Overview

URLtelevivo.online/my/bx/maxis
IP 194.135.87.58 (Lithuania)
ASN#212531 UAB Interneto vizija
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-25 03:59:18 UTC
StatusLoading report..
IDS alerts0
Blocklist alert3
urlquery alerts No alerts detected
Tags None

Domain Summary (17)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
my.rtmark.net (1) 9054 2017-08-22 14:11:49 UTC 2022-11-24 08:54:46 UTC 139.45.195.8
r3.o.lencr.org (7) 344 No data No data 23.36.77.32
ocsp.usertrust.com (1) 899 2012-05-21 15:43:18 UTC 2021-11-02 18:02:09 UTC 104.18.32.68
joxi.imgsrcdata.com (66) 0 2018-04-18 09:14:20 UTC 2022-11-24 11:18:15 UTC 104.16.152.45 Unknown ranking
img-getpocket.cdn.mozilla.net (5) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-24 05:30:55 UTC 34.117.237.239
sportaza.com (2) 0 2017-06-30 19:06:12 UTC 2022-11-24 09:46:54 UTC 45.8.106.219 Unknown ranking
sptzwc.lp247p.com (41) 0 2022-11-20 12:26:19 UTC 2022-11-24 09:46:54 UTC 168.119.108.121 Domain (lp247p.com) ranked at: 673205
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-24 05:36:55 UTC 34.102.187.140
whampamp.com (3) 30947 2022-03-12 13:52:24 UTC 2022-11-24 08:54:45 UTC 139.45.197.236
voices-kerence.com (1) 0 2020-04-20 12:32:36 UTC 2022-11-24 11:18:14 UTC 18.193.209.105 Unknown ranking
st.lp247p.com (2) 766649 No data No data 40.127.232.184
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 34.210.158.59
ocsp.pki.goog (2) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.35
televivo.online (2) 0 2022-11-18 08:12:02 UTC 2022-11-24 06:00:41 UTC 194.135.87.58 Unknown ranking

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
 No alerts detected

mnemonic secure dns
 No alerts detected

Quad9 DNS
Scan Date Severity Indicator Comment
2022-11-25 2 whampamp.com Sinkholed
2022-11-25 2 whampamp.com Sinkholed
2022-11-25 2 whampamp.com Sinkholed


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 194.135.87.58
Date UQ / IDS / BL URL IP
2022-12-14 10:59:33 +0000 0 - 0 - 1 televegas.site/m/id/ppt1/?key=eyJ0aW1lc3RhbXA (...) 194.135.87.58
2022-12-14 09:17:04 +0000 0 - 0 - 3 televegas.site/bd/lot2/nl/6/?key=eyJ0aW1lc3Rh (...) 194.135.87.58
2022-12-14 09:16:52 +0000 0 - 0 - 1 televegas.site/bd/lot2/nl/1/ 194.135.87.58
2022-12-14 06:10:10 +0000 0 - 0 - 1 televegas.site/my/bx/maxis/?key=eyJ0aW1lc3Rhb (...) 194.135.87.58
2022-12-14 04:58:54 +0000 0 - 0 - 2 televegas.site/id/bx/shell/indosat?key=eyJ0aW (...) 194.135.87.58


Last 5 reports on ASN: UAB Interneto vizija
Date UQ / IDS / BL URL IP
2023-01-30 06:09:07 +0000 0 - 7 - 4 telefibre.site/my/env/digi 79.98.25.23
2023-01-30 04:58:39 +0000 0 - 6 - 2 telefibre.site/uz/lot2/nl/7/ 79.98.25.23
2023-01-30 04:28:39 +0000 0 - 6 - 1 telecode.site/mx/today/2/ 194.135.87.3
2023-01-30 04:07:58 +0000 0 - 0 - 4 tele10.site/m/zm/ppt/ 79.98.29.29
2023-01-30 01:39:11 +0000 0 - 0 - 4 tele10.site/m/ae/ewh/ 79.98.29.29


Last 5 reports on domain: televivo.online
Date UQ / IDS / BL URL IP
2022-12-10 06:30:20 +0000 0 - 0 - 1 televivo.online/mx/bx/nl/ 194.135.87.58
2022-12-10 06:30:17 +0000 0 - 0 - 2 televivo.online/mx/bx/nl 194.135.87.58
2022-12-10 06:01:42 +0000 0 - 0 - 1 televivo.online/kz/env/nl/?key=eyJ0aW1lc3RhbX (...) 194.135.87.58
2022-12-10 03:06:45 +0000 0 - 0 - 1 televivo.online/my/env/maxis/ 194.135.87.58
2022-12-09 22:12:32 +0000 0 - 0 - 2 televivo.online/kz/bx/nl 194.135.87.58


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-12-18 07:28:19 +0000 0 - 0 - 2 ak.psaltauw.net/4/5567456 23.36.77.34
2022-12-16 07:38:22 +0000 0 - 0 - 2 ak.psaltauw.net/4/4310352 23.36.76.250
2022-12-14 03:12:04 +0000 0 - 0 - 1 rouonixon.com/4/5592454/ 139.45.197.238
2022-11-26 16:02:54 +0000 0 - 0 - 2 intorterraon.com/4/5216848 139.45.197.239
2022-11-26 14:43:41 +0000 0 - 0 - 2 woafoame.net/4/3466025/ 139.45.197.239

JavaScript

Executed Scripts (5)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (142)


Request Response
                                        
                                            GET /my/bx/maxis HTTP/1.1 
Host: televivo.online
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         194.135.87.58
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 25 Nov 2022 03:59:06 GMT
Server: Apache
Location: http://televivo.online/my/bx/maxis/
Content-Length: 243
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   243
Md5:    e495353f42e9aa7ad899a11046fdb75b
Sha1:   b12a14c17b42472a1f2230f729d6aa195ed60ad1
Sha256: 825c3c4bc014c208028a85b7357f8bcbf47f1ca58fa0cf3e76056a01553aa456
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3929
Expires: Fri, 25 Nov 2022 05:04:35 GMT
Date: Fri, 25 Nov 2022 03:59:06 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5883
Cache-Control: max-age=115808
Date: Fri, 25 Nov 2022 03:59:06 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 12:09:14 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15867
Expires: Fri, 25 Nov 2022 08:23:33 GMT
Date: Fri, 25 Nov 2022 03:59:06 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 03:17:24 GMT
cache-control: public,max-age=3600
age: 2502
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    d130218d0e2841f39c99610fe1a2ab90
Sha1:   29fbe1e177ee55c7a61ae0a206afff271cf5f945
Sha256: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: GbQSV0jg1DdcuFgOfmC50V/x5GvCIRtoTy6NR0TmpldViYl8JX0clyggLEukiX/Qm892lo3v1rE=
x-amz-request-id: FG4W2XGC2BP8WVF1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 03:40:39 GMT
age: 1107
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /my/bx/maxis/ HTTP/1.1 
Host: televivo.online
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         194.135.87.58
HTTP/1.1 302 Found
Content-Type: text/html
                                        
Date: Fri, 25 Nov 2022 03:59:06 GMT
Server: Apache
Location: //whampamp.com/4/5087048?var=ed2
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked

                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:06 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /4/5087048?var=ed2 HTTP/1.1 
Host: whampamp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: OAID=eca380edf0bd482d8a92e5f7d872befe; oaidts=1669340700; syncedCookie=true
Upgrade-Insecure-Requests: 1

search
                                         139.45.197.236
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf8
                                        
Server: nginx
Date: Fri, 25 Nov 2022 03:59:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: c8a84b026122696ae53fd52182a70a8a
Link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch"
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 86400
Timing-Allow-Origin: *
Set-Cookie: OAID=eca380edf0bd482d8a92e5f7d872befe; expires=Sat, 25 Nov 2023 03:59:07 GMT; path=/ oaidts=1669340700; expires=Sat, 25 Nov 2023 03:59:07 GMT; path=/
Pragma: no-cache, no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
Access-Control-Allow-Origin: *, *
Access-Control-Allow-Methods: GET, POST, OPTIONS, POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, Accept, Content-Type, Content-Length, Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5405)
Size:   2952
Md5:    e5293690cc906a20a44e8cecce299a38
Sha1:   ac98ebe85951bc0d2fe2df5a2988cd1fc15b9503
Sha256: 13ba7798968aecb69ab28fc6d730db0d7432f19ead16db1c4330fddc66d3d4ad

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "43BBB48A1A37A33C18036773457C75408E907C1FD7297A42152AEE29F396066E"
Last-Modified: Thu, 24 Nov 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18868
Expires: Fri, 25 Nov 2022 09:13:35 GMT
Date: Fri, 25 Nov 2022 03:59:07 GMT
Connection: keep-alive

