform_user_id=desktop:b9ce734ea0955fdbdaef46d4d37c6039
platform_user_id_3rd_party=desktop:b9ce734ea0955fdbdaef46d4d37c6039; SameSite=None; Secure; Max-Age=31556952
location: https://cutt.ly/G2QMQF7
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashb4ffdfec85ee158376489e0642541e24 24d2d78a6accdc5dce2eb216c2a4a39ca3f6fa3d 655fb4cd5df3ef856eca928a3981880a4c667303353d65a01f30a7447f260742
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2466
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:36:37 GMT
Last-Modified: Sat, 28 Jan 2023 15:55:31 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashb4ffdfec85ee158376489e0642541e24 24d2d78a6accdc5dce2eb216c2a4a39ca3f6fa3d 655fb4cd5df3ef856eca928a3981880a4c667303353d65a01f30a7447f260742
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2466
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:36:37 GMT
Last-Modified: Sat, 28 Jan 2023 15:55:31 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
|
|
| www.royalstarscasino.com/ | 172.67.200.119 | 301 Moved Permanently | 0 B |
URL HTTP/1.1www.royalstarscasino.com/ IP172.67.200.119:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: www.royalstarscasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 16:36:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 28 Jan 2023 17:36:37 GMT
Location: https://www.royalstarscasino.com/
Set-Cookie: __cf_bm=Zut3ONuQBxhC_IivNvCPmshYnP6eecZnr55EJK1sAno-1674923797-0-ATtJwVneCA11QIEs/Riu1jww7kNnOEhoUmKyAesD4zPWaHp+Fs7Jkn5fkeEO0cnOUl37zPtS4ySBosDMcBTpfT8=; path=/; expires=Sat, 28-Jan-23 17:06:37 GMT; domain=.www.royalstarscasino.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790b25e878520b55-OSL
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 15:41:40 GMT
age: 3297
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash16a7b6a7128312e2f985d30df18c4487 6017bff79ffb525d9c7f9f32b999b74b5dc69602 663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21267
Expires: Sat, 28 Jan 2023 22:31:05 GMT
Date: Sat, 28 Jan 2023 16:36:38 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 54.149.190.160 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.149.190.160:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wwixD98R4VMF9cdUSo9GJA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: urZGfGj0WGfQ9RjMg8wQg8QI/lw=
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash36147c185553851c38547798733a9fb2 912ec40237eae2ed558d09103c86c41f87896eca a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:36:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash36147c185553851c38547798733a9fb2 912ec40237eae2ed558d09103c86c41f87896eca a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:36:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/ns.html?id=G-HKHYWC89TR | 172.217.21.168 | 200 OK | 92 B |
URL HTTP/2www.googletagmanager.com/ns.html?id=G-HKHYWC89TR IP172.217.21.168:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Hasha5c242657a321785d7d079994495766f 4733fa0fa6da4a3c0c93ec97c135bb585b4b2f13 8b2ceca2522f9ebefd5894fdf566ef6a7a1e55fe7a19913041c0d4859d8828e6
GET /ns.html?id=G-HKHYWC89TR HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-encoding: br
vary: *
date: Sat, 28 Jan 2023 16:36:38 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 92
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=G-HKHYWC89TR | 172.217.21.168 | 200 OK | 80 kB |
URL HTTP/2www.googletagmanager.com/gtm.js?id=G-HKHYWC89TR IP172.217.21.168:0
File typeASCII text, with very long lines (25680) Hash08b147cbfd07d357c7e9a0c796c4ec35 a2969c3bf92d3cca4d01962c6850d4546c364c24 5bdbd112ba55629491d7c9843c1e2bf1fe264d35881136710850619c6691d85d
GET /gtm.js?id=G-HKHYWC89TR HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 28 Jan 2023 16:36:38 GMT
expires: Sat, 28 Jan 2023 16:36:38 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79770
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash36147c185553851c38547798733a9fb2 912ec40237eae2ed558d09103c86c41f87896eca a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:36:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 344 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash9626f095fe617962b4f5808142037812 556548472294af1b52276605d239aa258cc2ef62 d6b74649410697497ff5ccdb15150df9d348cfe47d4e6546ef263c7f3ea73510
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "D6B74649410697497FF5CCDB15150DF9D348CFE47D4E6546EF263C7F3EA73510"
Last-Modified: Thu, 26 Jan 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19631
Expires: Sat, 28 Jan 2023 22:03:49 GMT
Date: Sat, 28 Jan 2023 16:36:38 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 344 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash9626f095fe617962b4f5808142037812 556548472294af1b52276605d239aa258cc2ef62 d6b74649410697497ff5ccdb15150df9d348cfe47d4e6546ef263c7f3ea73510
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "D6B74649410697497FF5CCDB15150DF9D348CFE47D4E6546EF263C7F3EA73510"
Last-Modified: Thu, 26 Jan 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21551
Expires: Sat, 28 Jan 2023 22:35:49 GMT
Date: Sat, 28 Jan 2023 16:36:38 GMT
Connection: keep-alive
|
|
| www.google-analytics.com/analytics.js | 142.250.74.110 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.110:0
File typeASCII text, with very long lines (1490) Hashca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 28 Jan 2023 15:46:59 GMT
expires: Sat, 28 Jan 2023 17:46:59 GMT
cache-control: public, max-age=7200
age: 2979
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.royalstarscasino.com/touch-icon-iphone-retina.png | 104.21.74.80 | 200 OK | 6.6 kB |
URL HTTP/2www.royalstarscasino.com/touch-icon-iphone-retina.png IP104.21.74.80:0
Hashc089896bdc292ced51fa721898a73562 236f3a3a1ec038f9b0903ca2fef35eb9fd0f9c49 4e6e6ca63b892806de4fd68b7ed68c79cf291aaf18e1a2ee6327f6282c30cc3d
GET /touch-icon-iphone-retina.png HTTP/1.1
Host: www.royalstarscasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Cookie: __cf_bm=pjiv4YJh8cgUov57qwQ9YxK4AX784ONyr144EZfCJj0-1674923798-0-ATYk28zR+PWkengzGj0MwXp4KlBwlyXqtrq+SkwJKDDpYJG0NOd28qf8vJFrl8T+xtM5cpXQxiijAMnb3gRMFPk=; __cfruid=28d0a711019e7a68153899146aab2afdd5f9b549-1674923798
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:38 GMT
content-type: image/png
vary: Accept-Encoding
last-modified: Wed, 12 Oct 2022 11:34:35 GMT
etag: W/"18c4-5ead4c6f6155b"
content-encoding: gzip
cf-cache-status: HIT
age: 5156
expires: Sat, 28 Jan 2023 20:36:38 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 790b25ee8ffcb506-OSL
X-Firefox-Spdy: h2
|
|
| www.royalstarscasino.com/static/images/favicon.ico | 104.21.74.80 | 200 OK | 2.6 kB |
URL HTTP/2www.royalstarscasino.com/static/images/favicon.ico IP104.21.74.80:0
Hash09be137e6f9e79cf571d8751b34bc574 f8adf47072db6f3480f01ed2e2bd90b0b5591d3a a72877a89c592b4afe7aa52aac888e314be129a9a93786b7d57f4db624b4e42d
GET /static/images/favicon.ico HTTP/1.1
Host: www.royalstarscasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Cookie: __cf_bm=pjiv4YJh8cgUov57qwQ9YxK4AX784ONyr144EZfCJj0-1674923798-0-ATYk28zR+PWkengzGj0MwXp4KlBwlyXqtrq+SkwJKDDpYJG0NOd28qf8vJFrl8T+xtM5cpXQxiijAMnb3gRMFPk=; __cfruid=28d0a711019e7a68153899146aab2afdd5f9b549-1674923798
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:38 GMT
content-type: image/vnd.microsoft.icon
last-modified: Wed, 12 Oct 2022 07:21:46 GMT
etag: W/"1cee-5ead13ed719c5"
cf-cache-status: HIT
age: 6868
expires: Sat, 28 Jan 2023 20:36:38 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 790b25ee8ffdb506-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash006fdb44811e76dcbce9d4b28589328a e1969fd1ff3a2a426c6cd59943bee07f4d162fb8 bdd9e38a824bda9f24171db7284ded5aecbc6a349d7029b229b62fec2c03d5b6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6834
Expires: Sat, 28 Jan 2023 18:30:33 GMT
Date: Sat, 28 Jan 2023 16:36:39 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash2e21811f62c077f45a93d7c3b543998d 3e890a73bb51d9dd1021d5339271aa40833ba258 c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6834
Expires: Sat, 28 Jan 2023 18:30:33 GMT
Date: Sat, 28 Jan 2023 16:36:39 GMT
Connection: keep-alive
|
|
| www.royalstarscasino.com/static/fontello/css/bogspa_iconset.css | 104.21.74.80 | 200 OK | 19 kB |
URL HTTP/2www.royalstarscasino.com/static/fontello/css/bogspa_iconset.css IP104.21.74.80:0
Hash51959500796b47dfd8b84c0330c5d3a4 ee3c30fbe1ee4f5a1675b442dfbca8b9ab9da304 d737e465ae3db2534db10a1f66768407be40137d8203481f73cd298c0f33d4fd
GET /static/fontello/css/bogspa_iconset.css HTTP/1.1
