Report - playfootball.games/

Report Overview

Visitedpublic

2023-10-27 08:48:17

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ad-delivery.net	1341	2017-05-03	2017-06-22 07:33:30	2023-10-26 18:12:11	438 B	1.3 kB	104.26.2.70
ocsp.e2m02.amazontrust.com	unknown	2007-05-11	2022-12-07 11:11:00	2023-10-26 19:17:32	680 B	1.5 kB	143.204.53.97
elb.the-ozone-project.com	9949	2018-04-11	2018-06-11 16:56:54	2023-10-25 23:11:03	7.5 kB	25 kB	104.18.43.178
ads.avct.cloud	2821	2019-11-05	2020-04-01 07:34:34	2023-10-25 23:11:07	590 B	111 B	52.209.125.101
mp.4dex.io	2629	2018-04-02	2019-01-03 14:51:11	2023-10-26 18:12:01	958 B	1.2 kB	172.64.153.78
playfootball.games	unknown	2022-03-20	2019-04-12 10:09:43	2023-10-21 04:12:25	6.0 kB	111 kB	3.72.140.173
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-10-26 18:12:02	2.4 kB	4.9 kB	142.250.74.131
d33wubrfki0l68.cloudfront.net	unknown	2008-04-25	2016-05-28 02:47:31	2023-10-26 04:27:56	4.1 kB	417 kB	143.204.42.50
script.4dex.io	2135	2018-04-02	2018-07-23 12:04:27	2023-10-26 18:17:45	842 B	26 kB	104.26.8.169
i.clean.gg	1411	2018-04-01	2018-05-24 00:36:18	2023-10-26 18:12:29	1.5 kB	1.5 kB	34.95.69.49
assets.a-mo.net	7316	2017-09-08	2017-11-16 14:50:37	2023-10-25 23:15:57	399 B	681 B	104.19.159.19
region1.analytics.google.com	unknown	1997-09-15	2022-03-17 12:26:33	2023-10-26 18:25:25	727 B	451 B	216.239.32.36
d1oykxszdrgjgl.cloudfront.net	unknown	2008-04-25	2020-11-30 20:01:42	2023-10-20 22:41:07	418 B	47 kB	143.204.42.218
ib.adnxs.com	241	2008-05-27	2012-05-20 21:01:49	2023-10-26 18:12:17	982 B	1.9 kB	185.89.210.122
s.cpx.to	2014	unknown	2014-10-25 15:31:28	2023-10-25 23:16:55	650 B	265 B	79.125.93.48
p.cpx.to	10368	unknown	2015-01-23 02:00:57	2023-10-26 18:18:07	403 B	5.0 kB	54.228.100.29
ocsp.sectigo.com	487	2018-08-16	2019-11-29 12:50:24	2023-10-26 18:38:22	990 B	2.9 kB	104.18.38.233
hb.vntsm.com	14799	2010-12-30	2016-01-22 20:29:56	2023-10-27 08:54:27	1.3 kB	1.1 MB	194.242.11.186
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-10-26 18:44:10	883 B	160 kB	142.250.74.104
hb.vntsm.io	17213	2021-03-03	2021-10-07 13:06:07	2023-10-26 19:02:30	870 B	2.0 kB	104.22.47.142
cs-server-s2s.yellowblue.io	15553	2020-06-21	2020-11-23 23:40:51	2023-10-26 18:17:04	1.3 kB	270 B	52.205.208.143
prebid.a-mo.net	1148	2017-09-08	2020-07-14 19:45:55	2023-10-26 18:13:56	2.7 kB	1.6 kB	145.40.97.67
onetag-sys.com	1840	2015-04-05	2015-04-08 13:30:19	2023-10-26 18:17:03	636 B	113 B	51.89.9.254
ads.servenobid.com	1764	2019-04-26	2019-05-19 12:41:54	2023-10-26 18:51:09	2.9 kB	7.0 kB	34.251.33.30
js-sec.indexww.com	663	2013-03-28	2015-05-13 09:47:54	2023-10-26 18:13:25	526 B	1.8 kB	104.18.38.76
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21 01:06:24	2023-10-26 19:29:07	680 B	1.9 kB	143.204.53.97
public.servenobid.com	3493	2019-04-26	2019-10-30 00:01:35	2023-10-26 18:51:37	1.1 kB	20 kB	143.204.55.62
id.hadron.ad.gt	unknown	unknown	2022-06-07 13:19:05	2023-10-26 18:14:23	493 B	567 B	172.67.23.234
anywordle.games	unknown	2022-05-20	2022-05-24 23:47:23	2023-10-20 22:41:07	433 B	1.2 kB	172.67.149.127
netlify-rum.netlify.app	unknown	2018-05-08	2022-09-06 18:39:14	2023-10-26 23:20:23	417 B	4.5 kB	18.192.94.96
www.google.no	25607	2001-02-26	2016-04-05 21:50:59	2023-10-26 18:25:07	547 B	578 B	142.250.74.163
cadmus.script.ac	unknown	2020-03-18	2023-03-09 13:55:25	2023-10-26 18:17:45	419 B	48 kB	104.18.22.145
ocsp.r2m01.amazontrust.com	unknown	2007-05-11	2022-10-12 22:43:53	2023-10-26 19:25:34	1.0 kB	2.8 kB	143.204.53.97
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24 16:34:56	2023-10-26 18:47:42	1.0 kB	15 kB	104.16.56.101
ssp.disqus.com	7563	2006-12-07	2021-02-08 06:49:01	2023-10-26 18:38:08	1.0 kB	842 B	54.87.176.240
cs-rtb.minutemedia-prebid.com	unknown	2022-01-27	2022-12-04 15:51:05	2023-10-26 18:51:37	1.3 kB	668 B	143.204.55.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-10-27 08:47:59	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-10-27 08:47:59	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-10-27 08:48:00	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-10-27 08:48:00	medium	Client IP	Internal IP	ET DNS Query for .to TLD

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (40)

	URL	From	Size	First Seen	Last Seen
	script.4dex.io/localstore.js	ScriptElement	4.0 kB	2023-10-23	2024-08-21
URL script.4dex.io/localstore.js IP / ASN 104.26.8.169 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-10-23 Last Seen 2024-08-21 Times Seen 713 Size 4.0 kB (3978 bytes) MD5 e90435520cec1363a82b67d8298d79a8 SHA1 87354d36ae136f547b8aee979c7b237b7963248b SHA256 8264bf30b0dfc41d19bf53d2c63a8fc9326b427cf3ea9cd9b6be2696fc55b118 Format Code Loading...

	cadmus.script.ac/dahhc4ozyvjm6/script.js	ScriptElement	135 kB	2023-10-26	2023-10-27
URL cadmus.script.ac/dahhc4ozyvjm6/script.js IP / ASN 104.18.22.145 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-10-26 Last Seen 2023-10-27 Times Seen 20 Size 135 kB (134716 bytes) MD5 251dc89fc1b8f65ab4cea6d78307309c SHA1 2e1f3a45bb64f6cbe14d6a05ef6d0c274de6f6c7 SHA256 6b0d90fedc040029195f2efef47ce55b25ebcb29506df3c21d137dbdb19ab66c Format Code Loading...

	static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317	ScriptElement	20 kB	2023-10-13	2025-07-28
URL static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 IP / ASN 104.16.56.101 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-10-13 Last Seen 2025-07-28 Times Seen 17173 Size 20 kB (19986 bytes) MD5 dd1d068fdb5fe90b6c05a5b3940e088c SHA1 0d96f9df8772633a9df4c81cf323a4ef8998ba59 SHA256 6153d13804862b0fc1c016cf1129f34cb7c6185f2cf4bf1a3a862eecdab50101 Format Code Loading...

	playfootball.games/_next/static/chunks/372-965bd3f623ad2ae2.js	ScriptElement	9.0 kB	2023-10-27	2023-10-27
URL playfootball.games/_next/static/chunks/372-965bd3f623ad2ae2.js IP / ASN 3.72.140.173 #16509 AMAZON-02 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-10-27 Last Seen 2023-10-27 Times Seen 1 Size 9.0 kB (9018 bytes) MD5 0395d72146fb1a59bcb63569ec2f5775 SHA1 7be54389709b2edacd6a2e52c75cb694c6c9f456 SHA256 bc198e9b0ea4a63857780c8aa09a04b70481bbe8954a7722a514270e07877ad8 Format Code Loading...

	playfootball.games/sandbox%20eval%20code		148 B	2023-05-05	2025-08-02
URL playfootball.games/sandbox%20eval%20code IP / ASN 0.0.0.0 #0 Introduced by Embedded false Resource Info First Seen 2023-05-05 Last Seen 2025-08-02 Times Seen 18515 Size 148 B (148 bytes) MD5 f019f144761e15f741f6ab1e4cf566a5 SHA1 1c73bccb222e44ae4633750eda7c357460a81a03 SHA256 4cacaf0fd3e370c4840c87c79f923f1ffb69ff7ce5d8172390783c8f83861d62 Format Code Loading...

	about:srcdoc#233	ScriptElement	133 kB	2024-08-20	2024-08-20
URL about:srcdoc#233 IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2024-08-20 Last Seen 2024-08-20 Times Seen 1 Size 133 kB (133271 bytes) MD5 1d6eb58e14a2d36c01bba53b4f7bfa06 SHA1 474d2ac493f0623973af50f375d6ba8968ef73f4 SHA256 95f0200084194c5a1aa5483b2fc3ca4ac53ae37f2007a7532b4487f1b13d1385 Format Code Loading...

	js-sec.indexww.com/um/ixmatch.html	ScriptElement	3.0 kB	2023-04-05	2025-03-02
URL js-sec.indexww.com/um/ixmatch.html IP / ASN 104.18.38.76 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-04-05 Last Seen 2025-03-02 Times Seen 2389 Size 3.0 kB (2962 bytes) MD5 c5c8f05c21a868a7c2d901026d3b2533 SHA1 dd38ffaa64d95b3e45f889f642d795b4c906ae5b SHA256 aefaf83097081196c381e0db5f03ca29585c753eb481a7d9eef6aea2983e6c93 Format Code Loading...

	playfootball.games/	ScriptElement	437 B	2023-06-27	2024-08-21
URL playfootball.games/ IP / ASN 3.72.140.173 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2023-06-27 Last Seen 2024-08-21 Times Seen 2 Size 437 B (437 bytes) MD5 434beaf11d2efc37989bce9276e6bbcc SHA1 986aa924b9cda494558d655927ee70c300e6d12d SHA256 0a043c5aa286efe12f97b406992648431667b6107b17d1f4e341b6a2a4cd649c Format Code Loading...

	unknown	ScriptElement	142 kB	2024-08-20	2024-08-20
URL IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2024-08-20 Last Seen 2024-08-20 Times Seen 1 Size 142 kB (141791 bytes) MD5 1e32d9466c9ce389a3f9afa45390ff62 SHA1 0644f9c6d1291078025f0aaadf13435f32361343 SHA256 5f453985b9d913ae8076f2c5c33f14d745ce4207db8722fb40651f9454834012 Format Code Loading...

	public.servenobid.com/sync.html	ScriptElement	9.3 kB	2023-10-06	2024-08-21
URL public.servenobid.com/sync.html IP / ASN 143.204.55.62 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2023-10-06 Last Seen 2024-08-21 Times Seen 329 Size 9.3 kB (9272 bytes) MD5 9304cafa0e75fbf7b6cc2b058b969b34 SHA1 c5d237a5b299fb998df450508ccb49b134407d9e SHA256 20f4ed43626927bf91d1671c978f83d78d61f32faf5ba1526b5a5124b86921b3 Format Code Loading...

	playfootball.games/_next/static/chunks/webpack-69bfa6990bb9e155.js	ScriptElement	1.5 kB	2023-03-07	2025-07-31
URL playfootball.games/_next/static/chunks/webpack-69bfa6990bb9e155.js IP / ASN 3.72.140.173 #16509 AMAZON-02 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-07-31 Times Seen 87 Size 1.5 kB (1469 bytes) MD5 681bc68d1cfacbd291597fdd435b8c5b SHA1 ed6775de8af4157cfbc34004e74ba05fd28d4460 SHA256 f86d1dba790dc40eadb3d17edcd420e29aa9adf59b4f80cebe6719e4b67a9109 Format Code Loading...

	playfootball.games/_next/static/chunks/pages/_app-031d01898ada3a02.js	ScriptElement	925 B	2023-06-27	2023-10-27
URL playfootball.games/_next/static/chunks/pages/_app-031d01898ada3a02.js IP / ASN 3.72.140.173 #16509 AMAZON-02 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-06-27 Last Seen 2023-10-27 Times Seen 1 Size 925 B (925 bytes) MD5 8cbdaa6df4b199f8466aad28cafd8e1c SHA1 213eed70d2d62ca973249ef20f19e722a3a5959a SHA256 9f7cc76dce7b33f67477b963a90ce3860485bbc3724a5b78e9410814e4da9e75 Format Code Loading...

	hb.vntsm.com/v3/live/ad-manager.min.js	ScriptElement	1.0 MB	2023-10-21	2024-08-21
URL hb.vntsm.com/v3/live/ad-manager.min.js IP / ASN 194.242.11.186 #34989 ServeTheWorld AS Introduced by ScriptElement Embedded false Resource Info First Seen 2023-10-21 Last Seen 2024-08-21 Times Seen 2 Size 1.0 MB (1008298 bytes) MD5 6b10da3a8401da1470bd5b30abf2a8ff SHA1 6f8ad2184eb7fe5ee581bde843895e0457a5e3e5 SHA256 1f275e07a86360da35a032dd554faf19863c79024f897cf5a10c49ebd6bd6a3f Format Code Loading...

	about:srcdoc#235	ScriptElement	133 kB	2024-08-20	2024-08-20
URL about:srcdoc#235 IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2024-08-20 Last Seen 2024-08-20 Times Seen 1 Size 133 kB (133271 bytes) MD5 9fbc95d383550145ef789304744ccb05 SHA1 ce52be0decdae10fb6bee9c9dafb87ca21723487 SHA256 ce1524cad486a2465a0357d33d9feb9c2b27c11dcb8febc67a2c0b0b7fb8ddf8 Format Code Loading...

	elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480693&bidder=ozone	ScriptElement	12 kB	2023-03-14	2024-08-21
URL elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480693&bidder=ozone IP / ASN 104.18.43.178 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-14 Last Seen 2024-08-21 Times Seen 29 Size 12 kB (11968 bytes) MD5 21670b1b538efcab7f16ed39ca656ec1 SHA1 2a4f91eae6e983828802de2f385af90c29701c9f SHA256 e5dedf71db55f8962590a6d254908731a753b0a313b3da0861374ebd638bdb0e Format Code Loading...

	assets.a-mo.net/js/n1.js	ScriptElement	32 B	2023-08-28	2023-11-12
URL assets.a-mo.net/js/n1.js IP / ASN 104.19.159.19 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-08-28 Last Seen 2023-11-12 Times Seen 45 Size 32 B (32 bytes) MD5 a8b2f555a0227aec5e980e5ec98f6d15 SHA1 f7e596d68dfc9cea4613818fe49de98c98328669 SHA256 f149423f67ceab2e28ca0b092dc80f612b3ed93a067b80641bf8c37f5eee06d5 Format Code Loading...

	playfootball.games/	ScriptElement	918 B	2023-06-27	2024-08-20
URL playfootball.games/ IP / ASN 3.72.140.173 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2023-06-27 Last Seen 2024-08-20 Times Seen 1 Size 918 B (918 bytes) MD5 a7727f48a3bd6aacd012ab2ed9918b28 SHA1 3524da7760134f224cbf6dc07a977a2fe9f66360 SHA256 7f26704af01f2f2e95a92a02aa8c4f7608b5766fdaf79fd100e4a9400b6e9702 Format Code Loading...

	netlify-rum.netlify.app/netlify-rum.js	ScriptElement	11 kB	2023-05-22	2025-08-02
URL netlify-rum.netlify.app/netlify-rum.js IP / ASN 18.192.94.96 #16509 AMAZON-02 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-05-22 Last Seen 2025-08-02 Times Seen 1361 Size 11 kB (11141 bytes) MD5 ccd37404195fff5783b10bb017d12992 SHA1 9ad173ac57c66c1ee99b0b94a35e625bd9adb1f9 SHA256 257ef1b7dd06f88a465e5badb58c57b62cf678d7618ecc2929aa3b428e848122 Format Code Loading...