                                        
                                            POST /?z=5087048&syncedCookie=false&rhd=false HTTP/1.1 
Host: whampamp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 462
Origin: http://whampamp.com
Connection: keep-alive
Referer: http://whampamp.com/afu.php?zoneid=5087048&var=5087048&rid=uZkGuFtJfk-T2gq_XdzZSg%3D%3D&rhd=false
Cookie: OAID=eca380edf0bd482d8a92e5f7d872befe; oaidts=1669340700; syncedCookie=true
Upgrade-Insecure-Requests: 1

search
                                         139.45.197.236
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Fri, 25 Nov 2022 03:59:07 GMT
Content-Length: 0
Connection: keep-alive
X-Trace-Id: dedb0265a57f00bf3af940009b347f15
Link: <https://voices-kerence.com>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
Referrer-Policy: no-referrer
Location: https://voices-kerence.com/26df10eb-34ec-4879-9dd6-7903ddd1b3d9?zoneid=5087048&bannerid=15819990&browser=firefox&os=windows&user_activity=high&zone_type={zone_type}&campaignid=6347981&useragent=Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0&language=en&connectiontype=broadband&cost=0.003150&visitor_id=619856170613740101&rdk=rk3
Access-Control-Allow-Origin: http://whampamp.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding
Access-Control-Max-Age: 86400
Pragma: no-cache
Cache-Control: no-transform, no-store, no-cache, must-revalidate, max-age=0
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Set-Cookie: OAID=eca380edf0bd482d8a92e5f7d872befe; expires=Sat, 25 Nov 2023 03:59:07 GMT; path=/ oaidts=1669340700; expires=Sat, 25 Nov 2023 03:59:07 GMT; path=/
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /img.gif?f=merge&userId=eca380edf0bd482d8a92e5f7d872befe HTTP/1.1 
Host: my.rtmark.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://whampamp.com
Connection: keep-alive
Referer: http://whampamp.com/
Cookie: ID=eca380edf0bd482d8a92e5f7d872befe
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

search
                                         139.45.195.8
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:07 GMT
content-length: 43
access-control-allow-origin: http://whampamp.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=eca380edf0bd482d8a92e5f7d872befe; expires=Sat, 25 Nov 2023 03:59:07 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
                                        
                                            GET /26df10eb-34ec-4879-9dd6-7903ddd1b3d9?zoneid=5087048&bannerid=15819990&browser=firefox&os=windows&user_activity=high&zone_type={zone_type}&campaignid=6347981&useragent=Mozilla/5.0%20(Windows%20NT%2010.0;%20Win64;%20x64;%20rv:105.0)%20Gecko/20100101%20Firefox/105.0&language=en&connectiontype=broadband&cost=0.003150&visitor_id=619856170613740101&rdk=rk3 HTTP/1.1 
Host: voices-kerence.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: 26df10eb-34ec-4879-9dd6-7903ddd1b3d9-v4=dcWnxphOnkv3Dew2-iK-rlY0-16XRecKrtt8egt7Odo; cc-v4=RTyJX%2BaVqhmbi4bJrSqBK0dF6k4KWXGcEmKjCZ3QW56sB%2BjvP%2FHH1v5%2BRWJLxb1SKll4lfFtSZ5VtE39q0XT0X3I1Pj%2FxQRCn1ujAYG8V4IRLyTh%2FclUlYGpdOkUk%2BzLInORE4TrWV65BLhWHCC3AA%3D%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         18.193.209.105
HTTP/2 302 Found
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:07 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://st.lp247p.com/C.ashx?btag=a_3357b_1556c_&affid=879&siteid=3357&adid=1556&c=w2q8n8d7jeahfbnk2gf0ilf4
pragma: no-cache
set-cookie: 26df10eb-34ec-4879-9dd6-7903ddd1b3d9-v4=-z2a-OVB3X-kWLTVD1kL0i83Y-xoaEo2EGc33iPx_LA; Max-Age=86400; Expires=Sat, 26-Nov-2022 03:59:07 GMT; Domain=voices-kerence.com; Path=/; Secure; HttpOnly;SameSite=None cc-v4=0gtuNhgwjShY%2BbrWitb0wpK2F2rkE7tUOs5sM%2F74k%2Ft8gpXk4BqNu8V5AIVya8J7BB4ZzIecEd3cyD1Ldy8CfrbPhJ3W2LVnrS1h%2FC1bt9y%2FXMArg7dgJZ2M0g%2FRYbXPUB45RZcvMYo7cyRI3nyahA%3D%3D; Max-Age=31536000; Expires=Sat, 25-Nov-2023 03:59:07 GMT; Domain=voices-kerence.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 03:11:11 GMT
cache-control: public,max-age=3600
age: 2876
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 25 Nov 2022 03:59:07 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 22:50:34 GMT
Expires: Wed, 30 Nov 2022 22:50:33 GMT
Etag: "5293a07043c87176dd8d9e387b88f1a183f14dbe"
Cache-Control: max-age=602168,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 962
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f778481c741c16-OSL

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: whampamp.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://whampamp.com/afu.php?zoneid=5087048&var=5087048&rid=uZkGuFtJfk-T2gq_XdzZSg%3D%3D&rhd=false
Cookie: OAID=eca380edf0bd482d8a92e5f7d872befe; oaidts=1669340700; syncedCookie=true

search
                                         139.45.197.236
HTTP/1.1 204 No Content
                                        
Server: nginx
Date: Fri, 25 Nov 2022 03:59:07 GMT
Connection: keep-alive
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Pragma: public
Cache-Control: max-age=315360000, public, must-revalidate, proxy-revalidate


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /C.ashx?btag=a_3357b_1556c_&affid=879&siteid=3357&adid=1556&c=w2q8n8d7jeahfbnk2gf0ilf4 HTTP/1.1 
Host: st.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         40.127.232.184
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Location: //st.lp247p.com/C.ashx?btag=a_3357b_1556c_&affid=879&siteid=3357&adid=1556&c=w2q8n8d7jeahfbnk2gf0ilf4&AutoR=1
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
Set-Cookie: CEK=a; expires=Thu, 23-Feb-2023 03:59:07 GMT; path=/; SameSite=None; Secure
X-Powered-By: ASP.NET
X-XSS-Protection: 1; mode=block
Date: Fri, 25 Nov 2022 03:59:07 GMT
X-Cnection: close
Content-Length: 246
Vary: Accept-Encoding


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   246
Md5:    9862e1a9a7dc71653ac97f47b7787e6f
Sha1:   c52f431fbff8d6001271006af4e3a4b3b88dd831
Sha256: f5040e374c4ef90c295f00640cbd41d660d69b1f0f5f2cf1e9819467f7d18dd9
                                        
                                            GET /C.ashx?btag=a_3357b_1556c_&affid=879&siteid=3357&adid=1556&c=w2q8n8d7jeahfbnk2gf0ilf4&AutoR=1 HTTP/1.1 
Host: st.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: CEK=a
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         40.127.232.184
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Location: https://sptzwc.lp247p.com?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Server: Microsoft-IIS/10.0
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
X-AspNet-Version: 4.0.30319
Set-Cookie: XYZ=3&1&148&&&&0&1&&c79d9c99-f522-42b6-a2b4-6d3275b83d25&&a_3357b_1556&; expires=Thu, 23-Feb-2023 03:59:07 GMT; path=/; SameSite=None; Secure A_1556=a=1556&r=0&fv=0&lv=0&vc=0&fc=20221125&lc=20221125035907&cc=1; expires=Thu, 23-Feb-2023 03:59:07 GMT; path=/; SameSite=None; Secure PM_8=c=w2q8n8d7jeahfbnk2gf0ilf4&s=3357&ad=1556&md=0&pm=8&d=20221125035907&ip=1532635802&r=0&ref=&RedirectParams=btag%3da_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4%26affid%3d879; expires=Thu, 23-Feb-2023 03:59:07 GMT; path=/; SameSite=None; Secure CEK=a; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/; SameSite=None; Secure
X-Powered-By: ASP.NET
X-XSS-Protection: 1; mode=block
Date: Fri, 25 Nov 2022 03:59:07 GMT
X-Cnection: close
Content-Length: 200
Vary: Accept-Encoding


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   200
Md5:    429ef16916dd456f63846898ea7d6361
Sha1:   98a5438fd76696e564785a0428471113ca9487cc
Sha256: 414c815c55ecb4217fa98a6846767a49b79e986686c0737c46821097994bdcd8
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5061
Cache-Control: max-age=109923
Date: Fri, 25 Nov 2022 03:59:07 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:31:10 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: azOvdD8v5XZMOtKHsVv8kg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         34.210.158.59
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: R1zDg8HQUs7KIN939U/uTPtWOQs=