Host: www.royalstarscasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Cookie: __cf_bm=pjiv4YJh8cgUov57qwQ9YxK4AX784ONyr144EZfCJj0-1674923798-0-ATYk28zR+PWkengzGj0MwXp4KlBwlyXqtrq+SkwJKDDpYJG0NOd28qf8vJFrl8T+xtM5cpXQxiijAMnb3gRMFPk=; __cfruid=28d0a711019e7a68153899146aab2afdd5f9b549-1674923798
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:38 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=8470
etag: W/"2116-5f29b88b78a2a"
last-modified: Thu, 19 Jan 2023 10:38:31 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1044
expires: Sat, 28 Jan 2023 20:36:38 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 790b25eabb45b506-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 613 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash540e79884c9b2624d2010f7b5ba38998 a44af2759115b27ef3773a25438c5e0a4e23bea1 966a88dbbac88dabe3069ad5bff31202c844e11e1ce7b5ef158a64b87a746413
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6834
Expires: Sat, 28 Jan 2023 18:30:33 GMT
Date: Sat, 28 Jan 2023 16:36:39 GMT
Connection: keep-alive
|
|
| spa.royalstarscasino.com/api/bog/v2_1_2/skinConfig/skinLanguages | 104.21.74.80 | 200 OK | 505 B |
URL HTTP/2spa.royalstarscasino.com/api/bog/v2_1_2/skinConfig/skinLanguages IP104.21.74.80:0
Hash4d458f9fabe2b406a0f98b8315b026f6 34f1ac6a06c12c106974a423cee988780ffcfa8c 7f6c3041b17242c17fe3babf12c99f119afd2da3a963f590254ed539a9c29fad
OPTIONS /api/bog/v2_1_2/skinConfig/skinLanguages HTTP/1.1
Host: spa.royalstarscasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: api-key,x-anon-session,x-language
Referer: https://www.royalstarscasino.com/
Origin: https://www.royalstarscasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:39 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.royalstarscasino.com
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE,HEAD
access-control-allow-headers: Content-Type,Accept,api-key,x-anon-session,x-language,x-player-session,x-client-ip
access-control-expose-headers: x-game-count
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ywLqKWiDtOMorNnluvcaq1NCqGbuScDvw0n9PTvh8fnCw5zT%2BN6u3WzRVZAyKvRfvP%2BEgarVxg%2FRvEsKSSgvSat%2FbLtPZbLmo%2FYuJOBkLXT%2F%2BGx6UsnhVSthAFAPXUkgGY6BKdQ0Efr%2FUO4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790b25f09bdf0b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasha2881cea3ae511d3dfd2f6b7cd598a4e 105d8d675aaafce5602e4015aee2d1659553d1b1 0993ef71c2af9e07ed09e0e2ba40a4d9fdd01444154c2f39f8fc48a4dfef1730
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10863
x-amzn-requestid: db873091-be76-4276-aa3e-f9bd44051508
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbAMbHCMoAMFsYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4471c-57f14d6a3ebcc8a1788bae80;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:50:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 00zN6NcdSHaq-4mWQeizXw9SDgUZJOFnB_6dTo6skjlytfBuz8ud3w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:57:22 GMT
age: 67157
etag: "105d8d675aaafce5602e4015aee2d1659553d1b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash195316042e7f798eeeb7993fecb3a383 4aeca24ad4702f87feaf9674ea0c1ff6d71826a3 b7e0a61060455241fce844d2c91eca500d409804361063ddb61053cbc9c7b1c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13376
x-amzn-requestid: 64d0092e-1f1a-4183-a4a6-805e0bf37d32
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-DvHIyoAMF6fA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b1-6387770232ddca74531bce91;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jqb6G21QeTDiI0HWT9Fd87D-HkAOiesyfN9vr7vMxrOUADBxV-_Fug==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:55:42 GMT
age: 67257
etag: "4aeca24ad4702f87feaf9674ea0c1ff6d71826a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg | 34.120.237.76 | 200 OK | 7.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash57b73886cbbb719eda5f733c018eedfb b84ed40973f8a0d3c10529e34f9466746cfdaf0c 4ba11c23e0bbd2aed53b04ad0b3d22161af1971ddcfb75ae55734de9a49af207
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7028
x-amzn-requestid: c1743fed-205a-431b-8648-474facde6d09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CwFtboAMF9rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-5b94864c707c42fc36fbc63a;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 35sWCIsACAhQvXkJvBn0LGf2m9OTklgDprONw5CDUoXD97TUpJ9j5Q==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:55:35 GMT
age: 67264
etag: "b84ed40973f8a0d3c10529e34f9466746cfdaf0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb7a0759c043594fbe85af422b59b8227 a05cfaad16078f42218dae233da38f6f5dff8487 e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 2e85f75e-ab9d-4d45-adad-7313950a9647
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSWbxGwnoAMFejw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d117-68f1a9e71a07a0453311fd32;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 06:49:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dbz3wXGNaetf6xvRE98rshyHy-FVfDo8co-4VDL0a4Qe3E4U8A82Og==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 18:36:01 GMT
age: 79238
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg | 34.120.237.76 | 200 OK | 4.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4205d8106659e00fff1cbe9262918b8c ab4f6528594a1725934727dc7d834c028a79c609 31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 67193
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg | 34.120.237.76 | 200 OK | 7.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashea24bcba583bd8bd139559448a343e68 b9d37c2b14f890d41983a59f352e8f7caa9c94bb e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1WE1zQwrCGVy8HLT9_BFkAr6rQE_ROyttMOByR32KeT0w2Hd_ylvYQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:16:00 GMT
age: 66039
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashfdfd9de41cd6900b0ac1ac112d19e7c7 3da04c8bd9b6117911eeaeab83b1c31a92611ca0 567cd850e452d698cab086ecb65dfd77c08125836430bc500d31a23c264aa912
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3378
Cache-Control: max-age=85498
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:36:39 GMT
Etag: "63d3ecdf-117"
Expires: Sun, 29 Jan 2023 16:21:37 GMT
Last-Modified: Fri, 27 Jan 2023 15:25:19 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash7da8f9a23d8c05f64f248e4e3427c76e e2d001c2909cd9403173cbb0e288d55fbc8e4d0a db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:36:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| embed.tawk.to/634669bb54f06e12d899b796/1gf5gq23b | 104.22.24.131 | 200 OK | 935 B |
URL HTTP/2embed.tawk.to/634669bb54f06e12d899b796/1gf5gq23b IP104.22.24.131:0
Hash2555add72cf447e2272451b2a05dd0c4 622494ad449cb767105d12bb0dc2533b5f51b512 fa9414741ae5c3ff0dd2710572f88c57ffc093d8116acbe1780ceef99e3a41e0
GET /634669bb54f06e12d899b796/1gf5gq23b HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.royalstarscasino.com
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:39 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-63b77dcd282"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 73
x-content-type-options: nosniff
server: cloudflare
cf-ray: 790b25f44f8cb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash7da8f9a23d8c05f64f248e4e3427c76e e2d001c2909cd9403173cbb0e288d55fbc8e4d0a db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:36:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.royalstarscasino.com/static/fontello/font/bogspa_iconset.woff2 | 104.21.74.80 | 200 OK | 23 kB |
URL HTTP/2www.royalstarscasino.com/static/fontello/font/bogspa_iconset.woff2 IP104.21.74.80:0
File typeWeb Open Font Format (Version 2), TrueType, length 22744, version 1.0\012- data Hash2ef38956b3b02537138d608daaab719a 457844d22635e5314ab5feedab45abc44915c13a 46d74fcf35ff0e0bb9240954274307097163cd1ec17faf55f04d1c22b71b94a9
GET /static/fontello/font/bogspa_iconset.woff2 HTTP/1.1
Host: www.royalstarscasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.royalstarscasino.com/static/fontello/bogspa_iconset_duplicated.css
Cookie: __cf_bm=pjiv4YJh8cgUov57qwQ9YxK4AX784ONyr144EZfCJj0-1674923798-0-ATYk28zR+PWkengzGj0MwXp4KlBwlyXqtrq+SkwJKDDpYJG0NOd28qf8vJFrl8T+xtM5cpXQxiijAMnb3gRMFPk=; __cfruid=28d0a711019e7a68153899146aab2afdd5f9b549-1674923798; _ga_HKHYWC89TR=GS1.1.1674923802.1.0.1674923802.0.0.0; _ga=GA1.2.482374338.1674923802; _gid=GA1.2.2107604214.1674923802; x_anon=5c70e2a1eaa89ce8ae1b5c6f54cdb9dc67e330929626526621b01b1781677424587297037834fd0984e62fb88e40278e0652962b506faf2a023a10c6710cacc2; x_lang=en_GB; _gat=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:39 GMT
content-length: 22744
last-modified: Thu, 19 Jan 2023 10:38:31 GMT
etag: "58d8-5f29b88b78e12"
cf-cache-status: HIT
age: 3632
expires: Sat, 28 Jan 2023 20:36:39 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 790b25f4e932b506-OSL