	c.amazon-adsystem.com/aax2/apstag.js	ScriptElement	1.6 kB	2023-05-05	2025-08-02
URL c.amazon-adsystem.com/aax2/apstag.js IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-05-05 Last Seen 2025-08-02 Times Seen 17847 Size 1.6 kB (1585 bytes) MD5 7099d0c144c906961206e41b26b23c05 SHA1 59a67da2d27d4e5fc0e183bb2baeebe39404f553 SHA256 3f19f9cf504b435adb7e62aac1b420facfc0048d6a4950910fd6f126548cc69e Format Code Loading...

	unknown	Function	77 kB	2023-10-23	2024-08-21
URL IP / ASN 0.0.0.0 #0 Introduced by Function Embedded false Resource Info First Seen 2023-10-23 Last Seen 2024-08-21 Times Seen 286 Size 77 kB (77026 bytes) MD5 411d20f08d6462652b3c6bcda9b78b73 SHA1 7781cf93b5ebdd49243e829e63b7e7cf77840d8f SHA256 86ef09d09e09cbfed9f22c3d99b1c7ceb6b134b2f4d438817acdf4abf9f644e2 Format Code Loading...

	public.servenobid.com/sync.html	ScriptElement	0 B	0001-01-01	2025-08-02
URL public.servenobid.com/sync.html IP / ASN 143.204.55.62 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 0001-01-01 Last Seen 2025-08-02 Times Seen 5605886 Size 0 B (0 bytes) MD5 d41d8cd98f00b204e9800998ecf8427e SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Format Code Loading...

	playfootball.games/_next/static/chunks/framework-5f4595e5518b5600.js	ScriptElement	130 kB	2023-03-07	2025-07-31
URL playfootball.games/_next/static/chunks/framework-5f4595e5518b5600.js IP / ASN 3.72.140.173 #16509 AMAZON-02 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-07-31 Times Seen 679 Size 130 kB (129979 bytes) MD5 623da2092ab9e81400d81fad9017f0ba SHA1 1c76f260e73e1229548d84ec1a8a3a2e8c09d056 SHA256 8e89e1175a6145d737446d673ffa073f4c469c8fe3972f5287b1e7e9b241282b Format Code Loading...

	securepubads.g.doubleclick.net/tag/js/gpt.js	ScriptElement	13 kB	2023-04-05	2025-08-02
URL securepubads.g.doubleclick.net/tag/js/gpt.js IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-04-05 Last Seen 2025-08-02 Times Seen 54521 Size 13 kB (13104 bytes) MD5 0c9ed134ae3d5ffe972da2a3e59dc428 SHA1 620df222551395592e46e4c5f425cf23dcdad891 SHA256 5f9efa604bfe2aee8c1a90376125a098306ba390530a6f9b2ecb0a67cdac178d Format Code Loading...

	unknown	ScriptElement	135 kB	2024-08-20	2024-08-20
URL IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2024-08-20 Last Seen 2024-08-20 Times Seen 1 Size 135 kB (134823 bytes) MD5 72290ce10554243ce07650ec0314edaf SHA1 a5220453725095be8c7d99cd9e417f3fb6679b13 SHA256 865715d1aaded0f31fde2d97c6901bdc7df968f8a8ca2c832e7d6f5b7beb0c72 Format Code Loading...

	playfootball.games/	ScriptElement	1.0 kB	2023-06-27	2024-08-20
URL playfootball.games/ IP / ASN 3.72.140.173 #16509 AMAZON-02 Introduced by ScriptElement Embedded true Resource Info First Seen 2023-06-27 Last Seen 2024-08-20 Times Seen 1 Size 1.0 kB (1028 bytes) MD5 111f8e591c7222017631185312729154 SHA1 b80f278db2b726a77aa9ca279c24c531f5eaeec9 SHA256 f549f698113a231a138097640985169d7c87e2fd8a3034671f0072f3bc85e560 Format Code Loading...

	p.cpx.to/p/13058/px.js	ScriptElement	4.8 kB	2024-08-20	2024-08-20
URL p.cpx.to/p/13058/px.js IP / ASN 54.228.100.29 #16509 AMAZON-02 Introduced by ScriptElement Embedded false Resource Info First Seen 2024-08-20 Last Seen 2024-08-20 Times Seen 1 Size 4.8 kB (4827 bytes) MD5 3a5ef3821678e45a9b179dd8783db76a SHA1 0aa4c1d9d504787b60ec4b07f884ef0a78fdc74b SHA256 12c41513496b82807dcad744479972e5be300ee4183a84ab74bf02cb88c27625 Format Code Loading...

	playfootball.games/_next/static/M70l3MCpdGA3H2pOpKXPt/_buildManifest.js	ScriptElement	1.1 kB	2023-10-27	2023-10-27
URL playfootball.games/_next/static/M70l3MCpdGA3H2pOpKXPt/_buildManifest.js IP / ASN 3.72.140.173 #16509 AMAZON-02 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-10-27 Last Seen 2023-10-27 Times Seen 1 Size 1.1 kB (1054 bytes) MD5 aca75f61bdf6f278203423963a2fb8b1 SHA1 d7d12cfce59e2a7ef71257edb17810b9de9b23dd SHA256 3506dd2cd7592295696fdd1b3ee5c526e71031450c0e487bbcbe749b32ffa3e7 Format Code Loading...

	playfootball.games/_next/static/M70l3MCpdGA3H2pOpKXPt/_ssgManifest.js	ScriptElement	224 B	2023-10-27	2023-10-27
URL playfootball.games/_next/static/M70l3MCpdGA3H2pOpKXPt/_ssgManifest.js IP / ASN 3.72.140.173 #16509 AMAZON-02 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-10-27 Last Seen 2023-10-27 Times Seen 1 Size 224 B (224 bytes) MD5 cd537e5af11204d36781cbb19fddf9a5 SHA1 b9040061cb654b91d3b550bdacc5a3118d416869 SHA256 6a87f7712bb45f4fbf75ebd9054548e69a91307507f6fc1d9f69c091701d296f Format Code Loading...

	playfootball.games/_next/static/M70l3MCpdGA3H2pOpKXPt/_middlewareManifest.js	ScriptElement	92 B	2023-03-07	2025-08-01
URL playfootball.games/_next/static/M70l3MCpdGA3H2pOpKXPt/_middlewareManifest.js IP / ASN 3.72.140.173 #16509 AMAZON-02 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-01 Times Seen 5536 Size 92 B (92 bytes) MD5 7c3f7e060745668041278118c0bb3d6d SHA1 e639f56695b3cc30d78dce7a0084aa8299a1311a SHA256 de5341313a4dc5d982ca50ae4a491e84bc5e80b0f439d87f05fc3973c1b7e59a Format Code Loading...

	playfootball.games/sandbox%20eval%20code		136 B	2023-04-11	2025-08-02
URL playfootball.games/sandbox%20eval%20code IP / ASN 0.0.0.0 #0 Introduced by Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-02 Times Seen 58211 Size 136 B (136 bytes) MD5 fb4eb094524daea58bf7f82331598541 SHA1 f5ca39eb98fa1685f8647514a627d3d7f216f7ef SHA256 7cbf1e77bb9277bac7030ded2087246adf5c59564a5a1f28ce8c09be6ef48683 Format Code Loading...

	playfootball.games/_next/static/chunks/main-f65e66e62fc5ca80.js	ScriptElement	105 kB	2023-03-07	2025-06-24
URL playfootball.games/_next/static/chunks/main-f65e66e62fc5ca80.js IP / ASN 3.72.140.173 #16509 AMAZON-02 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-06-24 Times Seen 3 Size 105 kB (105169 bytes) MD5 3c19e429e8ad4a92fbc8bbb908cffa15 SHA1 b07173a5d1f916a38f0b14b7fe6e1ebd120e33fc SHA256 793c305047c58eaf6adb9fd1f032fc2ba40bb5d33f036a8e31f06ab03c9d0e4f Format Code Loading...

	playfootball.games/_next/static/chunks/pages/index-282a222f181a242b.js	ScriptElement	13 kB	2023-10-27	2023-10-27
URL playfootball.games/_next/static/chunks/pages/index-282a222f181a242b.js IP / ASN 3.72.140.173 #16509 AMAZON-02 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-10-27 Last Seen 2023-10-27 Times Seen 1 Size 13 kB (13422 bytes) MD5 5373ea14894b5b91568c89ee5bbf56f4 SHA1 bdb03ec353b6cf5206fb07341b25e5fb4f0a08f1 SHA256 65e2aa22d24ea6199f428dea6d8a6f2989dc7d49cbedd2dacd5505ca938fa042 Format Code Loading...

	d1oykxszdrgjgl.cloudfront.net/script.js	ScriptElement	133 kB	2023-10-27	2023-10-27
URL d1oykxszdrgjgl.cloudfront.net/script.js IP / ASN 143.204.42.218 #16509 AMAZON-02 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-10-27 Last Seen 2023-10-27 Times Seen 1 Size 133 kB (132763 bytes) MD5 cd9c98c62ad45bee4d43c71f7b029dcd SHA1 6f6d5fe9ebff6647ca678ebb6ab60a758fa9eb9e SHA256 a9cafe8a1f9e8e75d8216e28ad57ee910fe4e58f0dec1b6cbc1fd387c00ead4a Format Code Loading...

	www.googletagmanager.com/gtm.js?id=GTM-5VF9ZTB	ScriptElement	176 kB	2023-10-27	2023-10-27
URL www.googletagmanager.com/gtm.js?id=GTM-5VF9ZTB IP / ASN 142.250.74.104 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2023-10-27 Last Seen 2023-10-27 Times Seen 1 Size 176 kB (176180 bytes) MD5 495c4a466f7fcb71a92e241968593d1d SHA1 83ff78df12127bd45a0dc1e9a6e63258cb3ff71d SHA256 f057402e4829e60cc4c01f49d29b5f2d08b4ef085bf1324c43e46300c20effeb Format Code Loading...

	www.googletagmanager.com/gtag/js?id=G-M1V4B2GMEC&l=dataLayer&cx=c	ScriptElement	277 kB	2023-10-27	2023-10-27
URL www.googletagmanager.com/gtag/js?id=G-M1V4B2GMEC&l=dataLayer&cx=c IP / ASN 142.250.74.104 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2023-10-27 Last Seen 2023-10-27 Times Seen 1 Size 277 kB (276688 bytes) MD5 aaf802edf86e74dd5b7dc267e870793e SHA1 149e3beca7d43cc33dc6a93bf453f9b5ff9211f6 SHA256 b409f397fd8efdad76d7b125bc1c7b37fd81fd2e02614221d64f69f807bdddd3 Format Code Loading...

	HASH	FROM	Size	First Seen	Last Seen
	92922bc7848900e9dffcb59f970a2e2e	DocumentWrite	135 kB	2024-08-20	2024-08-20
Introduced by DocumentWrite First Seen 2024-08-20 Last Seen 2024-08-20 Times Seen 1 Size 135 kB (134811 bytes) MD5 92922bc7848900e9dffcb59f970a2e2e SHA1 94eb984af58227f9adcc6b5a1aa5a168657bad1f SHA256 a4a1114185598a122710328afc992784ed661e895e878f0d92da0192b40a23f0 Format Code Loading...

	a763ff89e870856d1cbb0303e5982d57	DocumentWrite	142 kB	2024-08-20	2024-08-20
Introduced by DocumentWrite First Seen 2024-08-20 Last Seen 2024-08-20 Times Seen 1 Size 142 kB (141883 bytes) MD5 a763ff89e870856d1cbb0303e5982d57 SHA1 1635dbd40c5325679e59b5c38bae5bc8f26d867a SHA256 12585e83ed07182a2152d46e70434c64cfd9eef93ea1aa5a997c8d7ab6733597 Format Code Loading...

	6f05950a466dea6d0a038658442cea22	DocumentWrite	135 kB	2024-08-20	2024-08-20
Introduced by DocumentWrite First Seen 2024-08-20 Last Seen 2024-08-20 Times Seen 1 Size 135 kB (134915 bytes) MD5 6f05950a466dea6d0a038658442cea22 SHA1 d41b5ae4ca116f655b699b502089d06511bf8d3d SHA256 1f4bc29834e6be2d5db4c596a2465001fb079efe6edac89841f78ddfad59fb1f Format Code Loading...

HTTP Transactions (98)

	URL	IP	Response	Size
	GET playfootball.games/	3.72.140.173	200 OK	9.8 kB
URL playfootball.games/ IP / ASN 3.72.140.173 #16509 AMAZON-02 Requested byN/A Resource Info File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (30646) First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size9.8 kB (9778 bytes) MD59f23adcb0b58ba0116e41317bae56135 SHA1e69d28cd4fe82b6e789be9c778a300bdebbab38e SHA25626341a60b6ebea5f21c013c25b5730a4123ccb129983b66dccadebc81306636e Certificate Info IssuerLet's Encrypt Subject.playfootball.games Fingerprint26:1D:9F:96:78:FD:C8:44:7A:E4:87:4C:1D:C0:11:23:42:70:F3:5E ValiditySat, 14 Oct 2023 16:23:25 GMT - Fri, 12 Jan 2024 16:23:24 GMT HTTP Headers `GET / HTTP/1.1 Host: playfootball.games User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK accept-ranges: bytes age: 32815 cache-control: public,max-age=0,must-revalidate content-encoding: br content-type: text/html; charset=UTF-8 date: Fri, 27 Oct 2023 08:47:56 GMT etag: "4364e8a552eb606c4b495a9919e80bdb-ssl-df" server: Netlify strict-transport-security: max-age=31536000 vary: Accept-Encoding x-nf-request-id: 01HDR535CRW1117K6HQYB2SPXH content-length: 9778 X-Firefox-Spdy: h2`

	GET playfootball.games/_next/static/css/b3614587ce2969cc.css	3.72.140.173	200 OK	6.4 kB
URL playfootball.games/_next/static/css/b3614587ce2969cc.css IP / ASN 3.72.140.173 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with very long lines (29352) First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size6.4 kB (6410 bytes) MD5278b4d228e8558a66bbae3a8421e58ec SHA13c5d6a5c4bc297668043059e0968c240fd3e5e73 SHA2569ac4e1d306d0893bd74efce49e2de571df67a196422422e30498282d1908ee28 Certificate Info IssuerLet's Encrypt Subject.playfootball.games Fingerprint26:1D:9F:96:78:FD:C8:44:7A:E4:87:4C:1D:C0:11:23:42:70:F3:5E ValiditySat, 14 Oct 2023 16:23:25 GMT - Fri, 12 Jan 2024 16:23:24 GMT HTTP Headers `GET /_next/static/css/b3614587ce2969cc.css HTTP/1.1 Host: playfootball.games User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 1813 cache-control: public,max-age=0,must-revalidate content-encoding: br content-type: text/css; charset=UTF-8 date: Fri, 27 Oct 2023 08:47:57 GMT etag: "7e8c51196ce464c93f9135eeeb8655a4-ssl-df" server: Netlify strict-transport-security: max-age=31536000 vary: Accept-Encoding x-nf-request-id: 01HDR535YDFB7T60Q8ZQ9B6GY2 content-length: 6410 X-Firefox-Spdy: h2`

	GET playfootball.games/_next/static/css/111ef55e31d68e3b.css	3.72.140.173	200 OK	122 B
URL playfootball.games/_next/static/css/111ef55e31d68e3b.css IP / ASN 3.72.140.173 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with no line terminators First Seen2023-06-27 Last Seen2023-10-27 Times Seen1 Size122 B (122 bytes) MD5c3d59ad4ebc9215867e5b99a9a6abfd0 SHA1820707219e33e97785ec2727a3bc12d00ed4abc4 SHA2562ca96e8139c74daa83f9d0cc5177b3d224495b3d54013ebe9e37d2842c8312df Certificate Info IssuerLet's Encrypt Subject.playfootball.games Fingerprint26:1D:9F:96:78:FD:C8:44:7A:E4:87:4C:1D:C0:11:23:42:70:F3:5E ValiditySat, 14 Oct 2023 16:23:25 GMT - Fri, 12 Jan 2024 16:23:24 GMT HTTP Headers `GET /_next/static/css/111ef55e31d68e3b.css HTTP/1.1 Host: playfootball.games User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/*;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 33065 cache-control: public,max-age=0,must-revalidate content-type: text/css; charset=UTF-8 date: Fri, 27 Oct 2023 08:47:57 GMT etag: "e44c030101108005c07ed51a6717149e-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HDR535YJF6RVY7Z3D6249FPW content-length: 122 X-Firefox-Spdy: h2`

