r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7573
Expires: Fri, 09 Dec 2022 20:33:31 GMT
Date: Fri, 09 Dec 2022 18:27:18 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6056
Expires: Fri, 09 Dec 2022 20:08:14 GMT
Date: Fri, 09 Dec 2022 18:27:18 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 2EXut2W3wvN4Ez8cIwTI7Q0qvy8uiMjhjecCUs7EZoNvH8/vFW/FYwZBCAYLDXGSsdtqos2y9cq0XNe/fGDIFg==
x-amz-request-id: PT6AKF5CVD4SGX9Z
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 18:00:59 GMT
age: 1579
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d42836dc0e2e2d4a7a0e9a567283f604
fb3997901684cdb8c58a011cdeee33e5301a68f0
d0bc935f0d67f7c5aad533fc623f56a91c4a91c0fb6637a92aadb064117e6116
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D0BC935F0D67F7C5AAD533FC623F56A91C4A91C0FB6637A92AADB064117E6116"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4007
Expires: Fri, 09 Dec 2022 19:34:05 GMT
Date: Fri, 09 Dec 2022 18:27:18 GMT
Connection: keep-alive
mtsn1tidore.net/
200 OK 329 B IP
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash ecbcb8bae64098de3e587487b474f8b8
e275409fb40ea27c3826af493f70faf147d0f995
2597a3f2418586d8a9fb0764743a84486ba066c6af3ff194922fb6c65a783688
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: mtsn1tidore.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 09 Dec 2022 18:27:18 GMT
content-type: text/html
last-modified: Wed, 12 Jan 2022 17:20:45 GMT
etag: W/"61df0ded-1ad"
content-encoding: gzip
transfer-encoding: chunked
getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
200 OK 34 kB URL HTTP/2 getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 6067103fc3ea702ce022f3bff010bce1
b81871405952432aeb1b439446de784abf717940
3ea6d6cc6c2f33ff4588be3c4b9a5b50ba6c2a98f84a82d6adeb96a054499459
GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 HTTP/1.1
Host: getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Miss from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: Gl1HTStzLdWLAJp-bAt77GoqoYYTHOvUhn-isx_miKtoObxuj8X4wg==
content-encoding: gzip
via: 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 google
content-length: 34171
date: Fri, 09 Dec 2022 18:17:37 GMT
age: 581
content-type: application/json
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 18:27:19 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7489
Expires: Fri, 09 Dec 2022 20:32:08 GMT
Date: Fri, 09 Dec 2022 18:27:19 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 17:33:14 GMT
content-type: application/json
age: 3245
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
200 OK 28 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP
File type ASCII text, with very long lines (65451)
Hash 4b5f47439b640180cc3450f7de05d0d8
5a0dc9bcab80ddc409dd35fcb00a88fe6846fee2
1f85e8b327f42c17c025d69849914068536d9aa95412fe473ae90ffb2f4ebd82
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://mtsn1tidore.net
Connection: keep-alive
Referer: http://mtsn1tidore.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 18:27:19 GMT
content-type: application/javascript; charset=utf-8
content-length: 27958
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb09ed3-15d84"
last-modified: Mon, 04 May 2020 23:01:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 16054143
expires: Wed, 29 Nov 2023 18:27:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1M%2FsjH404XZSTjgxCpEYZkl%2BGi5rL19boucuPCEgEFL99KhLNViF%2FInJu6%2Fy2lxWv4TLKmO%2FDy0F%2Bt5N7d3oWTgcSLASxbwhBwfaIy9Uq9pFRdOmSckuXCjuQ%2FU4QK8QSOsE7stK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 776fcb4cbc87b518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 814abe752aa0a8c5f21a50a04a14fdb3
0b5db09b5ac30948dac5e0dd2dc8b171e6a8851b
d820c9fe909a20b7b11a28c26508cb8a536aae64c6c7094a0d8f9b0e3e705c56
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "D820C9FE909A20B7B11A28C26508CB8A536AAE64C6C7094A0D8F9B0E3E705C56"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5957
Expires: Fri, 09 Dec 2022 20:06:36 GMT
Date: Fri, 09 Dec 2022 18:27:19 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 73ce9e8b1d0bf68e58d9331578dfe852
3f3acbba803a5a7f9bbc27cb6aea618dc2a04638
f134d48e874d84cf16b84b6ad0be89825446aac4884ade5ddee70b5bcb14a05c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3361
Cache-Control: max-age=87840
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:27:19 GMT
Etag: "63922506-1d7"
Expires: Sat, 10 Dec 2022 18:51:19 GMT
Last-Modified: Thu, 08 Dec 2022 17:55:18 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3296
Cache-Control: max-age=142472
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:27:19 GMT
Etag: "6392faaf-1d7"
Expires: Sun, 11 Dec 2022 10:01:51 GMT
Last-Modified: Fri, 09 Dec 2022 09:06:55 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
mtsn1tidore.net/favicon.ico
200 OK 329 B URL HTTP/1.1 mtsn1tidore.net/favicon.ico
IP
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash ecbcb8bae64098de3e587487b474f8b8
e275409fb40ea27c3826af493f70faf147d0f995
2597a3f2418586d8a9fb0764743a84486ba066c6af3ff194922fb6c65a783688
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: mtsn1tidore.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mtsn1tidore.net/
HTTP/1.1 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Fri, 09 Dec 2022 18:27:19 GMT
content-type: text/html
last-modified: Wed, 12 Jan 2022 17:20:45 GMT
etag: W/"61df0ded-1ad"
content-encoding: gzip
transfer-encoding: chunked
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 18:07:55 GMT
age: 1164
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
detectportal.firefox.com/success.txt?ipv4
200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Fri, 09 Dec 2022 13:05:38 GMT
Age: 19301
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
200 OK 8 B URL HTTP/1.1 shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
IP
Hash 29fc57841962e407cb50c1be60284bf7
ce968a77e2996da5eee8925182318f171ccdce47
ae7e7075247dcfad763f1e131aeac3d2e756bb03d48b0d315a50c69636e5dc8b
POST /downloads?client=Firefox&appver=96.0a&pver=2.2 HTTP/1.1
Host: shavar.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 773
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Date: Fri, 09 Dec 2022 18:27:19 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 8
Connection: Close
domaincntrol.com/?orighost=http://mtsn1tidore.net/
200 OK 28 B URL HTTP/2 domaincntrol.com/?orighost=http://mtsn1tidore.net/
IP
File type ASCII text, with no line terminators
Hash 1d22b33aef5bc2f7f01b73efe52fe027
226276842b4522d835668cedbf87a10fafb7b0d2
1aa35b73990c274919c677e335641003dba3fe543ece55f1eca9856dfa4588ac
GET /?orighost=http://mtsn1tidore.net/ HTTP/1.1
Host: domaincntrol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://mtsn1tidore.net
Connection: keep-alive
Referer: http://mtsn1tidore.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 18:27:19 GMT
content-type: text/javascript;charset=UTF-8
content-length: 28
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PZCFNYxGfkIrH2%2BJLd%2BWNkn8y3O3o31QCPvmEq4SOy%2FtR9c8OGigVDs%2BCoSCW2IyWCAC%2Fz4VIh%2BVvsPCcZ1sRFTDVctgIAOqheptm65qXP77Vp4teRlLnM8%2BYlqwug09Xlw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 776fcb4de8a90b51-OSL
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: M1/XKdbLlXFjcccBdFIEzA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: v0wCLLrnarvuDBCB5GYcVWHNtoI=
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221670607298368%22
200 OK 22 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221670607298368%22
IP
File type JSON data\012- , ASCII text, with very long lines (21675), with no line terminators
Hash f55ce4ac8320d6798f35462ca06bbe1c
a0270fb34c8eb31fc89effd0a4ee221ff9a8ca2d
92728651e503e54aa690035f112c7d80c3ee53749b3d48968f939035b474049e
GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221670607298368%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 21675
via: 1.1 google
date: Fri, 09 Dec 2022 17:36:59 GMT
last-modified: Fri, 09 Dec 2022 17:34:58 GMT
content-type: application/json
age: 3020
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1670524641328&_since=%221666204638208%22
200 OK 8.3 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1670524641328&_since=%221666204638208%22
IP
File type JSON data\012- , ASCII text, with very long lines (8322), with no line terminators
Hash 7124adf8e0faebbc77b775185aaf3b33
aacce2c95e9e0c77a0d356fd948b3298937ef6c3
eec0a6dea45d80964aa28968deac9c4cc4190f7aeb28205a8448304499cc9c88
GET /v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1670524641328&_since=%221666204638208%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 8322
via: 1.1 google
date: Fri, 09 Dec 2022 17:43:13 GMT
age: 2647
last-modified: Thu, 08 Dec 2022 18:37:21 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: TvL/6JWiIyFNsjHW7K8+V2z656uaTjnMWlMyVnCSRJVQpe+hxk3aXvBFd5J23okbhwT4dbguKoCsQ6xaUdZmNw==
x-amz-request-id: GDDZ7XVPERK22FFE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 17:48:25 GMT
age: 2335
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1670599743978&_since=%221666279968541%22
200 OK 54 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1670599743978&_since=%221666279968541%22
IP
File type ASCII text, with very long lines (54193), with no line terminators
Hash 5a98098b5b566c76b9553c78c05f13c5
5e0979e26203a417536fffa1c89e8cb432c291a7
b15e91c5910ce29f36e280f007e5397e1f0d893e55f0cd0fc1a81d8615850cdc
GET /v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1670599743978&_since=%221666279968541%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 54193
via: 1.1 google
date: Fri, 09 Dec 2022 17:34:01 GMT
age: 3199
last-modified: Fri, 09 Dec 2022 15:29:04 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22
200 OK 1.7 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22
IP
File type JSON data\012- , ASCII text, with very long lines (1719), with no line terminators
Hash a4052b022cb93eb55aabe7cb67679df3
901bc58019c1c287782342cfcb9ad01ba4fa8657
959141ba846caac38284518837678def1e8c7d372a3b946a6c3e85ae5bfed470
GET /v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1719
via: 1.1 google
date: Fri, 09 Dec 2022 17:38:51 GMT
age: 2909
last-modified: Thu, 08 Dec 2022 16:36:44 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1669904594434&_since=%221657747510534%22
200 OK 1.7 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1669904594434&_since=%221657747510534%22
IP
File type JSON data\012- , ASCII text, with very long lines (1681), with no line terminators
Hash 2340af2b6492b7d56b14a1d3276a7140
2e9ac7d9cf1dda477e24841874ceac7258c9e0b8
a49e7182487992abba172f758b9ae8129931086af51f3caa29731d29d4b7ba40
GET /v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1669904594434&_since=%221657747510534%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1681
via: 1.1 google
date: Fri, 09 Dec 2022 17:47:08 GMT
age: 2412
last-modified: Thu, 08 Dec 2022 16:36:42 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3054
Expires: Fri, 09 Dec 2022 19:18:14 GMT
Date: Fri, 09 Dec 2022 18:27:20 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3054
Expires: Fri, 09 Dec 2022 19:18:14 GMT
Date: Fri, 09 Dec 2022 18:27:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7Dp35PIr_WYUI1bBa21AvmCMEPi0d3jnhuS8eEk3Q3CXRcGWAnkD8g==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 16:56:53 GMT
age: 5427
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3054
Expires: Fri, 09 Dec 2022 19:18:14 GMT
Date: Fri, 09 Dec 2022 18:27:20 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3054
Expires: Fri, 09 Dec 2022 19:18:14 GMT
Date: Fri, 09 Dec 2022 18:27:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: N-zFZ8yeL7RrOZ5xfqvfBaE3zcXWecvr6Jd-93nKiUZlCXp2n2_Bgw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:41:46 GMT
age: 53134
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c94003641bb5a7595e7004f80f95d22
3446450df60d732f9021d5bfd5f5f7c6c870d9ec
4d782dbf94b2163e9bc18028cd0c1a391fdcfcb019f23c4c26ea0b44432039ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7801
x-amzn-requestid: cb8d5aab-409f-4b39-b498-b1ba84f34e06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFRNHX4oAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c07-7c6e3bfa3f81082b48f43fa9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8QHhEAFHTHd-5UqS1S5qwJj_h4WNfix2CgS4MO4zR_psrzgMP3SZ5g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 17:48:23 GMT
age: 2337
etag: "3446450df60d732f9021d5bfd5f5f7c6c870d9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 400d1465-ecbf-4d95-8aa8-4dce5dca0716
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctluwGo4oAMFhTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee991-6dba29ae7065d5347a1a420d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Lazl-stakC-31gMuQ2WzH9uFkIb0g7HaaM3xkwSFdFJMWKTaKqrBEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:07:07 GMT
age: 51613
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8546542f00ea29ef4df6ab8d3c7c2164
5c8ffe91490006a9890188b53f875568c2b6bd8f
7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H067kZXU_djWxbWO34bYMqa0xZ-WF9ntEBhZ-kV_TDoJFXQL_J1hqQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:34:27 GMT
age: 53573
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg
200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06514ce96ae21cb01f526a5febdcbeb4
ebb97e5b97f394e8c67098f55581d5329ce819a2
4099a2fb6ddc4feaa30f357a180d64aeb7c9fc73f115fc762d5fe5c221d2e89e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5169
x-amzn-requestid: 277a1b04-4e19-4313-8aac-5f9ab9076305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEdkFGrIAMFvHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb456-5b21edd57297665012d536cc;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Xi-bshsYa4LlKbJgAt0h-lPnB_5uQbqln5JGBRE8io2Fp1y41cS9xg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:08:48 GMT
age: 51512
etag: "ebb97e5b97f394e8c67098f55581d5329ce819a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22
200 OK 935 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22
IP
File type JSON data\012- , ASCII text, with very long lines (935), with no line terminators
Hash fc59df2a1ddb194b9927e1bd05da82a5
54ae083c87343de5c5082cd16f6e4ec8e45769bc
cb645a2b572db86fddd92d7b4f54c55f1cb6ecada044fff5b5aea30e7df875f4
GET /v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 935
via: 1.1 google
date: Fri, 09 Dec 2022 18:08:32 GMT
age: 1128
last-modified: Wed, 07 Dec 2022 15:06:39 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1670371273925&_since=%221666483264567%22
200 OK 54 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1670371273925&_since=%221666483264567%22
IP
File type JSON data\012- , ASCII text, with very long lines (53768), with no line terminators
Hash 420d2a8a87862ec8fb8678a2ec713b1b
ad55178f6765ac90ef6e073ba30d9d5508b6ce15
f923b4f7170196fa90968f69c3e8e8c18020e643dd6f9002817742cf6651ba8d
GET /v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1670371273925&_since=%221666483264567%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 53768
via: 1.1 google
date: Fri, 09 Dec 2022 18:09:16 GMT
age: 1084
last-modified: Wed, 07 Dec 2022 00:01:13 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258
200 OK 682 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258
IP
File type JSON data\012- , ASCII text, with very long lines (682), with no line terminators
Hash 730583ac85dd27656bad88150567d34a
c05375ce2016cc335fffbfc76974348032951545
07ef5576f95557ec9f756e4ddfba277e3308d897c86ad5bc9dcd6e8e7270fb26
GET /v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 682
via: 1.1 google
date: Fri, 09 Dec 2022 18:08:39 GMT
age: 1121
last-modified: Mon, 05 Dec 2022 16:36:54 GMT
etag: "1670258214122"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22
200 OK 1.5 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22
IP
File type JSON data\012- , ASCII text, with very long lines (1506), with no line terminators
Hash 53a3f7b3b704cfaf73db62670e538a5b
f92fbcd2c053cc26fe81474c19bfcf3fd94e901e
d5a8da9110e55a35fc8d1f47cd54e84ab99f26d25bd1a4325bdff8bfa76c0ac7
GET /v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1506
via: 1.1 google
date: Fri, 09 Dec 2022 17:39:34 GMT
age: 2866
last-modified: Mon, 05 Dec 2022 16:36:43 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ww2.mtsn1tidore.net/
200 OK 1.3 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (700)
Hash d6953ade36c69aa50bf4c21153e0ee57
ebebf12550000eb61a0ccc123ce534815175ad12
73d6a4e9d539a687756a0a6ebac6a658fd142ae217b38d5cd32782561060e4f2
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: ww2.mtsn1tidore.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mtsn1tidore.net/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
date: Fri, 09 Dec 2022 18:27:20 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding
x-powered-by: PHP/8.1.9
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_EP/fpr0o0g+7ha1G91NxiOWrjWui8p6x3ddaTgT9BbqdMhTYjgMju5eswpWYIjN/Ib3o+NkIaRy9SdSXSUAo4Q==
last-modified: Fri, 09 Dec 2022 18:27:20 GMT
x-cache-miss-from: parking-7887f445cc-d2qph
server: NginX
content-encoding: gzip
ww2.mtsn1tidore.net/search/tsc.php?200=NDY2ODMxNjA2&21=OTEuOTAuNDIuMTU0&681=MTY3MDYxMDQ0MDkxNTI0N2JlZjIwYTljYWIwODFhZWNhYmRmNGFlYzk3&crc=37432cfbe2d716700ae506dd77a41a7ec0f8366e&cv=1
200 OK 0 B URL HTTP/1.1 ww2.mtsn1tidore.net/search/tsc.php?200=NDY2ODMxNjA2&21=OTEuOTAuNDIuMTU0&681=MTY3MDYxMDQ0MDkxNTI0N2JlZjIwYTljYWIwODFhZWNhYmRmNGFlYzk3&crc=37432cfbe2d716700ae506dd77a41a7ec0f8366e&cv=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /search/tsc.php?200=NDY2ODMxNjA2&21=OTEuOTAuNDIuMTU0&681=MTY3MDYxMDQ0MDkxNTI0N2JlZjIwYTljYWIwODFhZWNhYmRmNGFlYzk3&crc=37432cfbe2d716700ae506dd77a41a7ec0f8366e&cv=1 HTTP/1.1
Host: ww2.mtsn1tidore.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww2.mtsn1tidore.net/
HTTP/1.1 200 OK
date: Fri, 09 Dec 2022 18:27:21 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.1.9
x-cache-miss-from: parking-7887f445cc-87z4x
server: NginX
ww2.mtsn1tidore.net/search/redirect.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DbB-vvmRvHRw_0&v=MjJjMWU1Mzk5ZmIyMjEwODA2OGM1YzllZTU3YzkwNjQJMQl3dzIubXRzbjF0aWRvcmUubmV0NjM5MzdlMDgwYzg4YzMuODc3Njk5MTUJd3cyLm10c24xdGlkb3JlLm5ldDYzOTM3ZTA4MGM4YzA1LjM0OTM4OTcyCTE2NzA2MTA0NDAJYWRfNjNfMA==&l=OAk5ZDYyM2VmNjQ1MjJhMzk5NzQxN2FmY2M5YTNjNzU0OQkwCTM1CTAJYTVmMmEwMTMzNTRjYTBlZDgyZDU1OTg5OGNkMDBhYTcJNDY2ODMxNjA2CW10c24xdGlkb3JlCTAJNjMJNgkyCTE2NzA2MTA0NDAJNC4xRS01CU4JMAkxCTE1MTIJMTIwNQk0NTQ2MTY2NjkJOTEuOTAuNDIuMTU0CTA%3D
302 Found 0 B URL HTTP/1.1 ww2.mtsn1tidore.net/search/redirect.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DbB-vvmRvHRw_0&v=MjJjMWU1Mzk5ZmIyMjEwODA2OGM1YzllZTU3YzkwNjQJMQl3dzIubXRzbjF0aWRvcmUubmV0NjM5MzdlMDgwYzg4YzMuODc3Njk5MTUJd3cyLm10c24xdGlkb3JlLm5ldDYzOTM3ZTA4MGM4YzA1LjM0OTM4OTcyCTE2NzA2MTA0NDAJYWRfNjNfMA==&l=OAk5ZDYyM2VmNjQ1MjJhMzk5NzQxN2FmY2M5YTNjNzU0OQkwCTM1CTAJYTVmMmEwMTMzNTRjYTBlZDgyZDU1OTg5OGNkMDBhYTcJNDY2ODMxNjA2CW10c24xdGlkb3JlCTAJNjMJNgkyCTE2NzA2MTA0NDAJNC4xRS01CU4JMAkxCTE1MTIJMTIwNQk0NTQ2MTY2NjkJOTEuOTAuNDIuMTU0CTA%3D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /search/redirect.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DbB-vvmRvHRw_0&v=MjJjMWU1Mzk5ZmIyMjEwODA2OGM1YzllZTU3YzkwNjQJMQl3dzIubXRzbjF0aWRvcmUubmV0NjM5MzdlMDgwYzg4YzMuODc3Njk5MTUJd3cyLm10c24xdGlkb3JlLm5ldDYzOTM3ZTA4MGM4YzA1LjM0OTM4OTcyCTE2NzA2MTA0NDAJYWRfNjNfMA==&l=OAk5ZDYyM2VmNjQ1MjJhMzk5NzQxN2FmY2M5YTNjNzU0OQkwCTM1CTAJYTVmMmEwMTMzNTRjYTBlZDgyZDU1OTg5OGNkMDBhYTcJNDY2ODMxNjA2CW10c24xdGlkb3JlCTAJNjMJNgkyCTE2NzA2MTA0NDAJNC4xRS01CU4JMAkxCTE1MTIJMTIwNQk0NTQ2MTY2NjkJOTEuOTAuNDIuMTU0CTA%3D HTTP/1.1