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/countriesLogos/language_pt.svg | 54.230.245.92 | 200 OK | 22 kB |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/countriesLogos/language_pt.svg IP54.230.245.92:0
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (22383), with no line terminators Hash61919a4737edd0607c43b2e9a393a438 ede3e92815a7e0adcccc4c751e3b136c8c5f03e2 114828988bf522c6c43a7842eabd5cf6e028b2ae050f2ff67b26e613909677d9
GET /media/images/countriesLogos/language_pt.svg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 22383
server: nginx
last-modified: Wed, 06 Jul 2022 08:08:30 GMT
accept-ranges: bytes
date: Sat, 28 Jan 2023 02:19:09 GMT
etag: "576f-5e31e797e3621"
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qbM7GMytUrpZzqoGtnFbmVifcfM9rgrvfCqY61al34xALiMpvNvAyQ==
age: 51450
X-Firefox-Spdy: h2
|
|
| www.royalstarscasino.com/ | 104.21.74.80 | 200 OK | 168 kB |
URL HTTP/2www.royalstarscasino.com/ IP104.21.74.80:0
Size168 kB (167631 bytes) Hash909c031eb3eac8789380f6a43e8bb6d2 c906679c3528b3922cc93aa3b896d159a1493036 5146db4d956beafc51e39c25c8a2e02e606bd177210cc93b8403d26d807d6210
GET / HTTP/1.1
Host: www.royalstarscasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:38 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
last-modified: Thu, 19 Jan 2023 10:38:31 GMT
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=pjiv4YJh8cgUov57qwQ9YxK4AX784ONyr144EZfCJj0-1674923798-0-ATYk28zR+PWkengzGj0MwXp4KlBwlyXqtrq+SkwJKDDpYJG0NOd28qf8vJFrl8T+xtM5cpXQxiijAMnb3gRMFPk=; path=/; expires=Sat, 28-Jan-23 17:06:38 GMT; domain=.www.royalstarscasino.com; HttpOnly; Secure; SameSite=None
__cfruid=28d0a711019e7a68153899146aab2afdd5f9b549-1674923798; path=/; domain=.www.royalstarscasino.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 790b25e8f8c1b506-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/countriesLogos/language_en.svg | 54.230.245.92 | 200 OK | 1.0 kB |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/countriesLogos/language_en.svg IP54.230.245.92:0
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1032), with no line terminators Hash7b5c62bf54f4e0301937435bcbee99dc 8eaa635a146c51e1830305611222502383dca0f9 99a4e5a7ff98c8616c395b5bfa5fd365b73a9c816b12e04b88059b4739a6a79b
GET /media/images/countriesLogos/language_en.svg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1032
server: nginx
date: Sat, 28 Jan 2023 06:12:05 GMT
last-modified: Wed, 06 Jul 2022 08:08:27 GMT
etag: "408-5e31e794acc4b"
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _wFxHAQT5FUoBlOSFOAiAihaG9m3cizobcrLRBJ5M89KFvaZ1msqxw==
age: 37474
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/countriesLogos/language_no.svg | 54.230.245.92 | 200 OK | 752 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/countriesLogos/language_no.svg IP54.230.245.92:0
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (752), with no line terminators Hash3625bcaa59863c3dd84716dadeb12505 f05c494b55f414a6cb3e99721fc1c9a76e3caa9e bfc5f11f7c4a2d99353362475fccceb19a450ba3386ba2103b9079724408795b
GET /media/images/countriesLogos/language_no.svg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 752
server: nginx
last-modified: Wed, 06 Jul 2022 08:08:27 GMT
accept-ranges: bytes
date: Sat, 28 Jan 2023 05:31:57 GMT
etag: "2f0-5e31e794ad41b"
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WW_sHHEHw1J_L95QuhYm9xAYAedQCzacgZXwuCIWILnHdv5II6xyLg==
age: 40905
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/countriesLogos/language_es.svg | 54.230.245.92 | 200 OK | 554 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/countriesLogos/language_es.svg IP54.230.245.92:0
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (554), with no line terminators Hash9b7c2021cf7c1e2d54155c72865b0c3d cbfdc2c258c3beef18178d7f8e15111635ab93c6 8f19a956c49fcbd172d3754fe32be2d41be8b41ea178885c01d3931b895407c0
GET /media/images/countriesLogos/language_es.svg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 554
server: nginx
last-modified: Wed, 06 Jul 2022 08:08:30 GMT
accept-ranges: bytes
date: Sat, 28 Jan 2023 08:43:08 GMT
etag: "22a-5e31e797e3239"
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QGdyJQW28OnjUbAnB_cltWqe-1NULmc24FJj8UFUQWqp88WzhU3NIw==
age: 28411
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/countriesLogos/language_fi.svg | 54.230.245.92 | 200 OK | 779 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/countriesLogos/language_fi.svg IP54.230.245.92:0
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (779), with no line terminators Hash830e1aeb7a4c86eaee0a54d5c8472942 2799914918d29db6212cc58d5a982a3f5436c9c7 c7722212cf091040811fac6e22e3bc778d5aeae54d8d4b323edd0f8fbd8ce19a
GET /media/images/countriesLogos/language_fi.svg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 779
server: nginx
date: Sat, 28 Jan 2023 00:09:59 GMT
last-modified: Wed, 06 Jul 2022 08:08:27 GMT
etag: "30b-5e31e794acc4b"
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tm4JNjZ_oom-RuzSSsK5lyf_RwSJ1EynA1IBjha2WyNlxRWIJPOGRA==
age: 59200
X-Firefox-Spdy: h2
|
|
| www.royalstarscasino.com/static/js/vendor.850708c7487e8dfb027d.js | 104.21.74.80 | 200 OK | 501 kB |
URL HTTP/2www.royalstarscasino.com/static/js/vendor.850708c7487e8dfb027d.js IP104.21.74.80:0
Size501 kB (501049 bytes) Hash3d768b885df65df738357e4e0bb7407a e5881a619c305a0403271ed1072447ffed88db2e 4e13216899a084efc75f4d733df8889f2fa66eee287823cadddf27823f79b856
GET /static/js/vendor.850708c7487e8dfb027d.js HTTP/1.1
Host: www.royalstarscasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Cookie: __cf_bm=pjiv4YJh8cgUov57qwQ9YxK4AX784ONyr144EZfCJj0-1674923798-0-ATYk28zR+PWkengzGj0MwXp4KlBwlyXqtrq+SkwJKDDpYJG0NOd28qf8vJFrl8T+xtM5cpXQxiijAMnb3gRMFPk=; __cfruid=28d0a711019e7a68153899146aab2afdd5f9b549-1674923798
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:38 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1497825
etag: W/"16dae1-5f0545bc132d7"
last-modified: Wed, 21 Dec 2022 10:53:10 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1044
expires: Sat, 28 Jan 2023 20:36:38 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 790b25eacb4bb506-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashcbe94bc7052911313fffd1cdad964a74 a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada 430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:36:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 556 B |
IP142.250.74.131:0
Hash971b13a21fcd93e7258c6a3bad25dda4 f8e92185b39921b1216b1418138d566b148a9c13 7f20396c630d36c21790631abbd6ae7cf76c74468d2d3949c233c25fd450b3de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:36:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/exo/v20/4UaOrEtFpBISc36j.woff2 | 216.58.207.227 | 200 OK | 20 kB |
URL HTTP/2fonts.gstatic.com/s/exo/v20/4UaOrEtFpBISc36j.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 20364, version 1.0\012- data Hash0de6b557071176e7a82239a7ee11306b b85c796676d5d08baa1bcc0957a80b5e3a3ddf47 3e9d07ebb7ea3f8e5c5568fa3b4e81d5b93aacfd93cc05192a30c0438039d349
GET /s/exo/v20/4UaOrEtFpBISc36j.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.royalstarscasino.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20364
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 18:43:34 GMT
expires: Sat, 27 Jan 2024 18:43:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 19:24:29 GMT
content-type: font/woff2
age: 78785
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashcbe94bc7052911313fffd1cdad964a74 a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada 430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:36:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash8cf65fcdafa84b63cf7005fe57927fcb 3f7d163a96e7f00eb2de9828624ec46e22b4b40a dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:36:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| 4c9186f0-c97c-4ff3-9bd5-1623db8db375.snippet.antillephone.com/54f396e0-b046-49b1-9cb3-0c69281d7ea9-beacon.png | 54.230.111.100 | 200 OK | 17 kB |
URL HTTP/24c9186f0-c97c-4ff3-9bd5-1623db8db375.snippet.antillephone.com/54f396e0-b046-49b1-9cb3-0c69281d7ea9-beacon.png IP54.230.111.100:0
File typePNG image data, 469 x 156, 8-bit/color RGBA, non-interlaced\012- data Hashbd8ae24bc6031d2e1693a5795b1bbd2f fe036d94d6a6ffdf3c7648f46baf813a26b23560 264539b515db31f3f1e61c73870ff5ee4070092c20367c38ea7eaf1b189f759f
GET /54f396e0-b046-49b1-9cb3-0c69281d7ea9-beacon.png HTTP/1.1
Host: 4c9186f0-c97c-4ff3-9bd5-1623db8db375.snippet.antillephone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 68
date: Wed, 11 Jan 2023 07:12:57 GMT
last-modified: Tue, 15 Dec 2020 08:04:53 GMT