	GET playfootball.games/_next/static/chunks/webpack-69bfa6990bb9e155.js	3.72.140.173	200 OK	733 B
URL playfootball.games/_next/static/chunks/webpack-69bfa6990bb9e155.js IP / ASN 3.72.140.173 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with very long lines (1469), with no line terminators First Seen2023-03-07 Last Seen2025-07-31 Times Seen87 Size733 B (733 bytes) MD5681bc68d1cfacbd291597fdd435b8c5b SHA1ed6775de8af4157cfbc34004e74ba05fd28d4460 SHA256f86d1dba790dc40eadb3d17edcd420e29aa9adf59b4f80cebe6719e4b67a9109 Certificate Info IssuerLet's Encrypt Subject.playfootball.games Fingerprint26:1D:9F:96:78:FD:C8:44:7A:E4:87:4C:1D:C0:11:23:42:70:F3:5E ValiditySat, 14 Oct 2023 16:23:25 GMT - Fri, 12 Jan 2024 16:23:24 GMT HTTP Headers `GET /_next/static/chunks/webpack-69bfa6990bb9e155.js HTTP/1.1 Host: playfootball.games User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 33065 cache-control: public,max-age=0,must-revalidate content-encoding: br content-type: application/javascript; charset=UTF-8 date: Fri, 27 Oct 2023 08:47:57 GMT etag: "7a4bfccdff5aafa3f47be14edd52db5e-ssl-df" server: Netlify strict-transport-security: max-age=31536000 vary: Accept-Encoding x-nf-request-id: 01HDR535YKEP7K1S4WRMH7MFYX content-length: 733 X-Firefox-Spdy: h2`

	GET playfootball.games/_next/static/chunks/framework-5f4595e5518b5600.js	3.72.140.173	200 OK	41 kB
URL playfootball.games/_next/static/chunks/framework-5f4595e5518b5600.js IP / ASN 3.72.140.173 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with very long lines (65536), with no line terminators First Seen2023-03-07 Last Seen2025-07-31 Times Seen679 Size41 kB (40600 bytes) MD5623da2092ab9e81400d81fad9017f0ba SHA11c76f260e73e1229548d84ec1a8a3a2e8c09d056 SHA2568e89e1175a6145d737446d673ffa073f4c469c8fe3972f5287b1e7e9b241282b Certificate Info IssuerLet's Encrypt Subject.playfootball.games Fingerprint26:1D:9F:96:78:FD:C8:44:7A:E4:87:4C:1D:C0:11:23:42:70:F3:5E ValiditySat, 14 Oct 2023 16:23:25 GMT - Fri, 12 Jan 2024 16:23:24 GMT HTTP Headers `GET /_next/static/chunks/framework-5f4595e5518b5600.js HTTP/1.1 Host: playfootball.games User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 33065 cache-control: public,max-age=0,must-revalidate content-encoding: br content-type: application/javascript; charset=UTF-8 date: Fri, 27 Oct 2023 08:47:57 GMT etag: "8090705d86cd184e970c6bbe57dd135f-ssl-df" server: Netlify strict-transport-security: max-age=31536000 vary: Accept-Encoding x-nf-request-id: 01HDR535YKQX8H8RJJ3KXZB97K content-length: 40600 X-Firefox-Spdy: h2`

	GET playfootball.games/_next/static/chunks/main-f65e66e62fc5ca80.js	3.72.140.173	200 OK	26 kB
URL playfootball.games/_next/static/chunks/main-f65e66e62fc5ca80.js IP / ASN 3.72.140.173 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with very long lines (65536), with no line terminators First Seen2023-03-07 Last Seen2025-06-24 Times Seen3 Size26 kB (26482 bytes) MD53c19e429e8ad4a92fbc8bbb908cffa15 SHA1b07173a5d1f916a38f0b14b7fe6e1ebd120e33fc SHA256793c305047c58eaf6adb9fd1f032fc2ba40bb5d33f036a8e31f06ab03c9d0e4f Certificate Info IssuerLet's Encrypt Subject.playfootball.games Fingerprint26:1D:9F:96:78:FD:C8:44:7A:E4:87:4C:1D:C0:11:23:42:70:F3:5E ValiditySat, 14 Oct 2023 16:23:25 GMT - Fri, 12 Jan 2024 16:23:24 GMT HTTP Headers `GET /_next/static/chunks/main-f65e66e62fc5ca80.js HTTP/1.1 Host: playfootball.games User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 33065 cache-control: public,max-age=0,must-revalidate content-encoding: br content-type: application/javascript; charset=UTF-8 date: Fri, 27 Oct 2023 08:47:57 GMT etag: "15330038c4cd0d3f148f286e09c97ac4-ssl-df" server: Netlify strict-transport-security: max-age=31536000 vary: Accept-Encoding x-nf-request-id: 01HDR535YMJ9ZZYHGWE0TPF71B content-length: 26482 X-Firefox-Spdy: h2`

	GET playfootball.games/_next/static/chunks/pages/_app-031d01898ada3a02.js	3.72.140.173	200 OK	925 B
URL playfootball.games/_next/static/chunks/pages/_app-031d01898ada3a02.js IP / ASN 3.72.140.173 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with very long lines (925), with no line terminators First Seen2023-06-27 Last Seen2023-10-27 Times Seen1 Size925 B (925 bytes) MD58cbdaa6df4b199f8466aad28cafd8e1c SHA1213eed70d2d62ca973249ef20f19e722a3a5959a SHA2569f7cc76dce7b33f67477b963a90ce3860485bbc3724a5b78e9410814e4da9e75 Certificate Info IssuerLet's Encrypt Subject.playfootball.games Fingerprint26:1D:9F:96:78:FD:C8:44:7A:E4:87:4C:1D:C0:11:23:42:70:F3:5E ValiditySat, 14 Oct 2023 16:23:25 GMT - Fri, 12 Jan 2024 16:23:24 GMT HTTP Headers `GET /_next/static/chunks/pages/_app-031d01898ada3a02.js HTTP/1.1 Host: playfootball.games User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 33065 cache-control: public,max-age=0,must-revalidate content-type: application/javascript; charset=UTF-8 date: Fri, 27 Oct 2023 08:47:57 GMT etag: "dbdd9c89a481521c992106d9f7d3b805-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HDR535YPHBKHP0JDFC43Z9A2 content-length: 925 X-Firefox-Spdy: h2`

	GET playfootball.games/_next/static/chunks/372-965bd3f623ad2ae2.js	3.72.140.173	200 OK	2.2 kB
URL playfootball.games/_next/static/chunks/372-965bd3f623ad2ae2.js IP / ASN 3.72.140.173 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with very long lines (9018), with no line terminators First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size2.2 kB (2177 bytes) MD50395d72146fb1a59bcb63569ec2f5775 SHA17be54389709b2edacd6a2e52c75cb694c6c9f456 SHA256bc198e9b0ea4a63857780c8aa09a04b70481bbe8954a7722a514270e07877ad8 Certificate Info IssuerLet's Encrypt Subject.playfootball.games Fingerprint26:1D:9F:96:78:FD:C8:44:7A:E4:87:4C:1D:C0:11:23:42:70:F3:5E ValiditySat, 14 Oct 2023 16:23:25 GMT - Fri, 12 Jan 2024 16:23:24 GMT HTTP Headers `GET /_next/static/chunks/372-965bd3f623ad2ae2.js HTTP/1.1 Host: playfootball.games User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 33065 cache-control: public,max-age=0,must-revalidate content-encoding: br content-type: application/javascript; charset=UTF-8 date: Fri, 27 Oct 2023 08:47:57 GMT etag: "8412acfdd33fc8f9b9ef394635267f69-ssl-df" server: Netlify strict-transport-security: max-age=31536000 vary: Accept-Encoding x-nf-request-id: 01HDR535YQ6HF9Q7PB8QVRVQP5 content-length: 2177 X-Firefox-Spdy: h2`

	GET playfootball.games/_next/static/chunks/pages/index-282a222f181a242b.js	3.72.140.173	200 OK	2.3 kB
URL playfootball.games/_next/static/chunks/pages/index-282a222f181a242b.js IP / ASN 3.72.140.173 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with very long lines (13422), with no line terminators First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size2.3 kB (2335 bytes) MD55373ea14894b5b91568c89ee5bbf56f4 SHA1bdb03ec353b6cf5206fb07341b25e5fb4f0a08f1 SHA25665e2aa22d24ea6199f428dea6d8a6f2989dc7d49cbedd2dacd5505ca938fa042 Certificate Info IssuerLet's Encrypt Subject.playfootball.games Fingerprint26:1D:9F:96:78:FD:C8:44:7A:E4:87:4C:1D:C0:11:23:42:70:F3:5E ValiditySat, 14 Oct 2023 16:23:25 GMT - Fri, 12 Jan 2024 16:23:24 GMT HTTP Headers `GET /_next/static/chunks/pages/index-282a222f181a242b.js HTTP/1.1 Host: playfootball.games User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 32816 cache-control: public,max-age=0,must-revalidate content-encoding: br content-type: application/javascript; charset=UTF-8 date: Fri, 27 Oct 2023 08:47:57 GMT etag: "0ee253d27fb3c48ad1894d5c0b3250aa-ssl-df" server: Netlify strict-transport-security: max-age=31536000 vary: Accept-Encoding x-nf-request-id: 01HDR535YVJXTMJPNCF4HJM5GH content-length: 2335 X-Firefox-Spdy: h2`

	GET playfootball.games/_next/static/M70l3MCpdGA3H2pOpKXPt/_buildManifest.js	3.72.140.173	200 OK	440 B
URL playfootball.games/_next/static/M70l3MCpdGA3H2pOpKXPt/_buildManifest.js IP / ASN 3.72.140.173 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with very long lines (1054), with no line terminators First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size440 B (440 bytes) MD5aca75f61bdf6f278203423963a2fb8b1 SHA1d7d12cfce59e2a7ef71257edb17810b9de9b23dd SHA2563506dd2cd7592295696fdd1b3ee5c526e71031450c0e487bbcbe749b32ffa3e7 Certificate Info IssuerLet's Encrypt Subject.playfootball.games Fingerprint26:1D:9F:96:78:FD:C8:44:7A:E4:87:4C:1D:C0:11:23:42:70:F3:5E ValiditySat, 14 Oct 2023 16:23:25 GMT - Fri, 12 Jan 2024 16:23:24 GMT HTTP Headers `GET /_next/static/M70l3MCpdGA3H2pOpKXPt/_buildManifest.js HTTP/1.1 Host: playfootball.games User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 33065 cache-control: public,max-age=0,must-revalidate content-encoding: br content-type: application/javascript; charset=UTF-8 date: Fri, 27 Oct 2023 08:47:57 GMT etag: "f18630042fda358b6d7c929a5921c345-ssl-df" server: Netlify strict-transport-security: max-age=31536000 vary: Accept-Encoding x-nf-request-id: 01HDR535YXNRP53HMQQG6BM7ZD content-length: 440 X-Firefox-Spdy: h2`

	GET playfootball.games/_next/static/M70l3MCpdGA3H2pOpKXPt/_ssgManifest.js	3.72.140.173	200 OK	224 B
URL playfootball.games/_next/static/M70l3MCpdGA3H2pOpKXPt/_ssgManifest.js IP / ASN 3.72.140.173 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with no line terminators First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size224 B (224 bytes) MD5cd537e5af11204d36781cbb19fddf9a5 SHA1b9040061cb654b91d3b550bdacc5a3118d416869 SHA2566a87f7712bb45f4fbf75ebd9054548e69a91307507f6fc1d9f69c091701d296f Certificate Info IssuerLet's Encrypt Subject.playfootball.games Fingerprint26:1D:9F:96:78:FD:C8:44:7A:E4:87:4C:1D:C0:11:23:42:70:F3:5E ValiditySat, 14 Oct 2023 16:23:25 GMT - Fri, 12 Jan 2024 16:23:24 GMT HTTP Headers `GET /_next/static/M70l3MCpdGA3H2pOpKXPt/_ssgManifest.js HTTP/1.1 Host: playfootball.games User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 33065 cache-control: public,max-age=0,must-revalidate content-type: application/javascript; charset=UTF-8 date: Fri, 27 Oct 2023 08:47:57 GMT etag: "9c137e7dfbf0d33820c869d94189371d-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HDR535YYETCJTRP2RJGD7MZ9 content-length: 224 X-Firefox-Spdy: h2`

	GET playfootball.games/_next/static/M70l3MCpdGA3H2pOpKXPt/_middlewareManifest.js	3.72.140.173	200 OK	92 B
URL playfootball.games/_next/static/M70l3MCpdGA3H2pOpKXPt/_middlewareManifest.js IP / ASN 3.72.140.173 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with no line terminators First Seen2023-03-07 Last Seen2025-08-01 Times Seen5536 Size92 B (92 bytes) MD57c3f7e060745668041278118c0bb3d6d SHA1e639f56695b3cc30d78dce7a0084aa8299a1311a SHA256de5341313a4dc5d982ca50ae4a491e84bc5e80b0f439d87f05fc3973c1b7e59a Certificate Info IssuerLet's Encrypt Subject.playfootball.games Fingerprint26:1D:9F:96:78:FD:C8:44:7A:E4:87:4C:1D:C0:11:23:42:70:F3:5E ValiditySat, 14 Oct 2023 16:23:25 GMT - Fri, 12 Jan 2024 16:23:24 GMT HTTP Headers `GET /_next/static/M70l3MCpdGA3H2pOpKXPt/_middlewareManifest.js HTTP/1.1 Host: playfootball.games User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 33065 cache-control: public,max-age=0,must-revalidate content-type: application/javascript; charset=UTF-8 date: Fri, 27 Oct 2023 08:47:57 GMT etag: "f540ed1f3d0fbf6c55827adbb0c47938-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HDR535Z74NDAWVPTGBWE0FQ7 content-length: 92 X-Firefox-Spdy: h2`

	GET anywordle.games/favicon-16x16.png	172.67.149.127	200 OK	385 B
URL anywordle.games/favicon-16x16.png IP / ASN 172.67.149.127 #13335 CLOUDFLARENET Requested byhttps://playfootball.games/ Resource Info File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data First Seen2023-06-27 Last Seen2023-10-27 Times Seen2 Size385 B (385 bytes) MD549d435278b4546ff56b7bb205ebf9aca SHA1cc51c3170192f218a7ff9622ae82e15e4616210f SHA2566811a62a4c02f0f2e17c83d882d39e0c433e0a29389c835852bb9cdf110b1fff Certificate Info IssuerCloudflare, Inc. Subjectanywordle.games Fingerprint29:84:E8:4C:35:57:C2:CC:91:8F:88:72:B6:DC:1E:D6:5C:32:25:B4 ValidityMon, 24 Apr 2023 00:00:00 GMT - Tue, 23 Apr 2024 23:59:59 GMT HTTP Headers `GET /favicon-16x16.png HTTP/1.1 Host: anywordle.games User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 27 Oct 2023 08:47:57 GMT content-type: image/png content-length: 385 access-control-allow-origin: * cache-control: public, max-age=14400, must-revalidate etag: "47292a9682798375ba06e5bf997bb49d" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RskEB6Jh3XijtkGttYEOshRnXDsYAi1%2BUUT5fXSVct55V3OKHrJ%2FjmqzdLU1xlxRHrncWrEE3aSRdclloM3tNzvEhkqfIWwA4jFDDRORgvUvhnHBiGgJiJ7dxtu0OZXXEj0%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding cf-cache-status: HIT age: 4013 accept-ranges: bytes server: cloudflare cf-ray: 81c9ad605c3f56c0-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.sectigo.com/	104.18.38.233		472 B
URL ocsp.sectigo.com/ IP / ASN 104.18.38.233 #13335 CLOUDFLARENET Requested byN/A Resource Info File typedata First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size472 B (472 bytes) MD5309d936f8290bdabddf07ffe1430c453 SHA1a2baca8452b564c66597f09d9a39d0d71436c384 SHA256d7edfb282efc973cb58e7e0e154fd7ee90b1eb8ec1186eac2843b0a152cdde93 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 27 Oct 2023 08:47:57 GMT Content-Type: application/ocsp-response Content-Length: 472 Connection: keep-alive Last-Modified: Tue, 24 Oct 2023 06:14:44 GMT Expires: Tue, 31 Oct 2023 06:14:43 GMT Etag: "a2baca8452b564c66597f09d9a39d0d71436c384" Cache-Control: max-age=336324,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb4 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 81c9ad60a8e2b4eb-OSL`