                                        
                                            GET /app.1669191373111.js HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:07 GMT
last-modified: Wed, 23 Nov 2022 08:16:23 GMT
vary: Accept-Encoding
etag: W/"637dd6d7-12112"
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   15274
Md5:    a3d579ac262cfffc0764b8d3717a3807
Sha1:   e80cb6d991c4d0d4db750ad7c1ba5514df6b2e38
Sha256: e911e5f062b87c3e7735028c70612b189bfab2171dd0b06462546f0798be4242
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Images/main-player_mobile_source_2x.png HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 247566
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=373071
content-disposition: inline; filename="main-player_mobile_source_2x.webp"
etag: "636e0763-5b14f"
last-modified: Fri, 11 Nov 2022 08:27:15 GMT
vary: Accept
cf-cache-status: HIT
age: 376859
accept-ranges: bytes
server: cloudflare
cf-ray: 76f7784c1dcab50c-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   247566
Md5:    43df540b60bbfa556d0684fe5626edfb
Sha1:   fc8d25ffb55b99cf7129b1005877c4ea76768cbb
Sha256: 9d2c1b96e585662a10ed732d74f6868cec189e394c853fa86cae0bdaab33af9b
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Images/ball-motion.png HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 25564
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=32236
content-disposition: inline; filename="ball-motion.webp"
etag: "6350f118-7dec"
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
vary: Accept
cf-cache-status: HIT
age: 88995
accept-ranges: bytes
server: cloudflare
cf-ray: 76f7784c1dd0b50c-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   25564
Md5:    df8fca7480887c64ccf4510762dc4401
Sha1:   c538f22ec3b926e641144a6ec026cb72a3c66aab
Sha256: 2d3e682e40d056dc202d77128a1808352423175af24c6583f4e47efd3fce5dec
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Prize/sportaza_prize-3.png HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 28712
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=33978
content-disposition: inline; filename="sportaza_prize-3.webp"
etag: "6350f113-84ba"
last-modified: Thu, 20 Oct 2022 06:56:19 GMT
vary: Accept
cf-cache-status: HIT
age: 93140
accept-ranges: bytes
server: cloudflare
cf-ray: 76f7784c1dd1b50c-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   28712
Md5:    cedaea79ce03c60bdf97eee7d6e2b29c
Sha1:   87daf7a807d0a2108eb7602c485ed6de7066c781
Sha256: 3687c3beb24660d3c1e9e78a68467c69c614856cbc343f552987efbf21a72306
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Prize/bitcoin.png HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 72800
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=83638
content-disposition: inline; filename="bitcoin.webp"
etag: "6350f118-146b6"
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
vary: Accept
cf-cache-status: HIT
age: 376855
accept-ranges: bytes
server: cloudflare
cf-ray: 76f7784c3ddeb50c-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   72800
Md5:    4abbe9a9471958c51409f3ba7ab69234
Sha1:   b6c6715d4e488cc70db271aecfc05703e498284f
Sha256: ab70a168a3980977159b71e47f60a9af9f40f8533df671869f0d23633bc26b2d
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Prize/sportaza_prize-1.png HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 25262
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=30931
content-disposition: inline; filename="sportaza_prize-1.webp"
etag: "6350f118-78d3"
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
vary: Accept
cf-cache-status: HIT
age: 92934
accept-ranges: bytes
server: cloudflare
cf-ray: 76f7784c3ddfb50c-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   25262
Md5:    c4d9053827058d4d1beea705fc820014
Sha1:   b6e1aa0706180f108edb339451d43cb5cf6fe9c3
Sha256: 3a96fb88f72a844bf74cecc188ef722842de2b0aa597359a22b99ff5a004187b
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Prize/sportaza_prize-4.png HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 16476
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=19123
content-disposition: inline; filename="sportaza_prize-4.webp"
etag: "6350f118-4ab3"
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
vary: Accept
cf-cache-status: HIT
age: 376855
accept-ranges: bytes
server: cloudflare
cf-ray: 76f7784c3de0b50c-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   16476
Md5:    00f3381b8e956ac309bafeac9a4b5f5e
Sha1:   76915be3d56d3ff6ba8993e86a4f39d957ccce61
Sha256: 5089a0db9d91b2e585d47fef2cdb00b66f3837c08117f6fc592af42a500550ee
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Prize/sportaza_prize-2.png HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 24198
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=28498
content-disposition: inline; filename="sportaza_prize-2.webp"
etag: "6350f113-6f52"
last-modified: Thu, 20 Oct 2022 06:56:19 GMT
vary: Accept
cf-cache-status: HIT
age: 376855
accept-ranges: bytes
server: cloudflare
cf-ray: 76f7784c3dddb50c-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   24198
Md5:    6c4dd14e3d71f7de0039849dfd2507f2
Sha1:   a8a02d905f2ccbbe23480d2ce62bce5212ba7d9f
Sha256: a870fdbe6d1acbf1c0d4da329cf2001c78c83af7eed94123739aa76768b64d9f
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Bg/offer_bg_tablet-mobile.png HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 139054
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=147661
content-disposition: inline; filename="offer_bg_tablet-mobile.webp"
etag: "6350f118-240cd"
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
vary: Accept
cf-cache-status: HIT
age: 376855
accept-ranges: bytes
server: cloudflare
cf-ray: 76f7784c4de7b50c-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   139054
Md5:    686cdedf4fd6521940235cb9c64e79f5
Sha1:   45a96a47e16639df70feb2108b7c202d8a025702
Sha256: 09184641e75c6bdc7f1cf0f315cf5be46d735f42b80e9eeacb66d508aacc83f7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2567
Cache-Control: max-age=129374
Date: Fri, 25 Nov 2022 03:59:08 GMT
Etag: "637f89e3-117"
Expires: Sat, 26 Nov 2022 15:55:22 GMT
Last-Modified: Thu, 24 Nov 2022 15:12:35 GMT
Server: ECS (amb/6BB1)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=126807
Date: Fri, 25 Nov 2022 03:59:08 GMT
Etag: "637f89e3-117"
Expires: Sat, 26 Nov 2022 15:12:35 GMT
Last-Modified: Thu, 24 Nov 2022 15:12:35 GMT
Server: nginx
Content-Length: 279

                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Images/sportaza-wc_main-player_desktop-tablet.webp HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 125224
last-modified: Thu, 20 Oct 2022 06:56:19 GMT
etag: "6350f113-1e928"
access-control-allow-origin: *
cf-cache-status: HIT
age: 409494
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784c8a67b524-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   125224
Md5:    0f4a5401eae87f31ff5e4b02d7d087b0
Sha1:   75f101d032bc66c86c076c7712d35445074abceb
Sha256: 4cff533fe493538288425cf07c85beb81ccbc3dfa381dc42b615233cfa7b2c7a
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Images/ball-motion.webp HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 41756
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: "6350f118-a31c"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411916
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784c8a69b524-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   41756
Md5:    00b4037b251e14984acf37232e3ada7f
Sha1:   922351015aefb3a192a2efd36b03c909319d54b8
Sha256: 23fe40467dd09ce1d652704693296ca8fd1204ee0c471f87d8c2ed8614d125e0
                                        
                                            GET /?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879 HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: text/html
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:07 GMT
last-modified: Wed, 23 Nov 2022 08:16:23 GMT
vary: Accept-Encoding
etag: W/"637dd6d7-37e"
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   42858
Md5:    e5ebafcf98b3dabeff5df09e7204c525
Sha1:   949200a2df7eaa1b6c02cfada403d9fed572cb7f
Sha256: bf77515e93e24a5e22502c754219e588b2d853b5ad0fbdcf1bfd9a6ec4c90bb7
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Prize/sportaza_prize-2.webp HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 36356
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: "6350f118-8e04"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411916
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784c8a6cb524-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   36356
Md5:    c954c5c69192a738071744a3923882c1
Sha1:   b6f0374374038d0ef72195504f7d710c0818c224
Sha256: 172a0683dafae5b11f33310c4a5b9342d3e6cfb6e9ad83ab754971aaf48e6d32
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Prize/bitcoin.webp HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 92130
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: "6350f118-167e2"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411916
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784c9a6db524-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   92130
Md5:    799d48978d806e04362dc6c0d2326015
Sha1:   22b4065e54a4ab30087383f9895f63e7da74623d
Sha256: b8c86258d2b7e7aea4ae95ac41596370224d9efa7c3e92e93ce7531f5b2f1aed
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Prize/sportaza_prize-1.webp HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 32746
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: "6350f118-7fea"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411916
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784c9a6eb524-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   32746
Md5:    d65f82aeb835278d6942a95aa857685b
Sha1:   1db9aa91ab0db3b47afe4b602d224297d8a160bb
Sha256: a28482deb0fb264caa91034cadadbd23ed8b2f84da79bdbba3a331c21c167e0b
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/decor-dots-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
last-modified: Thu, 20 Oct 2022 06:56:19 GMT
etag: W/"6350f113-17bec2"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411916
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784c3de2b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   164218
Md5:    147fe0376e5ca02028ebe4967c518e66
Sha1:   427af3d2618d9eb75ef2533255d6e5207edff670
Sha256: ec021bfd102a275bd1c621466510b2c969796d046d042c26fc94ff03251442be
                                        
                                            GET /landings/sportaza/web_components/steps/step-item_number-1.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
last-modified: Mon, 29 Aug 2022 07:22:17 GMT
etag: W/"630c6929-108b"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411915
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784c4de4b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   200715
Md5:    82b70b0f89c9eb4f17f5d41354f8ded0
Sha1:   bd4344693b69cad8bb0db77eb2a12253d457e2f1
Sha256: 8740f2a417602ee5b636f688428a383f0385fca4f6705434e760c53a58d3a2ed
                                        