etag: "e679fbd466a2d656f194a5da4fa083cd"
cache-control: no-cache, no-store, must-revalidate
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: F8mBMl4wUOgBO44wCz5Ur_o5chdwNmYRLa7LAiOXJg10klrvipVUiQ==
age: 1502624
X-Firefox-Spdy: h2
|
|
| 4c9186f0-c97c-4ff3-9bd5-1623db8db375.snippet.antillephone.com/sealassets/850a88f935f91d96435392569dc66cca-www.royalstarscasino.com-76f913530c18c72b1acd3e95c774b6a098688f0d70f8119cf221f813d90316eb79460e81cefbcf606598cfba2a933675-c2VhbC5wbmc%3D?status=valid | 54.230.111.100 | 200 OK | 46 kB |
URL HTTP/24c9186f0-c97c-4ff3-9bd5-1623db8db375.snippet.antillephone.com/sealassets/850a88f935f91d96435392569dc66cca-www.royalstarscasino.com-76f913530c18c72b1acd3e95c774b6a098688f0d70f8119cf221f813d90316eb79460e81cefbcf606598cfba2a933675-c2VhbC5wbmc%3D?status=valid IP54.230.111.100:0
File typePNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data Hash375b5b5bcd1d5179f5b789e4c28ca6df f52bfd097b13f83fa43714f59786efa4082f55a1 f7acaa7ace617964cd79de3287bfa740f1d3fbcbed82ea1d09cd94058d4b1281
GET /sealassets/850a88f935f91d96435392569dc66cca-www.royalstarscasino.com-76f913530c18c72b1acd3e95c774b6a098688f0d70f8119cf221f813d90316eb79460e81cefbcf606598cfba2a933675-c2VhbC5wbmc%3D?status=valid HTTP/1.1
Host: 4c9186f0-c97c-4ff3-9bd5-1623db8db375.snippet.antillephone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 46382
date: Sat, 28 Jan 2023 16:36:40 GMT
x-powered-by: Express
cache-control: max-age=1200
etag: W/"b52e-9Sv9CXsT+D+kNxT1l4bvpAgvVaE"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 790b25f84c6391cf-FRA
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qMMI2O93AUuveGDtOlKpnalHOMHSG4erIozLVVAWo5GqECrrAwYSFg==
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/image/PID83_CryptoWP-BannersBig.webp | 54.230.245.92 | 200 OK | 135 kB |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/image/PID83_CryptoWP-BannersBig.webp IP54.230.245.92:0
File typeRIFF (little-endian) data, Web/P image\012- data Size135 kB (135272 bytes) Hash1c668b379cae7e57a59cd0a9ec934f33 1506a4f34104e6959f7bc535e090205f1e37b8e3 b69d1e3fd820e4e514a502647cc6980d71e3449ab5cae01d35b7209ec9460718
GET /image/PID83_CryptoWP-BannersBig.webp HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 135272
server: nginx
date: Sat, 28 Jan 2023 04:53:17 GMT
pragma: public
cache-control: public, max-age=86400
expires: Sun, 28 Jan 2024 04:53:17 GMT
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YemWnNVLUGqh0pYe9I5HU7siVec0irgneaEsD3rjdyrZDvLZNUlRLg==
age: 42203
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/image/PID83_AllDayCashback-BannersBig.webp | 54.230.245.92 | 200 OK | 98 kB |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/image/PID83_AllDayCashback-BannersBig.webp IP54.230.245.92:0
File typeRIFF (little-endian) data, Web/P image\012- data Hash4b070b5f8920fe973d4a9d5cefc603c9 5f6b43873aa329a3bea0f18ef77b3dba4de44c45 7e7d9f416c1eae039686ef597ddd6cc0f6eb27335cd4dc460adfb515444c9efd
GET /image/PID83_AllDayCashback-BannersBig.webp HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 97590
server: nginx
date: Sat, 28 Jan 2023 03:15:07 GMT
pragma: public
cache-control: public, max-age=86400
expires: Sun, 28 Jan 2024 03:15:08 GMT
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mDrRxOZLHvqqfh3rrBfYAeyTySyh-73DM0_Z68tIN0qFZ0HfCUAeRA==
age: 48092
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/image/PID83_WeekendBooster-BannersBig.webp | 54.230.245.92 | 200 OK | 107 kB |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/image/PID83_WeekendBooster-BannersBig.webp IP54.230.245.92:0
File typeRIFF (little-endian) data, Web/P image\012- data Size107 kB (106886 bytes) Hashf38539cfe7614352417bcbc7f3b249de 23a7ddfd1e7e96e12a992f4dd649b8542fe8670d 37448e299d62df56fa276b91fbc017888c577c19446844ea922becbdf3c4e1bd
GET /image/PID83_WeekendBooster-BannersBig.webp HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 106886
server: nginx
date: Sat, 28 Jan 2023 02:37:40 GMT
pragma: public
cache-control: public, max-age=86400
expires: Sun, 28 Jan 2024 02:37:40 GMT
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rLvW0979dqYYXVSbQqNqwt_H01s3HY9v6dnyHaWCZPTFqCaCCDmzqg==
age: 50340
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/image/PID83_HighRoller-BannersBig.webp | 54.230.245.92 | 200 OK | 114 kB |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/image/PID83_HighRoller-BannersBig.webp IP54.230.245.92:0
File typeRIFF (little-endian) data, Web/P image\012- data Size114 kB (114122 bytes) Hashb8edd61b0d18c3f8f6d02b716d52857b 5c7b242f8a6f42f60d5bf2cb5474b1bccf5eef85 5e5d36895e40b7b3120b864980b3bc7fe6c169af0450256f6718ec60ec511e38
GET /image/PID83_HighRoller-BannersBig.webp HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 114122
server: nginx
date: Sat, 28 Jan 2023 04:53:17 GMT
pragma: public
cache-control: public, max-age=86400
expires: Sun, 28 Jan 2024 04:53:17 GMT
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ez4nXusHGKaL_nSBUzb9nA8vKWboHSBY9ohNPujqd2BylRzkjKt-7Q==
age: 42203
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/image/PID83_SpinNWin-BannersBig.webp | 54.230.245.92 | 200 OK | 106 kB |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/image/PID83_SpinNWin-BannersBig.webp IP54.230.245.92:0
File typeRIFF (little-endian) data, Web/P image\012- data Size106 kB (105638 bytes) Hash255472288bf8f6cb5d305b62b7f913e6 a1a934337c677a6a1d7754f52fcfe50dd709cf24 ab82876b51a016e2922e5f8743c6608d624db5f44357db2c73c84f111c30021d
GET /image/PID83_SpinNWin-BannersBig.webp HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 105638
server: nginx
date: Sat, 28 Jan 2023 02:17:51 GMT
pragma: public
cache-control: public, max-age=86400
expires: Sun, 28 Jan 2024 02:17:51 GMT
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eikhomu95cxZIWUnyBTwA0QiZANHe3Al-zWRbyWT2VnsTL-A-3OYFw==
age: 51529
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/image/PID83_YearOfTheRabbit-BannersBig.webp | 54.230.245.92 | 200 OK | 106 kB |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/image/PID83_YearOfTheRabbit-BannersBig.webp IP54.230.245.92:0
File typeRIFF (little-endian) data, Web/P image\012- data Size106 kB (105508 bytes) Hash99fe210e6ce3de895819568c8867e838 6a326ce9509df81cf0ca38f5c81e88d0e56f1429 efb526bfe3e852a4f49dde2aef341b9bf86fe5ac70376c90ecd65d95cd1fa98a
GET /image/PID83_YearOfTheRabbit-BannersBig.webp HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 105508
server: nginx
date: Sat, 28 Jan 2023 11:33:11 GMT
pragma: public
cache-control: public, max-age=86400
expires: Sun, 28 Jan 2024 11:33:11 GMT
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: K0B5reszK4bacFqwCV-wPBD6J6lbkbauTrvWPYdaZPwQ5lNhso3C8w==
age: 18209
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/image/PID83_NewWelcome-Promo.webp | 54.230.245.92 | 200 OK | 108 kB |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/image/PID83_NewWelcome-Promo.webp IP54.230.245.92:0
File typeRIFF (little-endian) data, Web/P image\012- data Size108 kB (108076 bytes) Hashb07154f0287beabc15641aaee5e48f91 a1e6d3496b12a92ebced8e76acd6352fff37ffeb b4d1fd6b4b711be415d5976d0c59a030c665df05eea44d62a0aa8c59b3081ff5
GET /image/PID83_NewWelcome-Promo.webp HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 108076
server: nginx
date: Sat, 28 Jan 2023 03:12:09 GMT
pragma: public
cache-control: public, max-age=86400
expires: Sun, 28 Jan 2024 03:12:09 GMT
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bj6WxeZvfz5XIv_U513xJdWqVG_zSsAk3y1TLO-P7kalanSRIgt6Ug==
age: 48271
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/image/PID83_CryptoWP-Promo.webp | 54.230.245.92 | 200 OK | 110 kB |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/image/PID83_CryptoWP-Promo.webp IP54.230.245.92:0
File typeRIFF (little-endian) data, Web/P image\012- data Size110 kB (109762 bytes) Hash74f5656ac3e6b5a916dbafcbbdb76cf0 cd2105327e98dd7a6316d0d21d3ab063bc5c906f 4a78308725ba8cb4e4146ad846762296f2d8bd9f04796f0105940e69cb24c03b
GET /image/PID83_CryptoWP-Promo.webp HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 109762
server: nginx
date: Sat, 28 Jan 2023 01:27:21 GMT
pragma: public
cache-control: public, max-age=86400
expires: Sun, 28 Jan 2024 01:27:21 GMT
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Cdqviz2eXeIWeqXZOxqRwd_y7BTkpoKsArnXkmAfN4CHNq-RlMYe6Q==
age: 54559
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/image/PID83_MysteryDrop-Wazdan-BannersBig.webp | 54.230.245.92 | 200 OK | 110 kB |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/image/PID83_MysteryDrop-Wazdan-BannersBig.webp IP54.230.245.92:0