	GET hb.vntsm.com/v3/live/ad-manager.min.js	194.242.11.186	301 Moved Permanently	162 B
URL hb.vntsm.com/v3/live/ad-manager.min.js IP / ASN 194.242.11.186 #34989 ServeTheWorld AS Requested byhttps://playfootball.games/ Resource Info File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators First Seen2023-04-05 Last Seen2025-07-11 Times Seen131096 Size162 B (162 bytes) MD54f8e702cc244ec5d4de32740c0ecbd97 SHA13adb1f02d5b6054de0046e367c1d687b6cdf7aff SHA2569e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a Certificate Info IssuerSectigo Limited Subject.vntsm.com Fingerprint1D:6F:27:A5:F3:3F:6A:90:6C:66:D2:FD:5A:74:FA:87:86:A8:7F:23 ValidityFri, 10 Mar 2023 00:00:00 GMT - Mon, 08 Apr 2024 23:59:59 GMT HTTP Headers `GET /v3/live/ad-manager.min.js HTTP/1.1 Host: hb.vntsm.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 301 Moved Permanently date: Fri, 27 Oct 2023 08:47:57 GMT content-type: text/html content-length: 162 location: https://hb.vntsm.com/ab/live/7471/ad-manager.min.js server: BunnyCDN-NO1-830 cdn-pullzone: 131999 cdn-uid: 5d6cd18c-1b61-4922-947b-91a6b9ea7b00 cdn-requestcountrycode: NO vary: Accept-Encoding access-control-allow-origin: * access-control-allow-headers: cdn-requestcountrycode,Content-Type,x-bl,ref_url access-control-expose-headers: x-geo-subdivision,X-Geo,cdn-requestcountrycode,Content-Type,x-bl cache-control: no-cache access-control-allow-methods: GET, OPTIONS x-bl: 0 cdn-requestid: c09b2897d845e30e6c18cb75f483456a X-Firefox-Spdy: h2

	GET netlify-rum.netlify.app/netlify-rum.js	18.192.94.96	200 OK	4.0 kB
URL netlify-rum.netlify.app/netlify-rum.js IP / ASN 18.192.94.96 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with very long lines (11141), with no line terminators First Seen2023-05-22 Last Seen2025-08-02 Times Seen1361 Size4.0 kB (4025 bytes) MD5ccd37404195fff5783b10bb017d12992 SHA19ad173ac57c66c1ee99b0b94a35e625bd9adb1f9 SHA256257ef1b7dd06f88a465e5badb58c57b62cf678d7618ecc2929aa3b428e848122 Certificate Info IssuerDigiCert Inc Subject.netlify.app Fingerprint90:75:F4:E0:1B:98:9D:01:B0:58:B3:E3:3B:DB:DA:E0:24:FA:9F:82 ValidityWed, 21 Dec 2022 00:00:00 GMT - Sun, 21 Jan 2024 23:59:59 GMT HTTP Headers `GET /netlify-rum.js HTTP/1.1 Host: netlify-rum.netlify.app User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK accept-ranges: bytes age: 36887 cache-control: public,max-age=0,must-revalidate content-encoding: br content-type: application/javascript; charset=UTF-8 date: Fri, 27 Oct 2023 08:47:57 GMT etag: "54532a6790b2b7735e09ba58d8c94658-ssl-df" server: Netlify strict-transport-security: max-age=31536000; includeSubDomains; preload vary: Accept-Encoding x-nf-request-id: 01HDR536769Q5JMS3S69Y15YSV content-length: 4025 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP / ASN 142.250.74.131 #15169 GOOGLE Requested byN/A Resource Info File typedata First Seen2023-10-27 Last Seen2023-10-27 Times Seen808 Size471 B (471 bytes) MD55cd969f123c4be3f335e0080ae0dc3ab SHA19b46c9297f616e84f1473ba30236af63b5b792d4 SHA256a87648f6fc9395eb6168974b11f84ecc4413d1cae9273a9eaed037d31493a423 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 27 Oct 2023 08:47:57 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	GET www.googletagmanager.com/gtm.js?id=GTM-5VF9ZTB	142.250.74.104	200 OK	63 kB
URL www.googletagmanager.com/gtm.js?id=GTM-5VF9ZTB IP / ASN 142.250.74.104 #15169 GOOGLE Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with very long lines (3026) First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size63 kB (62964 bytes) MD5495c4a466f7fcb71a92e241968593d1d SHA183ff78df12127bd45a0dc1e9a6e63258cb3ff71d SHA256f057402e4829e60cc4c01f49d29b5f2d08b4ef085bf1324c43e46300c20effeb Certificate Info IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint97:15:34:CA:DF:1A:DF:2E:7B:EF:E9:6E:44:21:30:2B:ED:13:54:AE ValidityMon, 09 Oct 2023 08:03:58 GMT - Mon, 01 Jan 2024 08:03:57 GMT HTTP Headers `GET /gtm.js?id=GTM-5VF9ZTB HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Fri, 27 Oct 2023 08:47:57 GMT expires: Fri, 27 Oct 2023 08:47:57 GMT cache-control: private, max-age=900 last-modified: Fri, 27 Oct 2023 06:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 62964 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET playfootball.games/favicon.ico	3.72.140.173	200 OK	15 kB
URL playfootball.games/favicon.ico IP / ASN 3.72.140.173 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeMS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data First Seen2023-06-27 Last Seen2023-10-27 Times Seen2 Size15 kB (15406 bytes) MD5d1a00bd0519b5741b1f2db8d2f8057ce SHA188f9ce1f8b4e8e225cd84684c23c627af87527cc SHA2562f248956fa86512b565224b040eca65e318155f9a294c05da6947a2cd036b3ea Certificate Info IssuerLet's Encrypt Subject.playfootball.games Fingerprint26:1D:9F:96:78:FD:C8:44:7A:E4:87:4C:1D:C0:11:23:42:70:F3:5E ValiditySat, 14 Oct 2023 16:23:25 GMT - Fri, 12 Jan 2024 16:23:24 GMT HTTP Headers `GET /favicon.ico HTTP/1.1 Host: playfootball.games User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 33134 cache-control: public,max-age=0,must-revalidate content-type: image/vnd.microsoft.icon date: Fri, 27 Oct 2023 08:47:57 GMT etag: "30d2c0f491730b283bb5e324937c526a-ssl" server: Netlify strict-transport-security: max-age=31536000 x-nf-request-id: 01HDR536GPTJPW69KFDBG9GNSJ content-length: 15406 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP / ASN 142.250.74.131 #15169 GOOGLE Requested byN/A Resource Info File typedata First Seen2023-10-27 Last Seen2023-10-27 Times Seen808 Size471 B (471 bytes) MD55cd969f123c4be3f335e0080ae0dc3ab SHA19b46c9297f616e84f1473ba30236af63b5b792d4 SHA256a87648f6fc9395eb6168974b11f84ecc4413d1cae9273a9eaed037d31493a423 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 27 Oct 2023 08:47:57 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	GET d33wubrfki0l68.cloudfront.net/66f536b9817f6052ccaf7cd0df0467a508265096/80200/media/content/who-are-ya.jpg	143.204.42.50	200 OK	21 kB
URL d33wubrfki0l68.cloudfront.net/66f536b9817f6052ccaf7cd0df0467a508265096/80200/media/content/who-are-ya.jpg IP / ASN 143.204.42.50 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x538, components 3\012- data First Seen2023-06-27 Last Seen2023-10-27 Times Seen1 Size21 kB (20710 bytes) MD5ecc2b43de0bd752486125c826ffcca32 SHA166f536b9817f6052ccaf7cd0df0467a508265096 SHA256b4809a8bfa317cafdc1d99a8d74049886cf0d130719c9638aaaa35aa250cbda3 Certificate Info IssuerAmazon Subject.cloudfront.net FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT HTTP Headers `GET /66f536b9817f6052ccaf7cd0df0467a508265096/80200/media/content/who-are-ya.jpg HTTP/1.1 Host: d33wubrfki0l68.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/jpeg content-length: 20710 accept-ranges: bytes access-control-allow-origin: * cache-control: public, max-age=31556926 date: Wed, 23 Aug 2023 23:16:21 GMT etag: ddf31a562243074a791bab6f556d9a04c391593d server: Netlify strict-transport-security: max-age=31536000; includeSubDomains; preload x-nf-request-id: 01H8JAYH85W002GKWP141NHCBV x-cache: Hit from cloudfront via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: tIw9-pF-ehkBWR8VypbkE87zYEE1besgOLGHg-1dgvxQpnRp-zPZEA== age: 5563899 X-Firefox-Spdy: h2

	GET d33wubrfki0l68.cloudfront.net/0fa5c32d31c3ffba6797bb44e920c0d5b20174df/4ddef/media/content/pack-11.jpg	143.204.42.50	200 OK	70 kB
URL d33wubrfki0l68.cloudfront.net/0fa5c32d31c3ffba6797bb44e920c0d5b20174df/4ddef/media/content/pack-11.jpg IP / ASN 143.204.42.50 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, baseline, precision 8, 800x800, components 3\012- data First Seen2023-06-27 Last Seen2023-10-27 Times Seen1 Size70 kB (69877 bytes) MD52f48b9368b2bd745289c0c5e084d0364 SHA10fa5c32d31c3ffba6797bb44e920c0d5b20174df SHA2567b4541fc7710c0cded40bfed43517c8c5a92decd41cab5dff47f80da48f5e157 Certificate Info IssuerAmazon Subject.cloudfront.net FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT HTTP Headers `GET /0fa5c32d31c3ffba6797bb44e920c0d5b20174df/4ddef/media/content/pack-11.jpg HTTP/1.1 Host: d33wubrfki0l68.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: image/jpeg content-length: 69877 accept-ranges: bytes access-control-allow-origin: * cache-control: public, max-age=31556926 date: Tue, 12 Sep 2023 23:06:16 GMT etag: a9dffa1c8bde3b4d1ad18dc4579161af287cf522 server: Netlify strict-transport-security: max-age=31536000; includeSubDomains; preload x-nf-request-id: 01HA5TAF62P06FG6RYYA6WJKKR x-cache: Hit from cloudfront via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: aEyyo-ro3mKrhoDly_M7Vk3KagxD93tTZ-J7PJcdSs4YOB-K0mj1eQ== age: 3836502 X-Firefox-Spdy: h2

	GET d33wubrfki0l68.cloudfront.net/b175c19f7ce96d058aaadc32da1d1abb9a02b4fe/42c83/media/content/superdraft-soccer.jpg	143.204.42.50	200 OK	28 kB
URL d33wubrfki0l68.cloudfront.net/b175c19f7ce96d058aaadc32da1d1abb9a02b4fe/42c83/media/content/superdraft-soccer.jpg IP / ASN 143.204.42.50 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x500, components 3\012- data First Seen2023-06-27 Last Seen2023-10-27 Times Seen1 Size28 kB (27482 bytes) MD5e33119d6957443f39d4b121e55c9bbfe SHA1b175c19f7ce96d058aaadc32da1d1abb9a02b4fe SHA256cfa5aa59efa4557c8754587fe5be1307b2201765ce678901243273fb66922586 Certificate Info IssuerAmazon Subject.cloudfront.net FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT HTTP Headers GET /b175c19f7ce96d058aaadc32da1d1abb9a02b4fe/42c83/media/content/superdraft-soccer.jpg HTTP/1.1 Host: d33wubrfki0l68.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: image/jpeg content-length: 27482 accept-ranges: bytes access-control-allow-origin: * cache-control: public, max-age=31556926 date: Wed, 13 Sep 2023 12:45:24 GMT etag: 0f78ca39e58e09caae18f23180aef53dbc5f1800 server: Netlify strict-transport-security: max-age=31536000; includeSubDomains; preload x-nf-request-id: 01HA796AY78C69PFZ54ZF22YZF x-cache: Hit from cloudfront via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: UkGoR4mztD51JJb6POGSKheIpz6JU41Z8GrLxmKxhfv-O9GxXexK5w== age: 3787353 X-Firefox-Spdy: h2

	GET d33wubrfki0l68.cloudfront.net/d04d51053d516d2ddc404855538b215233470bcf/9ddde/media/content/footy-tic-tac-toe.jpg	143.204.42.50	200 OK	29 kB
URL d33wubrfki0l68.cloudfront.net/d04d51053d516d2ddc404855538b215233470bcf/9ddde/media/content/footy-tic-tac-toe.jpg IP / ASN 143.204.42.50 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x500, components 3\012- data First Seen2023-06-27 Last Seen2023-10-27 Times Seen1 Size29 kB (29015 bytes) MD5972c938e1d1a498adc25c9df53f85e8f SHA1d04d51053d516d2ddc404855538b215233470bcf SHA256c24921e852e53c4b2622547833b5ec65fab1a9e0cd988853e7001d27494f5910 Certificate Info IssuerAmazon Subject.cloudfront.net FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT HTTP Headers `GET /d04d51053d516d2ddc404855538b215233470bcf/9ddde/media/content/footy-tic-tac-toe.jpg HTTP/1.1 Host: d33wubrfki0l68.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/jpeg content-length: 29015 accept-ranges: bytes access-control-allow-origin: * cache-control: public, max-age=31556926 date: Mon, 22 May 2023 02:00:28 GMT etag: 03912394fba278a065562b34d2b1449d8ea52a8a server: Netlify strict-transport-security: max-age=31536000; includeSubDomains; preload x-nf-request-id: 01H10JZFHVWTSB31W97RBN4CE1 x-cache: Hit from cloudfront via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: KmptUGsyFCg7Y0cxZ-O1tzZqgoRNuuGAaMDvsEZSe-A2lt-vxWWolw== age: 13675651 X-Firefox-Spdy: h2

	GET d33wubrfki0l68.cloudfront.net/31d0d12a7a40c4e035148178de8a2a274f6f9eff/c7cb2/media/content/missing11.png	143.204.42.50	200 OK	157 kB
URL d33wubrfki0l68.cloudfront.net/31d0d12a7a40c4e035148178de8a2a274f6f9eff/c7cb2/media/content/missing11.png IP / ASN 143.204.42.50 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typePNG image data, 700 x 700, 8-bit/color RGB, non-interlaced\012- data First Seen2023-06-27 Last Seen2023-10-27 Times Seen1 Size157 kB (156768 bytes) MD5ef1c5162b51423238bc4fc710642a7c0 SHA131d0d12a7a40c4e035148178de8a2a274f6f9eff SHA256abab382686f747fd2452f2b8d7ded1cda36b965cc0f10dddf84f16e9fe8282cc Certificate Info IssuerAmazon Subject.cloudfront.net FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT HTTP Headers `GET /31d0d12a7a40c4e035148178de8a2a274f6f9eff/c7cb2/media/content/missing11.png HTTP/1.1 Host: d33wubrfki0l68.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/png content-length: 156768 accept-ranges: bytes access-control-allow-origin: * cache-control: public, max-age=31556926 date: Sat, 17 Jun 2023 05:46:33 GMT etag: 037e2a3bba79b49e6a1015fbcb5a37eb1e331a76 server: Netlify strict-transport-security: max-age=31536000; includeSubDomains; preload x-nf-request-id: 01H33Y84XDH8JGJN57Z66NJ9XQ x-cache: Hit from cloudfront via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: IMif7bbt4y5Q2wa-4GzIE1LKjiPfWAIvOc3_i2dFwXjIWTRHPz2FtA== age: 11415685 X-Firefox-Spdy: h2