Host: ww2.mtsn1tidore.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww2.mtsn1tidore.net/
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
date: Fri, 09 Dec 2022 18:27:21 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.1.9
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
last-modified: Fri, 09 Dec 2022 18:27:21 GMT
location: /search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DbB-vvmRvHRw_0&v=MjJjMWU1Mzk5ZmIyMjEwODA2OGM1YzllZTU3YzkwNjQJMQl3dzIubXRzbjF0aWRvcmUubmV0NjM5MzdlMDgwYzg4YzMuODc3Njk5MTUJd3cyLm10c24xdGlkb3JlLm5ldDYzOTM3ZTA4MGM4YzA1LjM0OTM4OTcyCTE2NzA2MTA0NDAJYWRfNjNfMA==&l=OAk5ZDYyM2VmNjQ1MjJhMzk5NzQxN2FmY2M5YTNjNzU0OQkwCTM1CTAJYTVmMmEwMTMzNTRjYTBlZDgyZDU1OTg5OGNkMDBhYTcJNDY2ODMxNjA2CW10c24xdGlkb3JlCTAJNjMJNgkyCTE2NzA2MTA0NDAJNC4xRS01CU4JMAkxCTE1MTIJMTIwNQk0NTQ2MTY2NjkJOTEuOTAuNDIuMTU0CTA%3D
x-cache-miss-from: parking-7887f445cc-mflss
server: NginX
ww2.mtsn1tidore.net/search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DbB-vvmRvHRw_0&v=MjJjMWU1Mzk5ZmIyMjEwODA2OGM1YzllZTU3YzkwNjQJMQl3dzIubXRzbjF0aWRvcmUubmV0NjM5MzdlMDgwYzg4YzMuODc3Njk5MTUJd3cyLm10c24xdGlkb3JlLm5ldDYzOTM3ZTA4MGM4YzA1LjM0OTM4OTcyCTE2NzA2MTA0NDAJYWRfNjNfMA==&l=OAk5ZDYyM2VmNjQ1MjJhMzk5NzQxN2FmY2M5YTNjNzU0OQkwCTM1CTAJYTVmMmEwMTMzNTRjYTBlZDgyZDU1OTg5OGNkMDBhYTcJNDY2ODMxNjA2CW10c24xdGlkb3JlCTAJNjMJNgkyCTE2NzA2MTA0NDAJNC4xRS01CU4JMAkxCTE1MTIJMTIwNQk0NTQ2MTY2NjkJOTEuOTAuNDIuMTU0CTA%3D
302 Found 311 B URL HTTP/1.1 ww2.mtsn1tidore.net/search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DbB-vvmRvHRw_0&v=MjJjMWU1Mzk5ZmIyMjEwODA2OGM1YzllZTU3YzkwNjQJMQl3dzIubXRzbjF0aWRvcmUubmV0NjM5MzdlMDgwYzg4YzMuODc3Njk5MTUJd3cyLm10c24xdGlkb3JlLm5ldDYzOTM3ZTA4MGM4YzA1LjM0OTM4OTcyCTE2NzA2MTA0NDAJYWRfNjNfMA==&l=OAk5ZDYyM2VmNjQ1MjJhMzk5NzQxN2FmY2M5YTNjNzU0OQkwCTM1CTAJYTVmMmEwMTMzNTRjYTBlZDgyZDU1OTg5OGNkMDBhYTcJNDY2ODMxNjA2CW10c24xdGlkb3JlCTAJNjMJNgkyCTE2NzA2MTA0NDAJNC4xRS01CU4JMAkxCTE1MTIJMTIwNQk0NTQ2MTY2NjkJOTEuOTAuNDIuMTU0CTA%3D
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2f7df601745b4e1caefce919e6e54f9f
fe759998b2b9c21e2a950437b580f53786848254
886f1f44c4ca53035c2251d5d1ed60b79d95774030139d9311701f95a450a7bc
Analyzer Verdict Alert quad9 Sinkholed
GET /search/tcerider.php?f=http%3A%2F%2Fxml.sedodna.com%2Fclick%3Fi%3DbB-vvmRvHRw_0&v=MjJjMWU1Mzk5ZmIyMjEwODA2OGM1YzllZTU3YzkwNjQJMQl3dzIubXRzbjF0aWRvcmUubmV0NjM5MzdlMDgwYzg4YzMuODc3Njk5MTUJd3cyLm10c24xdGlkb3JlLm5ldDYzOTM3ZTA4MGM4YzA1LjM0OTM4OTcyCTE2NzA2MTA0NDAJYWRfNjNfMA==&l=OAk5ZDYyM2VmNjQ1MjJhMzk5NzQxN2FmY2M5YTNjNzU0OQkwCTM1CTAJYTVmMmEwMTMzNTRjYTBlZDgyZDU1OTg5OGNkMDBhYTcJNDY2ODMxNjA2CW10c24xdGlkb3JlCTAJNjMJNgkyCTE2NzA2MTA0NDAJNC4xRS01CU4JMAkxCTE1MTIJMTIwNQk0NTQ2MTY2NjkJOTEuOTAuNDIuMTU0CTA%3D HTTP/1.1
Host: ww2.mtsn1tidore.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww2.mtsn1tidore.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
date: Fri, 09 Dec 2022 18:27:21 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
x-powered-by: PHP/8.1.9
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
last-modified: Fri, 09 Dec 2022 18:27:21 GMT
location: http://xml.sedodna.com/click?i=bB-vvmRvHRw_0
x-cache-miss-from: parking-7887f445cc-72cbk
server: NginX
detectportal.firefox.com/success.txt?ipv4
200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Fri, 09 Dec 2022 13:05:38 GMT
Age: 19303
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
xml.sedodna.com/click?i=bB-vvmRvHRw_0
302 Found 0 B URL HTTP/1.1 xml.sedodna.com/click?i=bB-vvmRvHRw_0
IP
ASN #27257 WEBAIR-INTERNET
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?i=bB-vvmRvHRw_0 HTTP/1.1
Host: xml.sedodna.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww2.mtsn1tidore.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: no-store
Content-Length: 0
Age: 0
Connection: keep-alive
Location: http://ciar-kep.com/zcvisitor/1dfd6bf2-77ef-11ed-992e-12ee657c1fe7/9232f590-d991-493f-b95d-d38c0c6cdd28?campaignid=1e24f128-77ef-11ed-992e-12ee657c1fe7
Pragma: no-cache
ciar-kep.com/zcvisitor/1dfd6bf2-77ef-11ed-992e-12ee657c1fe7/9232f590-d991-493f-b95d-d38c0c6cdd28?campaignid=1e24f128-77ef-11ed-992e-12ee657c1fe7
200 1.1 kB URL HTTP/1.1 ciar-kep.com/zcvisitor/1dfd6bf2-77ef-11ed-992e-12ee657c1fe7/9232f590-d991-493f-b95d-d38c0c6cdd28?campaignid=1e24f128-77ef-11ed-992e-12ee657c1fe7
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ba2af7997069970de8106b217efc0df7
3d219571f0ea8f2d277c0e982abd53fa06fb30f5
8d4dfbcb94ed134c0cb1ad442ebe4ebd1f181dc0f756134a9e752ecc4c334f47
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /zcvisitor/1dfd6bf2-77ef-11ed-992e-12ee657c1fe7/9232f590-d991-493f-b95d-d38c0c6cdd28?campaignid=1e24f128-77ef-11ed-992e-12ee657c1fe7 HTTP/1.1
Host: ciar-kep.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww2.mtsn1tidore.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Fri, 09 Dec 2022 18:27:21 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: pwImDOZA
ciar-kep.com/zcredirect?visitid=1dfd6bf2-77ef-11ed-992e-12ee657c1fe7&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
200 310 B URL HTTP/1.1 ciar-kep.com/zcredirect?visitid=1dfd6bf2-77ef-11ed-992e-12ee657c1fe7&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c6aa1a71f8485c5bb7d366590ac18187
2e716a33241a4c6cb91a1860d30c895d11941aff
f7ed7c20691d205690fa79996323848028b87314bc501d983924a1122c492b92
Analyzer Verdict Alert quad9 Sinkholed
GET /zcredirect?visitid=1dfd6bf2-77ef-11ed-992e-12ee657c1fe7&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1
Host: ciar-kep.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciar-kep.com/zcvisitor/1dfd6bf2-77ef-11ed-992e-12ee657c1fe7/9232f590-d991-493f-b95d-d38c0c6cdd28?campaignid=1e24f128-77ef-11ed-992e-12ee657c1fe7
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Fri, 09 Dec 2022 18:27:21 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: pwImDOZA
ciar-kep.com/favicon.ico
404 653 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Hash ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: ciar-kep.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciar-kep.com/zcredirect?visitid=1dfd6bf2-77ef-11ed-992e-12ee657c1fe7&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
HTTP/1.1 404
Date: Fri, 09 Dec 2022 18:27:22 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: OMzRjKyY
xml-v4.xonedart-2.live/click?seat=2438326&i=AsXLggQj2gc_0
302 Found 0 B URL HTTP/1.1 xml-v4.xonedart-2.live/click?seat=2438326&i=AsXLggQj2gc_0
IP
ASN #27257 WEBAIR-INTERNET
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?seat=2438326&i=AsXLggQj2gc_0 HTTP/1.1
Host: xml-v4.xonedart-2.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ciar-kep.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: no-store
Content-Length: 0
Age: 0
Connection: keep-alive
Location: https://greatdexchange.com/jump/next.php?r=6346638&sub1=activerevenue&sub2=13233797217
Pragma: no-cache
ocsp.sectigo.com/
200 OK 471 B IP
Hash 8a48043a02468a3f595ce5e94cad2a24
8d1da870c1a13685650d00c96ec0ded3a78224b7
1bacff097e7fbfb46b85be3d9bce0bde44fe3f4d7c6e6db1f4328637c4205e70
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 18:27:22 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 08 Dec 2022 07:00:11 GMT
Expires: Thu, 15 Dec 2022 07:00:10 GMT
Etag: "8d1da870c1a13685650d00c96ec0ded3a78224b7"
Cache-Control: max-age=476567,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776fcb614e38b527-OSL
ocsp.sectigo.com/
200 OK 471 B IP
Hash 8a48043a02468a3f595ce5e94cad2a24
8d1da870c1a13685650d00c96ec0ded3a78224b7
1bacff097e7fbfb46b85be3d9bce0bde44fe3f4d7c6e6db1f4328637c4205e70
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 18:27:22 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 08 Dec 2022 07:00:11 GMT
Expires: Thu, 15 Dec 2022 07:00:10 GMT
Etag: "8d1da870c1a13685650d00c96ec0ded3a78224b7"
Cache-Control: max-age=476567,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776fcb63e93cb527-OSL
ocsp.pki.goog/s/gts1p5/oh17uUli4Cw
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/oh17uUli4Cw
IP
Hash 43f2048a723714e1e82aca881053e607
3122f30eea6c71640a6e43da33cd9b69a62484e4
e8dade0f9476d39376a32f6d2475ff7b47c4b0d9ae0ec49267f07416ca6f5795
POST /s/gts1p5/oh17uUli4Cw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:27:23 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/oh17uUli4Cw
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/oh17uUli4Cw
IP
Hash 43f2048a723714e1e82aca881053e607
3122f30eea6c71640a6e43da33cd9b69a62484e4
e8dade0f9476d39376a32f6d2475ff7b47c4b0d9ae0ec49267f07416ca6f5795
POST /s/gts1p5/oh17uUli4Cw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:27:23 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ak.roudoduor.com/afu.php?zoneid=5460782&ymid=167061044210000TNOTV415326358024Vcf&var=315519420
200 OK 9.7 kB URL HTTP/2 ak.roudoduor.com/afu.php?zoneid=5460782&ymid=167061044210000TNOTV415326358024Vcf&var=315519420
IP
ASN #20940 Akamai International B.V.
Hash 19e79955bd3c0cab27d65c561ff6df69
bfbb080ba11d1c43162ae6d311488174de1541d1
67e910310f465cde0af49fcfa8846e9bf6d3cf8ce1c45a96624bfd3be32a9e5f
Analyzer Verdict Alert quad9 Sinkholed
GET /afu.php?zoneid=5460782&ymid=167061044210000TNOTV415326358024Vcf&var=315519420 HTTP/1.1
Host: ak.roudoduor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf8
x-trace-id: 069160cbefa3b489de2310b16f689613
link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
vary: Accept-Encoding
x-akamai-transformed: 9 8633 0 pmb=mRUM,1
content-encoding: gzip
expires: Fri, 09 Dec 2022 18:27:23 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 18:27:23 GMT
content-length: 9650
set-cookie: OAID=a27654b11d504be09125e90c629f9da5; expires=Sat, 09 Dec 2023 18:27:23 GMT; path=/; secure; SameSite=None
oaidts=1670610443; expires=Sat, 09 Dec 2023 18:27:23 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
server-timing: cdn-cache; desc=MISS, edge; dur=25, origin; dur=12
X-Firefox-Spdy: h2
greatdexchange.com/jump/next.php?r=6346638&sub1=activerevenue&sub2=13233797217
200 OK 53 kB URL HTTP/2 greatdexchange.com/jump/next.php?r=6346638&sub1=activerevenue&sub2=13233797217
IP
Hash 5234460daec9051e595f25086a855f90
349026b9c9003dbf370601ec829645393258ef11
535bb36183204052b1cb7855a12ae966e1c3383522d4976fe1d28600e2803223
GET /jump/next.php?r=6346638&sub1=activerevenue&sub2=13233797217 HTTP/1.1
Host: greatdexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ciar-kep.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Fri, 09 Dec 2022 18:27:22 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 8db5e5fdd6de1be318e1e2eb919fb0e7
8258c78d87a302be368193b851b55c8e32107c82
143d463b64c5b6772aa9f446e7ea1bb201fe8ce57b25779a6c99dd416a660c7f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 18:27:23 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 08 Dec 2022 16:52:37 GMT
Expires: Thu, 15 Dec 2022 16:52:36 GMT
Etag: "8258c78d87a302be368193b851b55c8e32107c82"
Cache-Control: max-age=512112,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776fcb68df3ab527-OSL
datatechone.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
200 OK 2 B URL HTTP/1.1 datatechone.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: datatechone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 960
Origin: https://ak.roudoduor.com
Connection: keep-alive
Referer: https://ak.roudoduor.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Fri, 09 Dec 2022 18:27:23 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
Access-Control-Allow-Origin: https://ak.roudoduor.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
c.go-mpulse.net/api/config.json?key=T5QW8-JUY6U-SF395-TC67A-UGXBF&d=ak.roudoduor.com&t=5568701&v=1.720.0&if=&sl=0&si=4c24beeb-d2ee-4703-9d70-d5c80f41e88a-rmmz9m&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=849363
200 OK 51 B URL HTTP/1.1 c.go-mpulse.net/api/config.json?key=T5QW8-JUY6U-SF395-TC67A-UGXBF&d=ak.roudoduor.com&t=5568701&v=1.720.0&if=&sl=0&si=4c24beeb-d2ee-4703-9d70-d5c80f41e88a-rmmz9m&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=849363
IP
File type JSON data\012- , ASCII text
Hash ac592792853d858fdcc57fc91514e95e
9e795089c30886e77c1a69f78669bcb8add7510d
305bf3987bb4335929e4da0e0f4c104dfb96bf51612f20ec0e77ba0b722c014a
GET /api/config.json?key=T5QW8-JUY6U-SF395-TC67A-UGXBF&d=ak.roudoduor.com&t=5568701&v=1.720.0&if=&sl=0&si=4c24beeb-d2ee-4703-9d70-d5c80f41e88a-rmmz9m&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=849363 HTTP/1.1
Host: c.go-mpulse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ak.roudoduor.com
Connection: keep-alive
Referer: https://ak.roudoduor.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=120, stale-while-revalidate=60, stale-if-error=120
Timing-Allow-Origin: *
Content-Length: 51
Date: Fri, 09 Dec 2022 18:27:23 GMT
Connection: keep-alive
Content-Type: application/json
ak.roudoduor.com/favicon.ico
204 No Content 0 B URL HTTP/2 ak.roudoduor.com/favicon.ico
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: ak.roudoduor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ak.roudoduor.com/afu.php?zoneid=5460782&ymid=167061044210000TNOTV415326358024Vcf&var=315519420
Cookie: OAID=a27654b11d504be09125e90c629f9da5; oaidts=1670610443; RT="z=1&dm=ak.roudoduor.com&si=4c24beeb-d2ee-4703-9d70-d5c80f41e88a&ss=lbgubn7e&sl=0&tt=0"
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
expires: Fri, 09 Dec 2022 18:27:23 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 18:27:23 GMT
server-timing: cdn-cache; desc=MISS, edge; dur=19, origin; dur=7
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 27f907a256adb2c2f78f02a5f9b10c99
3411bd289f7e48859cde22993e8bd795ac9b19b2
907bff5886c7b9a138f540090f7e0010621667c24aa02c3fd075f083d0a3b683
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "907BFF5886C7B9A138F540090F7E0010621667C24AA02C3FD075F083D0A3B683"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2096
Expires: Fri, 09 Dec 2022 19:02:19 GMT
Date: Fri, 09 Dec 2022 18:27:23 GMT
Connection: keep-alive
my.rtmark.net/img.gif?f=merge&userId=a27654b11d504be09125e90c629f9da5
200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=merge&userId=a27654b11d504be09125e90c629f9da5
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /img.gif?f=merge&userId=a27654b11d504be09125e90c629f9da5 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ak.roudoduor.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 18:27:23 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=a27654b11d504be09125e90c629f9da5; expires=Sat, 09 Dec 2023 18:27:23 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ak.roudoduor.com/?z=5460782&syncedCookie=true&rhd=false
302 Found 0 B URL HTTP/2 ak.roudoduor.com/?z=5460782&syncedCookie=true&rhd=false
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /?z=5460782&syncedCookie=true&rhd=false HTTP/1.1
Host: ak.roudoduor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 586
Origin: https://ak.roudoduor.com
Connection: keep-alive
Referer: https://ak.roudoduor.com/afu.php?zoneid=5460782&var=5460782&rid=BPTR34PbLD67mf1dYD5JaA%3D%3D&rhd=false
Cookie: OAID=a27654b11d504be09125e90c629f9da5; oaidts=1670610443; RT="z=1&dm=ak.roudoduor.com&si=4c24beeb-d2ee-4703-9d70-d5c80f41e88a&ss=lbgubn7e&sl=1&tt=jp&rl=1&ld=jp&ul=jq"
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
content-length: 0
x-trace-id: 3c28c39ad692bee77689313e0d8529bc
link: <https://myeasetrack.com>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
referrer-policy: no-referrer
location: https://myeasetrack.com/ce2939e7-f18f-4e8d-b910-5d9b23a74541?zoneid=5460782&device=desktop&browser=firefox&os=windows&country=NO®ion=03&zonetype={zone_type}&useractivity=high&campaignid=6406879&banner=16042566&cost=0.001450&visitor_id=625148112524284877&rdk=rk3
access-control-allow-origin: https://ak.roudoduor.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
expires: Fri, 09 Dec 2022 18:27:24 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 18:27:24 GMT
set-cookie: OAID=a27654b11d504be09125e90c629f9da5; expires=Sat, 09 Dec 2023 18:27:24 GMT; path=/; secure; SameSite=None
oaidts=1670610443; expires=Sat, 09 Dec 2023 18:27:24 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 16 Dec 2022 18:27:24 GMT; path=/; secure; SameSite=None
server-timing: cdn-cache; desc=MISS, edge; dur=20, origin; dur=65
X-Firefox-Spdy: h2
myeasetrack.com/ce2939e7-f18f-4e8d-b910-5d9b23a74541?zoneid=5460782&device=desktop&browser=firefox&os=windows&country=NO®ion=03&zonetype={zone_type}&useractivity=high&campaignid=6406879&banner=16042566&cost=0.001450&visitor_id=625148112524284877&rdk=rk3
302 Found 0 B URL HTTP/2 myeasetrack.com/ce2939e7-f18f-4e8d-b910-5d9b23a74541?zoneid=5460782&device=desktop&browser=firefox&os=windows&country=NO®ion=03&zonetype={zone_type}&useractivity=high&campaignid=6406879&banner=16042566&cost=0.001450&visitor_id=625148112524284877&rdk=rk3
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ce2939e7-f18f-4e8d-b910-5d9b23a74541?zoneid=5460782&device=desktop&browser=firefox&os=windows&country=NO®ion=03&zonetype={zone_type}&useractivity=high&campaignid=6406879&banner=16042566&cost=0.001450&visitor_id=625148112524284877&rdk=rk3 HTTP/1.1
Host: myeasetrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Fri, 09 Dec 2022 18:27:24 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://ntrfr.leovegas.com/redirect.aspx?pid=3747044&bid=15007&c=w097gttbpl2f2a2lihhk7c32
pragma: no-cache
set-cookie: ce2939e7-f18f-4e8d-b910-5d9b23a74541-v4=H38WcbtEHKyhrSuHfgAHh4AHJ__V0KU3e93OBEsmTyQ; Max-Age=86400; Expires=Sat, 10-Dec-2022 18:27:24 GMT; Domain=myeasetrack.com; Path=/; Secure; HttpOnly;SameSite=None
cc-v4=kl%2FckE8vcQrjGCC%2F1XQ0WhbQmjmxjAa9CU9cfg0Bqft5gxH57zZ83fEQtkI%2FKdMqAW%2BMh9VOfQFbS%2FMBz1CrnWf4FZndJjUyuKbwE2XZn3yUTbHAkTlnydoAgMzuR9UaL716AvnDFVAMyy21tRii3w%3D%3D; Max-Age=31536000; Expires=Sat, 09-Dec-2023 18:27:24 GMT; Domain=myeasetrack.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
ntrfr.leovegas.com/redirect.aspx?pid=3747044&bid=15007&c=w097gttbpl2f2a2lihhk7c32
307 Temporary Redirect 0 B URL HTTP/2 ntrfr.leovegas.com/redirect.aspx?pid=3747044&bid=15007&c=w097gttbpl2f2a2lihhk7c32
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect.aspx?pid=3747044&bid=15007&c=w097gttbpl2f2a2lihhk7c32 HTTP/1.1
Host: ntrfr.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
content-type: text/html
content-length: 0
location: https://www.leovegas.com/nb-no/betting?btag=667909_D50EF09DA7E849FEB43763360963FC08&c=w097gttbpl2f2a2lihhk7c32&pid=3747044&bid=15007
p3p: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies"
x-aspnet-version: 4.0.30319
request-context: appId=cid-v1:83ffbda4-9458-475e-90ec-4427cfb5c3b0
access-control-expose-headers: Request-Context
expires: Fri, 09 Dec 2022 18:27:24 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 09 Dec 2022 18:27:24 GMT
set-cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15007%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1670610444746)%5c%2f%22%2c%22CookieTag%22%3a%22150073747044451240919C20221291827%22%7d%5d; SameSite=None;; domain=.leovegas.com; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; secure
NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222749506443%7c1%22%7d%5d; domain=.leovegas.com; expires=Sun, 09-Dec-3021 18:27:24 GMT; path=/; secure; SameSite=Strict
server-timing: edge; dur=1, origin; dur=209, cdn-cache; desc=MISS
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 6b8313f9e33695225653527e2d423cd7
f93d3c7e748b85edc6f0209e73813f13e5bf2070
9fbcb6376f48faf9fab6fada8876197456bb8c5c1c0b5c34b25dcfe323e18354
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6418
Cache-Control: max-age=117540
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:27:24 GMT
Etag: "63928d1e-1d7"
Expires: Sun, 11 Dec 2022 03:06:24 GMT
Last-Modified: Fri, 09 Dec 2022 01:19:26 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
www.leovegas.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=2&cb=222873781
200 OK 19 kB URL HTTP/2 www.leovegas.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=2&cb=222873781
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 094081e554aa40f64302a39e69f9d219
1a14645c8a8443a02bc0c3a23d5504a9ae172ebc
3f7aad383c29bbf9e7531ff3527120a570ef98d5c6fe328ba8d4f685afa54445
GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=2&cb=222873781 HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/en-no/betting?btag=667909_D50EF09DA7E849FEB43763360963FC08&c=w097gttbpl2f2a2lihhk7c32&pid=3747044&bid=15007
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15007%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1670610444746)%5c%2f%22%2c%22CookieTag%22%3a%22150073747044451240919C20221291827%22%7d%5d; NetReferSPS=%5b%7b%22StoreName%22%3a%22CurrentReferenceID%22%2c%22StoreValue%22%3a%222749506443%7c1%22%7d%5d; leo-essentials=%7B%22cid%22%3A%227fc7b867-4fc0-45c3-a2aa-705702bbcb64%22%7D; _ga=GA1.1.7fc7b867-4fc0-45c3-a2aa-705702bbcb64; visid_incap_846569=w0rBagtIRteBprEeEY+D4wx+k2MAAAAAQUIPAAAAAACvJCw29KzDTVxMUxxd074Z; nlbi_846569=giGjcbxdPSnmS2hkTJV9qQAAAABg+Fy2xq+eOH0g3T71gIAq; incap_ses_722_846569=nak9MYb3uTCcfrPuFxAFCgx+k2MAAAAAwaw6Eg/LaAqd45V8GbFm3A==; leobtag=667909_D50EF09DA7E849FEB43763360963FC08; leonrpid=3747044; leonrbid=15007; leonrmeta=[{"value":"w097gttbpl2f2a2lihhk7c32","key":"c"}]
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/javascript
content-encoding: gzip
x-robots-tag: noindex
content-length: 18874
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4e3dc85fd71bdb106039966a96cdd02b
53d3487232ddcac30b53c224c94e63571633e5af
d0a3a292876b50c590a3fa6c04d3471a6fb726c54f57e75c21f2e1bd45424ace
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:27:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
greatdexchange.com/jump/next.php?stamat=m%257CNqtiLiNjaQdH8AH0dEdHP3xP.2c2%252C7H0PozvLiGV-YkDx825CHkHBKDoiX4wTrgvDaOhavCN-0z1CT29G6sUF7_uUajPl37AxQyeuUxs-7rg0bIzpLzYDjx9k44-f2K-qDpWzM9Aau2E_-lZ5zokpaLLR8ggg&cbpage=https://greatdexchange.com/jump/next.php?r=6346638&sub1=activerevenue&sub2=13233797217&cbur=0.2410350279797253&cbtitle=&cbiframe=0&cbWidth=1280&cbHeight=939&cbdescription=&cbkeywords=&cbref=http%3A%2F%2Fciar-kep.com%2F
302 Found 3.7 kB URL HTTP/2 greatdexchange.com/jump/next.php?stamat=m%257CNqtiLiNjaQdH8AH0dEdHP3xP.2c2%252C7H0PozvLiGV-YkDx825CHkHBKDoiX4wTrgvDaOhavCN-0z1CT29G6sUF7_uUajPl37AxQyeuUxs-7rg0bIzpLzYDjx9k44-f2K-qDpWzM9Aau2E_-lZ5zokpaLLR8ggg&cbpage=https://greatdexchange.com/jump/next.php?r=6346638&sub1=activerevenue&sub2=13233797217&cbur=0.2410350279797253&cbtitle=&cbiframe=0&cbWidth=1280&cbHeight=939&cbdescription=&cbkeywords=&cbref=http%3A%2F%2Fciar-kep.com%2F
IP
Hash 820ece0d45be74f25f1d9fa3ffa4fba4
710015f68ac6a029d52171622c75e89b9def07c3
00a11f0b38abb4ca1e084f75c4484eec6a312de88ffdf454747064f641b6dae1
GET /jump/next.php?stamat=m%257CNqtiLiNjaQdH8AH0dEdHP3xP.2c2%252C7H0PozvLiGV-YkDx825CHkHBKDoiX4wTrgvDaOhavCN-0z1CT29G6sUF7_uUajPl37AxQyeuUxs-7rg0bIzpLzYDjx9k44-f2K-qDpWzM9Aau2E_-lZ5zokpaLLR8ggg&cbpage=https://greatdexchange.com/jump/next.php?r=6346638&sub1=activerevenue&sub2=13233797217&cbur=0.2410350279797253&cbtitle=&cbiframe=0&cbWidth=1280&cbHeight=939&cbdescription=&cbkeywords=&cbref=http%3A%2F%2Fciar-kep.com%2F HTTP/1.1
Host: greatdexchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: openresty
date: Fri, 09 Dec 2022 18:27:22 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
location: https://greatdexchange.com/script/i.php?stamat=m%257C%252C%252CQhN6d3L2oGU3B0-GH0dEdHP3xP.41c%252CIrs2il4tiTS_3SakOLZr0few70wjl8duxUitB-FUXrp4D5V3nIdbnMWPpwVt7DzDKr2AKKjYTWoQlx8mOiGTA5s3L1dVEyu9yyhufvLnjsJ8v0Z7SAQnTu8xs2E8UNgZYF8pf2-8c1J9FpnFBS4WDN_m065_VH46TFXLMZDYr9z5ya1MdJg9lCvLOiT72z8Y0ql-Q3uCxAtnijuQPiiveNYemWLKgBw8ijrjlpJBDmiY_3L6ffaXPpsdAwoWhkv6hu0nWZpt9jAKrfTJiQkrL2NukcxhREKXkzmzG_pT8vRn-NmSPEwIE9Lf6MZL1vYwsZHPuRoe4uGyXFNhZC0ggrUUIsYll2ZZvgz-7xHa1X-U8GoisJ96NJGZ25caOlljdEajCExM-rSCWrhQ6fcAxI4haohqORbYgcZMQsgJlYhaGyQ7UVQrx4Fo3BDO43Nh7xOJsYgCSwAdxrikaHlNB0H9UB1xU7WTGnLNl7-sZjVp__7F5lztUVO7IRyehgNopy7ZFTNN7KzXfGZ3WPRjTiA64UE2ezvB-dxeoNT1EaWf6psOtTpJHChrzHR_RkkStyjudgudAfnRPD_LmhQVqHgGVg-4OLVp5it6NAc55lM%252C
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~493df0b3.174c7a25090337f738bf.chunk.css?e=p
200 OK 4.4 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~493df0b3.174c7a25090337f738bf.chunk.css?e=p
IP
File type ASCII text, with very long lines (3276)
Hash 73f5a6a43beaff17b9f90f75edd20e07
f7717cfa73f8e76f5305b06b1fe7bdc37a6dcc35
e74739fba32395e07605aaae0724caca3af603431aa7f938789debee8c406890
GET /fulcrum/v4/master/dynamic/desktop.app~493df0b3.174c7a25090337f738bf.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduQeRSnxImeJJwurvwe8n8XFRKGmgiUqSztENwUVe2b-VdASGpaHqgVp4YIKujQ6q9Nt6vryQtUMpyen1A-HrV8Jjv0McTg
x-goog-generation: 1666858620357516
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 4367
content-encoding: gzip
x-goog-hash: crc32c=JqnnEA==, md5=c/WmpDvq/xe5+Q917dIOBw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 4367
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 24 Nov 2022 09:07:25 GMT
expires: Thu, 22 Dec 2022 09:07:25 GMT
cache-control: public, max-age=2419200,no-transform
age: 1329601
last-modified: Thu, 27 Oct 2022 08:17:00 GMT
etag: "73f5a6a43beaff17b9f90f75edd20e07"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 4470e300ec15267fb22718d4bf96ece7
d9aaa3efc70f63f18c933a2add2f9a672173e3d1
8d30c29e58948bc7391c59f9cb83f3d2476aa7a755a46c04d30e1a97e5b52a4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3757
Cache-Control: max-age=141822
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:27:26 GMT
Etag: "6392f65f-1d7"
Expires: Sun, 11 Dec 2022 09:51:08 GMT
Last-Modified: Fri, 09 Dec 2022 08:48:31 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~9675856e.49bdb228bdd8a5380abe.chunk.css?e=p
200 OK 3.9 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~9675856e.49bdb228bdd8a5380abe.chunk.css?e=p
IP
File type ASCII text, with very long lines (2127)
Hash 15d002edcd4c2a95c557c423f97eb6d2
32ea99b4dadce08b36cd6336fddd90d8cdef8fb6
932b057da336f8b693c59232d5c7faaaa096f437a3d92160762684f537a0d96e
GET /fulcrum/v4/master/dynamic/desktop.app~9675856e.49bdb228bdd8a5380abe.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv6qI0GNlX5AeKLuZ6e5RKDNUc-eA_bR8pquflghjWDyouMOyjUcNeQ5tJ716kZE1uQDwrOGte0bz5y_aZlHgFofNbhi2oH
x-goog-generation: 1666870020655992
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 3881
content-encoding: gzip
x-goog-hash: crc32c=Vnb6jQ==, md5=FdAC7c1MKpXFV8Qj+X620g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 3881
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 02 Dec 2022 04:39:10 GMT
expires: Fri, 30 Dec 2022 04:39:10 GMT
cache-control: public, max-age=2419200,no-transform
age: 654496
last-modified: Thu, 27 Oct 2022 11:27:00 GMT
etag: "15d002edcd4c2a95c557c423f97eb6d2"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~4d4445e8.faaabe45a69f356b2a82.chunk.css?e=p
200 OK 2.1 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~4d4445e8.faaabe45a69f356b2a82.chunk.css?e=p
IP
File type ASCII text, with very long lines (1751)
Hash eb4a675122045babc5d69ad6b13c0ca4
514366dc8e5ad8cc38ba53ab89c3074297904876
67a557a53c40fa626a40f9e5cc1a631cf1118fbe07e697e217d3c712e1502f68
GET /fulcrum/v4/master/dynamic/desktop.app~4d4445e8.faaabe45a69f356b2a82.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycds72AeHPipFwqFRJvtafYnYIgtULnfQ7o9kX0I1LTTwvXkLvq2BmasAwKgBY57CoD2AHpqJfEwWFbAenmnM6LGzhQ
x-goog-generation: 1670506833721550
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2062
content-encoding: gzip
x-goog-hash: crc32c=gvpC/A==, md5=60pnUSIEW6vF1prWsTwMpA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2062
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 13:46:35 GMT
expires: Thu, 05 Jan 2023 13:46:35 GMT
cache-control: public, max-age=2419200,no-transform
age: 103251
last-modified: Thu, 08 Dec 2022 13:40:33 GMT
etag: "eb4a675122045babc5d69ad6b13c0ca4"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~5e3c34e6.236725b20f4b96145756.chunk.css?e=p
200 OK 361 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~5e3c34e6.236725b20f4b96145756.chunk.css?e=p
IP
Hash d9285dded335caee4e92fefc03e4d3d2
0717599e7404d6be05229e6b1743893d5054f86d
b6c89f9cc37a83081962826ec78f8a172316a0dc9697c12d54eda6b78f747eac
GET /fulcrum/v4/master/dynamic/desktop.app~5e3c34e6.236725b20f4b96145756.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduvVMYg_dOVM1JjnSfsheeZ5j1EI7_bOMnWVyzqr98xal6SBoCRjhWncpVM8HV7HpQfX9pzoi9g0yfzmBU5QrbCCw
x-goog-generation: 1658389746917889
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 361
content-encoding: gzip
x-goog-hash: crc32c=1YgJUg==, md5=2Shd3tM1yu5Okv78A+TT0g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 361
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 07:55:52 GMT
expires: Thu, 05 Jan 2023 07:55:52 GMT
cache-control: public, max-age=2419200,no-transform
age: 124294
last-modified: Thu, 21 Jul 2022 07:49:06 GMT
etag: "d9285dded335caee4e92fefc03e4d3d2"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~b153da6b.2b588a3673b411c5aef5.chunk.css?e=p
200 OK 2.0 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~b153da6b.2b588a3673b411c5aef5.chunk.css?e=p
IP
File type ASCII text, with very long lines (1025)
Hash 407ac5610bbb3e736d96f49e874d08c6
f282ebcf5831a532effb58b51ea0e7aae368d2eb
276f50a4eadf76af238168f155ab49d954fa5fb24649e609b10b34688ae801bb
GET /fulcrum/v4/master/dynamic/desktop.app~b153da6b.2b588a3673b411c5aef5.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtgN_eju9WGdQ__Q9deDeKVuf55fFrCEakZoiKC6lbhb2nElEshalubRqwQ2k-XbpTMwIq0fea9-Rz8mm-kwpmI4w
x-goog-generation: 1669044814202166
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2033
content-encoding: gzip
x-goog-hash: crc32c=9WA6fw==, md5=QHrFYQu7PnNtlvSeh00Ixg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2033
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Mon, 21 Nov 2022 15:44:01 GMT
expires: Mon, 19 Dec 2022 15:44:01 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Mon, 21 Nov 2022 15:33:34 GMT
etag: "407ac5610bbb3e736d96f49e874d08c6"
content-type: text/css
age: 1565005
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 4470e300ec15267fb22718d4bf96ece7
d9aaa3efc70f63f18c933a2add2f9a672173e3d1
8d30c29e58948bc7391c59f9cb83f3d2476aa7a755a46c04d30e1a97e5b52a4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3757
Cache-Control: max-age=141822
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:27:26 GMT
Etag: "6392f65f-1d7"
Expires: Sun, 11 Dec 2022 09:51:08 GMT
Last-Modified: Fri, 09 Dec 2022 08:48:31 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 4470e300ec15267fb22718d4bf96ece7
d9aaa3efc70f63f18c933a2add2f9a672173e3d1
8d30c29e58948bc7391c59f9cb83f3d2476aa7a755a46c04d30e1a97e5b52a4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2304
Cache-Control: max-age=140369
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:27:26 GMT
Etag: "6392f65f-1d7"
Expires: Sun, 11 Dec 2022 09:26:55 GMT
Last-Modified: Fri, 09 Dec 2022 08:48:31 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 4470e300ec15267fb22718d4bf96ece7
d9aaa3efc70f63f18c933a2add2f9a672173e3d1
8d30c29e58948bc7391c59f9cb83f3d2476aa7a755a46c04d30e1a97e5b52a4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3639
Cache-Control: max-age=141704
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:27:26 GMT
Etag: "6392f65f-1d7"
Expires: Sun, 11 Dec 2022 09:49:10 GMT
Last-Modified: Fri, 09 Dec 2022 08:48:31 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 4470e300ec15267fb22718d4bf96ece7
d9aaa3efc70f63f18c933a2add2f9a672173e3d1
8d30c29e58948bc7391c59f9cb83f3d2476aa7a755a46c04d30e1a97e5b52a4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5034
Cache-Control: max-age=143099
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:27:26 GMT
Etag: "6392f65f-1d7"
Expires: Sun, 11 Dec 2022 10:12:25 GMT
Last-Modified: Fri, 09 Dec 2022 08:48:31 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~ca90faeb.d0e8a686cae5d77f8912.chunk.css?e=p
200 OK 3.2 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~ca90faeb.d0e8a686cae5d77f8912.chunk.css?e=p
IP
File type ASCII text, with very long lines (2771)
Hash d93f82d0c7e77bae42199149f2b7ca2a
e6e8c24023c8d012013acdbaec74dd4236d1b08d
b30b0d6cd128857d720be757a115f44f02f9f348a28ea57f6957a84ecdbcd9df
GET /fulcrum/v4/master/dynamic/desktop.app~ca90faeb.d0e8a686cae5d77f8912.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv2_eeLCxPZGHzFkE4Mvm5pz1-Nel8VkcAznskM0vUYaaXg8Ey20fvwveMHcdz6TftqYaiTnM4_sG0-t1EzrM8hew
x-goog-generation: 1670245568399317
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 3242
content-encoding: gzip
x-goog-hash: crc32c=EXRWTQ==, md5=2T+C0Mfne65CGZFJ8rfKKg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 3242
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Mon, 05 Dec 2022 14:50:48 GMT
expires: Mon, 02 Jan 2023 14:50:48 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Mon, 05 Dec 2022 13:06:08 GMT
etag: "d93f82d0c7e77bae42199149f2b7ca2a"
content-type: text/css
age: 358598
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~4fd0ee19.7c1934d32f260a7de03a.chunk.css?e=p
200 OK 661 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~4fd0ee19.7c1934d32f260a7de03a.chunk.css?e=p
IP
File type ASCII text, with very long lines (1191)
Hash e748007294c8cedafb39bf70a58333ff
0e4285b19d4737a1e12fdba10a7999fe3477a1c7
fd780c795421ac9ef09ae3510862cb589dfb8e8fa27e044a1191ea48f17be331
GET /fulcrum/v4/master/dynamic/desktop.app~4fd0ee19.7c1934d32f260a7de03a.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvjGyGUedF0NwZYsizQKtMDTFbxIye-wbnYVaG_JQukT_WFmFSptjZhzMFaaOjFt0Meg8qrdxLpur4fmevWglj2afwjX5Q8
x-goog-generation: 1666874492621244
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 661
content-encoding: gzip
x-goog-hash: crc32c=orlvcw==, md5=50gAcpTIztr7Ob9wpYMz/w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 661
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 24 Nov 2022 13:03:24 GMT
expires: Thu, 22 Dec 2022 13:03:24 GMT
cache-control: public, max-age=2419200,no-transform
age: 1315442
last-modified: Thu, 27 Oct 2022 12:41:32 GMT
etag: "e748007294c8cedafb39bf70a58333ff"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~4069873a.5f74a54f207392905374.chunk.css?e=p
200 OK 7.4 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~4069873a.5f74a54f207392905374.chunk.css?e=p
IP
File type ASCII text, with very long lines (6159)
Hash 9280490b8c0c95523cf4f30d79ffb00b
71932eb8291614c87a4df90e3d45002fdf6eb687
e0606310d4d44914a250cad7724fd9fb9a0678ac210ca42ef644b83a1e3aa0f9
GET /fulcrum/v4/master/dynamic/desktop.app~4069873a.5f74a54f207392905374.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsd3U0sq1w99Zd2XeVsJ-f8l9DHFRz2q0w5GkgeLFSsXcGhTxvQgHeFMS7yGqHd9qRhzY5q0THgcTeMEVEP10VWCccQl7gZ
x-goog-generation: 1670235681908130
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7386
content-encoding: gzip
x-goog-hash: crc32c=g6IFIg==, md5=koBJC4wMlVI89PMNef+wCw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 7386
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Mon, 05 Dec 2022 10:26:32 GMT
expires: Mon, 02 Jan 2023 10:26:32 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Mon, 05 Dec 2022 10:21:21 GMT
etag: "9280490b8c0c95523cf4f30d79ffb00b"
content-type: text/css
age: 374454
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~bf5ed2a1.1ebdd7728bd6917c1f7d.chunk.css?e=p
200 OK 1.7 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~bf5ed2a1.1ebdd7728bd6917c1f7d.chunk.css?e=p
IP
File type ASCII text, with very long lines (1738)
Hash 5ba0f6bb831bb574c6a89151b785c2a3
f1fdae7719b3a77908584b03e860f491a65b59fe
f71a5f09b50e460bb6ca81ec0be67d9a469ce828dae78b3e89a129fd9fbdd616
GET /fulcrum/v4/master/dynamic/desktop.app~bf5ed2a1.1ebdd7728bd6917c1f7d.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvLfJiU6-15xV9RBz2tJuYEwO6bVILCXDug6lSQLU6wXyXIZDFuATNiX1KF-NhYWEVt_EVwPjqy-WUEi_Pmt45Qz4YpCVD6
x-goog-generation: 1669028775469702
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1672
content-encoding: gzip
x-goog-hash: crc32c=ca5yvg==, md5=W6D2u4MbtXTGqJFRt4XCow==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1672
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Mon, 21 Nov 2022 11:58:42 GMT
expires: Mon, 19 Dec 2022 11:58:42 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Mon, 21 Nov 2022 11:06:15 GMT
etag: "5ba0f6bb831bb574c6a89151b785c2a3"
content-type: text/css
age: 1578524
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~b121d67a.9cbb740b42ec8fc7f8c0.chunk.css?e=p
200 OK 915 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~b121d67a.9cbb740b42ec8fc7f8c0.chunk.css?e=p
IP
File type ASCII text, with very long lines (996)
Hash b1a3853101b4831b84f66553f23895fa
522ca7949a489f91bf61f3ba76e3ade42107d5e4
1a8d580eb4b3c846b48e3dedf5b2401c929e9d337115ddf377a2d6895f9364fb
GET /fulcrum/v4/master/dynamic/desktop.app~b121d67a.9cbb740b42ec8fc7f8c0.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvh0hZPicm7fQKUAdPRRrf-wfTMFBJ2vyvGwh5OIiGxeyjQ1QK5gEOIoggcnqCPsR03ioq2BxgotG7umZxGMC40pQ
x-goog-generation: 1670245568392966
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 915
content-encoding: gzip
x-goog-hash: crc32c=3l5YXQ==, md5=saOFMQG0gxuE9mVT8jiV+g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 915
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Mon, 05 Dec 2022 14:50:48 GMT
expires: Mon, 02 Jan 2023 14:50:48 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Mon, 05 Dec 2022 13:06:08 GMT
etag: "b1a3853101b4831b84f66553f23895fa"
content-type: text/css
age: 358598
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~83b42d19.b60d1b360820d4e86e5d.chunk.css?e=p
200 OK 1.9 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~83b42d19.b60d1b360820d4e86e5d.chunk.css?e=p
IP
File type ASCII text, with very long lines (867)
Hash 5eb9afd7cd8423dc7bf3c70ca3d0e7c0
f463a3debf49cd14527c986bbf0acded08296840
5517dbba18f963010cfcc8d7e4d14acf2a351423c9a09aa439fe4ebb7feb9a74
GET /fulcrum/v4/master/dynamic/desktop.app~83b42d19.b60d1b360820d4e86e5d.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtRhKI8dEXTn-FRHREMiVIA98G0LBT-Xq_85ylo62EUreDRRRycm_h26ewrETh7PCADXuq7G9RzHSTJRq09Zrc_RQ
x-goog-generation: 1669021198999610
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1857