File typeRIFF (little-endian) data, Web/P image\012- data Size110 kB (110178 bytes) Hash8ae9c50e56781aba5e99e3c8e58dd71a ba9919658d98e5da3237d2ef4e61454ad37f7bdb f8d832bd760dbfd3f907e52b520619dd95c1ac987d87bf6114c9a0bbb68e28b4
GET /image/PID83_MysteryDrop-Wazdan-BannersBig.webp HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 110178
server: nginx
date: Sat, 28 Jan 2023 04:53:17 GMT
pragma: public
cache-control: public, max-age=86400
expires: Sun, 28 Jan 2024 04:53:17 GMT
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MoZ07HW2uiOg8oJiCUgt1vf3yyZuBQPR9_NH-ZE2HTrDTxmTeIFhPQ==
age: 42203
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/image/PID83_NewWelcome-BannersBig.webp | 54.230.245.92 | 200 OK | 112 kB |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/image/PID83_NewWelcome-BannersBig.webp IP54.230.245.92:0
Size112 kB (112015 bytes) Hash37c3a84b5a502bfd4136e45ddf238da1 aedb3bcff5959e3a6cd28ddf4cd23fd74d117657 da6bed2326ffa288b26ef63a4f456ad14a51dc03b7a3b40e1c050449c312389e
GET /image/PID83_NewWelcome-BannersBig.webp HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 111852
server: nginx
date: Sat, 28 Jan 2023 03:15:07 GMT
pragma: public
cache-control: public, max-age=86400
expires: Sun, 28 Jan 2024 03:15:07 GMT
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JIVhfeUFIZ8hLhX5uiiKCFpUMDsCozd6hTx3yE2No2lhqDs8ETFxQA==
age: 48093
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/image/PID83_NonStopDrop-Playson-BannersBig.webp | 54.230.245.92 | 200 OK | 105 kB |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/image/PID83_NonStopDrop-Playson-BannersBig.webp IP54.230.245.92:0
File typeRIFF (little-endian) data, Web/P image\012- data Size105 kB (104920 bytes) Hash681b045880a0c92c493d0ea737ac636f 34eb719524211413300db99a4f3b1f8da90c811e 30c9b845221a9a7812897e41b65a2deff9e7ba9b1d68de83688f14e387a82fa7
GET /image/PID83_NonStopDrop-Playson-BannersBig.webp HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 104920
server: nginx
date: Sat, 28 Jan 2023 02:17:51 GMT
pragma: public
cache-control: public, max-age=86400
expires: Sun, 28 Jan 2024 02:17:51 GMT
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HFgX9HXFoLAlDI6729Bom9t_qYMxteTenbJJ0ewIMmDyb9piqNZOmA==
age: 51529
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/image/PID83_HighRoller-Promo.webp | 54.230.245.92 | 200 OK | 109 kB |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/image/PID83_HighRoller-Promo.webp IP54.230.245.92:0
File typeRIFF (little-endian) data, Web/P image\012- data Size109 kB (108568 bytes) Hash86bbb9ce30efab15e63e72cf17b56847 d3b2146e685bbb2f45e11deb2a5c5b39fb76a92c 418f51152afd6c7e2a4d955791a3ed486f284ae065c21bcd15a88129f1b023ef
GET /image/PID83_HighRoller-Promo.webp HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 108568
server: nginx
date: Sat, 28 Jan 2023 04:44:34 GMT
pragma: public
cache-control: public, max-age=86400
expires: Sun, 28 Jan 2024 04:44:34 GMT
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lCuvJEc03DcmEq3e6_VvymYI8JNn_yKcrkDGpCqBKeQdwNYxu7OvcQ==
age: 42726
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashed8a8c45dceab588456b222e04775919 0242859712655caa3c3e9b936878c7c7874b7b5a 669f0691b8bf32a10fb219ce47ad69495e5cd2a11317b672aecca53f50b51de3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:36:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-174238051-1&cid=482374338.1674923802&jid=1516393337&gjid=1300876610&_gid=2107604214.1674923802&_u=aADAAEAAEAAAACAAI~&z=954432611 | 173.194.221.156 | 200 OK | 1.0 kB |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-174238051-1&cid=482374338.1674923802&jid=1516393337&gjid=1300876610&_gid=2107604214.1674923802&_u=aADAAEAAEAAAACAAI~&z=954432611 IP173.194.221.156:0
Hash0a946e751342685869dda6a90c2469a0 e96692b66da19fba396abd09e58bd6b02b08a42b ae60b8d5b305edb29ef835660ab80b880723ff11d1fbafd02f0a97a7c20932d5
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-174238051-1&cid=482374338.1674923802&jid=1516393337&gjid=1300876610&_gid=2107604214.1674923802&_u=aADAAEAAEAAAACAAI~&z=954432611 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.royalstarscasino.com
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.royalstarscasino.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 28 Jan 2023 16:36:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashe7ebbff54ced2c07469b302fc6d44078 f59983c844c398bd37705051ca685b2d07d85726 04eb3bd7658c1112bfc1d0098e8d7f5fafdb10459e3290c0d4e6a17e65a5494f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:36:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 7.8 kB |
IP93.184.220.29:0
Hashc9f5ae7e1fff049849e4e5651d50f530 56aa17e8a02bc48859433fe32c9ae133e3462027 d02abe9170e94ddadb71569b3c22aa4f965a59505bf945cb486f3f86308979c0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4039
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:36:41 GMT
Last-Modified: Sat, 28 Jan 2023 15:29:22 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 280
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hashe49323565051e208f7cbd172dce8c355 036e42fe97d04b991cb7f9b3bdd3ce34a0860216 d6aa3832c4fd9e9128138a2eab69963e705f2c1dd41e4b9446081b43b08260cf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5424
Cache-Control: max-age=95065
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 16:36:41 GMT
Etag: "63d40a42-118"
Expires: Sun, 29 Jan 2023 19:01:06 GMT
Last-Modified: Fri, 27 Jan 2023 17:30:42 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/py/jpg/py-buffalo-power-christmas.jpg | 54.230.245.92 | 200 OK | 48 kB |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/py/jpg/py-buffalo-power-christmas.jpg IP54.230.245.92:0
Hashf180d38e69d7394a650f6f75b937fa1a 3c7c0ba24b08b58f4c872cde9cbc158898e44e0b bf9f8fe4bdce7593cb39a8c217a013d089fd2cde780709c58921f5f2cd4611a2
GET /media/images/slots/small/py/jpg/py-buffalo-power-christmas.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
last-modified: Wed, 17 Nov 2021 08:43:16 GMT
content-encoding: gzip
date: Sat, 28 Jan 2023 01:19:04 GMT
etag: W/"bbf1-5d0f80881a99a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kn_MJWR9k8ekhvRBVJ2tXZi_kDbxauPewNc_POx3YXr8LauEJxEHLA==
age: 55057
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/image/cryptoroyalstars.jpg | 54.230.245.92 | 200 OK | 218 kB |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/image/cryptoroyalstars.jpg IP54.230.245.92:0
Size218 kB (217503 bytes) Hashd0550c3784aa63dbfdaa90554e6d8b0a e84d8d611b1f0611e67d1e58db7ca513228bc401 1b271ceaa3b5acd5d0ad05e71efb3879c4865ee277de7adfa5ca1c543a8c8473
GET /image/cryptoroyalstars.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 28 Jan 2023 05:59:42 GMT
pragma: public
cache-control: public, max-age=86400
expires: Sun, 28 Jan 2024 05:59:42 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ghZaXz3YIhAGU_6bqvzXUQgKAe6811Jgc-6q22JuJ-gZnq1w6_K8WQ==
age: 38218
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/wz/jpg/wz-9-lions.jpg | 54.230.245.92 | 200 OK | 50 kB |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/wz/jpg/wz-9-lions.jpg IP54.230.245.92:0
Hashd7864ea3b94aca8e152099a54ad679bf c005fc28c84823ec1325fd4678ce466505a2d47f 055a7c8cd1d9f85736128d164485a733f04c35b12b98e503cd53c0acf245f89e
GET /media/images/slots/small/wz/jpg/wz-9-lions.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
last-modified: Mon, 11 Mar 2019 13:59:11 GMT
content-encoding: gzip
date: Sat, 28 Jan 2023 06:40:11 GMT
etag: W/"b5aa-583d1fa258e10"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: azIrpwtWiDj3pPFFvq4S5NwoVOZgJKXZkpfMSHpFCHkDWOiEhh94tw==
age: 35790
X-Firefox-Spdy: h2
|
|
| www.royalstarscasino.com/static/images/banner_divider.png | 104.21.74.80 | 200 OK | 285 kB |
URL HTTP/2www.royalstarscasino.com/static/images/banner_divider.png IP104.21.74.80:0
Size285 kB (284937 bytes) Hash5f38dd7d5ded505f463144d1cdcb0a96 8fdf14bdf48d4189a3bab2b7e3f30a99702e32ef c780c12e67e62cdce23a3f1a8aa2ec2ae4ec19608f525f5fce277147d02b03e4
GET /static/images/banner_divider.png HTTP/1.1
Host: www.royalstarscasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/en/
Cookie: __cf_bm=pjiv4YJh8cgUov57qwQ9YxK4AX784ONyr144EZfCJj0-1674923798-0-ATYk28zR+PWkengzGj0MwXp4KlBwlyXqtrq+SkwJKDDpYJG0NOd28qf8vJFrl8T+xtM5cpXQxiijAMnb3gRMFPk=; __cfruid=28d0a711019e7a68153899146aab2afdd5f9b549-1674923798; _ga_HKHYWC89TR=GS1.1.1674923802.1.0.1674923802.0.0.0; _ga=GA1.2.482374338.1674923802; _gid=GA1.2.2107604214.1674923802; x_anon=5c70e2a1eaa89ce8ae1b5c6f54cdb9dc67e330929626526621b01b1781677424587297037834fd0984e62fb88e40278e0652962b506faf2a023a10c6710cacc2; x_lang=en_GB; _gat=1; TawkConnectionTime=1674923803936; twk_idm_key=Qs9Z3pzbtyboQswDoHfRj
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:40 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