	GET d33wubrfki0l68.cloudfront.net/46c5d6d8e6b5ec10c5eb4a9bf3cc6258e57564c2/20a3d/media/content/where-were-ya.jpg	143.204.42.50	200 OK	42 kB
URL d33wubrfki0l68.cloudfront.net/46c5d6d8e6b5ec10c5eb4a9bf3cc6258e57564c2/20a3d/media/content/where-were-ya.jpg IP / ASN 143.204.42.50 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 860x860, components 3\012- data First Seen2023-06-27 Last Seen2023-10-27 Times Seen1 Size42 kB (41452 bytes) MD50bf283c2df977002eeaa43d32b4e8bd5 SHA146c5d6d8e6b5ec10c5eb4a9bf3cc6258e57564c2 SHA256c6bd65b4cdb1553ec6327fb528991272429c66e4211d11481c83a28145e32ee5 Certificate Info IssuerAmazon Subject.cloudfront.net FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT HTTP Headers `GET /46c5d6d8e6b5ec10c5eb4a9bf3cc6258e57564c2/20a3d/media/content/where-were-ya.jpg HTTP/1.1 Host: d33wubrfki0l68.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/jpeg content-length: 41452 accept-ranges: bytes access-control-allow-origin: * cache-control: public, max-age=31556926 date: Mon, 17 Jul 2023 00:11:11 GMT etag: 1568a0db3a59f33b0825328d1dc746e92b01a73b server: Netlify strict-transport-security: max-age=31536000; includeSubDomains; preload x-nf-request-id: 01H5GJZMGP8ZG7MTVN8M9D62BK x-cache: Hit from cloudfront via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: DpF5H79j933fLOMlOLFOcLVrLrvPj2miJ4W6RBSlAfoCTZXPvcbClA== age: 8843807 X-Firefox-Spdy: h2

	GET d33wubrfki0l68.cloudfront.net/18f08519c2ae843ac008da03761803d18b985c8d/91bfd/media/content/football-bingo.jpg	143.204.42.50	200 OK	31 kB
URL d33wubrfki0l68.cloudfront.net/18f08519c2ae843ac008da03761803d18b985c8d/91bfd/media/content/football-bingo.jpg IP / ASN 143.204.42.50 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 500x500, components 3\012- data First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size31 kB (30826 bytes) MD5e78d132281c98c67bf610411045f2b67 SHA118f08519c2ae843ac008da03761803d18b985c8d SHA2561554c474d8e669f4d1440fba42a2a3532f83c4e004b0693e44d180c83980f6c1 Certificate Info IssuerAmazon Subject.cloudfront.net FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT HTTP Headers `GET /18f08519c2ae843ac008da03761803d18b985c8d/91bfd/media/content/football-bingo.jpg HTTP/1.1 Host: d33wubrfki0l68.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/jpeg content-length: 30826 accept-ranges: bytes access-control-allow-origin: * cache-control: public, max-age=31556926 date: Mon, 11 Sep 2023 17:59:45 GMT etag: 32643b956ca712eac10f2fb8c2c0a5d7a0df49d5 server: Netlify strict-transport-security: max-age=31536000; includeSubDomains; preload x-nf-request-id: 01HA2PCFZK5FHZMQKFMJBEJ6SA x-cache: Hit from cloudfront via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: vCC3vG_5hoc6TAc07BOCwKau8h8htTcry4tXFoFCeUzPOevvMGAfPg== age: 3941293 X-Firefox-Spdy: h2

	GET d33wubrfki0l68.cloudfront.net/747a24eb0ecb6b43f8f8dfa4a274f0145d17a41d/b84a2/media/content/footbl-5.jpg	143.204.42.50	200 OK	36 kB
URL d33wubrfki0l68.cloudfront.net/747a24eb0ecb6b43f8f8dfa4a274f0145d17a41d/b84a2/media/content/footbl-5.jpg IP / ASN 143.204.42.50 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x700, components 3\012- data First Seen2023-06-27 Last Seen2023-10-27 Times Seen1 Size36 kB (35833 bytes) MD54198e605c941234b8282f8a203b0ed56 SHA1747a24eb0ecb6b43f8f8dfa4a274f0145d17a41d SHA256b9f37b5bb3d2b110234ae3495cdb20fd4fe64cd889290e61d4ee32c26012e432 Certificate Info IssuerAmazon Subject.cloudfront.net FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT HTTP Headers `GET /747a24eb0ecb6b43f8f8dfa4a274f0145d17a41d/b84a2/media/content/footbl-5.jpg HTTP/1.1 Host: d33wubrfki0l68.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/jpeg content-length: 35833 accept-ranges: bytes access-control-allow-origin: * cache-control: public, max-age=31556926 date: Wed, 18 Oct 2023 00:42:39 GMT etag: 99718dc33600de020823334ddb800fe46a0b4b51 server: Netlify strict-transport-security: max-age=31536000; includeSubDomains; preload x-nf-request-id: 01HD03R2VEVW0PDWMV55R7YAD0 x-cache: Hit from cloudfront via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: mPbOrU12lMWQI-_qhqZ1lzvGfvCMSUZdfbp-hZ1STyi7zAskNy3New== age: 806719 X-Firefox-Spdy: h2

	GET www.googletagmanager.com/gtag/js?id=G-M1V4B2GMEC&l=dataLayer&cx=c	142.250.74.104	200 OK	95 kB
URL www.googletagmanager.com/gtag/js?id=G-M1V4B2GMEC&l=dataLayer&cx=c IP / ASN 142.250.74.104 #15169 GOOGLE Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with very long lines (3034) First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size95 kB (95297 bytes) MD5aaf802edf86e74dd5b7dc267e870793e SHA1149e3beca7d43cc33dc6a93bf453f9b5ff9211f6 SHA256b409f397fd8efdad76d7b125bc1c7b37fd81fd2e02614221d64f69f807bdddd3 Certificate Info IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint97:15:34:CA:DF:1A:DF:2E:7B:EF:E9:6E:44:21:30:2B:ED:13:54:AE ValidityMon, 09 Oct 2023 08:03:58 GMT - Mon, 01 Jan 2024 08:03:57 GMT HTTP Headers `GET /gtag/js?id=G-M1V4B2GMEC&l=dataLayer&cx=c HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Fri, 27 Oct 2023 08:47:58 GMT expires: Fri, 27 Oct 2023 08:47:58 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 95297 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	GET hb.vntsm.io/content.html	104.22.47.142	200 OK	32 B
URL hb.vntsm.io/content.html IP / ASN 104.22.47.142 #13335 CLOUDFLARENET Requested byhttps://playfootball.games/ Resource Info File typeHTML document text\012- HTML document, ASCII text First Seen2023-04-09 Last Seen2025-07-31 Times Seen242 Size32 B (32 bytes) MD52f58b9ff601fd509249a9e7628a21c33 SHA1bfc1f4838f4746777352e07e8504032aa1dedbad SHA256ce8368e5b8e9f2f066acc6284578c00021aea742c4c7c7ec2836c232a5f8b1f8 Certificate Info IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintBE:17:ED:4C:59:79:22:2A:22:96:28:A3:33:01:5A:A4:E0:C5:34:33 ValidityMon, 07 Aug 2023 00:00:00 GMT - Tue, 06 Aug 2024 23:59:59 GMT HTTP Headers `GET /content.html HTTP/1.1 Host: hb.vntsm.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://playfootball.games/ Origin: https://playfootball.games DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 27 Oct 2023 08:47:58 GMT content-type: text/html content-length: 32 x-amz-id-2: 12Br1BMngmwSbfqC0T9teH2FV5zosWrXlrW/UJ6fy/UdHAciVkfZvz9aUGjC31ig8x3jfD9w4m7J9YpqL2CCUg== x-amz-request-id: JSTJ2P67HZT3E61M access-control-allow-methods: GET vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding last-modified: Thu, 14 Oct 2021 10:47:47 GMT etag: "2f58b9ff601fd509249a9e7628a21c33" cache-control: max-age=14400 cf-cache-status: HIT age: 626 accept-ranges: bytes set-cookie: __cf_bm=cebEzsI3pglCz8WPCT9Avd.KpBLx_42uCviijJsRt7k-1698396478-0-ARzeJCNJHUEplk27ePtzGwG5W8pY79fH3bZTQyzbMCJBZPyORAfeofd3YkSJldicEdSGj/dx+DF5hMSNOnL3NpM=; path=/; expires=Fri, 27-Oct-23 09:17:58 GMT; domain=.vntsm.io; HttpOnly; Secure; SameSite=None access-control-allow-origin: * access-control-expose-headers: * geo: NO geo-subdivision: NO-03 server: cloudflare cf-ray: 81c9ad65f95d0a3d-ARN X-Firefox-Spdy: h2

	GET hb.vntsm.io/content.html	104.22.47.142	200 OK	32 B
URL hb.vntsm.io/content.html IP / ASN 104.22.47.142 #13335 CLOUDFLARENET Requested byhttps://playfootball.games/ Resource Info File typeHTML document text\012- HTML document, ASCII text First Seen2023-04-09 Last Seen2025-07-31 Times Seen242 Size32 B (32 bytes) MD52f58b9ff601fd509249a9e7628a21c33 SHA1bfc1f4838f4746777352e07e8504032aa1dedbad SHA256ce8368e5b8e9f2f066acc6284578c00021aea742c4c7c7ec2836c232a5f8b1f8 Certificate Info IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintBE:17:ED:4C:59:79:22:2A:22:96:28:A3:33:01:5A:A4:E0:C5:34:33 ValidityMon, 07 Aug 2023 00:00:00 GMT - Tue, 06 Aug 2024 23:59:59 GMT HTTP Headers `GET /content.html HTTP/1.1 Host: hb.vntsm.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://playfootball.games/ Origin: https://playfootball.games DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 27 Oct 2023 08:47:58 GMT content-type: text/html content-length: 32 x-amz-id-2: 12Br1BMngmwSbfqC0T9teH2FV5zosWrXlrW/UJ6fy/UdHAciVkfZvz9aUGjC31ig8x3jfD9w4m7J9YpqL2CCUg== x-amz-request-id: JSTJ2P67HZT3E61M access-control-allow-methods: GET vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding last-modified: Thu, 14 Oct 2021 10:47:47 GMT etag: "2f58b9ff601fd509249a9e7628a21c33" cache-control: max-age=14400 cf-cache-status: HIT age: 626 accept-ranges: bytes set-cookie: __cf_bm=ZEpDKwnseiYa2zRRMMp4LiQE_mfdmSZ3FjbGb5AD3BE-1698396478-0-AcNrK7vJheC7+RIJ8kPATPtSf+0AuVBeP8oIIfMq4XbOa7A9zjscapUOCLkyA5NIdAW3xRdd9/QbScokfVh4rVI=; path=/; expires=Fri, 27-Oct-23 09:17:58 GMT; domain=.vntsm.io; HttpOnly; Secure; SameSite=None access-control-allow-origin: * access-control-expose-headers: * geo: NO geo-subdivision: NO-03 server: cloudflare cf-ray: 81c9ad6609790a3d-ARN X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		472 B
URL ocsp.pki.goog/gts1c3 IP / ASN 142.250.74.131 #15169 GOOGLE Requested byN/A Resource Info File typedata First Seen2023-10-27 Last Seen2023-10-27 Times Seen228 Size472 B (472 bytes) MD5f71c501c0233176aa468d8f7abf12ce3 SHA126251e6fa987f18d4dc99325d7ce7a6ba39c9ccc SHA2565f16bfc3e3d86a1bbe5756a8d54ae5d514308d47400cf255354916205704ab9d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 27 Oct 2023 08:47:58 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	GET www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-M1V4B2GMEC&cid=512579465.1698396479&gtm=45je3ap0v884668648z8865765401&aip=1&z=526202312	142.250.74.163	200 OK	42 B
URL www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-M1V4B2GMEC&cid=512579465.1698396479&gtm=45je3ap0v884668648z8865765401&aip=1&z=526202312 IP / ASN 142.250.74.163 #15169 GOOGLE Requested byhttps://playfootball.games/ Resource Info File typeGIF image data, version 89a, 1 x 1\012- data First Seen2023-04-05 Last Seen2025-08-02 Times Seen319850 Size42 B (42 bytes) MD5d89746888da2d9510b64a9f031eaecd5 SHA1d5fceb6532643d0d84ffe09c40c481ecdf59e15a SHA256ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 Certificate Info IssuerGoogle Trust Services LLC Subject.google.no FingerprintC9:D2:53:22:39:42:94:46:74:AD:BB:1A:B2:BE:92:9B:6B:B6:8F:3D ValidityMon, 09 Oct 2023 08:14:07 GMT - Mon, 01 Jan 2024 08:14:06 GMT HTTP Headers GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-M1V4B2GMEC&cid=512579465.1698396479&gtm=45je3ap0v884668648z8865765401&aip=1&z=526202312 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Fri, 27 Oct 2023 08:47:58 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		472 B
URL ocsp.pki.goog/gts1c3 IP / ASN 142.250.74.131 #15169 GOOGLE Requested byN/A Resource Info File typedata First Seen2023-10-27 Last Seen2023-10-27 Times Seen228 Size472 B (472 bytes) MD5f71c501c0233176aa468d8f7abf12ce3 SHA126251e6fa987f18d4dc99325d7ce7a6ba39c9ccc SHA2565f16bfc3e3d86a1bbe5756a8d54ae5d514308d47400cf255354916205704ab9d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 27 Oct 2023 08:47:58 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	GET ad-delivery.net/px.gif?ch=2	104.26.2.70	200 OK	43 B
URL ad-delivery.net/px.gif?ch=2 IP / ASN 104.26.2.70 #13335 CLOUDFLARENET Requested byhttps://playfootball.games/ Resource Info File typeGIF image data, version 89a, 1 x 1\012- data First Seen2023-04-05 Last Seen2025-08-02 Times Seen172846 Size43 B (43 bytes) MD5ad4b0f606e0f8465bc4c4c170b37e1a3 SHA150b30fd5f87c85fe5cba2635cb83316ca71250d7 SHA256cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda Certificate Info IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintD9:7E:C3:56:0A:04:84:BD:24:32:3D:C3:8E:66:52:26:37:E8:90:D3 ValiditySun, 19 Feb 2023 00:00:00 GMT - Mon, 19 Feb 2024 23:59:59 GMT HTTP Headers `GET /px.gif?ch=2 HTTP/1.1 Host: ad-delivery.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://playfootball.games/ Origin: https://playfootball.games DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 27 Oct 2023 08:47:58 GMT content-type: image/gif content-length: 43 x-guploader-uploadid: ABPtcPrQIBLy9HuvcuqMNXiELKkcPokSpxEVXf0d3-YxYIYmFEW8geDQgwjzZNrscxWsbBghVOCmD6yKjNtDWODaCNS6vM3Nzuzx x-goog-generation: 1620242732037093 x-goog-metageneration: 5 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 43 x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow== x-goog-storage-class: MULTI_REGIONAL access-control-allow-origin: * access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace expires: Fri, 27 Oct 2023 03:19:17 GMT cache-control: public, max-age=86400 age: 20327 last-modified: Wed, 05 May 2021 19:25:32 GMT etag: "ad4b0f606e0f8465bc4c4c170b37e1a3" cf-cache-status: HIT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q0%2Fz7PCRK8I02%2FSjXBU4JZQCMNDE%2FAVYdPME14uuuiQrjWieBFHDyPrNeVHPDgnbY8W4sVdpJKY8YlzDb9Ju5Vh2pgveWgpAe%2F3vZWffehzr05XLYXZq74H%2Fpsgekhy8eA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 81c9ad67ea7356c9-OSL X-Firefox-Spdy: h2

	ocsp.sectigo.com/	104.18.38.233		472 B
URL ocsp.sectigo.com/ IP / ASN 104.18.38.233 #13335 CLOUDFLARENET Requested byN/A Resource Info File typedata First Seen2023-10-26 Last Seen2023-10-29 Times Seen195 Size472 B (472 bytes) MD5d41419e07bf751635bf2e784c2227dcd SHA116144ee3ac68bfd2c21f28efb75bcb5a331d51e5 SHA256bbf2cb01dc8dae905b512182626b882269772c57aa20c7e64297f5f8ec291e89 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 27 Oct 2023 08:47:59 GMT Content-Type: application/ocsp-response Content-Length: 472 Connection: keep-alive Last-Modified: Wed, 25 Oct 2023 20:45:23 GMT Expires: Wed, 01 Nov 2023 20:45:22 GMT Etag: "16144ee3ac68bfd2c21f28efb75bcb5a331d51e5" Cache-Control: max-age=474640,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb5 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 81c9ad6a6ab2b4eb-OSL`