content-encoding: gzip
x-goog-hash: crc32c=W2N2BQ==, md5=Xrmv182EI9x788cMo9DnwA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1857
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Mon, 21 Nov 2022 09:08:51 GMT
expires: Mon, 19 Dec 2022 09:08:51 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Mon, 21 Nov 2022 08:59:59 GMT
etag: "5eb9afd7cd8423dc7bf3c70ca3d0e7c0"
content-type: text/css
age: 1588715
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash edac2b4e678c48b1fc3be3a06793bfcb
23f1f41a2194536d77a2497d7255b13747fd9af0
e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:27:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~1238b076.ad19c2b79795fe4d6597.chunk.css?e=p
200 OK 3.5 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~1238b076.ad19c2b79795fe4d6597.chunk.css?e=p
IP
File type ASCII text, with very long lines (2136)
Hash 60bb84b8aac65e3982195bd4e4a9bccd
310d668e9b5c192fd00397c13fd5dbf03cd68b6b
8f1fff85433ec9560e49df4aed9efea0efead309927cd3c2e96ff235018db32f
GET /fulcrum/v4/master/dynamic/desktop.app~1238b076.ad19c2b79795fe4d6597.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtTBi4d8UAMFrvMy039UxNf5fC1rvSQXpwkEVRcRgzzc-PfV_lqlniejXZDn_GVnMI5BqQFFNDr6zfyFmDj8IsoLQLeMn6f
x-goog-generation: 1670506833705462
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 3523
content-encoding: gzip
x-goog-hash: crc32c=fQo6iA==, md5=YLuEuKrGXjmCGVvU5Km8zQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 3523
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 13:46:35 GMT
expires: Thu, 05 Jan 2023 13:46:35 GMT
cache-control: public, max-age=2419200,no-transform
age: 103251
last-modified: Thu, 08 Dec 2022 13:40:33 GMT
etag: "60bb84b8aac65e3982195bd4e4a9bccd"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~a3dbe528.2e741c8936b74f921829.chunk.css?e=p
200 OK 465 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~a3dbe528.2e741c8936b74f921829.chunk.css?e=p
IP
File type ASCII text, with very long lines (475)
Hash 8678668b5e39d14075b76af3477c4daa
2e5d0c747d29d4f0f8cf20e1208673d24f19e493
fa3e894775f341aa4e1beeeff619e617f9a9f96db05533daebd21f8b3656fb7b
GET /fulcrum/v4/master/dynamic/desktop.app~a3dbe528.2e741c8936b74f921829.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdusw-cS-Nj8S39ZNM2GAqFA6ZGqYy4vyDCMJKE5LyMQmqdWjuDOCTv-2r-ZAL3iL6TcIUGaDDSjrhiCq6gwxI4y1SGI4LX6
x-goog-generation: 1659079433779042
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 465
content-encoding: gzip
x-goog-hash: crc32c=dPBc2g==, md5=hnhmi1450UB1t2rzR3xNqg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 465
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Tue, 22 Nov 2022 08:41:55 GMT
expires: Tue, 20 Dec 2022 08:41:55 GMT
cache-control: public, max-age=2419200,no-transform
age: 1503931
last-modified: Fri, 29 Jul 2022 07:23:53 GMT
etag: "8678668b5e39d14075b76af3477c4daa"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~a29119c6.abb68a2b72cbacb30e93.chunk.css?e=p
200 OK 1.8 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~a29119c6.abb68a2b72cbacb30e93.chunk.css?e=p
IP
File type ASCII text, with very long lines (1255)
Hash fb71d625074532d49878cd6e64539bbd
655cf305f4f611f5ed772f5796ca434824ab00f4
aeb13b6fd9968de5f8d9cd51190e308357eb855a1d75fddb6b141d16beff0a80
GET /fulcrum/v4/master/dynamic/desktop.app~a29119c6.abb68a2b72cbacb30e93.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsozcTO6OJPyzAGHeUsQOa6Znr81TjbPbGbkYYUI5V90ffwSkqFhteyggQ3jr9XXQfIZtr5nFAb4HMdHrwMgKfqBH7-PovQ
x-goog-generation: 1664971882275413
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1798
content-encoding: gzip
x-goog-hash: crc32c=9SRJEg==, md5=+3HWJQdFMtSYeM1uZFObvQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1798
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Wed, 30 Nov 2022 12:20:26 GMT
expires: Wed, 28 Dec 2022 12:20:26 GMT
cache-control: public, max-age=2419200,no-transform
age: 799620
last-modified: Wed, 05 Oct 2022 12:11:22 GMT
etag: "fb71d625074532d49878cd6e64539bbd"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 4470e300ec15267fb22718d4bf96ece7
d9aaa3efc70f63f18c933a2add2f9a672173e3d1
8d30c29e58948bc7391c59f9cb83f3d2476aa7a755a46c04d30e1a97e5b52a4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3757
Cache-Control: max-age=141822
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:27:26 GMT
Etag: "6392f65f-1d7"
Expires: Sun, 11 Dec 2022 09:51:08 GMT
Last-Modified: Fri, 09 Dec 2022 08:48:31 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~fccf170b.10f6ff8cefa9b5c8d595.chunk.css?e=p
200 OK 1.1 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~fccf170b.10f6ff8cefa9b5c8d595.chunk.css?e=p
IP
File type ASCII text, with very long lines (602)
Hash 9b115656340a9b13ab2bb8e5f4b54fe3
4d4abd5b11cee07f933fd9916ba3cff462ac63db
bacf529aa1652131169c41cc1842069a9532df479ec1735690eefa51b1f9cd0f
GET /fulcrum/v4/master/dynamic/desktop.app~fccf170b.10f6ff8cefa9b5c8d595.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu9s4TcwLQGWnkGS-I7cvUhxHnM0_xhl7CJ0HASIjmsjHtQEpD6GwBDj4K5kBMoBn1EElMC84vqoSIeSt5GXIDNkQ
x-goog-generation: 1667199463854186
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1081
content-encoding: gzip
x-goog-hash: crc32c=mUzUiQ==, md5=mxFWVjQKmxOrK7jl9LVP4w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1081
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Mon, 28 Nov 2022 07:02:56 GMT
expires: Mon, 26 Dec 2022 07:02:56 GMT
cache-control: public, max-age=2419200,no-transform
age: 991470
last-modified: Mon, 31 Oct 2022 06:57:43 GMT
etag: "9b115656340a9b13ab2bb8e5f4b54fe3"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~63e81adb.6fcaa2b9df551c1cb010.chunk.css?e=p
200 OK 2.3 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~63e81adb.6fcaa2b9df551c1cb010.chunk.css?e=p
IP
File type ASCII text, with very long lines (2044)
Hash a2cbf2d47ebaa5a7e86fba8551a4d417
11920ca77112a1b6ec1f88c0074c1a8963bd326b
b2823a845b7bf14c83912576ca84803cfbea4ef769e77b43b4c5f694a3e1dc45
GET /fulcrum/v4/master/dynamic/desktop.app~63e81adb.6fcaa2b9df551c1cb010.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsvgv2Heil9Zg-8MiskSznaE7FTzgjy2m-OKlCBk47mQVSlbh9Z-qLAPWadKqy_v7rfsPhc8Ou_Tgarcbp_soVcUC1pkt4p
x-goog-generation: 1667199463770471
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2341
content-encoding: gzip
x-goog-hash: crc32c=NgzRSA==, md5=osvy1H66pafob7qFUaTUFw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2341
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Mon, 28 Nov 2022 07:03:19 GMT
expires: Mon, 26 Dec 2022 07:03:19 GMT
cache-control: public, max-age=2419200,no-transform
age: 991447
last-modified: Mon, 31 Oct 2022 06:57:43 GMT
etag: "a2cbf2d47ebaa5a7e86fba8551a4d417"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~893ae42f.06e7857280577759b5de.chunk.css?e=p
200 OK 2.5 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~893ae42f.06e7857280577759b5de.chunk.css?e=p
IP
File type ASCII text, with very long lines (2141)
Hash d58027e243c6b36db9b2a98ef7ce4d54
3e93c83f6d6e8edd4bbbf0dbfe0572860d281b9f
15d9f0d3ccea351dba31b65b9772e15380c20514a067c036f6f291792c5bd9ca
GET /fulcrum/v4/master/dynamic/desktop.app~893ae42f.06e7857280577759b5de.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduGxV5Ki7rOXDVwFSiCEZJJ7aVuQsFkRpO4nwPGXj7JWx8ivNzcYJhljeqRVx89CvHBYpV3PlMFPMCuSCIe_0t3Gg
x-goog-generation: 1666858620422251
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2497
content-encoding: gzip
x-goog-hash: crc32c=mRzDvw==, md5=1YAn4kPGs225sqmO985NVA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2497
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 09 Dec 2022 13:33:18 GMT
expires: Fri, 06 Jan 2023 13:33:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 27 Oct 2022 08:17:00 GMT
etag: "d58027e243c6b36db9b2a98ef7ce4d54"
content-type: text/css
age: 17648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~85257485.c69bfffd4f58fa01a4b5.chunk.css?e=p
200 OK 3.1 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~85257485.c69bfffd4f58fa01a4b5.chunk.css?e=p
IP
File type ASCII text, with very long lines (2330)
Hash 7ed02e356a9fa9ac48bef8b1ea5c7da9
d353351f7dcc74aa0e81aa45521378e75888342d
5f8eae584056cf8e9cffb9fe467c3a9eef2ba509176141c04c10240b5405c0b8
GET /fulcrum/v4/master/dynamic/desktop.app~85257485.c69bfffd4f58fa01a4b5.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduYqCDe2cgdVocvxghKPclfB4SRS7LmgOwkgNrxkGQtBrQdu8LJeEW6jsztAyFgHjG1k73H_lDwTEUduVp2UfRGtaMrlra-
x-goog-generation: 1666858620426625
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 3089
content-encoding: gzip
x-goog-hash: crc32c=C0N/rg==, md5=ftAuNWqfqaxIvvix6lx9qQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 3089
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 24 Nov 2022 09:07:25 GMT
expires: Thu, 22 Dec 2022 09:07:25 GMT
cache-control: public, max-age=2419200,no-transform
age: 1329601
last-modified: Thu, 27 Oct 2022 08:17:00 GMT
etag: "7ed02e356a9fa9ac48bef8b1ea5c7da9"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~e3c4eceb.25daff71e1b8b1c1288f.chunk.css?e=p
200 OK 2.5 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~e3c4eceb.25daff71e1b8b1c1288f.chunk.css?e=p
IP
File type ASCII text, with very long lines (4103)
Hash e9e7cc48b8046ed5857526d1bbce5808
42f87d8b113566ecec07dd118b77c07f12ad7e23
ed9f3f0fbc4fbb9853ebf5ad84df39b0277185dfd4b47c4190f3201971b9ec01
GET /fulcrum/v4/master/dynamic/desktop.app~e3c4eceb.25daff71e1b8b1c1288f.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtk97p7nplk1e01ZiMdMC2NOTJvaIgjFyBparS_FJ_U57cr1Gf4pfvyJ8YqU4CQTH-zDzRvX7F2sjAGzZ8fIcBcN3LkUY31
x-goog-generation: 1667907367523116
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2530
content-encoding: gzip
x-goog-hash: crc32c=XG5+7g==, md5=6efMSLgEbtWFdSbRu85YCA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2530
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Tue, 06 Dec 2022 12:21:24 GMT
expires: Tue, 03 Jan 2023 12:21:24 GMT
cache-control: public, max-age=2419200,no-transform
age: 281162
last-modified: Tue, 08 Nov 2022 11:36:07 GMT
etag: "e9e7cc48b8046ed5857526d1bbce5808"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~f743f184.b8057e0c45fc3b52726b.chunk.css?e=p
200 OK 3.8 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~f743f184.b8057e0c45fc3b52726b.chunk.css?e=p
IP
File type ASCII text, with very long lines (7745)
Hash 28c0916f9cdeaa6ee505d7e34e7906f4
6e52a0804cc7d44fbd0c1efbb955fd3ae2b080ad
adb5a87e6e1d06b6bffa468d16dc3df915f491e53f10ffa3600b157c4afc5f08
GET /fulcrum/v4/master/dynamic/desktop.app~f743f184.b8057e0c45fc3b52726b.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvcPk7dThDocme0fcTlCw3BOqOEsU0J3aDzA89q-JNJicn3FQeW4PH94SxuKndjkaJLYNn_XEwUU94nmIrX4pHvrLg297OB
x-goog-generation: 1667308001095060
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 3781
content-encoding: gzip
x-goog-hash: crc32c=A+a4OA==, md5=KMCRb5zeqm7lBdfjTnkG9A==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 3781
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Tue, 29 Nov 2022 13:20:00 GMT
expires: Tue, 27 Dec 2022 13:20:00 GMT
cache-control: public, max-age=2419200,no-transform
age: 882446
last-modified: Tue, 01 Nov 2022 13:06:41 GMT
etag: "28c0916f9cdeaa6ee505d7e34e7906f4"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~6508fc56.9ba33e3fb78d74ddfc5e.chunk.css?e=p
200 OK 1.3 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~6508fc56.9ba33e3fb78d74ddfc5e.chunk.css?e=p
IP
File type ASCII text, with very long lines (1227)
Hash 6c163ffc759d8d4cbc335d7cf3eedb3b
9b0c77f37c974731dc7b32deb96470ee817fbe8d
373850af9e6a18155bc300f0728d71d57b5eb3ba94979cefa743b91e6e2ac399
GET /fulcrum/v4/master/dynamic/desktop.app~6508fc56.9ba33e3fb78d74ddfc5e.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvQZjrZOTY53amw7OFCLzBD6T_nbkOqJ5NulRPmVELhF7JOZ3p0y62189Zvq9Gm-BaW_WcpBGb8CoX9NB52524o1qP0Dzp9
x-goog-generation: 1667199463820993
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1306
content-encoding: gzip
x-goog-hash: crc32c=srGp/A==, md5=bBY//HWdjUy8M1188+7bOw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1306
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Mon, 28 Nov 2022 07:03:19 GMT
expires: Mon, 26 Dec 2022 07:03:19 GMT
cache-control: public, max-age=2419200,no-transform
age: 991447
last-modified: Mon, 31 Oct 2022 06:57:43 GMT
etag: "6c163ffc759d8d4cbc335d7cf3eedb3b"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~a4067193.639ef55a6746253e6738.chunk.css?e=p
200 OK 2.4 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~a4067193.639ef55a6746253e6738.chunk.css?e=p
IP
File type ASCII text, with very long lines (1404)
Hash c9163ed1a4b174229be86f09a4344043
b62c0c5b3a9ef72a60d318ea930fefa3764f2de0
5dea44ee9f0c37a56261bbbe2b44de338bae0d20f6162e9b22d58ae8326018dc
GET /fulcrum/v4/master/dynamic/desktop.app~a4067193.639ef55a6746253e6738.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtiEls8bEpscpvR5bcLlGxs-Pql7nkphobWTECEdwGeaglUh96p4fmS6mWJEx5u4m9Ij0HpRCKMCi-_3Tmt4ItnKNCwWpXJ
x-goog-generation: 1670506833781779
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2363
content-encoding: gzip
x-goog-hash: crc32c=YUifGA==, md5=yRY+0aSxdCKb6G8JpDRAQw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2363
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 13:46:35 GMT
expires: Thu, 05 Jan 2023 13:46:35 GMT
cache-control: public, max-age=2419200,no-transform
age: 103251
last-modified: Thu, 08 Dec 2022 13:40:33 GMT
etag: "c9163ed1a4b174229be86f09a4344043"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~b72e096b.15d55579da1adf35bcac.chunk.css?e=p
200 OK 2.3 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~b72e096b.15d55579da1adf35bcac.chunk.css?e=p
IP
File type ASCII text, with very long lines (2376)
Hash 1bb60dd668a15ce397202b7ec5050c04
f7851c97eec4a053d50f0b2a9971e83f83e109e2
c89b5155621eb0b51868304ab43c38b93f10c14d02157a6df25b092217577223
GET /fulcrum/v4/master/dynamic/desktop.app~b72e096b.15d55579da1adf35bcac.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtM28PzqX3GxdGqPGtt0XjweSm7Lcj-nDrPXgNTId2tV0aZYYEwva94WD-272QKTNRjFTT4r86yqWGvrqgQNmEQcwCqcMOW
x-goog-generation: 1670506833807942
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2326
content-encoding: gzip
x-goog-hash: crc32c=4Ny1Cw==, md5=G7YN1mihXOOXICt+xQUMBA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2326
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 13:46:35 GMT
expires: Thu, 05 Jan 2023 13:46:35 GMT
cache-control: public, max-age=2419200,no-transform
age: 103251
last-modified: Thu, 08 Dec 2022 13:40:33 GMT
etag: "1bb60dd668a15ce397202b7ec5050c04"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~53120a6d.d19ae0bf32e841169223.chunk.css?e=p
200 OK 1.4 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~53120a6d.d19ae0bf32e841169223.chunk.css?e=p
IP
File type ASCII text, with very long lines (1233)
Hash cf629555739437c7487fb267d03448b6
fdfb497336a5f4023fc6ebdaf9809169f6408137
026788d5f14e80961478021bda1ebe827e4bb85f752f3ba17a66a262dbf2e11a
GET /fulcrum/v4/master/dynamic/desktop.app~53120a6d.d19ae0bf32e841169223.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdumW_rMmiiBZK2Yh1YzDdluGDVF3RRBm87CuoThM0w7tN7jisTZH1MxE0wcWdr7e2RlcVr_rhyI7hJN9SMzMwdEHaJComn9
x-goog-generation: 1662388483400034
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1428
content-encoding: gzip
x-goog-hash: crc32c=3CK6lA==, md5=z2KVVXOUN8dIf7Jn0DRItg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1428
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 25 Nov 2022 07:04:47 GMT
expires: Fri, 23 Dec 2022 07:04:47 GMT
cache-control: public, max-age=2419200,no-transform
age: 1250559
last-modified: Mon, 05 Sep 2022 14:34:43 GMT
etag: "cf629555739437c7487fb267d03448b6"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/CHXiRz4wi-U
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/CHXiRz4wi-U
IP
Hash 188eee831491a451f9dea465455826f1
fd130fcd12aff90deeeda995a3c25268b5356ef8
f0019bd1ffd40ad48a5af40428f0d8bfbb7e7f7a67464cb9153315dbde8ce40b
POST /s/gts1p5/CHXiRz4wi-U HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:27:26 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~49da3702.76bddac9d2c33d00720a.chunk.css?e=p
200 OK 5.1 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~49da3702.76bddac9d2c33d00720a.chunk.css?e=p
IP
File type ASCII text, with very long lines (2490)
Hash a65da712df63762d0d94cd32658416ef
35b39ff9aa9eb200846ee1630f39f2d771bc06c7
06deb2c6eb779013c23e66872891f1b388e48b251437099f4adeb437ad058536
GET /fulcrum/v4/master/dynamic/desktop.app~49da3702.76bddac9d2c33d00720a.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvydKf6_pg19a3ySVNTFcttXXYz6N8kNOPlAZa4xXIsmcTVDjspnCSDK2xj4OAbA-4IvVw7GaOX6-yIrdX5u-jr3w
x-goog-generation: 1662455258201618
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 5062
content-encoding: gzip
x-goog-hash: crc32c=sfZnXw==, md5=pl2nEt9jdi0NlM0yZYQW7w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 5062
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 09 Dec 2022 13:33:18 GMT
expires: Fri, 06 Jan 2023 13:33:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 06 Sep 2022 09:07:38 GMT
etag: "a65da712df63762d0d94cd32658416ef"
content-type: text/css
age: 17648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~5aaaeec2.9e0f226334c0b636726b.chunk.css?e=p
200 OK 2.0 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~5aaaeec2.9e0f226334c0b636726b.chunk.css?e=p
IP
File type ASCII text, with very long lines (1132)
Hash 65bcdab01650334b24e6b4f855f23c34
79086028214b18b44a650aaa4d65b06328099d7b
c408fadb6739ec4b33c57a05b8dfdae5955f77e5fc4e121e06c6f91742d2dc47
GET /fulcrum/v4/master/dynamic/desktop.app~5aaaeec2.9e0f226334c0b636726b.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvs1wDxjrXlGaBE2ejDsiFTgve0sHxLRsruAAWNKsig5bKD-kfsThCZ5X9kSAOmI3Vw2hYQ88ccFwJf63iImDc2GBViO_pD
x-goog-generation: 1654761275314398
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 1999
content-encoding: gzip
x-goog-hash: crc32c=CS/s2g==, md5=ZbzasBZQM0sk5rT4VfI8NA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1999
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 24 Nov 2022 08:06:46 GMT
expires: Thu, 22 Dec 2022 08:06:46 GMT
cache-control: public, max-age=2419200,no-transform
age: 1333240
last-modified: Thu, 09 Jun 2022 07:54:35 GMT
etag: "65bcdab01650334b24e6b4f855f23c34"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~16805963.59bc5d36ae9a3d775bbf.chunk.css?e=p
200 OK 3.5 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~16805963.59bc5d36ae9a3d775bbf.chunk.css?e=p
IP
File type ASCII text, with very long lines (5066)
Hash 7227aa683f67a8553314ce4c39522058
de31d4b17c8fbdffb87d1cfa44b5b2c0c8f078f4
dc753f7a654292f26907fc7d01516d8d1f95727fa56b7b46b009a0b3d799801e
GET /fulcrum/v4/master/dynamic/desktop.app~16805963.59bc5d36ae9a3d775bbf.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv9wxq01GNB6ok_dfIwEjnAvTi1fKuW98VFDGw6mnLGGMpSwQvzugQ1kPBoOPCjfiVGhpP_5cux2aQPlYlj4teArLRl1Scu
x-goog-generation: 1669028775298254
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 3499
content-encoding: gzip
x-goog-hash: crc32c=/aQl9g==, md5=cieqaD9nqFUzFM5MOVIgWA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 3499
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Mon, 21 Nov 2022 11:58:42 GMT