last-modified: Thu, 19 Jan 2023 10:33:05 GMT
cf-cache-status: HIT
age: 5153
expires: Sat, 28 Jan 2023 20:36:40 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 790b25f9a89db506-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.royalstarscasino.com/static/css/app.05c229cc85dd203f95fa06ba0ccaa6b9.css | 104.21.74.80 | 200 OK | 0 B |
URL HTTP/2www.royalstarscasino.com/static/css/app.05c229cc85dd203f95fa06ba0ccaa6b9.css IP104.21.74.80:0
GET /static/css/app.05c229cc85dd203f95fa06ba0ccaa6b9.css HTTP/1.1
Host: www.royalstarscasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Cookie: __cf_bm=pjiv4YJh8cgUov57qwQ9YxK4AX784ONyr144EZfCJj0-1674923798-0-ATYk28zR+PWkengzGj0MwXp4KlBwlyXqtrq+SkwJKDDpYJG0NOd28qf8vJFrl8T+xtM5cpXQxiijAMnb3gRMFPk=; __cfruid=28d0a711019e7a68153899146aab2afdd5f9b549-1674923798
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:38 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=199612
etag: W/"30bbc-5f29b754b33e3"
last-modified: Thu, 19 Jan 2023 10:33:05 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1044
expires: Sat, 28 Jan 2023 20:36:38 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 790b25eabb49b506-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-vendors.js | 104.22.24.131 | 200 OK | 0 B |
URL HTTP/2embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-vendors.js IP104.22.24.131:0
GET /_s/v4/app/63b77dcd282/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.royalstarscasino.com
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:39 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"70dac54eca3bb2143032bc4db3237623"
age: 1570051
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 790b25f568edb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/p0/jpg/p0-big-bass-bonanza.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/p0/jpg/p0-big-bass-bonanza.jpg IP54.230.245.92:0
GET /media/images/slots/small/p0/jpg/p0-big-bass-bonanza.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
last-modified: Tue, 08 Dec 2020 08:43:30 GMT
content-encoding: gzip
date: Sat, 28 Jan 2023 05:50:51 GMT
etag: W/"8392-5b5efefe75f1c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4VANb2qmX5R7USooCM3QWNYirSgJVy8IfdpJ4ckZHq0oSRwsQpd5vg==
age: 38750
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/gv/jpg/gv-indi.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/gv/jpg/gv-indi.jpg IP54.230.245.92:0
GET /media/images/slots/small/gv/jpg/gv-indi.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 28 Jan 2023 00:57:54 GMT
last-modified: Thu, 30 Sep 2021 11:35:47 GMT
etag: W/"a473-5cd34d91b3fb1"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tY0iHDy9gsWYpo4ovTyNhMHOUvCb2yEdsbbg7kqlv39FESvlJbjXjQ==
age: 56327
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/gs/jpg/gs-money-farm.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/gs/jpg/gs-money-farm.jpg IP54.230.245.92:0
GET /media/images/slots/small/gs/jpg/gs-money-farm.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
last-modified: Mon, 11 Mar 2019 13:59:11 GMT
content-encoding: gzip
date: Fri, 27 Jan 2023 20:44:55 GMT
etag: W/"9f91-583d1fa24bf08"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: be_TUFmuzFDwlZeI-UcouRTso3FWm0MQRm65yQ2KLkwRkCETU7i3zQ==
age: 71506
X-Firefox-Spdy: h2
|
|
| www.royalstarscasino.com/static/fontello/bogspa_iconset_duplicated.css | 104.21.74.80 | 200 OK | 0 B |
URL HTTP/2www.royalstarscasino.com/static/fontello/bogspa_iconset_duplicated.css IP104.21.74.80:0
GET /static/fontello/bogspa_iconset_duplicated.css HTTP/1.1
Host: www.royalstarscasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Cookie: __cf_bm=pjiv4YJh8cgUov57qwQ9YxK4AX784ONyr144EZfCJj0-1674923798-0-ATYk28zR+PWkengzGj0MwXp4KlBwlyXqtrq+SkwJKDDpYJG0NOd28qf8vJFrl8T+xtM5cpXQxiijAMnb3gRMFPk=; __cfruid=28d0a711019e7a68153899146aab2afdd5f9b549-1674923798
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:38 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=3260
etag: W/"cbc-5f29b88b7825a"
last-modified: Thu, 19 Jan 2023 10:38:31 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1044
expires: Sat, 28 Jan 2023 20:36:38 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 790b25eabb46b506-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| 4c9186f0-c97c-4ff3-9bd5-1623db8db375.snippet.antillephone.com/apg-seal.js | 54.230.111.100 | 200 OK | 0 B |
URL HTTP/24c9186f0-c97c-4ff3-9bd5-1623db8db375.snippet.antillephone.com/apg-seal.js IP54.230.111.100:0
GET /apg-seal.js HTTP/1.1
Host: 4c9186f0-c97c-4ff3-9bd5-1623db8db375.snippet.antillephone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Sat, 28 Jan 2023 16:36:40 GMT
x-powered-by: Express
cache-control: max-age=300
etag: W/"c04-ZeVE1TTqMByH/AzsdY5Qco4aEqw"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 790b25f7ca018ff8-FRA
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XRYMSbMn09YiRAHQpN7ZFOKuysDJVkvutg27ZonCbJfPWMdDfg5vOQ==
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/pg/jpg/pg-jolly-roger-2.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/pg/jpg/pg-jolly-roger-2.jpg IP54.230.245.92:0
GET /media/images/slots/small/pg/jpg/pg-jolly-roger-2.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 28 Jan 2023 10:04:11 GMT
last-modified: Wed, 18 Aug 2021 08:53:04 GMT
etag: W/"8273-5c9d18ffd3d68"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CeRxY7c_laoiVIqtkR3UhzZGogZvqi8JexorCjGwpPq58Un39X1CRQ==
age: 23550
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/pg/jpg/pg-rise-of-olympus.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/pg/jpg/pg-rise-of-olympus.jpg IP54.230.245.92:0
GET /media/images/slots/small/pg/jpg/pg-rise-of-olympus.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 28 Jan 2023 06:27:18 GMT
last-modified: Thu, 17 Jan 2019 09:02:33 GMT
etag: W/"a165-57fa3a7b4e018"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZsFZCdtupJFrS21fqHhJfXk2AhojdovDNhEcMrxPnlnCc_yxvre-Ig==
age: 36563
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/wz/jpg/wz-jelly-reels.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/wz/jpg/wz-jelly-reels.jpg IP54.230.245.92:0
GET /media/images/slots/small/wz/jpg/wz-jelly-reels.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
last-modified: Wed, 27 Oct 2021 08:42:08 GMT
content-encoding: gzip
date: Sat, 28 Jan 2023 10:54:41 GMT
etag: W/"b0f1-5cf5191ccecad"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yURvDe7CV-ifYlicseCxv-z-eWPm_-syXqTQAEZAlHk0fwG6EWDJYA==
age: 20520
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/gs/jpg/gs-piggy-bjorn-2-winter-is-coming.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/gs/jpg/gs-piggy-bjorn-2-winter-is-coming.jpg IP54.230.245.92:0
GET /media/images/slots/small/gs/jpg/gs-piggy-bjorn-2-winter-is-coming.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 28 Jan 2023 08:27:40 GMT
last-modified: Mon, 19 Dec 2022 07:39:05 GMT
etag: W/"b5fa-5f02969fb187b"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yqAx1J2NaU-pZxKPgnQvX7GNe_AXxke-i9nx9j9TcLQWVP8JdCDcFQ==
age: 29341
X-Firefox-Spdy: h2
|
|
| www.royalstarscasino.com/static/js/BOG_tawkto.js | 104.21.74.80 | 200 OK | 0 B |
URL HTTP/2www.royalstarscasino.com/static/js/BOG_tawkto.js IP104.21.74.80:0
GET /static/js/BOG_tawkto.js HTTP/1.1
Host: www.royalstarscasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/en/
Cookie: __cf_bm=pjiv4YJh8cgUov57qwQ9YxK4AX784ONyr144EZfCJj0-1674923798-0-ATYk28zR+PWkengzGj0MwXp4KlBwlyXqtrq+SkwJKDDpYJG0NOd28qf8vJFrl8T+xtM5cpXQxiijAMnb3gRMFPk=; __cfruid=28d0a711019e7a68153899146aab2afdd5f9b549-1674923798; _ga_HKHYWC89TR=GS1.1.1674923802.1.1.1674923804.0.0.0; _ga=GA1.2.482374338.1674923802; _gid=GA1.2.2107604214.1674923802; x_anon=5c70e2a1eaa89ce8ae1b5c6f54cdb9dc67e330929626526621b01b1781677424587297037834fd0984e62fb88e40278e0652962b506faf2a023a10c6710cacc2; x_lang=en_GB; _gat=1; TawkConnectionTime=0; twk_idm_key=Qs9Z3pzbtyboQswDoHfRj; twk_uuid_634669bb54f06e12d899b796=%7B%22uuid%22%3A%221.AGFNC3x0LCQP9oIHCQRy9AGrLaBfUOEknLeRFWqxa0vIcfQpzQB5CMBmowDfkh1t8G3Nbdukz7E4fD825z62JlQuaN8vsMzMbqLeQ3b4twmxpBbEyng35TxoA9Od023e%22%2C%22version%22%3A3%2C%22domain%22%3A%22royalstarscasino.com%22%2C%22ts%22%3A1674923804775%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:42 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=6494
etag: W/"195e-5ead13ed77f55"
last-modified: Wed, 12 Oct 2022 07:21:46 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1043
expires: Sat, 28 Jan 2023 20:36:42 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 790b2606b852b506-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/p0/jpg/p0-sweet-powernudge.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/p0/jpg/p0-sweet-powernudge.jpg IP54.230.245.92:0