	GET d1oykxszdrgjgl.cloudfront.net/script.js	143.204.42.218	200 OK	46 kB
URL d1oykxszdrgjgl.cloudfront.net/script.js IP / ASN 143.204.42.218 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with very long lines (65536), with no line terminators First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size46 kB (46500 bytes) MD5cd9c98c62ad45bee4d43c71f7b029dcd SHA16f6d5fe9ebff6647ca678ebb6ab60a758fa9eb9e SHA256a9cafe8a1f9e8e75d8216e28ad57ee910fe4e58f0dec1b6cbc1fd387c00ead4a Certificate Info IssuerAmazon Subject.cloudfront.net FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT HTTP Headers `GET /script.js HTTP/1.1 Host: d1oykxszdrgjgl.cloudfront.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript last-modified: Thu, 26 Oct 2023 17:15:11 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: MqEw4FQ_lh0BlLpbKJUtlvv2ChOAwvH7 server: AmazonS3 content-encoding: gzip date: Fri, 27 Oct 2023 08:43:54 GMT cache-control: max-age=600,public,must-revalidate etag: W/"cd9c98c62ad45bee4d43c71f7b029dcd" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: LrXrDDnfmLJCB_5nyn-DfsXARWhdF7LDNMRQt3SgMcJM6G2AjutAEA== age: 245 X-Firefox-Spdy: h2

	ocsp.pki.goog/s/gts1d4/x3e3jYP8xIM	142.250.74.131		471 B
URL ocsp.pki.goog/s/gts1d4/x3e3jYP8xIM IP / ASN 142.250.74.131 #15169 GOOGLE Requested byN/A Resource Info File typedata First Seen2023-10-26 Last Seen2023-10-27 Times Seen17 Size471 B (471 bytes) MD5b0b7ed646e713952a85945092ac9e1b4 SHA1384615a1302fd478fd54ab049589accf62130ff8 SHA256350642d872450932635085dad927eb1c5e6d4d96ac848833d5b806e4e01c17a4 HTTP Headers `POST /s/gts1d4/x3e3jYP8xIM HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 27 Oct 2023 08:47:59 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/s/gts1d4/x3e3jYP8xIM	142.250.74.131		471 B
URL ocsp.pki.goog/s/gts1d4/x3e3jYP8xIM IP / ASN 142.250.74.131 #15169 GOOGLE Requested byN/A Resource Info File typedata First Seen2023-10-26 Last Seen2023-10-27 Times Seen17 Size471 B (471 bytes) MD5b0b7ed646e713952a85945092ac9e1b4 SHA1384615a1302fd478fd54ab049589accf62130ff8 SHA256350642d872450932635085dad927eb1c5e6d4d96ac848833d5b806e4e01c17a4 HTTP Headers `POST /s/gts1d4/x3e3jYP8xIM HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 27 Oct 2023 08:47:59 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	GET script.4dex.io/localstore.js	104.26.8.169	200 OK	1.3 kB
URL script.4dex.io/localstore.js IP / ASN 104.26.8.169 #13335 CLOUDFLARENET Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with very long lines (3977) First Seen2023-10-23 Last Seen2024-08-21 Times Seen713 Size1.3 kB (1298 bytes) MD5e90435520cec1363a82b67d8298d79a8 SHA187354d36ae136f547b8aee979c7b237b7963248b SHA2568264bf30b0dfc41d19bf53d2c63a8fc9326b427cf3ea9cd9b6be2696fc55b118 Certificate Info IssuerCloudflare, Inc. Subjectscript.4dex.io FingerprintAB:9B:A2:70:ED:27:23:EF:84:14:22:FF:67:9F:5D:50:06:2D:04:28 ValidityMon, 23 Oct 2023 00:00:00 GMT - Tue, 22 Oct 2024 23:59:59 GMT HTTP Headers `GET /localstore.js HTTP/1.1 Host: script.4dex.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Date: Fri, 27 Oct 2023 08:47:59 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Cache-Control: public, max-age=1800 ETag: W/"e90435520cec1363a82b67d8298d79a8" Last-Modified: Mon, 23 Oct 2023 08:11:07 GMT Vary: Accept-Encoding CF-Cache-Status: HIT Age: 14885 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dmSRS%2Bt3LcZbsscIjgFWqMRbg5Dka4Ywp%2BFKFrP6vL590WfEf%2B8YCs1Ubp5cS6Vz3NIeR7HkhTLy%2BXFE8O7Lu7IFhrwD1t0q8UfvN%2FCr9mres3bI1tOuQ8Q6w3%2FfjFxf"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 81c9ad6bc93956a4-OSL Content-Encoding: br

	POST i.clean.gg/1a	34.95.69.49	200 OK	0 B
URL i.clean.gg/1a IP / ASN 34.95.69.49 #15169 GOOGLE Requested byhttps://playfootball.games/ Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerGoogle Trust Services LLC Subjecti.clean.gg Fingerprint5A:FB:01:22:35:29:B0:E2:D4:DE:06:7D:74:A2:07:0C:AE:A6:AF:DD ValiditySun, 17 Sep 2023 08:43:35 GMT - Sat, 16 Dec 2023 09:37:29 GMT HTTP Headers `OPTIONS /1a HTTP/1.1 Host: i.clean.gg User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://playfootball.games/ Origin: https://playfootball.games DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 204 No Content server: nginx/1.21.6 date: Fri, 27 Oct 2023 08:47:59 GMT access-control-allow-origin: * access-control-allow-methods: GET, POST, OPTIONS access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Origin,Accept,X-API-Key access-control-max-age: 1728000 content-type: text/plain; charset=utf-8 content-length: 0 via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	ocsp.pki.goog/s/gts1d4/x3e3jYP8xIM	142.250.74.131		471 B
URL ocsp.pki.goog/s/gts1d4/x3e3jYP8xIM IP / ASN 142.250.74.131 #15169 GOOGLE Requested byN/A Resource Info File typedata First Seen2023-10-26 Last Seen2023-10-27 Times Seen17 Size471 B (471 bytes) MD5b0b7ed646e713952a85945092ac9e1b4 SHA1384615a1302fd478fd54ab049589accf62130ff8 SHA256350642d872450932635085dad927eb1c5e6d4d96ac848833d5b806e4e01c17a4 HTTP Headers `POST /s/gts1d4/x3e3jYP8xIM HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 27 Oct 2023 08:47:59 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	POST i.clean.gg/1a	34.95.69.49	200 OK	0 B
URL i.clean.gg/1a IP / ASN 34.95.69.49 #15169 GOOGLE Requested byhttps://playfootball.games/ Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerGoogle Trust Services LLC Subjecti.clean.gg Fingerprint5A:FB:01:22:35:29:B0:E2:D4:DE:06:7D:74:A2:07:0C:AE:A6:AF:DD ValiditySun, 17 Sep 2023 08:43:35 GMT - Sat, 16 Dec 2023 09:37:29 GMT HTTP Headers `POST /1a HTTP/1.1 Host: i.clean.gg User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 471 Origin: https://playfootball.games DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx/1.21.6 date: Fri, 27 Oct 2023 08:47:59 GMT content-type: application/octet-stream content-length: 0 access-control-allow-origin: * access-control-allow-methods: GET, POST, OPTIONS access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Origin,Accept,X-API-Key access-control-expose-headers: Content-Length,Content-Range via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	POST ib.adnxs.com/ut/v3/prebid	185.89.210.122	200 OK	139 B
URL ib.adnxs.com/ut/v3/prebid IP / ASN 185.89.210.122 #29990 ASN-APPNEX Requested byhttps://playfootball.games/ Resource Info File typeJSON data\012- , ASCII text, with no line terminators First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size139 B (139 bytes) MD565869ee6612b65a3b929fa475a178755 SHA11177ad5e25e892cb5f5d11f1761f4102e4c0c90b SHA2561cf1443ba92996e234937ce8524ab4ba4d38e5a8caa32505ac05e4b576c6f31f Certificate Info IssuerDigiCert Inc Subject.adnxs.com Fingerprint30:E1:57:C8:5A:77:64:AE:54:99:08:F7:2B:B8:C7:F4:28:85:56:08 ValidityMon, 13 Feb 2023 00:00:00 GMT - Fri, 15 Mar 2024 23:59:59 GMT HTTP Headers `POST /ut/v3/prebid HTTP/1.1 Host: ib.adnxs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 778 Origin: https://playfootball.games DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx/1.21.3 date: Fri, 27 Oct 2023 08:47:59 GMT content-type: application/json; charset=utf-8 content-length: 139 cache-control: no-store, no-cache, private pragma: no-cache expires: Sat, 15 Nov 2008 16:00:00 GMT p3p: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE" x-xss-protection: 0 access-control-allow-credentials: true access-control-allow-origin: https://playfootball.games accept-ch: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness an-x-request-uuid: df087a3c-3ea6-46e2-b78f-7e359180a88e x-proxy-origin: 91.90.42.154; 91.90.42.154; 954.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com X-Firefox-Spdy: h2

	POST ib.adnxs.com/ut/v3/prebid	185.89.210.122	200 OK	140 B
URL ib.adnxs.com/ut/v3/prebid IP / ASN 185.89.210.122 #29990 ASN-APPNEX Requested byhttps://playfootball.games/ Resource Info File typeJSON data\012- , ASCII text, with no line terminators First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size140 B (140 bytes) MD5b9bf5c20cc515d15c10275d3cbba0b6a SHA1b9197015e846b5a76e8b5d9bfa00100ca4fb3210 SHA25648aff5656cc00855a5a233a0ae1e09bfb4c039930f1899efe585425197d4fa8c Certificate Info IssuerDigiCert Inc Subject.adnxs.com Fingerprint30:E1:57:C8:5A:77:64:AE:54:99:08:F7:2B:B8:C7:F4:28:85:56:08 ValidityMon, 13 Feb 2023 00:00:00 GMT - Fri, 15 Mar 2024 23:59:59 GMT HTTP Headers `POST /ut/v3/prebid HTTP/1.1 Host: ib.adnxs.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 752 Origin: https://playfootball.games DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: nginx/1.21.3 date: Fri, 27 Oct 2023 08:47:59 GMT content-type: application/json; charset=utf-8 content-length: 140 cache-control: no-store, no-cache, private pragma: no-cache expires: Sat, 15 Nov 2008 16:00:00 GMT p3p: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE" x-xss-protection: 0 access-control-allow-credentials: true access-control-allow-origin: https://playfootball.games accept-ch: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness an-x-request-uuid: a9f308a2-7037-450a-a886-f75730eb255b x-proxy-origin: 91.90.42.154; 91.90.42.154; 954.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com X-Firefox-Spdy: h2

	POST prebid.a-mo.net/a/c	145.40.97.67	204 No Content	0 B
URL prebid.a-mo.net/a/c IP / ASN 145.40.97.67 #54825 PACKET Requested byhttps://playfootball.games/ Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerLet's Encrypt Subject.a-mo.net Fingerprint5D:67:7D:2D:E3:95:FC:C1:C1:A0:21:79:01:E7:63:2B:B9:29:29:9D ValidityFri, 06 Oct 2023 13:41:28 GMT - Thu, 04 Jan 2024 13:41:27 GMT HTTP Headers `POST /a/c HTTP/1.1 Host: prebid.a-mo.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 1168 Origin: https://playfootball.games DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 204 No Content access-control-allow-credentials: true access-control-allow-origin: https://playfootball.games cache-control: max-age=0, private, must-revalidate date: Fri, 27 Oct 2023 08:47:58 GMT server: envoy vary: origin, Accept-Encoding x-nbr: 1 x-envoy-upstream-service-time: 0 X-Firefox-Spdy: h2`

	ocsp.sectigo.com/	104.18.38.233		471 B
URL ocsp.sectigo.com/ IP / ASN 104.18.38.233 #13335 CLOUDFLARENET Requested byN/A Resource Info File typedata First Seen2023-10-26 Last Seen2023-10-30 Times Seen157 Size471 B (471 bytes) MD5325bb79ccca16c4de0769f04fd7fa011 SHA1b59942e96674c45e8245a19ccdaf16a42b55da21 SHA2565467a62bd8a8009458c3e31449e3b952caf4ceb55da05754c7f2b4fc35bf0a3c HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 27 Oct 2023 08:47:59 GMT Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Last-Modified: Thu, 26 Oct 2023 19:14:50 GMT Expires: Thu, 02 Nov 2023 19:14:49 GMT Etag: "b59942e96674c45e8245a19ccdaf16a42b55da21" Cache-Control: max-age=556923,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb6 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 81c9ad6dbe51b4eb-OSL`

	GET cadmus.script.ac/dahhc4ozyvjm6/script.js	104.18.22.145	200 OK	48 kB
URL cadmus.script.ac/dahhc4ozyvjm6/script.js IP / ASN 104.18.22.145 #13335 CLOUDFLARENET Requested byhttps://playfootball.games/ Resource Info File typegzip compressed data, from Unix\012- data First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size48 kB (47639 bytes) MD57c551f581259c8486a14f34d65403095 SHA1b7aa661d3ac1f04c3147b7cc7c1f20c8e3b48a44 SHA2563073361ee9cb4198982c30cb62f203d18e4963d3307717258b1aec60a3448491 Certificate Info IssuerLet's Encrypt Subjectcadmus.script.ac FingerprintE3:6D:21:47:C1:5F:5D:0E:B9:DC:3C:03:A3:DC:79:E0:8A:11:76:C7 ValiditySat, 02 Sep 2023 14:45:48 GMT - Fri, 01 Dec 2023 14:45:47 GMT HTTP Headers `GET /dahhc4ozyvjm6/script.js HTTP/1.1 Host: cadmus.script.ac User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 27 Oct 2023 08:47:59 GMT content-type: application/javascript age: 0 cache-control: public,max-age=600,stale-while-revalidate=3600,stale-if-error=86400 etag: W/"e2c0b4446447166db4f817d6cc935757330b9220" last-modified: Thu, 26 Oct 2023 17:15:25 GMT set-cookie: __cf_bm=84Uwr3iyd7hLEEAq4t21uevyqxoM0Pq4eu8xnKIjuRY-1698396479-0-Ab6Pqx182dohrspf92rrjM99JtekmuBhOcS9M9diBUy4Ye4SEJ0oN+92JjDoQAB26yUJrgQiGJz8dBsUBUFVCsE=; path=/; expires=Fri, 27-Oct-23 09:17:59 GMT; domain=.script.ac; HttpOnly; Secure; SameSite=None vary: Accept-Encoding server: cloudflare cf-ray: 81c9ad6d89ecb50f-OSL content-encoding: gzip X-Firefox-Spdy: h2

	ocsp.r2m01.amazontrust.com/	143.204.53.97		471 B
URL ocsp.r2m01.amazontrust.com/ IP / ASN 143.204.53.97 #16509 AMAZON-02 Requested byN/A Resource Info File typedata First Seen2023-10-26 Last Seen2023-10-27 Times Seen5 Size471 B (471 bytes) MD53ab109b0315a570cf6b10df02f89db0a SHA1e841446cd2ac478918f8728e02e8c54bb9a8a211 SHA25631796823e5c534e84d34504d11bcd9baca54065bf4a234a0b5a55ae1642e7a04 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=7200 Date: Fri, 27 Oct 2023 08:47:59 GMT Last-Modified: Fri, 27 Oct 2023 07:44:17 GMT Server: ECAcc (ska/F75B) X-Cache: Miss from cloudfront Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: zV1doH96hEgEV_Q8AL6JHulCf3_tiMVzd9u6J5Dz8S-fyMK_zkyZ5w== Age: 3822`