                                            GET /boxi/images/sportaza/preloader/preloader-bg.jpg HTTP/1.1 
Host: sportaza.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         45.8.106.219
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 76694
cache-control: max-age=1209600
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=77284
content-disposition: inline; filename="preloader-bg.webp"
vary: Accept
etag: "604a6dc9-12de4"
expires: Sat, 03 Dec 2022 02:50:57 GMT
last-modified: Thu, 11 Mar 2021 19:21:45 GMT
x-cache-status: STALE
cf-cache-status: HIT
age: 398157
accept-ranges: bytes
server: cloudflare
cf-ray: 76f7784cee2eb517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x1200, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   76694
Md5:    325b65819586cee8d59724f678cfd3de
Sha1:   b6cc3e7e9fd2c23e8b954efa3a45fc91f39ca03a
Sha256: d23c017957021fe3687e9f934fd4408b96552bb46cef170c25ba8fe30324bc79
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Bg/sportaza-wc_main-banner_desktop-tablet.jpg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 116712
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=1795914
content-disposition: inline; filename="sportaza-wc_main-banner_desktop-tablet.webp"
etag: "6350f118-1b674a"
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
vary: Accept
cf-cache-status: HIT
age: 80936
accept-ranges: bytes
server: cloudflare
cf-ray: 76f7784cea99b524-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 2560x1080, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   116712
Md5:    0fe93e983d9325a9e9c885122273ad8a
Sha1:   c51feadc0b7d734aa2959b50d937dadd57d4b128
Sha256: b5677ff42ead80b13cee59efe9a03755a7cdcbe3e74a548da957d5ec8eb9804f
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Images/wordcup-trothy_desktop-tablet.png HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 141894
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=170188
content-disposition: inline; filename="wordcup-trothy_desktop-tablet.webp"
etag: "6350f113-298cc"
last-modified: Thu, 20 Oct 2022 06:56:19 GMT
vary: Accept
cf-cache-status: HIT
age: 97030
accept-ranges: bytes
server: cloudflare
cf-ray: 76f7784cea96b524-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   141894
Md5:    9d5d4772d3ef50c2ec948b2618252587
Sha1:   cb871c3a3ce7a280f1956ddf22db028b5bfdbda3
Sha256: dfe83098d8170aa12bf4ceb29459a4e238509231a8967cc56644caaecb389b9c
                                        
                                            GET /landings/sportaza/web_components/steps/step-images/1st_step_image_2x.png HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/png
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 83376
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: status=not_needed
etag: "630c6929-145b0"
last-modified: Mon, 29 Aug 2022 07:22:17 GMT
cf-cache-status: HIT
age: 411916
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784d1aa8b524-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 760 x 428, 8-bit colormap, non-interlaced\012- data
Size:   83376
Md5:    0980dc447bc365e4b7524436bbc9228a
Sha1:   c6ac6452001f37c9d8ae8fd485be0ec82163cfeb
Sha256: 3756aed04086951c7238103ea7b1a35d5b7cf852f7222ec89afb2751251fa5f5
                                        
                                            GET /landings/sportaza/web_components/steps/step-images/3rd_step_image_2x.png HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 104486
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=105768
content-disposition: inline; filename="3rd_step_image_2x.webp"
etag: "630c6929-19d28"
last-modified: Mon, 29 Aug 2022 07:22:17 GMT
vary: Accept
cf-cache-status: HIT
age: 411916
accept-ranges: bytes
server: cloudflare
cf-ray: 76f7784d1aabb524-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   104486
Md5:    36bb7a321cce78e532505660f7c9a80b
Sha1:   1d4e609e722f85ca7bea193dd9277793acbd772f
Sha256: 17eb00059c85de077fc1582a517e98904beea12651f9a537ca8e81d6f142f106
                                        
                                            GET /landings/sportaza/web_components/steps/step-images/2rd_step_image_2x.png HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 87016
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=88907
content-disposition: inline; filename="2rd_step_image_2x.webp"
etag: "630c6929-15b4b"
last-modified: Mon, 29 Aug 2022 07:22:17 GMT
vary: Accept
cf-cache-status: HIT
age: 411916
accept-ranges: bytes
server: cloudflare
cf-ray: 76f7784d1aaab524-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   87016
Md5:    758bb6435b8389a038c32f20058b63f1
Sha1:   4de1447d49b0ba60db60429fc47b99c0c5a8cfd9
Sha256: febd3db5123f5466b7829fde1eba27a21ca18063f36a4b930a1345430b91e66a
                                        
                                            GET /landings/fonts/TTSquares/TTSquaresCondensed-BlackItalic.woff2 HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sptzwc.lp247p.com
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: application/octet-stream
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 14212
last-modified: Mon, 23 Aug 2021 07:29:15 GMT
etag: "61234e4b-3784"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411916
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784d1aafb524-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 14212, version 1.0\012- data
Size:   14212
Md5:    19fd10d0c28e62ac22eca04b33371743
Sha1:   b42a88a8b247b50f80c2fb57ad82c4cf74a55b7e
Sha256: 227528b38050b40b404c03f3eb21f4cb954de6d1214a89cc15b3b5cab2575b5e
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/arrows_for-terms-and-conditions_desktop-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: W/"6350f118-2a2"
access-control-allow-origin: *
cf-cache-status: HIT
age: 398157
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784cba7db524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   13571
Md5:    f840aa4eadb3d2d6edb262679a46f2f3
Sha1:   c206caeed375e52acb0b03ee40778cfa60e727a8
Sha256: 97a17d837733c3ff94b4d3970939a60658bf357af746601d49881789f1fd94d9
                                        
                                            GET /landings/fonts/TTSquares/TTSquaresCondensed-Black.woff2 HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sptzwc.lp247p.com
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: application/octet-stream
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 13152
last-modified: Mon, 23 Aug 2021 07:29:15 GMT
etag: "61234e4b-3360"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411916
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784d2ab4b524-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 13152, version 1.0\012- data
Size:   13152
Md5:    d23da843851a42facaebd5da2f8918d4
Sha1:   00a60b5ea5c1bfadd48c01e66223cc3ab54351c3
Sha256: e739c8ec611124d3e06a6e1ff3a78c0fe848c8c3f224f7ed90f3af600bbc1f83
                                        
                                            GET /landings/fonts/TTSquares/TTSquaresCondensed-Bold.woff2 HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sptzwc.lp247p.com
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: application/octet-stream
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 13228
last-modified: Mon, 23 Aug 2021 07:29:15 GMT
etag: "61234e4b-33ac"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411916
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784d2abbb524-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 13228, version 1.0\012- data
Size:   13228
Md5:    5ee34921c0a621c2421d632e0cb1b898
Sha1:   80660a3edae9614e16b1a1dceeb4d722af9424ca
Sha256: de0aa8dde033266757b28e637537b8dc569d2686f94783898f5cb3b53f8e22eb
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/decor_green-dots_on-main-banner_buttom-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
last-modified: Thu, 20 Oct 2022 06:56:19 GMT
etag: W/"6350f113-6d0a"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411916
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784cea98b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   7133
Md5:    1107cd8f058b2df4a4222c245b99024c
Sha1:   1ad44bcb785fdc8919768cd573fe68f0e3c3b60a
Sha256: 74187881f3bc9ed1bf3ac5dab6e2ca74e7a090b43ceeaeff28e79f89a9eec9d7
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/decor-shape-above-main-banner_top-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
last-modified: Thu, 20 Oct 2022 06:56:19 GMT
etag: W/"6350f113-e31"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411916
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784cea9db524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1326
Md5:    3eb8c1f45e3e2bd27ef00e925a302e1d
Sha1:   bae5bd4b21af425cde7780fa46094dfad171d1f4
Sha256: 3cc557ea06de0b52ac19a1ec510a31345b5f5f6d13b42c13ff5ccebe45fe1eaa
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 25 Nov 2022 03:59:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/bg-shape-under-the-prizes_desktop-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: W/"6350f118-491"
access-control-allow-origin: *
cf-cache-status: HIT
age: 398157
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784c8a68b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   11601
Md5:    1e4eb933b835f67fcb2c008dfd0ea707
Sha1:   9c76a9797bd510c207dc78c620cd5a07e1b54a5d
Sha256: ba915cc0e4516b8098d419de5fe77d521ad3bc3dc3ea8a037bfbc37ea9bc052f
                                        
                                            GET /boxi/images/sportaza/flags/en.svg HTTP/1.1 
Host: sportaza.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         45.8.106.219
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
last-modified: Sun, 07 Mar 2021 09:27:19 GMT
etag: W/"60449c77-653"
expires: Sun, 20 Nov 2022 06:08:57 GMT
cache-control: max-age=1209600
x-cache-status: STALE
cf-cache-status: HIT
age: 411916
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784cbe1bb517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (383)
Size:   11680
Md5:    cf11df2535c09251a3be9e463863bb90
Sha1:   dcc2e53458c122cab1ac8753e586ee997b148344
Sha256: 576e87dde05a52e213863f5b7a5ceab326f7b982b057267dd06f5a8e35381d8a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 25 Nov 2022 03:59:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /dimg/team/netherlands.svg HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 223
content-security-policy: block-all-mixed-content
etag: "e53fc83f569b904b5b883c87a37b5607"
last-modified: Mon, 23 Aug 2021 17:59:40 GMT
vary: Origin
x-amz-request-id: 172AB7C715B70BFD
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Size:   223
Md5:    e53fc83f569b904b5b883c87a37b5607
Sha1:   e9d6d9f2ffe57c6a8109651ecccb442e14e9a2fd
Sha256: 9c2a624a9ca5a82940d8902a7b818230d7bc2efde991837d6f78bc78c1b27110
                                        
                                            GET /dimg/team/1668613878666_cr.svg HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 549
content-security-policy: block-all-mixed-content
etag: "3eea5c265f7628a6b13c509adf4a1fa1"
last-modified: Wed, 16 Nov 2022 15:51:18 GMT
vary: Origin
x-amz-request-id: 172AB7C7CC343F3C
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text
Size:   549
Md5:    3eea5c265f7628a6b13c509adf4a1fa1
Sha1:   c31c3a9fb48124024a9a76e56900d0f9c4385edf
Sha256: c34bf2d2dc1b8e33afb38e0cfa8244a0b9578a2111ec3a75b8c0206d15063336
                                        