GET /media/images/slots/small/p0/jpg/p0-sweet-powernudge.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
last-modified: Wed, 14 Dec 2022 09:50:51 GMT
content-encoding: gzip
date: Sat, 28 Jan 2023 01:22:36 GMT
etag: W/"aa56-5efc6abf8505e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GSZXOwC3O2AVrsIcrvUeEZnNlEhSpfV011G5D0rz8RKV4mqUu-dftw==
age: 54845
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/gs/jpg/gs-nefertitis-nile.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/gs/jpg/gs-nefertitis-nile.jpg IP54.230.245.92:0
GET /media/images/slots/small/gs/jpg/gs-nefertitis-nile.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
last-modified: Wed, 18 Aug 2021 08:52:55 GMT
content-encoding: gzip
date: Sat, 28 Jan 2023 06:58:27 GMT
etag: W/"d69e-5c9d18f74ef7c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ny-UqJWdeAZlNT_4euS1k_fmRoTTeO7rSwscuBVWhc1Eu6PGFH_2iw==
age: 34694
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/pg/jpg/pg-cash-a-cabana.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/pg/jpg/pg-cash-a-cabana.jpg IP54.230.245.92:0
GET /media/images/slots/small/pg/jpg/pg-cash-a-cabana.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
last-modified: Wed, 04 Jan 2023 13:57:32 GMT
content-encoding: gzip
date: Sat, 28 Jan 2023 05:38:02 GMT
etag: W/"c7b0-5f17090dea03c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NgFJ1KTDdT5lHvcKR-InPLT6ptL1-VamQ6YJTksyOA9Q45D1xup9eA==
age: 39519
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/p0/jpg/p0-buffalo-king-megaways.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/p0/jpg/p0-buffalo-king-megaways.jpg IP54.230.245.92:0
GET /media/images/slots/small/p0/jpg/p0-buffalo-king-megaways.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 28 Jan 2023 07:26:28 GMT
last-modified: Wed, 28 Apr 2021 11:21:06 GMT
etag: W/"cf5a-5c106932a7c40"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: L6PlRmttqtzQutoqbpkBPJGAJ533WOyFviZAHA-nysKCnkcP7aOmEg==
age: 33013
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/i5/jpg/i5-electro-reels.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/i5/jpg/i5-electro-reels.jpg IP54.230.245.92:0
GET /media/images/slots/small/i5/jpg/i5-electro-reels.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
last-modified: Tue, 15 Mar 2022 08:31:58 GMT
content-encoding: gzip
date: Sat, 28 Jan 2023 08:18:19 GMT
etag: W/"10580-5da3da15cf6da"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mW5vH4u8YbUfUimboH88yQli7zxR2_-J6GcXhe6Lj_TYv1-mjpMr8Q==
age: 29902
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/es/jpg/es-first-person-dream-catcher.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/es/jpg/es-first-person-dream-catcher.jpg IP54.230.245.92:0
GET /media/images/slots/small/es/jpg/es-first-person-dream-catcher.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
last-modified: Mon, 04 Oct 2021 10:48:28 GMT
content-encoding: gzip
date: Sat, 28 Jan 2023 06:23:23 GMT
etag: W/"864d-5cd84a7392c04"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LYPUCFbdVl7IW6VTeS3PKUxdzWEhqMMq6U41lNDIfnxQc9i8-OChzA==
age: 36798
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/pu/jpg/pu-razor-shark.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/pu/jpg/pu-razor-shark.jpg IP54.230.245.92:0
GET /media/images/slots/small/pu/jpg/pu-razor-shark.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
last-modified: Tue, 17 Aug 2021 11:17:04 GMT
content-encoding: gzip
date: Sat, 28 Jan 2023 05:53:52 GMT
etag: W/"8b98-5c9bf751a14e8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5W6A1QZF4cb8-kioAFGZ_iMyqMf6xMiXWXL51Ea0czzU0pdc7SuxIw==
age: 38569
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-vendor.js | 104.22.24.131 | 200 OK | 0 B |
URL HTTP/2embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-vendor.js IP104.22.24.131:0
GET /_s/v4/app/63b77dcd282/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.royalstarscasino.com
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:39 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
age: 1570051
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 790b25f568ebb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-main.js | 104.22.24.131 | 200 OK | 0 B |
URL HTTP/2embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-main.js IP104.22.24.131:0
GET /_s/v4/app/63b77dcd282/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.royalstarscasino.com
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:39 GMT
content-type: application/javascript
age: 811482
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 790b25f568e9b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Exo:wght@400;500;600;700;800&display=swap | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Exo:wght@400;500;600;700;800&display=swap IP142.250.74.106:0
GET /css2?family=Exo:wght@400;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 28 Jan 2023 16:36:39 GMT
date: Sat, 28 Jan 2023 16:36:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/image/winningbig2.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/image/winningbig2.jpg IP54.230.245.92:0
GET /image/winningbig2.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 28 Jan 2023 02:16:57 GMT
pragma: public
cache-control: public, max-age=86400
expires: Sun, 28 Jan 2024 02:16:57 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bTBRm8cK_m_EVaQLN79ooQLewxXCekk5eKdCnzvsxQjY_S_LWoooCQ==
age: 51583
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/gs/jpg/gs-aladdins-quest.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/gs/jpg/gs-aladdins-quest.jpg IP54.230.245.92:0
GET /media/images/slots/small/gs/jpg/gs-aladdins-quest.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
last-modified: Mon, 03 Oct 2022 09:59:00 GMT
content-encoding: gzip
date: Sat, 28 Jan 2023 06:23:23 GMT
etag: W/"fe93-5ea1e64920720"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aefVATrw7xvjaD6uDum7pY4QufYCHNV5-Ck-vEyU7_FIbxYQpaiQNQ==
age: 36798
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/rk/jpg/rk-super-15-stars.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/rk/jpg/rk-super-15-stars.jpg IP54.230.245.92:0
GET /media/images/slots/small/rk/jpg/rk-super-15-stars.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 28 Jan 2023 06:40:12 GMT
last-modified: Tue, 20 Jul 2021 10:22:03 GMT
etag: W/"b4ba-5c78b6cd38857"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HDudRXCpf4FyRarINffHgcpJF6FCaTCMxHvTwtGspKishkkC5kCR_Q==
age: 35789
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/py/jpg/py-pirate-sharky.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/py/jpg/py-pirate-sharky.jpg IP54.230.245.92:0
GET /media/images/slots/small/py/jpg/py-pirate-sharky.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 28 Jan 2023 01:38:13 GMT
last-modified: Mon, 24 Oct 2022 09:48:35 GMT
etag: W/"beb5-5ebc4b1fb2074"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: INswUbdyubeIobrE8lnWfpMT0aIeE06Q54ZjkxS8-As9lAsxoOuI9w==
age: 53908
X-Firefox-Spdy: h2
|
|
| cutt.ly/G2QMQF7 | 104.22.1.232 | 301 Moved Permanently | 0 B |
IP104.22.1.232:0
GET /G2QMQF7 HTTP/1.1
Host: cutt.ly
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Sat, 28 Jan 2023 16:36:37 GMT
content-type: text/html; charset=UTF-8
location: http://www.royalstarscasino.com
set-cookie: PHPSESSID=4cii2ep17rdrmeb6q800i44rsa; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 790b25e78ad50afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.royalstarscasino.com/static/images/logo_horizontal.svg | 104.21.74.80 | 200 OK | 0 B |
URL HTTP/2www.royalstarscasino.com/static/images/logo_horizontal.svg IP104.21.74.80:0
GET /static/images/logo_horizontal.svg HTTP/1.1
Host: www.royalstarscasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/en/
Cookie: __cf_bm=pjiv4YJh8cgUov57qwQ9YxK4AX784ONyr144EZfCJj0-1674923798-0-ATYk28zR+PWkengzGj0MwXp4KlBwlyXqtrq+SkwJKDDpYJG0NOd28qf8vJFrl8T+xtM5cpXQxiijAMnb3gRMFPk=; __cfruid=28d0a711019e7a68153899146aab2afdd5f9b549-1674923798; _ga_HKHYWC89TR=GS1.1.1674923802.1.0.1674923802.0.0.0; _ga=GA1.2.482374338.1674923802; _gid=GA1.2.2107604214.1674923802; x_anon=5c70e2a1eaa89ce8ae1b5c6f54cdb9dc67e330929626526621b01b1781677424587297037834fd0984e62fb88e40278e0652962b506faf2a023a10c6710cacc2; x_lang=en_GB; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:39 GMT
content-type: image/svg+xml
last-modified: Wed, 12 Oct 2022 07:18:38 GMT
etag: W/"11e9-5ead133a0e35b"
cf-cache-status: HIT
age: 1042