	POST prebid.a-mo.net/a/c	145.40.97.67	204 No Content	0 B
URL prebid.a-mo.net/a/c IP / ASN 145.40.97.67 #54825 PACKET Requested byhttps://playfootball.games/ Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerLet's Encrypt Subject.a-mo.net Fingerprint5D:67:7D:2D:E3:95:FC:C1:C1:A0:21:79:01:E7:63:2B:B9:29:29:9D ValidityFri, 06 Oct 2023 13:41:28 GMT - Thu, 04 Jan 2024 13:41:27 GMT HTTP Headers `POST /a/c HTTP/1.1 Host: prebid.a-mo.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 1150 Origin: https://playfootball.games DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 204 No Content access-control-allow-credentials: true access-control-allow-origin: https://playfootball.games cache-control: max-age=0, private, must-revalidate date: Fri, 27 Oct 2023 08:47:59 GMT server: envoy vary: origin, Accept-Encoding x-nbr: 1 x-envoy-upstream-service-time: 0 X-Firefox-Spdy: h2`

	ocsp.r2m01.amazontrust.com/	143.204.53.97		471 B
URL ocsp.r2m01.amazontrust.com/ IP / ASN 143.204.53.97 #16509 AMAZON-02 Requested byN/A Resource Info File typedata First Seen2023-10-26 Last Seen2023-10-27 Times Seen5 Size471 B (471 bytes) MD53ab109b0315a570cf6b10df02f89db0a SHA1e841446cd2ac478918f8728e02e8c54bb9a8a211 SHA25631796823e5c534e84d34504d11bcd9baca54065bf4a234a0b5a55ae1642e7a04 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=7200 Date: Fri, 27 Oct 2023 08:47:59 GMT Last-Modified: Fri, 27 Oct 2023 07:43:26 GMT Server: ECAcc (ska/F790) X-Cache: Miss from cloudfront Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: nnRFgBqwox7GehcxMjG7wh4pHzGHLVrk6V_FzfWHsEqHMQE7bLn-Ag== Age: 3874`

	POST s.cpx.to/fire.js?pid=13058&url=https%3A%2F%2Fplayfootball.games%2F&hn_ver=71&fid=6709aef6-794f-490a-96b0-e98e3b544f50&dsp=pub_common&dsp_uid=070d5536-f6f2-43ef-8914-d85df1096a35	79.125.93.48	200 OK	0 B
URL s.cpx.to/fire.js?pid=13058&url=https%3A%2F%2Fplayfootball.games%2F&hn_ver=71&fid=6709aef6-794f-490a-96b0-e98e3b544f50&dsp=pub_common&dsp_uid=070d5536-f6f2-43ef-8914-d85df1096a35 IP / ASN 79.125.93.48 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerSectigo Limited Subjects.cpx.to Fingerprint79:72:B9:F5:96:66:CE:FC:39:B7:2E:2E:73:AF:7C:F7:3C:07:3D:80 ValidityThu, 12 Jan 2023 00:00:00 GMT - Wed, 17 Jan 2024 23:59:59 GMT HTTP Headers POST /fire.js?pid=13058&url=https%3A%2F%2Fplayfootball.games%2F&hn_ver=71&fid=6709aef6-794f-490a-96b0-e98e3b544f50&dsp=pub_common&dsp_uid=070d5536-f6f2-43ef-8914-d85df1096a35 HTTP/1.1 Host: s.cpx.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 225 Origin: https://playfootball.games DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 27 Oct 2023 08:47:59 GMT content-length: 0 expires: Fri, 27 Oct 2023 08:47:59 GMT vary: Origin access-control-allow-origin: https://playfootball.games access-control-allow-credentials: true p3p: CP="NOI DEV ADM" X-Firefox-Spdy: h2`

	POST i.clean.gg/1a	34.95.69.49	200 OK	0 B
URL i.clean.gg/1a IP / ASN 34.95.69.49 #15169 GOOGLE Requested byhttps://playfootball.games/ Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerGoogle Trust Services LLC Subjecti.clean.gg Fingerprint5A:FB:01:22:35:29:B0:E2:D4:DE:06:7D:74:A2:07:0C:AE:A6:AF:DD ValiditySun, 17 Sep 2023 08:43:35 GMT - Sat, 16 Dec 2023 09:37:29 GMT HTTP Headers `POST /1a HTTP/1.1 Host: i.clean.gg User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 586 Origin: https://playfootball.games DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx/1.21.6 date: Fri, 27 Oct 2023 08:47:59 GMT content-type: application/octet-stream content-length: 0 access-control-allow-origin: * access-control-allow-methods: GET, POST, OPTIONS access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Origin,Accept,X-API-Key access-control-expose-headers: Content-Length,Content-Range via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	GET script.4dex.io/adagio.js	104.26.8.169	200 OK	24 kB
URL script.4dex.io/adagio.js IP / ASN 104.26.8.169 #13335 CLOUDFLARENET Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with very long lines (65354) First Seen2023-10-23 Last Seen2023-11-06 Times Seen313 Size24 kB (23633 bytes) MD542783f4dfb63346ef86cbdd3594314a1 SHA10320fcb1a33327960c377d8508102c7c3de6e473 SHA256caf2558c473f0989ccb9e45da327c56bb9f877da13fe442adc10644d75e2f1d9 Certificate Info IssuerCloudflare, Inc. Subjectscript.4dex.io FingerprintAB:9B:A2:70:ED:27:23:EF:84:14:22:FF:67:9F:5D:50:06:2D:04:28 ValidityMon, 23 Oct 2023 00:00:00 GMT - Tue, 22 Oct 2024 23:59:59 GMT HTTP Headers `GET /adagio.js HTTP/1.1 Host: script.4dex.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://playfootball.games/ Origin: https://playfootball.games DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Date: Fri, 27 Oct 2023 08:47:59 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Access-Control-Allow-Origin: * Cache-Control: public, max-age=1800 ETag: W/"42783f4dfb63346ef86cbdd3594314a1" Last-Modified: Mon, 23 Oct 2023 08:11:06 GMT Vary: Origin, Accept-Encoding Access-Control-Expose-Headers: CF-Cache-Status: HIT Age: 344141 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZkC7Hbd9aGHpESzMY5zRG7XZF9VQM2F3EGmccDQ%2BOuEkCYZHaqqe6hgM1ZLYPO5CbUlhHBUsYZT4703ss6vBQDPthiRGsJeDjMbIeRUUpEaZhaXLwmgVWYk%2BLQju8Ubf"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 81c9ad6fdbadb51d-OSL Content-Encoding: br

	GET static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317	104.16.56.101	200 OK	6.9 kB
URL static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 IP / ASN 104.16.56.101 #13335 CLOUDFLARENET Requested byhttps://elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480616&bidder=ozone Resource Info File typeASCII text, with very long lines (19986), with no line terminators First Seen2023-10-13 Last Seen2025-07-28 Times Seen17173 Size6.9 kB (6854 bytes) MD5dd1d068fdb5fe90b6c05a5b3940e088c SHA10d96f9df8772633a9df4c81cf323a4ef8998ba59 SHA2566153d13804862b0fc1c016cf1129f34cb7c6185f2cf4bf1a3a862eecdab50101 Certificate Info IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint89:79:35:ED:04:A2:CA:50:F7:9A:B8:FE:DF:A5:0C:B1:F2:E6:DD:E8 ValidityMon, 10 Apr 2023 00:00:00 GMT - Tue, 09 Apr 2024 23:59:59 GMT HTTP Headers `GET /beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://elb.the-ozone-project.com DNT: 1 Connection: keep-alive Referer: https://elb.the-ozone-project.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Fri, 27 Oct 2023 08:48:03 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/"2023.10.0" last-modified: Tue, 10 Oct 2023 21:38:13 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 81c9ad84ef815695-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	GET static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317	104.16.56.101	200 OK	7.2 kB
URL static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 IP / ASN 104.16.56.101 #13335 CLOUDFLARENET Requested byhttps://elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480616&bidder=ozone Resource Info File typegzip compressed data, from Unix\012- data First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size7.2 kB (7167 bytes) MD5ea6d096c48cb8cfc98404c7633d14947 SHA1421efae880391071ea87eea24a2df783e1953c9e SHA2563b88c2925b485f8f51179e0687781a4e4d8de9c3dfdc17f296b7f362c1193d62 Certificate Info IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint89:79:35:ED:04:A2:CA:50:F7:9A:B8:FE:DF:A5:0C:B1:F2:E6:DD:E8 ValidityMon, 10 Apr 2023 00:00:00 GMT - Tue, 09 Apr 2024 23:59:59 GMT HTTP Headers GET /beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://elb.the-ozone-project.com DNT: 1 Connection: keep-alive Referer: https://elb.the-ozone-project.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK date: Fri, 27 Oct 2023 08:48:03 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/"2023.10.0" last-modified: Tue, 10 Oct 2023 21:38:13 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 81c9ad853fe35695-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	POST elb.the-ozone-project.com/openrtb2/auction	104.18.43.178	200 OK	162 B
URL elb.the-ozone-project.com/openrtb2/auction IP / ASN 104.18.43.178 #13335 CLOUDFLARENET Requested byhttps://playfootball.games/ Resource Info File typeJSON data\012- , ASCII text First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size162 B (162 bytes) MD5d6219d41fc66ba6e5e0a83fe5f7ca98b SHA1757daa79a7990eead6f7cc016f8e37fc7a1daaa8 SHA256e3b241f5f1713852120773819cca952ccdbfc1892849c364620d5bb723a60e82 Certificate Info IssuerLet's Encrypt Subjectthe-ozone-project.com Fingerprint2D:47:CD:CC:B2:36:0D:F9:4B:82:17:E7:63:1D:CC:49:76:52:4E:F8 ValidityThu, 26 Oct 2023 08:49:30 GMT - Wed, 24 Jan 2024 08:49:29 GMT HTTP Headers `POST /openrtb2/auction HTTP/1.1 Host: elb.the-ozone-project.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 1205 Origin: https://playfootball.games DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Fri, 27 Oct 2023 08:47:59 GMT content-type: application/json cf-ray: 81c9ad6d6be91c0a-OSL cf-cache-status: DYNAMIC access-control-allow-origin: https://playfootball.games cache-control: no-cache, no-store, must-revalidate expires: 0 vary: Origin, Accept-Encoding access-control-allow-credentials: true pragma: no-cache set-cookie: AWSALBTG=UZICz3r7/agBv6+E/y4gT1/hvkuC0NLKGiSk6vZ0yRxTTj7lh+Avvd47lH40etzUzAu9jwqBPFCaltg9cZDTWD86FRy26ypwUSucdZlzz9mXN2ZQ4mccChXJcYXfBQp+i0ux500JegwZOjkk8siVlbFMf9uPFbtFcGprCv2B+A57X6mjeFI=; Expires=Fri, 03 Nov 2023 08:47:59 GMT; Path=/ AWSALBTGCORS=UZICz3r7/agBv6+E/y4gT1/hvkuC0NLKGiSk6vZ0yRxTTj7lh+Avvd47lH40etzUzAu9jwqBPFCaltg9cZDTWD86FRy26ypwUSucdZlzz9mXN2ZQ4mccChXJcYXfBQp+i0ux500JegwZOjkk8siVlbFMf9uPFbtFcGprCv2B+A57X6mjeFI=; Expires=Fri, 03 Nov 2023 08:47:59 GMT; Path=/; SameSite=None __cf_bm=zChs99CvjZqsRcLR9QT21d7udPFZIgwFKY3dfKzX444-1698396479-0-Af78IS5VyGHOwdkzP16zj165zyPOiCaL5Ys+vinjgDqU+rZxiMdqCqtyrVVa6QlQBn63WGKYiw/fZxXX4XyRZLY=; path=/; expires=Fri, 27-Oct-23 09:17:59 GMT; domain=.the-ozone-project.com; HttpOnly; Secure; SameSite=None server: cloudflare content-encoding: gzip X-Firefox-Spdy: h2

	GET elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480616&bidder=ozone	104.18.43.178	200 OK	4.3 kB
URL elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480616&bidder=ozone IP / ASN 104.18.43.178 #13335 CLOUDFLARENET Requested byhttps://playfootball.games/ Resource Info File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (461) First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size4.3 kB (4271 bytes) MD5a05abbca12359142040a6a76781fe907 SHA18c2dea3b3cccc0e7f8be989c107d1a2bac8f486e SHA256d40b2603b4cb99405610dbaa702a8737db10c83a5d8892db445b7c04323e0b64 Certificate Info IssuerLet's Encrypt Subjectthe-ozone-project.com Fingerprint2D:47:CD:CC:B2:36:0D:F9:4B:82:17:E7:63:1D:CC:49:76:52:4E:F8 ValidityThu, 26 Oct 2023 08:49:30 GMT - Wed, 24 Jan 2024 08:49:29 GMT HTTP Headers GET /static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480616&bidder=ozone HTTP/1.1 Host: elb.the-ozone-project.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Cookie: __cf_bm=zChs99CvjZqsRcLR9QT21d7udPFZIgwFKY3dfKzX444-1698396479-0-Af78IS5VyGHOwdkzP16zj165zyPOiCaL5Ys+vinjgDqU+rZxiMdqCqtyrVVa6QlQBn63WGKYiw/fZxXX4XyRZLY= Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Fri, 27 Oct 2023 08:48:03 GMT content-type: text/html; charset=utf-8 cf-ray: 81c9ad835d5c1c0a-OSL cf-cache-status: DYNAMIC cache-control: no-cache, no-store, must-revalidate expires: 0 last-modified: Wed, 25 Oct 2023 12:22:01 GMT vary: Origin, Accept-Encoding pragma: no-cache set-cookie: AWSALBTG=0wgqDqNufyAvQMR9czpJtlV3o9R9SZ6a74TtFJs20/JgtrHkVNfIgyoPoHzrn0IcsB7mQSErTqI92MT8zmCrR1KqUXn5bThPXnHVJG5ZZF1g7wvkNkkVF6+zH23y+ErjoAg728E8Ie+ZyGDAjZ89pc4T/GE4BfY33V05I0TGF+dDARJxKb8=; Expires=Fri, 03 Nov 2023 08:48:03 GMT; Path=/ AWSALBTGCORS=0wgqDqNufyAvQMR9czpJtlV3o9R9SZ6a74TtFJs20/JgtrHkVNfIgyoPoHzrn0IcsB7mQSErTqI92MT8zmCrR1KqUXn5bThPXnHVJG5ZZF1g7wvkNkkVF6+zH23y+ErjoAg728E8Ie+ZyGDAjZ89pc4T/GE4BfY33V05I0TGF+dDARJxKb8=; Expires=Fri, 03 Nov 2023 08:48:03 GMT; Path=/; SameSite=None server: cloudflare content-encoding: gzip X-Firefox-Spdy: h2

	GET onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D	51.89.9.254	204 No Content	0 B
URL onetag-sys.com/usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D IP / ASN 51.89.9.254 #16276 OVH SAS Requested byhttps://public.servenobid.com/sync.html Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerDigiCert Inc Subject.onetag-sys.com Fingerprint1B:3E:A7:6D:D6:26:C6:9E:AB:38:DE:9E:22:71:64:8C:9F:91:0B:7B ValidityWed, 28 Dec 2022 00:00:00 GMT - Sun, 28 Jan 2024 23:59:59 GMT HTTP Headers GET /usync/?pubId=694e68b73971b58&gdpr=0&gdpr_consent=&us_privacy=1YN-&https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D318%26uid%3D HTTP/1.1 Host: onetag-sys.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://public.servenobid.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 204 No Content cache-control: no-store strict-transport-security: max-age=15552000 X-Firefox-Spdy: h2`

	POST ads.servenobid.com/adreq?cb=1433	34.251.33.30	200 OK	3.9 kB
URL ads.servenobid.com/adreq?cb=1433 IP / ASN 34.251.33.30 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeJSON data\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (9353), with no line terminators First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size3.9 kB (3927 bytes) MD529eeb0c8bf2eafbfef9fa83cbc3ec3c1 SHA1597044daf33b7a7b0767fe38190703c5b1d7e241 SHA25603aa83c9f5c1c6d5f793c24cd4bb1b5e46ff8bdfaeb5432ad4ceaadc7a988839 Certificate Info IssuerAmazon Subjectads.servenobid.com Fingerprint04:03:97:A8:76:2C:37:18:84:D5:67:84:2E:F1:24:92:24:C7:52:6F ValiditySat, 29 Apr 2023 00:00:00 GMT - Mon, 27 May 2024 23:59:59 GMT HTTP Headers `POST /adreq?cb=1433 HTTP/1.1 Host: ads.servenobid.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 826 Origin: https://playfootball.games DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Fri, 27 Oct 2023 08:47:59 GMT content-type: application/json access-control-allow-origin: https://playfootball.games amp-access-control-allow-source-origin: * access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin access-control-allow-credentials: true cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0 vary: accept-encoding content-encoding: gzip X-Firefox-Spdy: h2`