                                            GET /dimg/team/1668611775214_tun.svg HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 927
content-security-policy: block-all-mixed-content
etag: "181d678343b0c3353e923362481d7471"
last-modified: Wed, 16 Nov 2022 15:16:15 GMT
vary: Origin
x-amz-request-id: 172AB7C7CC928117
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (583)
Size:   927
Md5:    181d678343b0c3353e923362481d7471
Sha1:   742d052110525ba2ffc8de1c86323d7b5da11ea2
Sha256: fb95dafcbb921a2687d102922be936b76cc4cc7a8f7b59bf4ff85dd17fd4cd70
                                        
                                            GET /dimg/team/1668611711325_au.svg HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 3201
content-security-policy: block-all-mixed-content
etag: "1a50ab86dddf696e092e652181571d7e"
last-modified: Wed, 16 Nov 2022 15:15:11 GMT
vary: Origin
x-amz-request-id: 172AB7C7CC2E72CE
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (537)
Size:   3201
Md5:    1a50ab86dddf696e092e652181571d7e
Sha1:   e81ee7953079d48b99837c1171c0715d740454a6
Sha256: 3501dc35d84594b949975f9ae19c4bdeea919609d0f057792e36f4d46af2f4b2
                                        
                                            GET /dimg/team/1633594561146_ecuador2.svg HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 279145
content-security-policy: block-all-mixed-content
etag: "94317befb597bfc7cbe5a664dbe34afd"
last-modified: Thu, 07 Oct 2021 08:16:01 GMT
vary: Origin
x-amz-request-id: 172AB7C715B0C7F1
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (5435), with CRLF line terminators
Size:   279145
Md5:    94317befb597bfc7cbe5a664dbe34afd
Sha1:   784256b8eedc7c56fb0eb0557b06a66605b4dad9
Sha256: b6579b12e0f49555d608ee7a59e82aa932d4481af439f936bf1009e115f2d20e
                                        
                                            GET /landings/sportaza/logo.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
last-modified: Thu, 15 Apr 2021 08:36:12 GMT
etag: W/"6077fafc-945c"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411916
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784cea94b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   16233
Md5:    371fa5094837cca93c24c8681d8b9fa8
Sha1:   d060927650c473460fa4d72f19c50a36fea8e063
Sha256: 0dd90b6357b96dd3d5c4f47b2cec3de3700cce52b9e5d242998f91e3cd20f6b6
                                        
                                            GET /en/api/v2/icon/list?category=landing-licenses&count=100 HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
cf-ray: 76f775b1b9c79b8f-FRA
access-control-allow-origin: *
cache-control: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-expose-headers: X-Device-Type,X-Device-Name
cache-created: 2022-11-25T03:55:16.749Z
request-id: feapi-c684c835-035f-4aa1-b2fd-83acf1ed50be
x-device-name: Other
x-device-type: desktop
x-xss-protection: 1; mode=block
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (929), with no line terminators
Size:   3728
Md5:    ec207c58993297d4ce66b53156b89825
Sha1:   b82f8280432e58cf1f573126524d2064a9194a6e
Sha256: 3d44369bfc9c1db6897f1a62c03c22064120dd7165d43161494134daef1048db
                                        
                                            GET /dimg/team/1668613854808_eng.svg HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 483
content-security-policy: block-all-mixed-content
etag: "88faab9969508f016f86cbbc328dbce7"
last-modified: Wed, 16 Nov 2022 15:50:54 GMT
vary: Origin
x-amz-request-id: 172AB7C71598858E
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text
Size:   483
Md5:    88faab9969508f016f86cbbc328dbce7
Sha1:   984a9ba23656e5bb6e85709f311f1b37cc166de1
Sha256: da6b8d380efd9c7e1b4d3a5f3583d3ff1ae39e768605cf1a6698dbfbe519b609
                                        
                                            GET /dimg/team/1668610639901_us.svg HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 5368
content-security-policy: block-all-mixed-content
etag: "f9dcba64e77b89ca58c716938ffc16a1"
last-modified: Wed, 16 Nov 2022 14:57:19 GMT
vary: Origin
x-amz-request-id: 172AB7C70BA54BA6
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3809)
Size:   5368
Md5:    f9dcba64e77b89ca58c716938ffc16a1
Sha1:   2561b2ce2d3775bc704f7e011a8b463d2ed83530
Sha256: f1fb58a2422addbc8fa704652eef09ffa115d24444fd3f6c4d6d13f92e461b63
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Bg/bg_under_terms-and-conditions.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
last-modified: Thu, 10 Nov 2022 16:05:15 GMT
etag: W/"636d213b-408"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411916
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784d1aacb524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

                                        
                                            GET /en/api/v2/icon/list?category=footer&count=100 HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
cf-ray: 76f775b1b81cbbf5-FRA
access-control-allow-origin: *
cache-control: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-expose-headers: X-Device-Type,X-Device-Name
cache-created: 2022-11-25T03:55:16.753Z
request-id: feapi-7b36bd75-0fa4-49da-b559-b56ba13d298e
x-device-name: Other
x-device-type: desktop
x-xss-protection: 1; mode=block
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (535), with no line terminators
Size:   5219
Md5:    ba5ed8833d1ae69739306a902d841e39
Sha1:   1a453fc755a36abb80a558ee491faf7614b2104b
Sha256: b628043c9ea5a12fd12fa1e0903e7aa12a302d901b8217ec1f0c3216773f9e34
                                        
                                            GET /dimg/team/1668601370505_arg.svg HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 728
content-security-policy: block-all-mixed-content
etag: "65b662ea0607d3781ba130ca56463d51"
last-modified: Wed, 16 Nov 2022 12:22:50 GMT
vary: Origin
x-amz-request-id: 172AB7C715BACDA6
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text
Size:   728
Md5:    65b662ea0607d3781ba130ca56463d51
Sha1:   af85d38e64b82df1a9ab02833ed457edbd3dc9de
Sha256: aba1b0178ce34f5cab062da8701c64ebb97521dda40248406fd6fa94bf7efff8
                                        
                                            GET /dimg/team/1668611759307_mx.svg HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 1568
content-security-policy: block-all-mixed-content
etag: "78a506ed9f0592c91389bc71e183eb81"
last-modified: Wed, 16 Nov 2022 15:15:59 GMT
vary: Origin
x-amz-request-id: 172AB7C7159E2C68
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (797)
Size:   1568
Md5:    78a506ed9f0592c91389bc71e183eb81
Sha1:   bac92a650c315e2caa1e5e94a2bd398695d4600f
Sha256: 07b09d3c10bef9302d4b6303d6e77fe62b8572e7554f8fc321ab126ab03b1331
                                        
                                            GET /dimg/team/france.svg HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 249
content-security-policy: block-all-mixed-content
etag: "2f9befe94ef9076d58b0a2ae38e1a025"
last-modified: Mon, 23 Aug 2021 17:59:39 GMT
vary: Origin
x-amz-request-id: 172AB7C71ACE80E3
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text
Size:   249
Md5:    2f9befe94ef9076d58b0a2ae38e1a025
Sha1:   58e49fd93326491eaf3f22cdc75a0e39376c352a
Sha256: 241dac7da9d2782f58c2ffdc05090ac486b49cde149c879675d189dee66aedf6
                                        
                                            GET /dimg/team/1668611815388_dk.svg HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 495
content-security-policy: block-all-mixed-content
etag: "2c078b26e453e344b02d028fcbd4a629"
last-modified: Wed, 16 Nov 2022 15:16:55 GMT
vary: Origin
x-amz-request-id: 172AB7C716554B00
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text
Size:   495
Md5:    2c078b26e453e344b02d028fcbd4a629
Sha1:   a506442e01afafac851470766532e2221b0fdfea
Sha256: 3f2ec64d9b6c3da82e13f65a30671894040f35c8dc40c28e038b5327be6c6cc1
                                        
                                            GET /dimg/team/spain.png HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 55042
content-security-policy: block-all-mixed-content
etag: "55ee892a846b387cc8159b656aaf8a68"
last-modified: Mon, 23 Aug 2021 18:10:34 GMT
vary: Origin
x-amz-request-id: 172AB7C715A7312C
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1024 x 683, 8-bit/color RGB, non-interlaced\012- data
Size:   55042
Md5:    55ee892a846b387cc8159b656aaf8a68
Sha1:   ba5cd4999c737591833c229262f7f2ec7de6cbee
Sha256: 06ec89d41299bc486787ef65e3b5782a5e4a0f615268a7bf44e8438ed81e77d9
                                        
                                            GET /dimg/team/1668611653436_de.svg HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 468
content-security-policy: block-all-mixed-content
etag: "b5aa958e4ae9e8029a1e03c19514f5bf"
last-modified: Wed, 16 Nov 2022 15:14:13 GMT
vary: Origin
x-amz-request-id: 172AB7C716615AEC
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text
Size:   468
Md5:    b5aa958e4ae9e8029a1e03c19514f5bf
Sha1:   d400e48640cdd08a12403b9d8fd4120017dff3d9
Sha256: 71e866eda22a33db7885ebeb7d59e3d9b9e58846445f4a5f595b721be53f3600
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/bg_footer_desktop-tablet-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: W/"6350f118-b27b7"
access-control-allow-origin: *
cf-cache-status: HIT
age: 409494
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784cba84b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   112461
Md5:    ce1ac8e544b225e89100d89b47e30f4a
Sha1:   856c8af1bf8bb5c58440e10435989d60dd8ceb08
Sha256: c032e1dfea77e21695642506b74272afd61f9b77a133dc8c08f9bcfeb7c8a363
                                        