expires: Mon, 19 Dec 2022 11:58:42 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Mon, 21 Nov 2022 11:06:15 GMT
etag: "7227aa683f67a8553314ce4c39522058"
content-type: text/css
age: 1578524
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~689e81fc.32b458d092d0c2c337ad.chunk.css?e=p
200 OK 336 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~689e81fc.32b458d092d0c2c337ad.chunk.css?e=p
IP
Hash bd2522e1f876fcefa5f13ffbdd7002c6
d9330a1982aa91bca04ffd2408e96390c9fedab9
1f440087462bee7b969f7c2ef0509e37c66c9eb1293de721c8b2a6dae3e04c1e
GET /fulcrum/v4/master/dynamic/desktop.app~689e81fc.32b458d092d0c2c337ad.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtp2EIPnBRwl_oupimbRIukEZDtvLrx2G6Z8MsCLVvDzd2emxTLbo5U42Ym_o2bT460Mz0vdc60OeV3Ecukmbj0XRxdaEko
x-goog-generation: 1664195510076996
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 336
content-encoding: gzip
x-goog-hash: crc32c=8Bf4nw==, md5=vSUi4fh2/O+l8T/73XACxg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 336
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 09 Dec 2022 13:33:18 GMT
expires: Fri, 06 Jan 2023 13:33:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Mon, 26 Sep 2022 12:31:50 GMT
etag: "bd2522e1f876fcefa5f13ffbdd7002c6"
content-type: text/css
age: 17648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~147f8b23.a0038bb595fcb1c26fb3.chunk.css?e=p
200 OK 231 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~147f8b23.a0038bb595fcb1c26fb3.chunk.css?e=p
IP
Hash fdf8781690da2fc40129fc51ba4bb360
6273803a0d5abf60be07b494d0023aaf287f92ad
0eab2f79140da5d9a6678f87957b010113e586d0c14cb73fa1d98a9be985e3fb
GET /fulcrum/v4/master/dynamic/desktop.app~147f8b23.a0038bb595fcb1c26fb3.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdviiTK6jNwFlg3utWSxAiA-jcwJpKoJ-uhJ1qriiny_zg-MSevBld5IntwVPSc69cQipmphrR_vpWh04jO1mYwqig
x-goog-generation: 1642607948850689
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 231
content-encoding: gzip
x-goog-hash: crc32c=ICdVug==, md5=/fh4FpDaL8QBKfxRukuzYA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 231
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Tue, 22 Nov 2022 10:59:06 GMT
expires: Tue, 20 Dec 2022 10:59:06 GMT
cache-control: public, max-age=2419200,no-transform
age: 1495700
last-modified: Wed, 19 Jan 2022 15:59:08 GMT
etag: "fdf8781690da2fc40129fc51ba4bb360"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.runtime.5a61cd3eeff72bc5149e.js?e=p
200 OK 6.3 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.runtime.5a61cd3eeff72bc5149e.js?e=p
IP
File type ASCII text, with very long lines (14950)
Hash 5f725bcabf31d84d392ec6d781140d62
1f42b4b09f02379841aee33d928b193b5793fc2f
166b77c8fee3bfb0ed353f5f22c5dcf66cc722ad27dee3abcf6975393bdb8d6a
GET /fulcrum/v4/master/dynamic/desktop.runtime.5a61cd3eeff72bc5149e.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsEaQny3Ne5OH5BJ8xwnTtcyDhsH-XA2pxVE-79u-OFZkxl87_5o47y9r6xPvDuV0WjOvgtUtJSFUGRRnYIHWMS8wbjUWzk
x-goog-generation: 1670509662654524
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 6253
content-encoding: gzip
x-goog-hash: crc32c=+rvjEg==, md5=X3Jbyr8x2E05LsbXgRQNYg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 6253
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "5f725bcabf31d84d392ec6d781140d62"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.relay~93c72913.7b8314d2e76f610a4592.chunk.js?e=p
200 OK 25 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.relay~93c72913.7b8314d2e76f610a4592.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash bcbe37690189c9f3453b8fec7cf636bf
23af9d66cc5c0bcb0d2d9f9b601562e3b20170e5
7c5984da194422022f1a1ab358927323934afa31208adb464ead88475167e0c8
GET /fulcrum/v4/master/dynamic/desktop.relay~93c72913.7b8314d2e76f610a4592.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtbL42XSL1hRm19W7HEQ4_8qVtLOPQg9Xzj_m64OnyWcphIgUY2svga70KOC0LZri1vipxk3TUj7zc3gUeNSTotZw
x-goog-generation: 1670506828067742
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 25183
content-encoding: gzip
x-goog-hash: crc32c=x5lXvA==, md5=vL43aQGJyfNFO4/sfPY2vw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 25183
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 09 Dec 2022 13:33:18 GMT
expires: Fri, 06 Jan 2023 13:33:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:28 GMT
etag: "bcbe37690189c9f3453b8fec7cf636bf"
content-type: application/javascript
age: 17648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~9b312c24.97133647e9e7ff786453.chunk.js?e=p
200 OK 13 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~9b312c24.97133647e9e7ff786453.chunk.js?e=p
IP
File type ASCII text, with very long lines (41455), with no line terminators
Hash 4f32251dd9a6c892a101553d4a99f77e
01233e8599350de60ad61b7e43d03049dac23e1f
cf17397b251a4cc5cca1b205414736ffd9a821f68d53998fe99b70958a78359e
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~9b312c24.97133647e9e7ff786453.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtCafQzbDoL9xLV7Y4QrS31ShDcpbowQn-rpHh88DLDdbVEreT2ibJGZVwO85DuFqiaZWx3XtWtPMqFMkjBE8-K8do6WXYK
x-goog-generation: 1670509662783017
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12822
content-encoding: gzip
x-goog-hash: crc32c=wLJwYw==, md5=TzIlHdmmyJKhAVU9Spn3fg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12822
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "4f32251dd9a6c892a101553d4a99f77e"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~e9b2199d.ae8e044715a88f024c9f.chunk.js?e=p
14 kB URL cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~e9b2199d.ae8e044715a88f024c9f.chunk.js?e=p
IP
File type gzip compressed data, was "tmped17hulz", last modified: Thu Dec 8 14:27:42 2022, max compression\012- data
Hash f25b01a1fddea3c1aaaf0447870cbcc2
a480764b01fbb4bd4977febb9b000241d40fc688
4ff8df0bc3854ea482c3daa2e06a6dd24979a697fe8c60c7c859f0505879dcea
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~e9b2199d.ae8e044715a88f024c9f.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~6b6ee712.52b998eee4d8e9d26f31.chunk.js?e=p
200 OK 18 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~6b6ee712.52b998eee4d8e9d26f31.chunk.js?e=p
IP
File type ASCII text, with very long lines (53243), with no line terminators
Hash eaa15f791226d8fab0b79ef4f8eed437
bc68026bf282f60938d0e73d21a98cf7b79969fd
e5321e1f33085a8da703c7cbc8de4622dbec8ec001917bdca3de57c7ddf79e80
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~6b6ee712.52b998eee4d8e9d26f31.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvczDb0HdrIzWd0GwNs_h7bzPPy9YQv5smxI4J7fs6UKsYwLkAydYZMdutkGt0AfIxUrEm5UEtgzrATz9hxgX9Mmw
x-goog-generation: 1670509662765409
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 17826
content-encoding: gzip
x-goog-hash: crc32c=I+8Kvg==, md5=6qFfeRIm2Pqwt570+O7UNw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 17826
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "eaa15f791226d8fab0b79ef4f8eed437"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~8bb0f2b2.a78e67bb86fab5196f14.chunk.js?e=p
200 OK 7.0 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~8bb0f2b2.a78e67bb86fab5196f14.chunk.js?e=p
IP
File type ASCII text, with very long lines (17194), with no line terminators
Hash 81dcb5e6a191db2a95696b0c3a60ce8d
f0b6a0f763924213d5a5d16dd36eadbd54692e72
acd03e6b24976614f7d754c5cd4bbac14c4ac5c1f3ae5cde9fdd41b1a8b5a84a
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~8bb0f2b2.a78e67bb86fab5196f14.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtyj9qFdyveb5GgARflyBEUvFhJhgYVjI3vR1jnnb5GPlk8OLGmklgRGhwBENKfWc40D_ecXqEJbzRoNHh3rllGnw
x-goog-generation: 1670506828264966
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7031
content-encoding: gzip
x-goog-hash: crc32c=QYHlFg==, md5=gdy15qGR2yqVaWsMOmDOjQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 7031
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 13:46:38 GMT
expires: Thu, 05 Jan 2023 13:46:38 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:28 GMT
etag: "81dcb5e6a191db2a95696b0c3a60ce8d"
content-type: application/javascript
age: 103248
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~c333a169.0ebb54991c755f7459f5.chunk.js?e=p
200 OK 7.0 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~c333a169.0ebb54991c755f7459f5.chunk.js?e=p
IP
File type ASCII text, with very long lines (19878), with no line terminators
Hash 5db7815e0cf35b90a38c5ac638fa26df
b0740d1c2c37532adca44654acbb947db5908a23
294187bb7d612552ef7abda17ec32e042743cfcf3394d46b78be2a1e0dc17863
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~c333a169.0ebb54991c755f7459f5.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsZ4oI2UMPqESP-IYbAUXH4hBDZyJ9Eg7WKyATmQ5hkJ5ci2NKwHgcgIBR4HDocr_lXZjswdbjVc1tanqJZ8sK5EGH8B6Km
x-goog-generation: 1670506828339824
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 6969
content-encoding: gzip
x-goog-hash: crc32c=e2/f+A==, md5=XbeBXgzzW5CjjFrGOPom3w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 6969
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 09 Dec 2022 13:33:18 GMT
expires: Fri, 06 Jan 2023 13:33:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:28 GMT
etag: "5db7815e0cf35b90a38c5ac638fa26df"
content-type: application/javascript
age: 17648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~111adfe1.813baa25daa2d3d12541.chunk.js?e=p
200 OK 12 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~111adfe1.813baa25daa2d3d12541.chunk.js?e=p
IP
File type ASCII text, with very long lines (44140), with no line terminators
Hash d9310c6f81aa5396691b2350fb324d52
463e9996a620d823d144f43505a5ad40f0b9e2fc
cf50b9c22f6226eb34dec3087d75caaa280c558b88d5172beea92ae9ac17a7f9
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~111adfe1.813baa25daa2d3d12541.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsoG7en85XcB8TDMKpQRA5EHRAduABc_RiPqpKGUZ6TNGfR1OgTHfqPj0lRE7ebfiKtgobFxzTvTxWx2Gz7SZf9iA
x-goog-generation: 1670506828080770
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 11537
content-encoding: gzip
x-goog-hash: crc32c=iqwE6g==, md5=2TEMb4GqU5ZpGyNQ+zJNUg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 11537
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 13:46:38 GMT
expires: Thu, 05 Jan 2023 13:46:38 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:28 GMT
etag: "d9310c6f81aa5396691b2350fb324d52"
content-type: application/javascript
age: 103248
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~ffdf5190.8bb6e6fc0340b6bc4f03.chunk.js?e=p
200 OK 26 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~ffdf5190.8bb6e6fc0340b6bc4f03.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4b95d685f86b6107278c94e4391560b0
a672d8c8d3b65b37c36390e501c47e9ad60e0072
c5dc7eb31dd2ebdb386dc083eb0ca9d086fd91ad0b3469c6d06ee0c2e5c6480b
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~ffdf5190.8bb6e6fc0340b6bc4f03.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsaCXgyJq-VtM7rryIRyJKrH8M41mzrVt4qciSxW3gzi5_WHEguQj8OTaaq2Yo7IWDpQ7alzECfBhCb_5pUWV8xui2zD_ij
x-goog-generation: 1670509662948209
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 25859
content-encoding: gzip
x-goog-hash: crc32c=+KT5IA==, md5=S5XWhfhrYQcnjJTkORVgsA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 25859
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "4b95d685f86b6107278c94e4391560b0"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~1d14d743.4a5b1ad5f68cbf1755a4.chunk.js?e=p
200 OK 5.2 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~1d14d743.4a5b1ad5f68cbf1755a4.chunk.js?e=p
IP
File type ASCII text, with very long lines (13402)
Hash 0acc2f0bdd3be81857a6960c51717779
37a0b08edf6777ca4443de9239e6c64b59727a27
0f38ac3d67a117acbb99b7efdbe51f7dc7a281b2cf24941c3269b2884b47ffd1
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~1d14d743.4a5b1ad5f68cbf1755a4.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsTBt5YTgdLqNjvsdmY9yNg4QxgpAlaOOQqDv5Y8o2E3-STTEcFbL1Qnnu5TC8U_-owbWHR8lG25wde1mMn6bSI-SXryJaT
x-goog-generation: 1670509662683467
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 5202
content-encoding: gzip
x-goog-hash: crc32c=bcWINQ==, md5=CswvC9076BhXppYMUXF3eQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 5202
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "0acc2f0bdd3be81857a6960c51717779"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~a8f9656c.59290e57ac40573c362e.chunk.js?e=p
200 OK 20 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~a8f9656c.59290e57ac40573c362e.chunk.js?e=p
IP
File type ASCII text, with very long lines (31376)
Hash efd84b656997afb90d40ef2e2c2b6410
9f13af1f39ef5c72d46ee066d13b55176900c807
0de9b2c2ffcd5d201d7b01337b1c5443a94a047d7c347c03f9ca0250149f01c0
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~a8f9656c.59290e57ac40573c362e.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtFfFNjTLDUC6XVsiTQ9ZsGd269SB9GDiYCrpSD3vMK2W0wngOTY9DFDM2wr8HvKa5U8X5anrZLPvvbiiyIeu1KEmNGNXiL
x-goog-generation: 1670509662869809
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 20194
content-encoding: gzip
x-goog-hash: crc32c=kmc4Kw==, md5=79hLZWmXr7kNQO8uLCtkEA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 20194
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "efd84b656997afb90d40ef2e2c2b6410"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~112c8377.573ec7b7b6a44a47a278.chunk.js?e=p
200 OK 18 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~112c8377.573ec7b7b6a44a47a278.chunk.js?e=p
IP
File type Unicode text, UTF-8 text, with very long lines (38997)
Hash 0ceb45d64f78e6d5c501c6ff1db33a25
fb3aeb204ad61f3d1a0f7b23c2b55d9588e9551d
84de451fd17e82ecbf664bae5a2950b51e6913a8da788c8bd4cc01022450e17f
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~112c8377.573ec7b7b6a44a47a278.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu0lRtywfmf1n1wGkW7g0cCZPmjyEb-dM-mI5mXoFawaMa1UNMcPMywGCoGX-tu6hpOdcNmtMXJyPnIypE1YZRjXQ
x-goog-generation: 1670506828047991
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 18364
content-encoding: gzip
x-goog-hash: crc32c=PLWNwg==, md5=DOtF1k945tXFAcb/HbM6JQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 18364
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 13:46:38 GMT
expires: Thu, 05 Jan 2023 13:46:38 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:28 GMT
etag: "0ceb45d64f78e6d5c501c6ff1db33a25"
content-type: application/javascript
age: 103248
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~34e3d95a.315be2af99a2e61a670b.chunk.js?e=p
200 OK 25 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~34e3d95a.315be2af99a2e61a670b.chunk.js?e=p
IP
File type ASCII text, with very long lines (52622)
Hash c116c34b3bd35e013ce93a7bb74f4cbd
f7d4a114ccfbd6ba572cf33e35c07b06d436ca39
a141758236eb2c453852fcc907c1cc76b2902138444361feac7c057bae4bf9d5
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~34e3d95a.315be2af99a2e61a670b.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsoOB-xNWRuoj-h8xgGVRuraPuAcxa3UPWmDWLaY7prfZWkBSoDlwamp3k-Lm_lhOHnaaRjfcybVp3qi8Sdmeb-rfzkOwi0
x-goog-generation: 1670509662783461
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 24936
content-encoding: gzip
x-goog-hash: crc32c=cB2cRQ==, md5=wRbDSzvTXgE86Tp7t09MvQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 24936
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 09 Dec 2022 13:33:18 GMT
expires: Fri, 06 Jan 2023 13:33:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "c116c34b3bd35e013ce93a7bb74f4cbd"
content-type: application/javascript
age: 17648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/CHXiRz4wi-U
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/CHXiRz4wi-U
IP
Hash 188eee831491a451f9dea465455826f1
fd130fcd12aff90deeeda995a3c25268b5356ef8
f0019bd1ffd40ad48a5af40428f0d8bfbb7e7f7a67464cb9153315dbde8ce40b
POST /s/gts1p5/CHXiRz4wi-U HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 18:27:26 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~e4dfd1bd.e96b6c95187bf505cfd0.chunk.js?e=p
200 OK 7.0 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~e4dfd1bd.e96b6c95187bf505cfd0.chunk.js?e=p
IP
File type ASCII text, with very long lines (8628)
Hash a5fee48ad7228087d00d720a2684869e
db53f8aadea7827dfc00aeb564416131f9bd2691
c15094034b432434575fdcdb26cefc781fac4a50416d9a070bd0b2a1ffbd04f6
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~e4dfd1bd.e96b6c95187bf505cfd0.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdukGZBSOh-8AMdtROzkq8bcmyLiK0dbMKaRFXdkvNaOQYaRkkQaFvrpps39ktxpkvJVj3kLwe2lhlYFg-NNxMu9lG1_PR7p
x-goog-generation: 1670506828425496
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 7029
content-encoding: gzip
x-goog-hash: crc32c=CeRRdg==, md5=pf7kitcigIfQDXIKJoSGng==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 7029
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 13:46:38 GMT
expires: Thu, 05 Jan 2023 13:46:38 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:28 GMT
etag: "a5fee48ad7228087d00d720a2684869e"
content-type: application/javascript
age: 103248
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~48485911.8bcd67de010b302fba35.chunk.js?e=p
200 OK 14 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~48485911.8bcd67de010b302fba35.chunk.js?e=p
IP
File type ASCII text, with very long lines (49657), with no line terminators
Hash 162fda194052f97c324c345b530bc547
e109aca1ffeca4fc99dd70c5a092d8f48411701b
d905822113ece77fee1a8c5f629d17262118634be82041191720896cb8d5d38a
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~48485911.8bcd67de010b302fba35.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdssV7N3m0QbgUd6yTcNhVVdV_1ZtGDUBOr4vhr7SJ-P3b5s3k6eOTCZRZOMgg1QIpNXKZxH94b8LkbjgZspgS9fJg
x-goog-generation: 1670506828132139
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 13790
content-encoding: gzip
x-goog-hash: crc32c=ZwM+yg==, md5=Fi/aGUBS+XwyTDRbUwvFRw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 13790
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 09 Dec 2022 13:33:18 GMT
expires: Fri, 06 Jan 2023 13:33:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:28 GMT
etag: "162fda194052f97c324c345b530bc547"
content-type: application/javascript
age: 17648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~b70f0aa6.00b118c2997651f8937a.chunk.js?e=p
200 OK 6.6 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~b70f0aa6.00b118c2997651f8937a.chunk.js?e=p
IP
File type ASCII text, with very long lines (28642), with no line terminators
Hash b1f1c00295106df0203436d811921f81
7086610c061b3fde96b722f09227148e55a0d86a
8a1e15564d2b4083a407bb868f0a158d30c5ada63baa53a7fa4de245fdab4c00
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~b70f0aa6.00b118c2997651f8937a.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduzQFcUveKPFCQcgZNyxwsrlOQhisLnkbzzyuPaiAadP4kmvV_G96Z7JTBPNcUbDfbdtsJtwdn0dkha7XPzZDEUbQ
x-goog-generation: 1670509662808158
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 6631
content-encoding: gzip
x-goog-hash: crc32c=9Gf+Fg==, md5=sfHAApUQbfAgNDbYEZIfgQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 6631
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "b1f1c00295106df0203436d811921f81"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~1b3c8972.0662e5912108b392a7bc.chunk.js?e=p