expires: Sat, 28 Jan 2023 20:36:39 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 790b25f4282cb506-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/p0/jpg/p0-bigger-bass-bonanza.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/p0/jpg/p0-bigger-bass-bonanza.jpg IP54.230.245.92:0
GET /media/images/slots/small/p0/jpg/p0-bigger-bass-bonanza.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
last-modified: Wed, 15 Sep 2021 06:53:12 GMT
content-encoding: gzip
date: Sat, 28 Jan 2023 07:08:27 GMT
etag: W/"10002-5cc0326d63084"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IT5tF5jJCUr5wlhDiMUSMwxVEhhgtnPsZNHGu8g0Wwi4g4W-sCompA==
age: 34094
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/gv/jpg/gv-lucky-lions-wild-life.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/gv/jpg/gv-lucky-lions-wild-life.jpg IP54.230.245.92:0
GET /media/images/slots/small/gv/jpg/gv-lucky-lions-wild-life.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 28 Jan 2023 08:18:57 GMT
last-modified: Thu, 30 Sep 2021 11:35:47 GMT
etag: W/"bb88-5cd34d91b4b69"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2lkE0_Ir9vfHdRGKV76JrO73u_g2nLeIWzqWl5FcHWNwNCCrw9l7MA==
age: 29864
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-common.js | 104.22.24.131 | 200 OK | 0 B |
URL HTTP/2embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-common.js IP104.22.24.131:0
GET /_s/v4/app/63b77dcd282/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.royalstarscasino.com
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:39 GMT
content-type: application/javascript
age: 811482
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"385105148a50079bafff97e9c9476109"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 790b25f568f0b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/qs/jpg/qs-sakura-fortune-2.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/qs/jpg/qs-sakura-fortune-2.jpg IP54.230.245.92:0
GET /media/images/slots/small/qs/jpg/qs-sakura-fortune-2.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 28 Jan 2023 06:40:12 GMT
last-modified: Mon, 11 Apr 2022 11:26:41 GMT
etag: W/"adb7-5dc5f37e1ba57"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VEYfMS-JPTwcrI973qGktIzfyfEYqM8uF77lIPkXa6NxoWRhytv4Jg==
age: 35789
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/nm/jpg/nm-hospital.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/nm/jpg/nm-hospital.jpg IP54.230.245.92:0
GET /media/images/slots/small/nm/jpg/nm-hospital.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
last-modified: Thu, 09 Jun 2022 10:38:44 GMT
content-encoding: gzip
date: Sat, 28 Jan 2023 16:36:41 GMT
etag: W/"85fe-5e1016d0ab167"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: I8UUuLMtn5bBn72hSvpxVGneqUzxnvcPr4U6WPs8Cb3Gu_bDTmoj1g==
age: 32073
X-Firefox-Spdy: h2
|
|
| www.royalstarscasino.com/static/js/manifest.2ae2e69a05c33dfc65f8.js | 104.21.74.80 | 200 OK | 0 B |
URL HTTP/2www.royalstarscasino.com/static/js/manifest.2ae2e69a05c33dfc65f8.js IP104.21.74.80:0
GET /static/js/manifest.2ae2e69a05c33dfc65f8.js HTTP/1.1
Host: www.royalstarscasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Cookie: __cf_bm=pjiv4YJh8cgUov57qwQ9YxK4AX784ONyr144EZfCJj0-1674923798-0-ATYk28zR+PWkengzGj0MwXp4KlBwlyXqtrq+SkwJKDDpYJG0NOd28qf8vJFrl8T+xtM5cpXQxiijAMnb3gRMFPk=; __cfruid=28d0a711019e7a68153899146aab2afdd5f9b549-1674923798
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:38 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"31f-5f0545bc11397"
last-modified: Wed, 21 Dec 2022 10:53:10 GMT
cf-cache-status: HIT
age: 1044
expires: Sat, 28 Jan 2023 20:36:38 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 790b25eabb4ab506-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-runtime.js | 104.22.24.131 | 200 OK | 0 B |
URL HTTP/2embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-runtime.js IP104.22.24.131:0
GET /_s/v4/app/63b77dcd282/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.royalstarscasino.com
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:39 GMT
content-type: application/javascript
age: 811482
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"de21d01e9f8b6cc35ea67267d0ba80ec"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 790b25f578f6b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/image/Royalstars%20-%201251x251.png | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/image/Royalstars%20-%201251x251.png IP54.230.245.92:0
GET /image/Royalstars%20-%201251x251.png HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
server: nginx
date: Sat, 28 Jan 2023 02:36:43 GMT
pragma: public
cache-control: public, max-age=86400
expires: Sun, 28 Jan 2024 02:36:43 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gYBATb2UbTjTcCOEqUZ4xZsbAzFxeyEqZBE8_bYJCL3TD1QCOh3sYg==
age: 50397
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/gv/jpg/gv-psycho-candies.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/gv/jpg/gv-psycho-candies.jpg IP54.230.245.92:0
GET /media/images/slots/small/gv/jpg/gv-psycho-candies.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
date: Sat, 28 Jan 2023 05:21:41 GMT
last-modified: Wed, 25 Aug 2021 09:59:19 GMT
etag: W/"981d-5ca5f4dd10eef"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lwNyOnWlyrNncu-PPN_eZJxh8JTmhAa-gSWyt8JjzpmIp9s9WYO2KQ==
age: 40500
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-app.js | 104.22.24.131 | 200 OK | 0 B |
URL HTTP/2embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-app.js IP104.22.24.131:0
GET /_s/v4/app/63b77dcd282/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.royalstarscasino.com
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:39 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
age: 1570051
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 790b25f578f8b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| spa.royalstarscasino.com/api/bog/v2_1_2/anon | 104.21.74.80 | 200 OK | 0 B |
URL HTTP/2spa.royalstarscasino.com/api/bog/v2_1_2/anon IP104.21.74.80:0
OPTIONS /api/bog/v2_1_2/anon HTTP/1.1
Host: spa.royalstarscasino.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: api-key,x-language
Referer: https://www.royalstarscasino.com/
Origin: https://www.royalstarscasino.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 16:36:38 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://www.royalstarscasino.com
access-control-allow-methods: POST,GET,OPTIONS,PUT,DELETE,HEAD
access-control-allow-headers: Content-Type,Accept,api-key,x-anon-session,x-language,x-player-session,x-client-ip
access-control-expose-headers: x-game-count
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DR%2B%2FnCWEek4fxZJGsDMzU1aO%2FF476KE%2FmnNOzZ%2BlO8DOZTDXiyYbaj1EFshDBJaEFnfpz%2B0EzPk2wgNTVO5yt%2F6%2FV02uxD29DDnSHZdGLKxTxA3CC79E%2BmA%2F6EV%2BGM8kQKn2ORZi2ZSDj30%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790b25eeaa0a0b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/gs/jpg/gs-lunar-rabbit.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/gs/jpg/gs-lunar-rabbit.jpg IP54.230.245.92:0
GET /media/images/slots/small/gs/jpg/gs-lunar-rabbit.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
last-modified: Tue, 17 Jan 2023 13:44:36 GMT
content-encoding: gzip
date: Sat, 28 Jan 2023 06:51:47 GMT
etag: W/"a201-5f275e68d1091"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: P_us7iHrg82CJ9CjaoxhYwL5mXyAZ-2bHUpllB3V7Xskd69r4p7m5Q==
age: 35094
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/p0/jpg/p0-sweet-bonanza.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/p0/jpg/p0-sweet-bonanza.jpg IP54.230.245.92:0
GET /media/images/slots/small/p0/jpg/p0-sweet-bonanza.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
last-modified: Wed, 08 Jul 2020 13:17:20 GMT
content-encoding: gzip
date: Sat, 28 Jan 2023 07:05:43 GMT
etag: W/"d05d-5a9eded80c1ec"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qLDEGO1GKRqwwBIfIbeKpRCMTxM74D3vD6G5adRImq8BbgpTSkS9_w==
age: 34258
X-Firefox-Spdy: h2
|
|
| d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/p5/jpg/p5-pride-of-persia-empire-treasures.jpg | 54.230.245.92 | 200 OK | 0 B |
URL HTTP/2d1i1wfn7hj3mva.cloudfront.net/media/images/slots/small/p5/jpg/p5-pride-of-persia-empire-treasures.jpg IP54.230.245.92:0
GET /media/images/slots/small/p5/jpg/p5-pride-of-persia-empire-treasures.jpg HTTP/1.1
Host: d1i1wfn7hj3mva.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.royalstarscasino.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
last-modified: Tue, 07 Dec 2021 09:51:40 GMT
content-encoding: gzip
date: Sat, 28 Jan 2023 07:42:09 GMT
etag: W/"acde-5d28b51f68303"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mJJlJpfkxdg4Fk2wtHCtbivV54Vt6Ekr4CGTWNjYlOfQUNzeLkbm3g==
age: 32072
X-Firefox-Spdy: h2
|
|