                                            GET /en/api/v2/game-events-feed/feed?category=worldcup&count=100 HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
cf-ray: 76f775b199885c4a-FRA
access-control-allow-origin: *
cache-control: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-expose-headers: X-Device-Type,X-Device-Name
cache-created: 2022-11-25T03:55:16.795Z
request-id: feapi-525714f6-dcef-4f27-b888-ca21ce8ea428
x-device-name: Other
x-device-type: desktop
x-xss-protection: 1; mode=block
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (20522), with no line terminators
Size:   3091
Md5:    f54b11be0f562a4327a0aa02ade81dee
Sha1:   47c16d87647127e17569a955cbcabb5b9d3652fe
Sha256: 26c0496ebd8355b43a62b76e139f78856aa2eb98e00f0e42d0965123df4197d8
                                        
                                            GET /en/api/v2/lang/translation HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
cf-ray: 76f775b19cb991f0-FRA
access-control-allow-origin: *
cache-control: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-expose-headers: X-Device-Type,X-Device-Name
request-id: feapi-000d712c-65aa-4845-b141-07aba6b2c2d7
x-device-name: Other
x-device-type: desktop
x-xss-protection: 1; mode=block
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (65351), with no line terminators
Size:   33189
Md5:    6857cce5a799f16a8ea47eeebcf0c0b5
Sha1:   626df82cf9ca301f6336c9cd49469620bc31ffe9
Sha256: 2c61891bf82c53c2da766d4832993193df1801f07a60d656ea6d5c24f440388a
                                        
                                            GET /landings/sportaza/web_components/steps/step-item_number-2.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
last-modified: Mon, 29 Aug 2022 07:22:17 GMT
etag: W/"630c6929-1b20"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411916
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784c4de5b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   3808
Md5:    8d93022631c70d1d8ff57c4253f4746f
Sha1:   9621cef8769ea36bc43a225004340b0f80be5259
Sha256: a3a92fd1807cd373ff10198f6439897905c5d29bf4a6c0d7d449258ec5a91683
                                        
                                            GET /dimg/team/1668611167363_cmrn.svg HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 643
content-security-policy: block-all-mixed-content
etag: "b7131391313c2a47343e321a396366b6"
last-modified: Wed, 16 Nov 2022 15:06:07 GMT
vary: Origin
x-amz-request-id: 172AB7C71ACB97A4
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text
Size:   643
Md5:    b7131391313c2a47343e321a396366b6
Sha1:   84bb37bbd51c055c82220df6362e8f1bc2d3002b
Sha256: 1a64a90a4f46b68b3683b951c65c8b37308ff872ab58e2a8f896c6f9b3d8fd91
                                        
                                            GET /en/api/v2/page/item/sptzwc-info-page-promo HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
cf-ray: 76f775b1aee8bbbc-FRA
access-control-allow-origin: *
cache-control: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-expose-headers: X-Device-Type,X-Device-Name
request-id: feapi-aecd9768-bcd1-4ec6-b106-684b8af80575
x-device-name: Other
x-device-type: desktop
x-xss-protection: 1; mode=block
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- HTML document, ASCII text, with very long lines (5979), with no line terminators
Size:   3847
Md5:    ac4bd3634bff636fca9a8a7de1b11380
Sha1:   c712cc49793c4876c2e7d4d9d62b3cf22ceeab3f
Sha256: a707930b1b935200f47bc1de2cee6c349b44820fd26b1c4704b4974fd1fd39cb
                                        
                                            GET /dimg/team/1668611031408_br.svg HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 1734
content-security-policy: block-all-mixed-content
etag: "cec2e1e57c4c996b857c65bef3df0b6a"
last-modified: Wed, 16 Nov 2022 15:03:51 GMT
vary: Origin
x-amz-request-id: 172AB7C7159E475B
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (338)
Size:   1734
Md5:    cec2e1e57c4c996b857c65bef3df0b6a
Sha1:   3004e9d5fe0c82a3590692e6778e67ab957ac9ba
Sha256: 1a1e1cce9de2d340dcf395f3065da7d29bb242707b3ed6850b7bbcafa3760f14
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/decor_arrows-for-steps_mobile-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: W/"6350f118-3b4"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411916
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784c3de1b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1720
Md5:    e9a02a71eb4571f4e2cf85b93c4e2865
Sha1:   4c693cd13fcb34a1eb7504dc36912896c0b0f35f
Sha256: b0fbdd9d1b7c96c45cc49070f537ef5e88dac06eca8767296a04136d7ba0d3b5
                                        
                                            GET /dimg/team/1668611070661_por.svg HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 1187
content-security-policy: block-all-mixed-content
etag: "3e907ae18a94e609e4b57f70ece34f35"
last-modified: Wed, 16 Nov 2022 15:04:30 GMT
vary: Origin
x-amz-request-id: 172AB7C7CBA814F3
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text
Size:   1187
Md5:    3e907ae18a94e609e4b57f70ece34f35
Sha1:   77dfa235d9c8bf5b3af09a6cb2525558c29ad204
Sha256: 0ad438e0349a971a12cd12960e68b11bdba16cef114234efa872a66565181000
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/decor_footer-arrows_desktop-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: W/"6350f118-219"
access-control-allow-origin: *
cf-cache-status: HIT
age: 398157
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784cba80b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1617
Md5:    085a3321de1af106892d92019abca328
Sha1:   366c351d3fba9950b6f51966779ac6d2f7ba2878
Sha256: 667d880aed04b54959befbc0f5be80b0064d2d11f74f96a685de443b283850ea
                                        
                                            GET /en/api/v2/page/item/sptzwc-info-page-tournament HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
cf-ray: 76f775b1aacb9274-FRA
access-control-allow-origin: *
cache-control: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-expose-headers: X-Device-Type,X-Device-Name
request-id: feapi-241b0221-3fe0-4b36-87f1-6bd4c4e6bee1
x-device-name: Other
x-device-type: desktop
x-xss-protection: 1; mode=block
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (11973), with no line terminators
Size:   5536
Md5:    a9cfd7468ceb8259976e4b2afefa7d2b
Sha1:   a6de900a5ae6dc0f606efab9f0fa7f170bdf209f
Sha256: 6057b2c4509790f82352a86799d10f801b921857ba3b400e9303063d2f42cc45
                                        
                                            GET /dimg/team/1667224821895_1280pxflagofghana.svg.png HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 5830
content-security-policy: block-all-mixed-content
etag: "01eef8c9bf62a95eead0b44f96c9eb04"
last-modified: Mon, 31 Oct 2022 14:00:21 GMT
vary: Origin
x-amz-request-id: 172AB7C7CBB3D825
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1280 x 853, 8-bit colormap, non-interlaced\012- data
Size:   5830
Md5:    01eef8c9bf62a95eead0b44f96c9eb04
Sha1:   b5382a09a77cace30c56add0af09c0e750264f28
Sha256: c0227a2e7715aae4e765ae805d327775b8c0a942cd8acc14511f092bfe1f305e
                                        
                                            GET /dimg/team/wales.svg HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 36009
content-security-policy: block-all-mixed-content
etag: "d2c365be887ee592c10229e3cef43eff"
last-modified: Mon, 23 Aug 2021 17:59:40 GMT
vary: Origin
x-amz-request-id: 172AB7C7CBADCB97
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   36009
Md5:    d2c365be887ee592c10229e3cef43eff
Sha1:   22cd4982352bcc1078cdd690d8c404a1192db577
Sha256: e86cdc1803336f989f45ee1de068c41e05120afe40bdf44449f167ffe2f5169e
                                        