200 OK 21 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~1b3c8972.0662e5912108b392a7bc.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 141c66e182b7a8b61b44955ad4575c47
3fc69913c8f5950522b3b7df8acbac2c441bb961
62076c07836f38427cec72cfc872f4bfcf23a2f23bc49dec7e52b3a11482c23d
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~1b3c8972.0662e5912108b392a7bc.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsjT9x-XQxAxR6M89uxKYi4uAMkrmOU8ZMfpf4hC3iVJpa-XTEHOGM_iKNsUDdZ80nM_svJze2KwvpYEfJKySOeSw
x-goog-generation: 1670506828243130
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 20569
content-encoding: gzip
x-goog-hash: crc32c=hvJ86g==, md5=FBxm4YK3qLYbRJVa1FdcRw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 20569
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 13:46:38 GMT
expires: Thu, 05 Jan 2023 13:46:38 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:28 GMT
etag: "141c66e182b7a8b61b44955ad4575c47"
content-type: application/javascript
age: 103248
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~49492de1.4affe9b2b78097304cd7.chunk.js?e=p
200 OK 11 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~49492de1.4affe9b2b78097304cd7.chunk.js?e=p
IP
File type ASCII text, with very long lines (20284)
Hash 77f280369670b032f2688d66da643887
ca96ef29734ac000ffbc98dc7ea7394a8af43e91
a51e9b85e8bc8af77c6e845f51444992afec1a1de30e32db042eee104ccdcdc7
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~49492de1.4affe9b2b78097304cd7.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdveFTK2grkkW8rVPn0KJJkqRPBvkDh-vM3-1a_zynpDGuXYplhTeqQmP_5E8Ce82mjRLEnxQ2rEcjwbhVqOVWNz5Ke--O4T
x-goog-generation: 1670506828151116
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10914
content-encoding: gzip
x-goog-hash: crc32c=YgL1Aw==, md5=d/KANpZwsDLyaI1m2mQ4hw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 10914
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 13:46:38 GMT
expires: Thu, 05 Jan 2023 13:46:38 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:28 GMT
etag: "77f280369670b032f2688d66da643887"
content-type: application/javascript
age: 103248
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~493df0b3.8d294af96cd77edd3576.chunk.js?e=p
200 OK 20 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~493df0b3.8d294af96cd77edd3576.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 22e22bf869190042c5a0f82a22544de7
a53e50de821c11d95ecf0a38f77953d243f698b0
308300e22fa146cacf83b35e30398eae04080698a875d2b9d9bca2a2fa9b3916
GET /fulcrum/v4/master/dynamic/desktop.app~493df0b3.8d294af96cd77edd3576.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsDx-FuagwIl4QPQHvECp96ola1xhplhiVTYbEWH_OA4EQoeuFg72NdCby8fpwZiriIddIzE973SwN0VBe_l6DpNDi_TVDl
x-goog-generation: 1670509662151259
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 19637
content-encoding: gzip
x-goog-hash: crc32c=X8Wr1w==, md5=IuIr+GkZAELFoPgqIlRN5w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 19637
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 09 Dec 2022 13:33:18 GMT
expires: Fri, 06 Jan 2023 13:33:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "22e22bf869190042c5a0f82a22544de7"
content-type: application/javascript
age: 17648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~bfe0ed74.2d1e8c535a2407fb60a8.chunk.js?e=p
200 OK 28 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~bfe0ed74.2d1e8c535a2407fb60a8.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 29bc1d8ad3276da30162001407b1f3da
d85c62c3d0fc96dcd633a896913fc1218b077b19
b0f2fb1a465c8b5f930e7c1dff97598f39b71d0fa582253d53e69c46748c3a90
GET /fulcrum/v4/master/dynamic/desktop.app~bfe0ed74.2d1e8c535a2407fb60a8.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtxs55jpcl2lRLBanpCrx1xU1KfOYp54d2IkZF9EaHxRo8aCz95umHFdrP2ugxzqQj_KBCxylNznGP_wRNTdbOTEAu5UFyD
x-goog-generation: 1670509662545784
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 28286
content-encoding: gzip
x-goog-hash: crc32c=I/ySXw==, md5=KbwditMnbaMBYgAUB7Hz2g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 28286
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "29bc1d8ad3276da30162001407b1f3da"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~d25db61d.25ef2ef081864b232549.chunk.js?e=p
200 OK 12 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~d25db61d.25ef2ef081864b232549.chunk.js?e=p
IP
File type ASCII text, with very long lines (53532)
Hash 8658b262f6e6986c66b42c9b84c7dd42
74cd4ea76de1a5ae7e18379ecd7916e838565952
47a509c03d3badb2a4cbe52e162db92f674fbf9810835fa1ab643eb14e99b399
GET /fulcrum/v4/master/dynamic/desktop.app~d25db61d.25ef2ef081864b232549.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduY8boocDm_G1_b9lScNKhiiPjtnICaM1qyKolRwR8EWlDw-e1KJnfGMOh4JB8CThV1JkT6IKqSms6b8akDmoXukw
x-goog-generation: 1670509662593167
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 11540
content-encoding: gzip
x-goog-hash: crc32c=KqOiNw==, md5=hliyYvbmmGxmtCybhMfdQg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 11540
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "8658b262f6e6986c66b42c9b84c7dd42"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~f075b844.3c9fa19ea2634eb527c6.chunk.js?e=p
200 OK 24 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~f075b844.3c9fa19ea2634eb527c6.chunk.js?e=p
IP
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash 6c417c167c8387d710fba060ead4fd46
d1ca0ce7b972f0e02e415d397fabb89107f32537
91df9f4d84d44c8091984202f68f9ab439f7b20672add724b049bae7a0397860
GET /fulcrum/v4/master/dynamic/desktop.app~f075b844.3c9fa19ea2634eb527c6.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduDuEVHCjfPCG7liJ4yqgwaYyZqjY3bIAudUeHDCJDB61PspeLywKwgWr3WfV8wlM3OZYT2FHnvXeT9FMoX_64O9cOdHsYF
x-goog-generation: 1670509662680475
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 24540
content-encoding: gzip
x-goog-hash: crc32c=dXbang==, md5=bEF8FnyDh9cQ+6Bg6tT9Rg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 24540
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 09 Dec 2022 13:33:18 GMT
expires: Fri, 06 Jan 2023 13:33:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "6c417c167c8387d710fba060ead4fd46"
content-type: application/javascript
age: 17648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~cb9bcefa.9334a58869cbdd4736c3.chunk.js?e=p
200 OK 25 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~cb9bcefa.9334a58869cbdd4736c3.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 127390a97d7e01d026a79701aecbaa16
eea76581a4dfff2552ec2252f0541cf69173833c
0e4d7cce4712eb10d6be4ea9c15e4a6365fc7b593585e3a49144bcd263cf32de
GET /fulcrum/v4/master/dynamic/desktop.app~cb9bcefa.9334a58869cbdd4736c3.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycds8GEko1059slkMnujsU88dwILqODOEzNKs9Hytmb0m9FLtigHpvmImXHIAED7RMFXHwM5-GXPxZ7TDu0rRJoBpdA
x-goog-generation: 1670509662652874
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 25192
content-encoding: gzip
x-goog-hash: crc32c=PDbhCA==, md5=EnOQqX1+AdAmp5cBrsuqFg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 25192
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "127390a97d7e01d026a79701aecbaa16"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~83b42d19.35551044d9b3addadaf4.chunk.js?e=p
200 OK 27 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~83b42d19.35551044d9b3addadaf4.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3114d0df28a7ebd8f216b74ffde2703c
6c54d30a1a50102b3cde3800fc5a7083d5711595
cc5c4dca53474ddeb18e38267451ef653e2b0a3825a01cfe3cd2579a50df47b0
GET /fulcrum/v4/master/dynamic/desktop.app~83b42d19.35551044d9b3addadaf4.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtJy6feCOlDqstSY4C2q1qUdZnU_WJmCvS5DkkFa6h2RVChsPoKiZ9SxOwa8I7MMzQjKRBw3eLNF_WLHGsJCC3Grw
x-goog-generation: 1670509662368161
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 27419
content-encoding: gzip
x-goog-hash: crc32c=+UWLcw==, md5=MRTQ3yin69jyFrdP/eJwPA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 27419
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 09 Dec 2022 13:33:18 GMT
expires: Fri, 06 Jan 2023 13:33:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "3114d0df28a7ebd8f216b74ffde2703c"
content-type: application/javascript
age: 17648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~4096559f.117e30bcc97786c5dba8.chunk.css?e=p
200 OK 3.8 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~4096559f.117e30bcc97786c5dba8.chunk.css?e=p
IP
File type ASCII text, with very long lines (1928)
Hash 8018daf05620e20fe14eb401b11bfd00
41e931cddece29e84a99ccbdf44e4fd202eef5d2
b12c506dd2c17200b263ce050efdb78419406af5f13eed51d01d98ca5324a2e5
GET /fulcrum/v4/master/dynamic/desktop.app~4096559f.117e30bcc97786c5dba8.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvpbaaVWmxkVXqmnyB7PZDIX7-H-xvgXPL_HOSHvpT8mcuh5sNr7adF-qupNSwwghoOzNQCL5eNwr_2aRPRHPElJg
x-goog-generation: 1670506833735894
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 3783
content-encoding: gzip
x-goog-hash: crc32c=JKl95Q==, md5=gBja8FYg4g/hTrQBsRv9AA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 3783
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 13:46:35 GMT
expires: Thu, 05 Jan 2023 13:46:35 GMT
cache-control: public, max-age=2419200,no-transform
age: 103251
last-modified: Thu, 08 Dec 2022 13:40:33 GMT
etag: "8018daf05620e20fe14eb401b11bfd00"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~032dba4b.aa1f8253ec99bb35eaf1.chunk.css?e=p
200 OK 2.4 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~032dba4b.aa1f8253ec99bb35eaf1.chunk.css?e=p
IP
File type ASCII text, with very long lines (1039)
Hash c48e87502d824445ad5af34db2599b77
01e7998f129bc305aa73b7fa63f552f3f12c1cbf
06559a3b7c260f4e8d534946e7a2889b7e5a97a0262b15532f1561b1f5a9778b
GET /fulcrum/v4/master/dynamic/desktop.app~032dba4b.aa1f8253ec99bb35eaf1.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtKGmE1Nk64scIbXuPTyLqaLdLKW5U-sTpBt2BeQ3WFLW7h2t9J1S8pSzHt_ZqEwi2Wzh7F8j254tCWgyei-k_HKA
x-goog-generation: 1662037941490373
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2379
content-encoding: gzip
x-goog-hash: crc32c=w4z4XA==, md5=xI6HUC2CREWtWvNNslmbdw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2379
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 24 Nov 2022 13:33:30 GMT
expires: Thu, 22 Dec 2022 13:33:30 GMT
cache-control: public, max-age=2419200,no-transform
age: 1313636
last-modified: Thu, 01 Sep 2022 13:12:21 GMT
etag: "c48e87502d824445ad5af34db2599b77"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~7e0fb108.a8cf01b39e93f963388c.chunk.css?e=p
200 OK 4.4 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~7e0fb108.a8cf01b39e93f963388c.chunk.css?e=p
IP
File type ASCII text, with very long lines (5284)
Hash ea9a259c90d791a8081819dcc8b27228
6a9d166f9ab7dc33034d38e32e4110c8632e3f34
f75206a9c19bfd18bcd024732c650e1fdd26ae2ac1bde82d47dff3dad08aa533
GET /fulcrum/v4/master/dynamic/desktop.app~7e0fb108.a8cf01b39e93f963388c.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdstqBnFGoteReTWtIQIzqN5sYiLKhfeo1GFCkKnlADujDYBW-qjNdM9Msz_nMBvM_kPOlOkPLKwI1Og7WKg24jT3hnIpDiV
x-goog-generation: 1669725892590240
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 4359
content-encoding: gzip
x-goog-hash: crc32c=EopGgA==, md5=6polnJDXkagIGBncyLJyKA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 4359
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Tue, 29 Nov 2022 12:52:59 GMT
expires: Tue, 27 Dec 2022 12:52:59 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Tue, 29 Nov 2022 12:44:52 GMT
etag: "ea9a259c90d791a8081819dcc8b27228"
content-type: text/css
age: 884067
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~65a23365.80781675a58d7884ee82.chunk.css?e=p
200 OK 5.5 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~65a23365.80781675a58d7884ee82.chunk.css?e=p
IP
File type ASCII text, with very long lines (6205)
Hash 6e3e51c4c5d78ab8a79931e2452091b7
9da43087304126b52641e54ff890c763df2c3407
bacf4258a319c991b2f11d3d9dc592d9b250f329656b6f35f5cb822044bff70b
GET /fulcrum/v4/master/dynamic/desktop.app~65a23365.80781675a58d7884ee82.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu7TfRGv-66RdoTwsnvkezE6V0QlsLVGQRaM1XOKap6-RliutcsMonS_J4de2Xee_7W7aXcyW---goKFnk7vXomiw
x-goog-generation: 1670506833784397
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 5538
content-encoding: gzip
x-goog-hash: crc32c=tTI/Vg==, md5=bj5RxMXXirinmTHiRSCRtw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 5538
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 09 Dec 2022 13:33:18 GMT
expires: Fri, 06 Jan 2023 13:33:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:33 GMT
etag: "6e3e51c4c5d78ab8a79931e2452091b7"
content-type: text/css
age: 17648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~f70d66fb.244ecb2adc0a801bdda3.chunk.css?e=p
200 OK 915 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~f70d66fb.244ecb2adc0a801bdda3.chunk.css?e=p
IP
File type ASCII text, with very long lines (1265)
Hash 2e53d1a5987c9b4495e6a414395b25fe
ce00ddaef6965cb0ae87aa233d02cef362e070c7
f89eb8cfebda92bcb3aca5b68ac154c37e2dba61272e8e9dfe1f960aea50cee9
GET /fulcrum/v4/master/dynamic/desktop.app~f70d66fb.244ecb2adc0a801bdda3.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduz6l5O0VOa-CGlcjHYwY0EPZGUjqSNQnAiMkP9-JSKe1l2YGRPWzamf4Fuo9bcn778MqX-ZItCoHTS4n-MIbBiCNll7fA5
x-goog-generation: 1642607949357475
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 915
content-encoding: gzip
x-goog-hash: crc32c=hNEiBw==, md5=LlPRpZh8m0SV5qQUOVsl/g==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 915
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 09 Dec 2022 13:33:18 GMT
expires: Fri, 06 Jan 2023 13:33:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Wed, 19 Jan 2022 15:59:09 GMT
etag: "2e53d1a5987c9b4495e6a414395b25fe"
content-type: text/css
age: 17648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~b121d67a.3566684e49909e3fde3f.chunk.js?e=p
200 OK 5.2 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~b121d67a.3566684e49909e3fde3f.chunk.js?e=p
IP
File type ASCII text, with very long lines (16213)
Hash 2b9a7de112b5c244514fffdfd489350c
12c8e46b4f1c086a14d942d24b915d68fa1b07ac
0e06cb8253517e92515636e8a6b00fa0e520c67a6d3d4e1aec2d95429340dc2c
GET /fulcrum/v4/master/dynamic/desktop.app~b121d67a.3566684e49909e3fde3f.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvsdyi8w6njC1jpOumT_HQWWEaZJ9sNfVN7WVnfJtAuukFuOemtCOb9dFq2I9j-1xzDJ48dklG3M_fKmxt0RYB2ww
x-goog-generation: 1670509662435848
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 5159
content-encoding: gzip
x-goog-hash: crc32c=nnFKyw==, md5=K5p94RK1wkRRT//f1Ik1DA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 5159
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "2b9a7de112b5c244514fffdfd489350c"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~bf5ed2a1.2bc6bbe44eb0fbc5b27a.chunk.js?e=p
200 OK 8.4 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~bf5ed2a1.2bc6bbe44eb0fbc5b27a.chunk.js?e=p
IP
File type ASCII text, with very long lines (34710)
Hash 304b4c7bbf7ffcd0c7f3369f3b31cd89
0249393398a089be3c9b07891895a192a6fcd406
195ced2dd695a044470a45ef4de21d10eddbc308929e10682f398036305052a2
GET /fulcrum/v4/master/dynamic/desktop.app~bf5ed2a1.2bc6bbe44eb0fbc5b27a.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsYFIXN3oLlt1KGWR1jOe75jOmCjvhYnW6iCFuWYAe89mPtNGQLLhXNL9KHQlBsm0DB0F62NpPbcOUdpkfETw43XsxsW03_
x-goog-generation: 1670509662474420
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 8406
content-encoding: gzip
x-goog-hash: crc32c=CMLbkg==, md5=MEtMe79//NDH8zafOzHNiQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 8406
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "304b4c7bbf7ffcd0c7f3369f3b31cd89"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~5ffb77a3.0abbb2e5c4747cc63109.chunk.js?e=p
200 OK 5.8 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~5ffb77a3.0abbb2e5c4747cc63109.chunk.js?e=p
IP
File type ASCII text, with very long lines (17845)
Hash c7eecf854b1d3755a10187edad9eb585
d171fced45b05ccf0ac31173375e231de9258ffa
1666187d13896a06abab7e88f3574b9916ae9fc66c3a29e38b3f3a4aecad9df7
GET /fulcrum/v4/master/dynamic/desktop.app~5ffb77a3.0abbb2e5c4747cc63109.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvlYJ7LlcRXWZno1sYzs4FoMv5EjWBkPcdnq1nJFf7nRhuEm-scHY2bgfXRMqxVLQKX_Wp1u3uS7s7IYaKnA2dtfw
x-goog-generation: 1670509662216278
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 5806
content-encoding: gzip
x-goog-hash: crc32c=yipNnA==, md5=x+7PhUsdN1WhAYftrZ61hQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 5806
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "c7eecf854b1d3755a10187edad9eb585"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~ca90faeb.c31bed3f3021d41e2f60.chunk.js?e=p
200 OK 30 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~ca90faeb.c31bed3f3021d41e2f60.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash d3382980a03702614b4d764399eefec2
d3182f96d77af7d5c04d8e21881697495995e0fb
37d3c9693c184b80180b7f651336cd3c07fab50054bcfed35fd3f3a9775a477f
GET /fulcrum/v4/master/dynamic/desktop.app~ca90faeb.c31bed3f3021d41e2f60.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtPNweJ0sANypfXCBBaY03xUPKMSDp94r7bsr9bOO5pA7fABocSwLzs4bY2Srmj9186SVUTaiF1x-gGFFCry1mqp7DzRrOJ
x-goog-generation: 1670509662612879
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 29866
content-encoding: gzip
x-goog-hash: crc32c=EP5onQ==, md5=0zgpgKA3AmFLTXZDme7+wg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 29866
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "d3382980a03702614b4d764399eefec2"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~b153da6b.ab52f77caba4cf651938.chunk.js?e=p
200 OK 29 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~b153da6b.ab52f77caba4cf651938.chunk.js?e=p
IP
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash b529bb4e3e76014b0249f1d86198172d
246a9c6fb3592abbbb4b9ba91c0ab444e1f44f76
f8b94e9cf007b1d3bb0ca509a20d77c1a9399e63bee820f54d33f085bf927867
GET /fulcrum/v4/master/dynamic/desktop.app~b153da6b.ab52f77caba4cf651938.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsleG2znGFSKj4vAr7QcLHk3fmeWWpRRzqjAHxL0CaYBUgUpgKJl6ETDanFK0XHSDQFKTY92Ac87Iki4c01F8TFrw
x-goog-generation: 1670509662545567
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 28922
content-encoding: gzip
x-goog-hash: crc32c=6SATDw==, md5=tSm7Tj52AUsCSfHYYZgXLQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 28922
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "b529bb4e3e76014b0249f1d86198172d"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~5e3c34e6.c5c544b7fb70aabb8ba3.chunk.js?e=p
200 OK 13 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~5e3c34e6.c5c544b7fb70aabb8ba3.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5b461e8ab48c54ec81a3594b0d6331f0
f958390e18fe19d4b3075c10be7786ea03386966
464cd7674cb4ffe939f4efee0e3b9bd4634caca4f12eb9022c5f6bd2991a607d
GET /fulcrum/v4/master/dynamic/desktop.app~5e3c34e6.c5c544b7fb70aabb8ba3.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtkfRh8urFQ8kLdtdwLYDlowJ-LOkQBc5IoNEM9c7350l7XZ0BYkiG5kCftsW4sYi75NxIUE9GSDVXIuDb0Dz00EQ
x-goog-generation: 1670509662256064
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12750
content-encoding: gzip