                                            GET /dimg/team/1653981171283_1280pxflagofiran-1.svg HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
content-length: 31977
content-security-policy: block-all-mixed-content
etag: "4d4609d3ab43f2c54c689a5937df05e2"
last-modified: Tue, 31 May 2022 07:12:51 GMT
vary: Origin
x-amz-request-id: 172AB7C7CC32C547
x-xss-protection: 1; mode=block
x-cache-status: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (31579)
Size:   31977
Md5:    4d4609d3ab43f2c54c689a5937df05e2
Sha1:   60cb130191e5f804664288566c00c96b176de6f0
Sha256: 9a78081f710471d3c2f35585671d4532f2b2dcd7d1c438763db999e1f4b43beb
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/bg-shape-under-the-prizes_mobile-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
last-modified: Thu, 20 Oct 2022 06:56:19 GMT
etag: W/"6350f113-7a5"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411916
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784c1dcdb50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1757
Md5:    d6b57afbae30ef5aa899e303f2f68b62
Sha1:   20f1f0146798c53e23c85f6b026c7ee7cad9e17c
Sha256: e950dd9912124a878897dd4539be8296d7fa0b3062eb4ea51a7402d295265d6f
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3696
Expires: Fri, 25 Nov 2022 05:00:45 GMT
Date: Fri, 25 Nov 2022 03:59:09 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3696
Expires: Fri, 25 Nov 2022 05:00:45 GMT
Date: Fri, 25 Nov 2022 03:59:09 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3696
Expires: Fri, 25 Nov 2022 05:00:45 GMT
Date: Fri, 25 Nov 2022 03:59:09 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d60bb22-4a30-4570-8561-eb3a2833a058.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8277
x-amzn-requestid: e84a5668-cd91-42af-b6de-5eb694ea56e6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB-KFtmIAMF00Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38d-64513fb257d83b9847c82929;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rIKW7gaK37mlbk_TUo63AH9-XDOoF3Z-5mGaeOkzmESFLJ3GHz60lA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:35:10 GMT
etag: "6a8504212141af411a18ce58960c8bb52e8116ac"
age: 23039
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8277
Md5:    f59a591b222397ff0f01c22a0786e660
Sha1:   6a8504212141af411a18ce58960c8bb52e8116ac
Sha256: 624847cfdfcd770d2dee8a2b85f3c7c480cda58ba2aef1135184f3dffc30d1f1
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3696
Expires: Fri, 25 Nov 2022 05:00:45 GMT
Date: Fri, 25 Nov 2022 03:59:09 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2302d358-ba65-4bf0-9d74-b5fb532a1d52.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6590
x-amzn-requestid: 5d8b02c4-673a-4c77-8f24-498d9b8a28ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8zGeAIAMF4HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-661ce3991caf87e8558158c3;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: zrf0qGRu_c3x7ZTku1R-I-z2a_AS1vyjO4tIqja0f9XgGxwv6lWviw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:35:01 GMT
etag: "236199a790f16dcf96dba80b9945836b37e3c2eb"
age: 23048
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6590
Md5:    1adbf0cd373a4c06caa71eac14e1286c
Sha1:   236199a790f16dcf96dba80b9945836b37e3c2eb
Sha256: 767fd66cf0751dd80b2453588f9363fac7d9637da3dc9098d25fb65699ca8c5e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72e29c5-d9d3-43d5-8c71-f66a22a3f112.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6560
x-amzn-requestid: e8956a92-d016-41a2-99b4-631a6db3b8db
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: byQzsFY3IAMF9iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63772e7d-2337148b0a824d134aaab9d7;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 07:04:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dU517RkLcsPSCY7GMmqqe4ommRFNpp6CVw4rYEm06u8i3e6_M3FfaQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 10:48:48 GMT
age: 61821
etag: "75d9a14e98ffba5a71a6f710be721b593338ffdc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6560
Md5:    9bc7c4877bfa24d0c1bbb774cd906af1
Sha1:   75d9a14e98ffba5a71a6f710be721b593338ffdc
Sha256: b0e1d9af095632e6d75bc7606bccfb0c1903f5173696cefb7e36c3d34a98358e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11743
x-amzn-requestid: 9ab0aba7-5cd1-4f6c-8984-dc221e1cbf8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cICD-F7joAMFqmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe3b2-152ba5f1495a44447356cdab;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oWSNdsrz59sJC2znLnFqa_Zm3T14_d6j-rjzDQe4yV22Dy2Qc4Swaw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:45 GMT
age: 21864
etag: "b0ddc1555d2506177adcdcea77864d75f1245d07"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11743
Md5:    8784bb7a8b88736a6016f712e3183bf3
Sha1:   b0ddc1555d2506177adcdcea77864d75f1245d07
Sha256: 8e331713b0ad0b5670dd33dfdadde665e076a40ddb80905d4df89876d49803d8
                                        
                                            GET /index.1669191373111.css HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:07 GMT
last-modified: Wed, 23 Nov 2022 08:16:23 GMT
vary: Accept-Encoding
etag: W/"637dd6d7-8164"
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   17119
Md5:    912fcd50de06424d482b6915062c8369
Sha1:   47313db5578b1187e908170672b9a3b406d010af
Sha256: 41ede189773ff7a2904c4ccd37e215320068d6d8c06e3c52bf9e8b9f8824b096
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:14:07 GMT
age: 74702
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4309
Md5:    841a4b110022a99ddea6f7bf66df0fa1
Sha1:   126771b86638108050cf57c0d12faa27f80f0edb
Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Images/main-player_mobile_source_2x.png HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Fri, 11 Nov 2022 08:27:15 GMT
If-None-Match: "636e0763-5b14f"
TE: trailers

search
                                         104.16.152.45
HTTP/2 304 Not Modified
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=373071
content-disposition: inline; filename="main-player_mobile_source_2x.webp"
etag: "636e0763-5b14f"
last-modified: Fri, 11 Nov 2022 08:27:15 GMT
vary: Accept
cf-cache-status: HIT
age: 376860
server: cloudflare
cf-ray: 76f778565e00b524-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/bg-shape-under-the-prizes_mobile-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 20 Oct 2022 06:56:19 GMT
If-None-Match: W/"6350f113-7a5"
TE: trailers

search
                                         104.16.152.45
HTTP/2 304 Not Modified
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
last-modified: Thu, 20 Oct 2022 06:56:19 GMT
etag: "6350f113-7a5"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411917
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f778566e06b524-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Prize/sportaza_prize-2.png HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
content-length: 24198
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=28498
content-disposition: inline; filename="sportaza_prize-2.webp"
etag: "6350f113-6f52"
last-modified: Thu, 20 Oct 2022 06:56:19 GMT
vary: Accept
cf-cache-status: HIT
age: 376856
accept-ranges: bytes
server: cloudflare
cf-ray: 76f778568e0ab524-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   24198
Md5:    6c4dd14e3d71f7de0039849dfd2507f2
Sha1:   a8a02d905f2ccbbe23480d2ce62bce5212ba7d9f
Sha256: a870fdbe6d1acbf1c0d4da329cf2001c78c83af7eed94123739aa76768b64d9f
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Prize/bitcoin.png HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 20 Oct 2022 06:56:24 GMT
If-None-Match: "6350f118-146b6"
TE: trailers

search
                                         104.16.152.45
HTTP/2 304 Not Modified
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=83638
content-disposition: inline; filename="bitcoin.webp"
etag: "6350f118-146b6"
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
vary: Accept
cf-cache-status: HIT
age: 376856
server: cloudflare
cf-ray: 76f778568e0bb524-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Prize/sportaza_prize-4.png HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/webp
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
content-length: 16476
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=19123
content-disposition: inline; filename="sportaza_prize-4.webp"
etag: "6350f118-4ab3"
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
vary: Accept
cf-cache-status: HIT
age: 376856
accept-ranges: bytes
server: cloudflare
cf-ray: 76f778568e0db524-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   16476
Md5:    00f3381b8e956ac309bafeac9a4b5f5e
Sha1:   76915be3d56d3ff6ba8993e86a4f39d957ccce61
Sha256: 5089a0db9d91b2e585d47fef2cdb00b66f3837c08117f6fc592af42a500550ee
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/decor-dots-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 20 Oct 2022 06:56:19 GMT
If-None-Match: W/"6350f113-17bec2"
TE: trailers

search
                                         104.16.152.45
HTTP/2 304 Not Modified
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
last-modified: Thu, 20 Oct 2022 06:56:19 GMT
etag: "6350f113-17bec2"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411917
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f77856ae1cb524-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Images/sportaza-wc_main-player_desktop-tablet.webp HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 20 Oct 2022 06:56:19 GMT
If-None-Match: "6350f113-1e928"
TE: trailers

search
                                         104.16.152.45
HTTP/2 304 Not Modified
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
last-modified: Thu, 20 Oct 2022 06:56:19 GMT
etag: "6350f113-1e928"
access-control-allow-origin: *
cf-cache-status: HIT
age: 409495
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f77856ce37b524-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/arrows_for-terms-and-conditions_tablet-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: W/"6350f118-2bf"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411917
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f77856be20b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (703), with no line terminators
Size:   364
Md5:    d2faa569034e18408f2eaf027ddf94bb
Sha1:   f114f4605382d648cf5ef47052114e30870c3582
Sha256: cb171e0e45532c284030e960ee2a49a7bf240b1e3199a2590bdbb3282b167cc9
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/bg-shape-under-the-prizes_desktop-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 20 Oct 2022 06:56:24 GMT
If-None-Match: W/"6350f118-491"
TE: trailers

search
                                         104.16.152.45
HTTP/2 304 Not Modified
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: "6350f118-491"
access-control-allow-origin: *
cf-cache-status: HIT
age: 398158
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f77856de3cb524-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Prize/sportaza_prize-3.webp HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 20 Oct 2022 06:56:24 GMT
If-None-Match: "6350f118-a5d4"
TE: trailers

search
                                         104.16.152.45
HTTP/2 304 Not Modified
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: "6350f118-a5d4"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411917
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f77856de3fb524-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Prize/sportaza_prize-1.webp HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 20 Oct 2022 06:56:24 GMT
If-None-Match: "6350f118-7fea"
TE: trailers

search
                                         104.16.152.45
HTTP/2 304 Not Modified
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: "6350f118-7fea"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411917
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f77856ee45b524-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/decor_arrows-for-steps_mobile-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: W/"6350f118-3b4"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411917
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f77856ae19b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (948), with no line terminators
Size:   460
Md5:    dc0440be38139e757d3ec6a89c18b6e7
Sha1:   f3251bc73806cd354d8604bbaeb2aa93381086ba
Sha256: 84e2802f4e2dd378fae21ccd858fe5d34f3da613c1f4511ddfa5b2e0e50a2758
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Prize/sportaza_prize-4.webp HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 20 Oct 2022 06:56:24 GMT
If-None-Match: "6350f118-5f0a"
TE: trailers

search
                                         104.16.152.45
HTTP/2 304 Not Modified
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: "6350f118-5f0a"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411917
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f77856ee47b524-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/decor_arrows-for-steps_desktop-tablet-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 20 Oct 2022 06:56:24 GMT
If-None-Match: W/"6350f118-3a4"
TE: trailers

search
                                         104.16.152.45
HTTP/2 304 Not Modified
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: "6350f118-3a4"
access-control-allow-origin: *
cf-cache-status: HIT
age: 409495
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f77856ee48b524-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/decor_footer-arrows_tablet-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
last-modified: Thu, 20 Oct 2022 06:56:19 GMT
etag: W/"6350f113-247"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411917
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f77856be22b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (583), with no line terminators
Size:   332
Md5:    b23f6bd1c9f24334d212ec693f3bd21f
Sha1:   9e1b5d46be160e674244d26e5aac452084897e7d
Sha256: b9837ac7b9a3dcd0448f44021456f81334f3ce1ae0c93f8defe871a42c5b785f
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Bg/offer_bg_desktop.webp HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 20 Oct 2022 06:56:19 GMT
If-None-Match: "6350f113-30934"
TE: trailers

search
                                         104.16.152.45
HTTP/2 304 Not Modified
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
last-modified: Thu, 20 Oct 2022 06:56:19 GMT
etag: "6350f113-30934"
access-control-allow-origin: *
cf-cache-status: HIT
age: 398158
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f77856ee4ab524-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/decor_footer-arrows_desktop-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 20 Oct 2022 06:56:24 GMT
If-None-Match: W/"6350f118-219"
TE: trailers

search
                                         104.16.152.45
HTTP/2 304 Not Modified
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: "6350f118-219"
access-control-allow-origin: *
cf-cache-status: HIT
age: 398158
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f77856ee4db524-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/arrows_for-terms-and-conditions_desktop-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 20 Oct 2022 06:56:24 GMT
If-None-Match: W/"6350f118-2a2"
TE: trailers

search
                                         104.16.152.45
HTTP/2 304 Not Modified
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: "6350f118-2a2"
access-control-allow-origin: *
cf-cache-status: HIT
age: 398158
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f77856ee4bb524-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/bg_footer_desktop-tablet-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 20 Oct 2022 06:56:24 GMT
If-None-Match: W/"6350f118-b27b7"
TE: trailers

search
                                         104.16.152.45
HTTP/2 304 Not Modified
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: "6350f118-b27b7"
access-control-allow-origin: *
cf-cache-status: HIT
age: 409495
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f77856ee4fb524-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/decor_green-dots_on-main-banner_top-left-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 20 Oct 2022 06:56:19 GMT
If-None-Match: W/"6350f113-7156"
TE: trailers

search
                                         104.16.152.45
HTTP/2 304 Not Modified
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
last-modified: Thu, 20 Oct 2022 06:56:19 GMT
etag: "6350f113-7156"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411917
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f778571e5ab524-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/decor_green-dots_on-main-banner_buttom-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Thu, 20 Oct 2022 06:56:19 GMT
If-None-Match: W/"6350f113-6d0a"
TE: trailers

search
                                         104.16.152.45
HTTP/2 304 Not Modified
                                        
date: Fri, 25 Nov 2022 03:59:09 GMT
last-modified: Thu, 20 Oct 2022 06:56:19 GMT
etag: "6350f113-6d0a"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411917
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f778571e5bb524-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /en/api/v2/page/item/sptzwc-info-page-promo HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/en?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:09 GMT
cf-ray: 76f775b1aee8bbbc-FRA
access-control-allow-origin: *
cache-control: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-expose-headers: X-Device-Type,X-Device-Name
request-id: feapi-aecd9768-bcd1-4ec6-b106-684b8af80575
x-device-name: Other
x-device-type: desktop
x-xss-protection: 1; mode=block
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- HTML document, ASCII text, with very long lines (5979), with no line terminators
Size:   2201
Md5:    e3dca8bfe78668325427e20db8d6baba
Sha1:   d928f715c7a44cf0aed918101735db1c237f2398
Sha256: b98964e1d8f760865d0202384c855bd7857f109c2ae3d01ea367cefe5f48fba5
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/en?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: image/x-icon
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:10 GMT
content-length: 15406
last-modified: Wed, 23 Nov 2022 08:16:23 GMT
etag: "637dd6d7-3c2e"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size:   15406
Md5:    6790f6179137d5d1738f8b5b11b80154
Sha1:   51a20bd4fbf927a0417e7a4ae162cbab45de7aeb
Sha256: 45c26beef63992e8114be791213f223aa9eac05fcf4da6ce632962e1c32a92bb
                                        
                                            GET /179.1669191373111.js HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:07 GMT
last-modified: Wed, 23 Nov 2022 08:16:23 GMT
vary: Accept-Encoding
etag: W/"637dd6d7-76335"
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /landings/sportaza/icons/licenses/license_age18.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
last-modified: Mon, 29 Aug 2022 07:25:11 GMT
etag: W/"630c69d7-617"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411915
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f778507baeb524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /landings/sportaza/icons/licenses/license_antillphone.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
last-modified: Mon, 29 Aug 2022 07:25:11 GMT
etag: W/"630c69d7-17fa"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411915
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f778508bb2b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /landings/sportaza/icons/licenses/license_pecb-ms.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
last-modified: Mon, 29 Aug 2022 07:25:11 GMT
etag: W/"630c69d7-6fb2"
access-control-allow-origin: *
cf-cache-status: HIT
age: 411915
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f778508bb3b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /en/api/v2/icon/list?category=footer&count=100 HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/en?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:09 GMT
cf-ray: 76f775b1b81cbbf5-FRA
access-control-allow-origin: *
cache-control: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-expose-headers: X-Device-Type,X-Device-Name
cache-created: 2022-11-25T03:55:16.753Z
request-id: feapi-7b36bd75-0fa4-49da-b559-b56ba13d298e
x-device-name: Other
x-device-type: desktop
x-xss-protection: 1; mode=block
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /492.1669191373111.js HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:07 GMT
last-modified: Wed, 23 Nov 2022 08:16:23 GMT
vary: Accept-Encoding
etag: W/"637dd6d7-37ac"
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/bg_above-main-banner_desktop-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.152.45
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Fri, 25 Nov 2022 03:59:08 GMT
last-modified: Thu, 20 Oct 2022 06:56:24 GMT
etag: W/"6350f118-17c"
access-control-allow-origin: *
cf-cache-status: HIT
age: 398157
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7784cea9ab524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /en/api/v2/lang/translation HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/en?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:09 GMT
cf-ray: 76f775b19cb991f0-FRA
access-control-allow-origin: *
cache-control: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-expose-headers: X-Device-Type,X-Device-Name
request-id: feapi-000d712c-65aa-4845-b141-07aba6b2c2d7
x-device-name: Other
x-device-type: desktop
x-xss-protection: 1; mode=block
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /en/api/v2/page/item/sptzwc-info-page-tournament HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/en?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:09 GMT
cf-ray: 76f775b1aacb9274-FRA
access-control-allow-origin: *
cache-control: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-expose-headers: X-Device-Type,X-Device-Name
request-id: feapi-241b0221-3fe0-4b36-87f1-6bd4c4e6bee1
x-device-name: Other
x-device-type: desktop
x-xss-protection: 1; mode=block
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /en/api/v2/page/item/sptzwc-info-page-prizes HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/en?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:09 GMT
cf-ray: 76f775b1ac87697f-FRA
access-control-allow-origin: *
cache-control: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-expose-headers: X-Device-Type,X-Device-Name
request-id: feapi-c57b166c-e9fa-40e4-a738-770be9858611
x-device-name: Other
x-device-type: desktop
x-xss-protection: 1; mode=block
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /lang.1669191373111.js HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:07 GMT
last-modified: Wed, 23 Nov 2022 08:16:23 GMT
vary: Accept-Encoding
etag: W/"637dd6d7-ba1"
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /sprite.1669191373111.css HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:07 GMT
last-modified: Wed, 23 Nov 2022 08:16:23 GMT
vary: Accept-Encoding
etag: W/"637dd6d7-14fc"
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /en/api/v2/page/item/sptzwc-info-page-prizes HTTP/1.1 
Host: sptzwc.lp247p.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/?btag=a_3357b_1556c_w2q8n8d7jeahfbnk2gf0ilf4&affid=879
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         168.119.108.121
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Fri, 25 Nov 2022 03:59:08 GMT
cf-ray: 76f775b1ac87697f-FRA
access-control-allow-origin: *
cache-control: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-expose-headers: X-Device-Type,X-Device-Name
request-id: feapi-c57b166c-e9fa-40e4-a738-770be9858611
x-device-name: Other
x-device-type: desktop
x-xss-protection: 1; mode=block
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /landings/sportaza/World_Cup_Sportaza/Decor/decor_green-dots_on-main-banner_top-left-min.svg HTTP/1.1 
Host: joxi.imgsrcdata.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sptzwc.lp247p.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search