x-goog-hash: crc32c=B4DH5A==, md5=W0YeirSMVOyBo1lLDWMx8A==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12750
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 09 Dec 2022 13:33:18 GMT
expires: Fri, 06 Jan 2023 13:33:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "5b461e8ab48c54ec81a3594b0d6331f0"
content-type: application/javascript
age: 17648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~4d4445e8.c560fcb2876a576ec57c.chunk.js?e=p
200 OK 14 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~4d4445e8.c560fcb2876a576ec57c.chunk.js?e=p
IP
File type ASCII text, with very long lines (63146)
Hash 5b858c8e7792164389872b297a64c06e
7880c5b29177eba24e08ea96349c5ab7b8829765
b25ecfd4fb6839c6afb2581ba3926f95a96b35ed74bcc5e7ed82d8cb882ce725
GET /fulcrum/v4/master/dynamic/desktop.app~4d4445e8.c560fcb2876a576ec57c.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtq9fCSNYVKf7S7oXo_EVR7rTKKSSHPPa3rG3EGEKMSJj3KQNNaPr3F4tESFLcBnJi9_mmHRQ1j11XeaIuGmNHM7A
x-goog-generation: 1670509662189681
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 13786
content-encoding: gzip
x-goog-hash: crc32c=MxD1zg==, md5=W4WMjneSFkOJhyspemTAbg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 13786
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 09 Dec 2022 13:33:18 GMT
expires: Fri, 06 Jan 2023 13:33:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "5b858c8e7792164389872b297a64c06e"
content-type: application/javascript
age: 17648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~65a23365.c7e41bfee2043ecb92b4.chunk.js?e=p
200 OK 17 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~65a23365.c7e41bfee2043ecb92b4.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash ebae7f0aae8e0c48e39f9a88a94ca4c0
6d10551b1ec22a60aa0a82674d5bc6e56af3dcf7
55fae81db5c4995738ea659a545c77180bf031f2700c5dabfcdcb663912fb86f
GET /fulcrum/v4/master/dynamic/desktop.app~65a23365.c7e41bfee2043ecb92b4.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtXrFRfkq4e9BB1LJcf2lZIQC9QEETy47aPHjFXCTPTAJaezUTOjT98qvF99Anq_qVBXsBoNinVvj_T8YvHeCk1qQ
x-goog-generation: 1670509662331591
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 16993
content-encoding: gzip
x-goog-hash: crc32c=sLU+FA==, md5=665/Cq6ODEjjn5qIqUykwA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 16993
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "ebae7f0aae8e0c48e39f9a88a94ca4c0"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~f70d66fb.5b9bfd2971d33105f3f4.chunk.js?e=p
200 OK 11 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~f70d66fb.5b9bfd2971d33105f3f4.chunk.js?e=p
IP
File type ASCII text, with very long lines (53120)
Hash 059b2478f0ab3d0ca73c91d7920052bc
28e3355b5cc4065cecac4c15ca9abebf52595266
2a105601311b835fd90441df17666c22a3df8446bc52e278070132126c9d1816
GET /fulcrum/v4/master/dynamic/desktop.app~f70d66fb.5b9bfd2971d33105f3f4.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycds_nyIP5g3RfzJgPOurJ8OmqqkW9JhYmXsunxqj3w-4HQWG7fZqrWPTc0-0Z7uNW9PSZ5J4uSJY7vErn1qmNbIPDq50VNaE
x-goog-generation: 1670509662616409
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10965
content-encoding: gzip
x-goog-hash: crc32c=mQ4j0A==, md5=BZskePCrPQynPJHXkgBSvA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 10965
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "059b2478f0ab3d0ca73c91d7920052bc"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~a3dbe528.e2abbaa1a0a3059be8e3.chunk.js?e=p
200 OK 5.5 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~a3dbe528.e2abbaa1a0a3059be8e3.chunk.js?e=p
IP
File type ASCII text, with very long lines (19161)
Hash fc1d702045fc4802e12d897d8e80b625
f6b70f14987abc17e02d18ec80c0fc0623a8dd75
353ca8e7fdf0d8dffa410730363c35f138030ca53d9a759ddc4f48702b1c9362
GET /fulcrum/v4/master/dynamic/desktop.app~a3dbe528.e2abbaa1a0a3059be8e3.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsl6rtgUIJE8HbXNq9sQacWVhpVmqZKDBFRp9lSYwLb0qqw7wIHq93QfGVNssnUdHMsQmuyHjAMQzFgSEml1LqvUw
x-goog-generation: 1670509662414162
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 5502
content-encoding: gzip
x-goog-hash: crc32c=7sIdjQ==, md5=/B1wIEX8SALhLYl9joC2JQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 5502
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "fc1d702045fc4802e12d897d8e80b625"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~34751980.ace22305555e33850846.chunk.js?e=p
200 OK 4.6 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~34751980.ace22305555e33850846.chunk.js?e=p
IP
File type ASCII text, with very long lines (24397)
Hash 149ae549eb4f512c4c7cb7c66241b0e3
2f1f23973e1e60d61228587e777fc4276a028bbc
a1473a17ef2958af1238c37610fb2cb09e0154d83a83c33e7cfd91938893f32b
GET /fulcrum/v4/master/dynamic/desktop.app~34751980.ace22305555e33850846.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdumBGGuNm2Ygq91RGcvVMXh_Va3vxyTy4n8c1XiMpq3mAnUbSPg1CTTXSg6PItNhVzkJov0I2OA1MKIbYZ_gQBzMq6q2Klp
x-goog-generation: 1670509662040979
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 4609
content-encoding: gzip
x-goog-hash: crc32c=8QO07Q==, md5=FJrlSetPUSxMfLfGYkGw4w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 4609
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "149ae549eb4f512c4c7cb7c66241b0e3"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~a29119c6.37dd0ef1fb5a5da33740.chunk.js?e=p
200 OK 17 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~a29119c6.37dd0ef1fb5a5da33740.chunk.js?e=p
IP
File type Unicode text, UTF-8 text, with very long lines (63941)
Hash 832183e70864432cd93947ca1f4b5136
b45a11f263ccfd3d35d8d54d170edc264ed305b8
3f64d92a2ebf98d2a99d05c5136af399c34020f30e7938a0fd9edf44763c0f75
GET /fulcrum/v4/master/dynamic/desktop.app~a29119c6.37dd0ef1fb5a5da33740.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsqW2iURvGeL-3rF--obmZqcrkdvQ9wTyu9O4OUUk1vVi1x7toUKGVP8MFpcH9A-D2FnhjZMESF9Q7_XDbn8MqXeVK9BwoT
x-goog-generation: 1670509662416146
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 16931
content-encoding: gzip
x-goog-hash: crc32c=P+dMcw==, md5=gyGD5whkQyzZOUfKH0tRNg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 16931
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "832183e70864432cd93947ca1f4b5136"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.react~03cc5dce.08117dae241b9b041a72.chunk.js?e=p
200 OK 36 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.react~03cc5dce.08117dae241b9b041a72.chunk.js?e=p
IP
File type ASCII text, with very long lines (58162)
Hash c472d6d7b562a0f5109af261c5b3b2ed
00636be16396b59ca119aeb18f12f941e6c28ff1
0ce5134ba877e584f6941722ae5bae0027a4059580638e94ebd30853b2db2088
GET /fulcrum/v4/master/dynamic/desktop.react~03cc5dce.08117dae241b9b041a72.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdu2sMOEInzrYdg43WGA49HiE5Kb-QrI_QcYVWiG7XFY9B3-Dzi8saEOu8kmN9GdjtR0hdkIhIkowszk7YHmSwIOoDfxaxvE
x-goog-generation: 1670506828033665
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 35687
content-encoding: gzip
x-goog-hash: crc32c=hbzo9w==, md5=xHLW17VioPUQmvJhxbOy7Q==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 35687
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 13:46:38 GMT
expires: Thu, 05 Jan 2023 13:46:38 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:28 GMT
etag: "c472d6d7b562a0f5109af261c5b3b2ed"
content-type: application/javascript
age: 103248
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~6d2be6a1.2f6f3217616f805de453.chunk.css?e=p
200 OK 3.6 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~6d2be6a1.2f6f3217616f805de453.chunk.css?e=p
IP
File type ASCII text, with very long lines (1412)
Hash 2a5c33277d9432516edfcfd91f0cf715
34d714c5f14ac1c6a054e0aa50a3bc19b6019308
e7a8c1a31433730431b918e9154e90ad095acc39023177a86d27fce8b9422125
GET /fulcrum/v4/master/dynamic/desktop.app~6d2be6a1.2f6f3217616f805de453.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtPF8knoy_sdD-RTPZk-1UKrHVwIVBvTbyxYpD6podRlwYv_-PSvHeIlUBbvdzfL332ZuJmm3W88C6UbOU3hxbgKi9tZQdO
x-goog-generation: 1669028775348832
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 3593
content-encoding: gzip
x-goog-hash: crc32c=o1uSNw==, md5=KlwzJ32UMlFu38/ZHwz3FQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 3593
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Mon, 21 Nov 2022 11:58:42 GMT
expires: Mon, 19 Dec 2022 11:58:42 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Mon, 21 Nov 2022 11:06:15 GMT
etag: "2a5c33277d9432516edfcfd91f0cf715"
content-type: text/css
age: 1578524
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~9b1fde68.336b259dce015cb1c12a.chunk.js?e=p
200 OK 33 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~9b1fde68.336b259dce015cb1c12a.chunk.js?e=p
IP
File type Unicode text, UTF-8 text, with very long lines (30123)
Hash 079066dc827c4b536af03367f9b42437
a185939e9ff757549e49635f056c91e16dc8753a
a837f218eac09de50dcd05ac249210ff73ae7ddac281d38a1984560e70f27276
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~9b1fde68.336b259dce015cb1c12a.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvhbQJVZvGe62gGP_YsbHaAqD8D0cWgvmS-rPVZlB2u5F4OA1sCXROGHv2L-uewHFRoHi3Yb4a2Nlvq_9pgTIxg4_fltOSo
x-goog-generation: 1670509662830299
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 32714
content-encoding: gzip
x-goog-hash: crc32c=5slFbw==, md5=B5Bm3IJ8S1Nq8DNn+bQkNw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 32714
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "079066dc827c4b536af03367f9b42437"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~34751980.54ef073082fa39e5d1e6.chunk.css?e=p
200 OK 259 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~34751980.54ef073082fa39e5d1e6.chunk.css?e=p
IP
Hash f910df46ac49717ad4dd0e48ce44ba7f
1c06a017c9fdcac4f22c40e12bec42f6654d4368
93bf35c55c975935a75b118045c3d6daeeb098b3dd4ccf8ae38b010b103f8c20
GET /fulcrum/v4/master/dynamic/desktop.app~34751980.54ef073082fa39e5d1e6.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdt6furJZXssJHzZAGz4zywxeAbsld86ouDa_Pa3AxLyj-KNhToQ3ct23_Uns9lTeO4TfVfk1uYsWF1Y4ZHrrbTx3zXjyzvQ
x-goog-generation: 1657116209402787
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 259
content-encoding: gzip
x-goog-hash: crc32c=UFKYAQ==, md5=+RDfRqxJcXrU3Q5IzkS6fw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 259
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Tue, 06 Dec 2022 08:08:38 GMT
expires: Tue, 03 Jan 2023 08:08:38 GMT
cache-control: public, max-age=2419200,no-transform
age: 296328
last-modified: Wed, 06 Jul 2022 14:03:29 GMT
etag: "f910df46ac49717ad4dd0e48ce44ba7f"
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~22d09eff.7c2f891a61dfc2e95f5f.chunk.css?e=p
200 OK 2.5 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~22d09eff.7c2f891a61dfc2e95f5f.chunk.css?e=p
IP
File type ASCII text, with very long lines (1899)
Hash 560cd1e6720e3ad455a138de50d184dc
5d7cd194e060dd7c5b5c91964b0960989d753d90
fb7c1ff7ef7d495cf3288ae7efcc1c101b2f2f71025e18f8ed52202d3e29ed39
GET /fulcrum/v4/master/dynamic/desktop.app~22d09eff.7c2f891a61dfc2e95f5f.chunk.css?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdukkHDNeys07ez7ey9dtiXKjOJE4kk9Ig3V-sPg9bih2Tyqt3c9tFoOcfRnT4EaBTd5IgS6T9_R3s1DLEiPfc_d3Q
x-goog-generation: 1669044814133751
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 2540
content-encoding: gzip
x-goog-hash: crc32c=wYZ3Bg==, md5=VgzR5nIOOtRVoTjeUNGE3A==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 2540
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Mon, 21 Nov 2022 15:44:01 GMT
expires: Mon, 19 Dec 2022 15:44:01 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Mon, 21 Nov 2022 15:33:34 GMT
etag: "560cd1e6720e3ad455a138de50d184dc"
content-type: text/css
age: 1565005
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~b60d9e2a.3e6d29cdbfdb7d0753d6.chunk.js?e=p
200 OK 40 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~b60d9e2a.3e6d29cdbfdb7d0753d6.chunk.js?e=p
IP
File type ASCII text, with very long lines (64883)
Hash 9a1a9c818eb1504cfd7bc7df92ccf078
7ee72728bb8844e1f80c3952d78961e098aaed6e
c59a9e9995ce9725b6776156f2240eba7fe6c309d620d8a72e06d734a6444394
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~b60d9e2a.3e6d29cdbfdb7d0753d6.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvU2q_3TJ0XdmftuKUirn0YCxohzISLhzwZnvV1tUPzcgJmpXQXayHXvkuzZlJHjMFsvpRRYAXxMSGNRrG7GA4t-hxuX4wB
x-goog-generation: 1670506828497993
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 40256
content-encoding: gzip
x-goog-hash: crc32c=Gij+kQ==, md5=mhqcgY6xUEz9e8ffkszweA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 40256
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 13:46:38 GMT
expires: Thu, 05 Jan 2023 13:46:38 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:28 GMT
etag: "9a1a9c818eb1504cfd7bc7df92ccf078"
content-type: application/javascript
age: 103248
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~c7b8ce09.81933f634cf0e8e3603b.chunk.js?e=p
200 OK 44 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~c7b8ce09.81933f634cf0e8e3603b.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash c506b0b27e9b61c1bc3387f9826ef0b2
5b02e124e97ce234c50c29b12047cff7f6558eda
6277ef0129fa8c975f1c35c19d84391e15bf55fce13554f61f12eadf01f7701d
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~c7b8ce09.81933f634cf0e8e3603b.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsxgHGLEis9RORSvFJ9uMQ7VJKcm4X9pjJKCq06wtWHiqP8ccMsPTWbWlECFp8KiSLKQ2LU2OED7_6LUiwBtcBmsA
x-goog-generation: 1670506828562006
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 44286
content-encoding: gzip
x-goog-hash: crc32c=ogGYMA==, md5=xQawsn6bYcG8M4f5gm7wsg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 44286
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 13:46:38 GMT
expires: Thu, 05 Jan 2023 13:46:38 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:28 GMT
etag: "c506b0b27e9b61c1bc3387f9826ef0b2"
content-type: application/javascript
age: 103248
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~b3c4a2ff.7cc79f9c54eb538a155a.chunk.js?e=p
200 OK 40 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~b3c4a2ff.7cc79f9c54eb538a155a.chunk.js?e=p
IP
File type Unicode text, UTF-8 text, with very long lines (61509), with no line terminators
Hash 0563b873aa4bfd6b4e7fe2b7035db8c1
45eed1530050b793d888f8f25755b9ffa596c3cd
1847a0aaacdec5cbe775b3bd2b08d39811dedc4716d052db2a8f75671bf15640
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~b3c4a2ff.7cc79f9c54eb538a155a.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsEg4LOHegmf_Cfj2HQmgLb6_8piEPOu8DZNwYrGHm2kJjAu1OK0r1-q3bex8v_zt_haYuoNhj1KLcvFLWXWcI1SxXj1Mo2
x-goog-generation: 1670506828453557
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 39878
content-encoding: gzip
x-goog-hash: crc32c=hrNDuw==, md5=BWO4c6pL/WtOf+K3A124wQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 39878
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 13:46:38 GMT
expires: Thu, 05 Jan 2023 13:46:38 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:28 GMT
etag: "0563b873aa4bfd6b4e7fe2b7035db8c1"
content-type: application/javascript
age: 103248
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~c5cf623b.d031265392051b819720.chunk.js?e=p
200 OK 48 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~c5cf623b.d031265392051b819720.chunk.js?e=p
IP
File type Unicode text, UTF-8 text, with very long lines (61538), with no line terminators
Hash 2ff5efa895c20dbaab7483b2457f6aaf
92dc4ec674c14fedff54349c32387784fd94a7ab
d479a5e61a7879f3c95a75e8eee3f91cf0fa804bdb7aad11d2965752ffc33016
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~c5cf623b.d031265392051b819720.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv440NLZ_BjQ4MgIo1Vzq7IVO56T52t6Y6oC96gCCU9E6da6Nuq_yeB82qHeKsU14XQ-lNqlV2AYWHphQ1YwFyW8g
x-goog-generation: 1670509662885650
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 47822
content-encoding: gzip
x-goog-hash: crc32c=CfKFsQ==, md5=L/XvqJXCDbqrdIOyRX9qrw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 47822
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 09 Dec 2022 13:33:18 GMT
expires: Fri, 06 Jan 2023 13:33:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "2ff5efa895c20dbaab7483b2457f6aaf"
content-type: application/javascript
age: 17648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~84febbb1.3c640137ffcd3c5a667f.chunk.js?e=p
200 OK 38 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~84febbb1.3c640137ffcd3c5a667f.chunk.js?e=p
IP
File type Unicode text, UTF-8 text, with very long lines (64263), with no line terminators
Hash 099e9cedade5cc49471e886ed3094e6f
bd1918ec38957a4d1f0d438d855b7e911556fd28
05bb0a88dd7dcea6df586c742d9393b5fa864b1d412c6885003db92230857f98
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~84febbb1.3c640137ffcd3c5a667f.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsTVjJkZsFxP01OeC1_woxgKhXXq5ULTXgBvROav1ReBINar0MJ_MTkxlvdgl_yGmJ8PJFY7GqBmYogkk-blnLygg
x-goog-generation: 1670509662830808
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 37614
content-encoding: gzip
x-goog-hash: crc32c=NA+Gyw==, md5=CZ6c7a3lzElHHohu0wlObw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 37614
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 09 Dec 2022 13:33:18 GMT
expires: Fri, 06 Jan 2023 13:33:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "099e9cedade5cc49471e886ed3094e6f"
content-type: application/javascript
age: 17648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~16805963.ceb28b502a88252604b8.chunk.js?e=p
200 OK 11 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~16805963.ceb28b502a88252604b8.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7d4eee820b5cacabae3bca19868dcbc4
4faa73f7e060a4e5fc06ae6e27082d67e76da5fb
6cbcff7aa731352347b76b028091d78db7e016da1f41f8305b3de1886ba8d514
GET /fulcrum/v4/master/dynamic/desktop.app~16805963.ceb28b502a88252604b8.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsmlL_oP7D2xLrW4FW-f7mVcUpIZDz4-UtUD7Y_eUSJtLEbiugkqj5s-rQOrMvFMHmpsicfvh_tPCLlLHO6PQwF6w
x-goog-generation: 1670509662038655
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 11415
content-encoding: gzip
x-goog-hash: crc32c=TvLm9w==, md5=fU7uggtcrKuuO8oZho3LxA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 11415
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "7d4eee820b5cacabae3bca19868dcbc4"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~689e81fc.8907091b675165e5de2e.chunk.js?e=p
200 OK 24 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~689e81fc.8907091b675165e5de2e.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1a9c8c65bd7e3892f1fc0034557a0228
ab35c0b70868a8d2e727bb011ed13810c1bc491b
92a853f7265aa1e5b76dfccaeac3c39c9dc8ef76ed9acf0ee016091ae52ad9f9
GET /fulcrum/v4/master/dynamic/desktop.app~689e81fc.8907091b675165e5de2e.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtDo6jKQ3tT-Vvp22oIK4JgbOWpys0NsdHgVUHjPqDcqIfxxMsPY5Q47xpUQgQSEot8ewhzhShkBH7odW1XTqYyv8yv3pnN
x-goog-generation: 1670509662304815
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 24235
content-encoding: gzip
x-goog-hash: crc32c=rnDxMw==, md5=GpyMZb1+OJLx/AA0VXoCKA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 24235
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "1a9c8c65bd7e3892f1fc0034557a0228"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~147f8b23.289317594202207051d8.chunk.js?e=p
200 OK 12 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~147f8b23.289317594202207051d8.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1fe0ff8360c174f073579c70054ef1bc
516647cc2e7bcd211af589276e97348dd2d14dc2
8e92dd2dfc613932fea1bfa35e628dafb5124de2212455c874dd2d44311f2b98
GET /fulcrum/v4/master/dynamic/desktop.app~147f8b23.289317594202207051d8.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdto_YPd3_c1bpAPqb-T3mlPp2jj9EPCwcMfZi57tq4TZTpwhUAxyQPzPdcUT6JZaexWRRHKTHNDRUEniPBvCKH5hQ
x-goog-generation: 1670509661996429
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 11723
content-encoding: gzip
x-goog-hash: crc32c=/NOHCQ==, md5=H+D/g2DBdPBzV5xwBU7xvA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 11723
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 09 Dec 2022 13:33:18 GMT
expires: Fri, 06 Jan 2023 13:33:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "1fe0ff8360c174f073579c70054ef1bc"
content-type: application/javascript
age: 17648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~a481bdfc.340624f2c13963c01ed0.chunk.js?e=p
200 OK 18 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~a481bdfc.340624f2c13963c01ed0.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6fb2eddcf076eb9162ac3d964accfc23
926b42c1c31c816d3cf045f03c2968cc5f691fb8
f58d29ad5ef4cedde1469d006a70323e4d19056cee7a690845bb9c28982ec67c
GET /fulcrum/v4/master/dynamic/desktop.app~a481bdfc.340624f2c13963c01ed0.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdv9ApQ89zPNh-EOJ2D9CWXqwMJyj2hPcnf5nG86mCsyq0qMm2_spitXWPKBBkgr1OizpRPoZInOmy-12Ov_vbRm4w
x-goog-generation: 1670509662534048
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 17762
content-encoding: gzip
x-goog-hash: crc32c=zhCnTg==, md5=b7Lt3PB265FirD2WSsz8Iw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 17762
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "6fb2eddcf076eb9162ac3d964accfc23"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~d7962cbd.bf7695a57c7ff9472601.chunk.js?e=p
200 OK 42 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~d7962cbd.bf7695a57c7ff9472601.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 87defd78a202ff52d94580926e14d628
98174c68da8636df03aef6df15547a46831c58cd
c444eff19ff0ef8db301e9ead44714eaf81fc4e82526bd80d9b6a6c16fbf0176
GET /fulcrum/v4/master/dynamic/desktop.app~d7962cbd.bf7695a57c7ff9472601.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsC6gU-Ev2yiTVmLPWIN3wpig5SwgVJ4cR-jFBGIcvkaoeLtlMJo9c_w5SE4w8TimARSATJ8ieOqLAcAWajhrohOKo0ASnU
x-goog-generation: 1670509662693933
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 41813
content-encoding: gzip
x-goog-hash: crc32c=lIw3GA==, md5=h979eKIC/1LZRYCSbhTWKA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 41813
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "87defd78a202ff52d94580926e14d628"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~032dba4b.55a6f1d83fab849aa148.chunk.js?e=p
200 OK 35 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~032dba4b.55a6f1d83fab849aa148.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash c0a78dd9f4962a9fdfb157c98f92f02f
2fea7f2b4ea0d9c5957b2d962ca29fbe93fcd495
1665acbd03a122f1e27602bec4554a6658ebc84dd6711a8e3ae40d4dc0d4bf34
GET /fulcrum/v4/master/dynamic/desktop.app~032dba4b.55a6f1d83fab849aa148.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsUZL3W1xoumWqCQsv3msUJEmlG4H4MTTtdVahDXh1mFSX0yx1J2LyXbXi6wym2DnVcnwxdhwyLfoELEToadZfXkGlCCgFF
x-goog-generation: 1670509662044823
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 35168
content-encoding: gzip
x-goog-hash: crc32c=MjUGJw==, md5=wKeN2fSWKp/fsVfJj5LwLw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 35168
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "c0a78dd9f4962a9fdfb157c98f92f02f"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~4096559f.4b37475ad4c81c6f8028.chunk.js?e=p
35 kB URL cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~4096559f.4b37475ad4c81c6f8028.chunk.js?e=p
IP
File type gzip compressed data, was "tmpcap9cj4j", last modified: Thu Dec 8 14:27:41 2022, max compression\012- data
Hash e3aea9b2213f5408ec5cd188ffa7703a
6b59e78b80cf06831c234ed3b0f9ed0530628002
73c0d9fc7529b9fa57f1373295ee5f9f26960256030034a683f27ba422fc776e
GET /fulcrum/v4/master/dynamic/desktop.app~4096559f.4b37475ad4c81c6f8028.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~1238b076.90a5e678895cbfc4e9eb.chunk.js?e=p
200 OK 40 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~1238b076.90a5e678895cbfc4e9eb.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash dd0d7480186be7563ea3e28cfb68dbe1
19ce3f711d243526c27227475cef8e3636df4131
81f45ee4ae1ad6c058f4156ea3421470b3d36eb6955edf2be3f46038596d198a
GET /fulcrum/v4/master/dynamic/desktop.app~1238b076.90a5e678895cbfc4e9eb.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsUXPjUWFfKwy98RNe30A8l7mUPPvkMWWTsL5D2jvNn7Sf1tPJmngr8sNUlP6WLYQSB-u0IQw3udLNaGBo1XCQLeQ
x-goog-generation: 1670509662082314
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 40424
content-encoding: gzip
x-goog-hash: crc32c=UHOldg==, md5=3Q10gBhr51Y+o+KM+2jb4Q==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 40424
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "dd0d7480186be7563ea3e28cfb68dbe1"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~6d2be6a1.4810926d2e07c320605e.chunk.js?e=p
200 OK 38 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~6d2be6a1.4810926d2e07c320605e.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash eaae36b6a33902598abda1a4f076cee7
4e4814bd11102bc4e94a0f330cd25e0a85473f2a
9884d665f75c4de5979b06622a5d87134d0dc92a537f65a4fa24d23fcabda43b
GET /fulcrum/v4/master/dynamic/desktop.app~6d2be6a1.4810926d2e07c320605e.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvCb4ilgFl-cbnvsbHPTyRuEmeOCfYWR_wc-M04AjkcfpeZ9HMAoHemfRzf-ErQnkn8J8tq3_zo3L5nxiFlriGg7gNSbP1-
x-goog-generation: 1670509662397626
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 38167
content-encoding: gzip
x-goog-hash: crc32c=hPcuiA==, md5=6q42tqM5AlmKvaGk8HbO5w==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 38167
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "eaae36b6a33902598abda1a4f076cee7"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~f743f184.d6f6661b641cfe265c87.chunk.js?e=p
200 OK 24 kB URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~f743f184.d6f6661b641cfe265c87.chunk.js?e=p
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 58ad5c0d0f7b71d15275cb07dfbdcb50
491254aa88c2315e7f26605a5d43a819f2c9cc0b
688ebde2ec63f66857e0e5d386cdbad1d17fd64cfa2c2dfc4f3aadc2b6035155
GET /fulcrum/v4/master/dynamic/desktop.app~f743f184.d6f6661b641cfe265c87.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsKpzUhYWIX6qR_zUnUzwqXu4v36GZQ9zzuuDJGqn56fq2IXh3iEfMQUHejlqO11p_ixpm-E5sydFXHrNEt0d1Ejwk8AZTs
x-goog-generation: 1670509662694595
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 24149
content-encoding: gzip
x-goog-hash: crc32c=ZLhUhA==, md5=WK1cDQ97cdFSdcsH373LUA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 24149
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "58ad5c0d0f7b71d15275cb07dfbdcb50"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~80e93ec1.d90d5e21c3018d6cef90.chunk.js?e=p
200 OK 0 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~80e93ec1.d90d5e21c3018d6cef90.chunk.js?e=p
IP
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~80e93ec1.d90d5e21c3018d6cef90.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvhZ1SNaXM4BpKGFR8lM8WkTGYclVytjexj0oZwgRFqnnwLeTzmQP7VknwvEUkdqwnYJ1XXqirq1_ESjc-rH_ZAKw
x-goog-generation: 1670506828296538
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 22564
content-encoding: gzip
x-goog-hash: crc32c=FbZHBQ==, md5=l9+IKAJZoOPUMcGWfU3BZg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 22564
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 13:46:38 GMT
expires: Thu, 05 Jan 2023 13:46:38 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 13:40:28 GMT
etag: "97df88280259a0e3d431c1967d4dc166"
content-type: application/javascript
age: 103248
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~0efdf0b8.732332e7e69061a63377.chunk.js?e=p
200 OK 0 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.vendors~app~0efdf0b8.732332e7e69061a63377.chunk.js?e=p
IP
GET /fulcrum/v4/master/dynamic/desktop.vendors~app~0efdf0b8.732332e7e69061a63377.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvFdT5AYKBlPXh73ZeHyjT-CxW8psbsgBLZqkWwoAOa_xBU44yaY4lHf-jTz6DJFI4HFyhaYZDvqfRjQUHFljRePw
x-goog-generation: 1670509662799019
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 37296
content-encoding: gzip
x-goog-hash: crc32c=cGpFfw==, md5=Wr6+ch+JWjdvjajjZyJFFg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 37296
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "5abebe721f895a376f8da8e367224516"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~9675856e.abd14c5efc40a763f4e8.chunk.js?e=p
200 OK 0 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~9675856e.abd14c5efc40a763f4e8.chunk.js?e=p
IP
GET /fulcrum/v4/master/dynamic/desktop.app~9675856e.abd14c5efc40a763f4e8.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvYO7s1OvT4ycnmm0YzbAbAmry-hAKS6DMalKZk2XzvnaATu1_kF71hXz9oIsYpGTHE8MW6dKp--L9DaEVHOmFdKA
x-goog-generation: 1670509662534414
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 31789
content-encoding: gzip
x-goog-hash: crc32c=+f88rQ==, md5=g95mXed+4aA6tZHts9H/RA==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 31789
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "83de665de77ee1a03ab591edb3d1ff44"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.leovegas.com/nb-no/betting?btag=667909_D50EF09DA7E849FEB43763360963FC08&c=w097gttbpl2f2a2lihhk7c32&pid=3747044&bid=15007
302 Found 0 B URL HTTP/2 www.leovegas.com/nb-no/betting?btag=667909_D50EF09DA7E849FEB43763360963FC08&c=w097gttbpl2f2a2lihhk7c32&pid=3747044&bid=15007
IP
GET /nb-no/betting?btag=667909_D50EF09DA7E849FEB43763360963FC08&c=w097gttbpl2f2a2lihhk7c32&pid=3747044&bid=15007 HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15007%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1670610444746)%5c%2f%22%2c%22CookieTag%22%3a%22150073747044451240919C20221291827%22%7d%5d
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Fri, 09 Dec 2022 18:27:25 GMT
content-type: application/json; charset=utf8
content-encoding: gzip
set-cookie: leo-essentials=%7B%22cid%22%3A%227fc7b867-4fc0-45c3-a2aa-705702bbcb64%22%7D; Max-Age=31536000; Path=/; Secure
_ga=GA1.1.7fc7b867-4fc0-45c3-a2aa-705702bbcb64; Max-Age=63072000; Domain=.leovegas.com; Path=/
visid_incap_846569=w0rBagtIRteBprEeEY+D4wx+k2MAAAAAQUIPAAAAAACvJCw29KzDTVxMUxxd074Z; expires=Fri, 08 Dec 2023 22:16:45 GMT; HttpOnly; path=/; Domain=.leovegas.com; Secure; SameSite=None
nlbi_846569=giGjcbxdPSnmS2hkTJV9qQAAAABg+Fy2xq+eOH0g3T71gIAq; path=/; Domain=.leovegas.com; Secure; SameSite=None
incap_ses_722_846569=nak9MYb3uTCcfrPuFxAFCgx+k2MAAAAAwaw6Eg/LaAqd45V8GbFm3A==; path=/; Domain=.leovegas.com; Secure; SameSite=None
location: /en-no/betting?btag=667909_D50EF09DA7E849FEB43763360963FC08&c=w097gttbpl2f2a2lihhk7c32&pid=3747044&bid=15007
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-cdn: Imperva
x-iinfo: 3-35303345-35301928 PNNy RT(1670610444734 32) q(0 0 0 0) r(2 2) U11
X-Firefox-Spdy: h2
for-j.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
200 OK 0 B URL HTTP/2 for-j.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: for-j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 18:27:23 GMT
content-type: application/javascript
last-modified: Wed, 07 Dec 2022 18:45:45 GMT
etag: W/"6390df59-302c"
vary: Accept-Encoding
server: cloudflare
cf-ray: 776fcb667ce3b4f3-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 11 Dec 2022 18:27:23 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400,400i,500,500i,700,700i,900,900i|Roboto+Slab:700&subset=latin-ext&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400,400i,500,500i,700,700i,900,900i|Roboto+Slab:700&subset=latin-ext&display=swap
IP
GET /css?family=Roboto:400,400i,500,500i,700,700i,900,900i|Roboto+Slab:700&subset=latin-ext&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 18:27:26 GMT
date: Fri, 09 Dec 2022 18:27:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
for-j.com/tds3.html?ymid=167061044210000TNOTV415326358024Vcf&zoneid=5460782&subid=6346638-2400932369-303342007&sourceid=315519420&tt=2
200 OK 0 B URL HTTP/2 for-j.com/tds3.html?ymid=167061044210000TNOTV415326358024Vcf&zoneid=5460782&subid=6346638-2400932369-303342007&sourceid=315519420&tt=2
IP
GET /tds3.html?ymid=167061044210000TNOTV415326358024Vcf&zoneid=5460782&subid=6346638-2400932369-303342007&sourceid=315519420&tt=2 HTTP/1.1
Host: for-j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 18:27:23 GMT
content-type: text/html
last-modified: Wed, 02 Nov 2022 11:31:57 GMT
cf-cache-status: HIT
age: 478281
expires: Mon, 09 Jan 2023 18:27:23 GMT
cache-control: public, max-age=2678400
vary: Accept-Encoding
server: cloudflare
cf-ray: 776fcb663c8db4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~80ffedda.6690f848cc184b74d2ae.chunk.js?e=p
200 OK 0 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~80ffedda.6690f848cc184b74d2ae.chunk.js?e=p
IP
GET /fulcrum/v4/master/dynamic/desktop.app~80ffedda.6690f848cc184b74d2ae.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtTw-J7dEsY2xHXI3zx9dP1a5dcGoJFsb4Sdolx-rBSgBYYjF42IQouemjnpNmDijOewVEtVZ6SkwEDOHfsfkaQBDbjFCmp
x-goog-generation: 1670509662355610
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 35437
content-encoding: gzip
x-goog-hash: crc32c=yVFxng==, md5=pvBA4V8dBApyMoWkWany7A==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 35437
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "a6f040e15f1d040a723285a459a9f2ec"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~85257485.cdf773a104a9c9952840.chunk.js?e=p
200 OK 0 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~85257485.cdf773a104a9c9952840.chunk.js?e=p
IP
GET /fulcrum/v4/master/dynamic/desktop.app~85257485.cdf773a104a9c9952840.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduxTO39kKNjbLPQ6Y3Vv79RgX5oOmAEXmSZTJSCqCVbYjs8BwBPh_A8-uUFXjMLznRqcGacTYjnG7PJ_pDuiKJZ-12esQGi
x-goog-generation: 1670509662415615
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 27164
content-encoding: gzip
x-goog-hash: crc32c=MS2qLA==, md5=Cyg4iSoxrDYLNSQAabbyPw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 27164
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Thu, 08 Dec 2022 14:35:45 GMT
expires: Thu, 05 Jan 2023 14:35:45 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "0b2838892a31ac360b35240069b6f23f"
content-type: application/javascript
age: 100301
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~7e0fb108.74bc6f39706acb2bd9f6.chunk.js?e=p
200 OK 0 B URL HTTP/2 cdn.leovegas.com/fulcrum/v4/master/dynamic/desktop.app~7e0fb108.74bc6f39706acb2bd9f6.chunk.js?e=p
IP
GET /fulcrum/v4/master/dynamic/desktop.app~7e0fb108.74bc6f39706acb2bd9f6.chunk.js?e=p HTTP/1.1
Host: cdn.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.leovegas.com
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvr92EWHemF26-0VKhIlzOflYPQgsfhAisVUY4l_evIyso2QB5z2ZzN7NnhbmtYmT9H-Auhph6pUhSAepFcG0JRbQ
x-goog-generation: 1670509662366420
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 34731
content-encoding: gzip
x-goog-hash: crc32c=SeoVhA==, md5=bZr9ZLaszjlyO5dnlyGDWQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 34731
access-control-allow-origin: https://www.leovegas.com
access-control-expose-headers: Content-Length, Content-Type, Date, Response-Type, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
vary: Origin
server: UploadServer
date: Fri, 09 Dec 2022 13:33:18 GMT
expires: Fri, 06 Jan 2023 13:33:18 GMT
cache-control: public, max-age=2419200,no-transform
last-modified: Thu, 08 Dec 2022 14:27:42 GMT
etag: "6d9afd64b6acce39723b976797218359"
content-type: application/javascript
age: 17648
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.leovegas.com/en-no/betting?btag=667909_D50EF09DA7E849FEB43763360963FC08&c=w097gttbpl2f2a2lihhk7c32&pid=3747044&bid=15007
200 OK 0 B URL HTTP/2 www.leovegas.com/en-no/betting?btag=667909_D50EF09DA7E849FEB43763360963FC08&c=w097gttbpl2f2a2lihhk7c32&pid=3747044&bid=15007
IP
GET /en-no/betting?btag=667909_D50EF09DA7E849FEB43763360963FC08&c=w097gttbpl2f2a2lihhk7c32&pid=3747044&bid=15007 HTTP/1.1
Host: www.leovegas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a3747044%2c%22BID%22%3a15007%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1670610444746)%5c%2f%22%2c%22CookieTag%22%3a%22150073747044451240919C20221291827%22%7d%5d; leo-essentials=%7B%22cid%22%3A%227fc7b867-4fc0-45c3-a2aa-705702bbcb64%22%7D; _ga=GA1.1.7fc7b867-4fc0-45c3-a2aa-705702bbcb64; visid_incap_846569=w0rBagtIRteBprEeEY+D4wx+k2MAAAAAQUIPAAAAAACvJCw29KzDTVxMUxxd074Z; nlbi_846569=giGjcbxdPSnmS2hkTJV9qQAAAABg+Fy2xq+eOH0g3T71gIAq; incap_ses_722_846569=nak9MYb3uTCcfrPuFxAFCgx+k2MAAAAAwaw6Eg/LaAqd45V8GbFm3A==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 18:27:25 GMT
content-type: text/html; charset=utf-8
content-encoding: gzip
set-cookie: leobtag=667909_D50EF09DA7E849FEB43763360963FC08; Max-Age=3888000; Domain=.leovegas.com; Path=/; HttpOnly; Secure
leonrpid=3747044; Max-Age=3888000; Domain=.leovegas.com; Path=/; HttpOnly; Secure
leonrbid=15007; Max-Age=3888000; Domain=.leovegas.com; Path=/; HttpOnly; Secure
leonrmeta=[{"value":"w097gttbpl2f2a2lihhk7c32","key":"c"}]; Max-Age=3888000; Domain=.leovegas.com; Path=/; HttpOnly; Secure
etag: 5d439c627c62879bfcdf14dfd922be243cc22450
cache-control: public, must-revalidate
x-render-cache: 1
x-cache-key: 5d439c627c62879bfcdf14dfd922be243cc22450
strict-transport-security: max-age=63072000;
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'self' *.leovegas.com *.casinomodule.com *.yggdrasilgaming.com *.evolutiongaming.com *.gameassists.co.uk *.gameassists.dk *.rgsgames.com *.wagerworks.com *.adform.com *.livetables.io *.regily.com *.casinoalternativen.com *.onlinecasinobonus24.xyz *.livetableshu.com
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
x-cdn: Imperva
x-iinfo: 3-35303345-35301928 PNNy RT(1670610444734 218) q(0 0 0 -1) r(1 1) U12
X-Firefox-Spdy: h2
cdn.seondf.com/js/v4/agent.js
200 OK 0 B URL HTTP/2 cdn.seondf.com/js/v4/agent.js
IP
GET /js/v4/agent.js HTTP/1.1
Host: cdn.seondf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leovegas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 18:27:26 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 09 Sep 2022 15:20:31 GMT
etag: W/"7e416f9feeb805e04c423899736c48e2"
cache-control: max-age=14400
x-amz-version-id: mfjcVMYC8eQg.3.C.jDktKY9HpyiJtFK
x-cache: Miss from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eee6hgQ3xctrF4dTa6r4eh2gurLFeOJYCYPvF_Q4eFwSj9xFdflfXg==
cf-cache-status: HIT
age: 1794
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fNfVmBCJjZs5idAFaaHYAub4wAaT9mG8qSUYFukkE1T4vvcLCPTZNA%2BKZiX4qJg1nFYCIgILMYSUxxMPqY%2FP%2F7GQ2j3y%2Bfu7IchPzVA354MkqIxNj70VqUxYDd%2BmPyIXQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 776fcb7afa4c0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
64.225.91.73
23.36.76.226
188.114.97.1
104.17.25.14
139.45.195.253
64.190.63.136