	POST elb.the-ozone-project.com/cdn-cgi/rum?	104.18.43.178	204 No Content	0 B
URL elb.the-ozone-project.com/cdn-cgi/rum? IP / ASN 104.18.43.178 #13335 CLOUDFLARENET Requested byhttps://elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480693&bidder=ozone Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerLet's Encrypt Subjectthe-ozone-project.com Fingerprint2D:47:CD:CC:B2:36:0D:F9:4B:82:17:E7:63:1D:CC:49:76:52:4E:F8 ValidityThu, 26 Oct 2023 08:49:30 GMT - Wed, 24 Jan 2024 08:49:29 GMT HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: elb.the-ozone-project.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/json Content-Length: 1715 Origin: https://elb.the-ozone-project.com DNT: 1 Connection: keep-alive Referer: https://elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480693&bidder=ozone Cookie: __cf_bm=zChs99CvjZqsRcLR9QT21d7udPFZIgwFKY3dfKzX444-1698396479-0-Af78IS5VyGHOwdkzP16zj165zyPOiCaL5Ys+vinjgDqU+rZxiMdqCqtyrVVa6QlQBn63WGKYiw/fZxXX4XyRZLY=; ozone_uid=2XL7Pi6y7yfnUsTs7qy91xUuobn Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 204 No Content date: Fri, 27 Oct 2023 08:48:03 GMT access-control-allow-origin: https://elb.the-ozone-project.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 81c9ad86df271c0a-OSL x-frame-options: DENY x-content-type-options: nosniff X-Firefox-Spdy: h2`

	GET js-sec.indexww.com/um/ixmatch.html	104.18.38.76	200 OK	1.4 kB
URL js-sec.indexww.com/um/ixmatch.html IP / ASN 104.18.38.76 #13335 CLOUDFLARENET Requested byhttps://playfootball.games/ Resource Info File typeHTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2920), with no line terminators First Seen2023-04-05 Last Seen2025-08-01 Times Seen1221 Size1.4 kB (1387 bytes) MD5653708ad1bbae1579927b6391b2a28f3 SHA14261e415c23dfd9d925f071737fb0d236f856f4e SHA25682d2dc44aae1eda52abc17afd30c6031b7175c13ee6955410164c66ae755adfb Certificate Info IssuerCloudflare, Inc. Subjectindexww.com FingerprintA5:6C:CA:55:92:12:0B:95:A4:C2:A2:18:20:23:E7:43:F6:CC:55:28 ValidityTue, 05 Sep 2023 00:00:00 GMT - Tue, 03 Sep 2024 23:59:59 GMT HTTP Headers GET /um/ixmatch.html HTTP/1.1 Host: js-sec.indexww.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Fri, 27 Oct 2023 08:48:03 GMT content-type: text/html; charset=UTF-8 last-modified: Mon, 25 Jul 2022 19:18:19 GMT p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI" cf-cache-status: HIT age: 601 expires: Fri, 27 Oct 2023 12:48:03 GMT cache-control: public, max-age=14400 vary: Accept-Encoding server: cloudflare cf-ray: 81c9ad82eddb5691-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	POST elb.the-ozone-project.com/cdn-cgi/rum?	104.18.43.178	204 No Content	0 B
URL elb.the-ozone-project.com/cdn-cgi/rum? IP / ASN 104.18.43.178 #13335 CLOUDFLARENET Requested byhttps://elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480693&bidder=ozone Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerLet's Encrypt Subjectthe-ozone-project.com Fingerprint2D:47:CD:CC:B2:36:0D:F9:4B:82:17:E7:63:1D:CC:49:76:52:4E:F8 ValidityThu, 26 Oct 2023 08:49:30 GMT - Wed, 24 Jan 2024 08:49:29 GMT HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: elb.the-ozone-project.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/json Content-Length: 1484 Origin: https://elb.the-ozone-project.com DNT: 1 Connection: keep-alive Referer: https://elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480616&bidder=ozone Cookie: __cf_bm=zChs99CvjZqsRcLR9QT21d7udPFZIgwFKY3dfKzX444-1698396479-0-Af78IS5VyGHOwdkzP16zj165zyPOiCaL5Ys+vinjgDqU+rZxiMdqCqtyrVVa6QlQBn63WGKYiw/fZxXX4XyRZLY=; ozone_uid=2XL7Pi6y7yfnUsTs7qy91xUuobn Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 204 No Content date: Fri, 27 Oct 2023 08:48:03 GMT access-control-allow-origin: https://elb.the-ozone-project.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 81c9ad874f5b1c0a-OSL x-frame-options: DENY x-content-type-options: nosniff X-Firefox-Spdy: h2`

	GET ads.servenobid.com/sync?pid=327&uid=&us_privacy=1YN-&gdpr=0	34.251.33.30	200 OK	0 B
URL ads.servenobid.com/sync?pid=327&uid=&us_privacy=1YN-&gdpr=0 IP / ASN 34.251.33.30 #16509 AMAZON-02 Requested byhttps://public.servenobid.com/sync.html Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerAmazon Subjectads.servenobid.com Fingerprint04:03:97:A8:76:2C:37:18:84:D5:67:84:2E:F1:24:92:24:C7:52:6F ValiditySat, 29 Apr 2023 00:00:00 GMT - Mon, 27 May 2024 23:59:59 GMT HTTP Headers `GET /sync?pid=327&uid=&us_privacy=1YN-&gdpr=0 HTTP/1.1 Host: ads.servenobid.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://public.servenobid.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Fri, 27 Oct 2023 08:48:03 GMT content-type: image/avif;charset=ISO-8859-1 content-length: 0 access-control-allow-origin: * amp-access-control-allow-source-origin: * access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin access-control-allow-credentials: true cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0 X-Firefox-Spdy: h2`

	ocsp.e2m02.amazontrust.com/	143.204.53.97		279 B
URL ocsp.e2m02.amazontrust.com/ IP / ASN 143.204.53.97 #16509 AMAZON-02 Requested byN/A Resource Info File typedata First Seen2023-10-27 Last Seen2023-10-27 Times Seen2 Size279 B (279 bytes) MD5aa45578a8439f67c8e65997e3508e088 SHA1e9d1b3da958e0ff4efed0c449816defc4d0362a1 SHA256daaec5d7906839f0ba3eb90f58aa338c21e985e531d6a104808051117233f14c HTTP Headers `POST / HTTP/1.1 Host: ocsp.e2m02.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 279 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=7200 Date: Fri, 27 Oct 2023 08:48:03 GMT Last-Modified: Fri, 27 Oct 2023 07:17:35 GMT Server: ECAcc (ska/F7A5) X-Cache: Miss from cloudfront Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: zax5LEJ56aXZeI2RyVXn7QX4NfYZU1scp-XkYxzO9v0shpApO2g-Cg== Age: 5428`

	ocsp.e2m02.amazontrust.com/	143.204.53.97		279 B
URL ocsp.e2m02.amazontrust.com/ IP / ASN 143.204.53.97 #16509 AMAZON-02 Requested byN/A Resource Info File typedata First Seen2023-10-27 Last Seen2023-10-27 Times Seen2 Size279 B (279 bytes) MD5aa45578a8439f67c8e65997e3508e088 SHA1e9d1b3da958e0ff4efed0c449816defc4d0362a1 SHA256daaec5d7906839f0ba3eb90f58aa338c21e985e531d6a104808051117233f14c HTTP Headers `POST / HTTP/1.1 Host: ocsp.e2m02.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 279 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=7200 Date: Fri, 27 Oct 2023 08:48:03 GMT Last-Modified: Fri, 27 Oct 2023 07:19:08 GMT Server: ECAcc (ska/F78B) X-Cache: Miss from cloudfront Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: o5JZmWabFsPG7lbvVgD9McmsX5lM7YEyC1ckt4NvMFpq4dcPppiZTw== Age: 5335`

	GET cs-server-s2s.yellowblue.io/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D352%26uid%3D%7BpartnerId%7D	52.205.208.143	204 No Content	0 B
URL cs-server-s2s.yellowblue.io/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D352%26uid%3D%7BpartnerId%7D IP / ASN 52.205.208.143 #14618 AMAZON-AES Requested byhttps://public.servenobid.com/sync.html Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerAmazon Subject.yellowblue.io Fingerprint3D:3E:1B:7D:71:C1:5F:9D:BE:80:02:9E:00:05:85:76:5F:49:94:15 ValidityTue, 18 Apr 2023 00:00:00 GMT - Thu, 16 May 2024 23:59:59 GMT HTTP Headers GET /sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D352%26uid%3D%7BpartnerId%7D HTTP/1.1 Host: cs-server-s2s.yellowblue.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://public.servenobid.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 204 No Content date: Fri, 27 Oct 2023 08:48:03 GMT x-envoy-upstream-service-time: 1 server: istio-envoy X-Firefox-Spdy: h2`

	ocsp.r2m01.amazontrust.com/	143.204.53.97		471 B
URL ocsp.r2m01.amazontrust.com/ IP / ASN 143.204.53.97 #16509 AMAZON-02 Requested byN/A Resource Info File typedata First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size471 B (471 bytes) MD597c40b4931aecadaefaf05acf7734f5f SHA193b1d4bec9bd39edd1ea3b38af7c4ffdb8f89503 SHA256caadd0811eb8370ce904d7bfe074ca7e8e31f53feba809c2d6a7fe432840b4f3 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=7200 Date: Fri, 27 Oct 2023 08:48:03 GMT Last-Modified: Fri, 27 Oct 2023 08:10:00 GMT Server: ECAcc (ska/F7B0) X-Cache: Miss from cloudfront Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: K_9vprJcpL8dflfsE9pmlxmicWtNISNBEU-5IkTFk6htrxEkbhE0pw== Age: 2283`

	GET cs-server-s2s.yellowblue.io/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D352%26uid%3D%7BpartnerId%7D	52.205.208.143	204 No Content	0 B
URL cs-server-s2s.yellowblue.io/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D352%26uid%3D%7BpartnerId%7D IP / ASN 52.205.208.143 #14618 AMAZON-AES Requested byhttps://public.servenobid.com/sync.html Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerAmazon Subject.yellowblue.io Fingerprint3D:3E:1B:7D:71:C1:5F:9D:BE:80:02:9E:00:05:85:76:5F:49:94:15 ValidityTue, 18 Apr 2023 00:00:00 GMT - Thu, 16 May 2024 23:59:59 GMT HTTP Headers GET /sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D352%26uid%3D%7BpartnerId%7D HTTP/1.1 Host: cs-server-s2s.yellowblue.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://public.servenobid.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 204 No Content date: Fri, 27 Oct 2023 08:48:03 GMT x-envoy-upstream-service-time: 3 server: istio-envoy X-Firefox-Spdy: h2`

	POST elb.the-ozone-project.com/cookie_sync	104.18.43.178	200 OK	1.3 kB
URL elb.the-ozone-project.com/cookie_sync IP / ASN 104.18.43.178 #13335 CLOUDFLARENET Requested byhttps://elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480693&bidder=ozone Resource Info File typeJSON data\012- , ASCII text, with very long lines (7049) First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size1.3 kB (1328 bytes) MD571740648611d2f99638ae244c2de9412 SHA1e69737e7030134969df93612b4d8483b3e8dc827 SHA25610ffcf98afc4b190134305a7e2654eb18293fa8a328a8b7f03c9727b37492d64 Certificate Info IssuerLet's Encrypt Subjectthe-ozone-project.com Fingerprint2D:47:CD:CC:B2:36:0D:F9:4B:82:17:E7:63:1D:CC:49:76:52:4E:F8 ValidityThu, 26 Oct 2023 08:49:30 GMT - Wed, 24 Jan 2024 08:49:29 GMT HTTP Headers POST /cookie_sync HTTP/1.1 Host: elb.the-ozone-project.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 113 Origin: https://elb.the-ozone-project.com DNT: 1 Connection: keep-alive Referer: https://elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480693&bidder=ozone Cookie: __cf_bm=zChs99CvjZqsRcLR9QT21d7udPFZIgwFKY3dfKzX444-1698396479-0-Af78IS5VyGHOwdkzP16zj165zyPOiCaL5Ys+vinjgDqU+rZxiMdqCqtyrVVa6QlQBn63WGKYiw/fZxXX4XyRZLY= Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Fri, 27 Oct 2023 08:48:03 GMT content-type: text/plain; charset=utf-8 cf-ray: 81c9ad84de451c0a-OSL cf-cache-status: DYNAMIC access-control-allow-origin: https://elb.the-ozone-project.com cache-control: no-cache, no-store, must-revalidate expires: 0 vary: Origin, Accept-Encoding access-control-allow-credentials: true pragma: no-cache set-cookie: AWSALBTG=K9tpMvbLGlxjUtyruU91fX57doSdaaJDvY74x2CEJsEoKyIafXmIHboO68+tbJTOM8VRx9mof5CVKb5Sv8BURElByXHJLxChRl5OUDG53vpFInDvhqM1oxTBudehyL0UuZ0rQOUjv1IY9rgKnnH8/CdcEAW64pU3W4XN21DNaimL7+nDz8I=; Expires=Fri, 03 Nov 2023 08:48:03 GMT; Path=/ AWSALBTGCORS=K9tpMvbLGlxjUtyruU91fX57doSdaaJDvY74x2CEJsEoKyIafXmIHboO68+tbJTOM8VRx9mof5CVKb5Sv8BURElByXHJLxChRl5OUDG53vpFInDvhqM1oxTBudehyL0UuZ0rQOUjv1IY9rgKnnH8/CdcEAW64pU3W4XN21DNaimL7+nDz8I=; Expires=Fri, 03 Nov 2023 08:48:03 GMT; Path=/; SameSite=None ozone_uid=2XL7Pl8PBLEvbAH8MxI3Ox7GpNx; Path=/; Domain=the-ozone-project.com; Expires=Thu, 25 Jan 2024 08:48:03 GMT; Max-Age=7776000; Secure; SameSite=None server: cloudflare content-encoding: gzip X-Firefox-Spdy: h2

	ocsp.r2m03.amazontrust.com/	143.204.53.97		471 B
URL ocsp.r2m03.amazontrust.com/ IP / ASN 143.204.53.97 #16509 AMAZON-02 Requested byN/A Resource Info File typedata First Seen2023-10-27 Last Seen2023-10-27 Times Seen2 Size471 B (471 bytes) MD505b6c66cca5856514c81e3631806fc96 SHA13046233f0e6f1aa1b13716f11cc38759602b6261 SHA2563d91333d30a5f878737d24e94e8e27105ae20731d7c4b0ff7bb1d548c6df77dc HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m03.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=7200 Date: Fri, 27 Oct 2023 08:48:04 GMT Last-Modified: Fri, 27 Oct 2023 07:29:09 GMT Server: ECAcc (ska/F73A) X-Cache: Miss from cloudfront Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: RYlWkK2uxILcE44fj9qjUV2yTFI9q4u-E8FnLm-ZSnLt39ycn4d8tQ== Age: 4736`

	GET elb.the-ozone-project.com/setuid?bidder=amx&gdpr=0&gdpr_consent=&us_privacy=pbs-ozone&uid=	104.18.43.178	200 OK	0 B
URL elb.the-ozone-project.com/setuid?bidder=amx&gdpr=0&gdpr_consent=&us_privacy=pbs-ozone&uid= IP / ASN 104.18.43.178 #13335 CLOUDFLARENET Requested byhttps://prebid.a-mo.net/isyn?gdpr=0&gdpr_consent=&us_privacy=pbs-ozone&s=pbs&cb=https%3A%2F%2Felb.the-ozone-project.com%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26us_privacy%3Dpbs-ozone%26uid%3D Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerLet's Encrypt Subjectthe-ozone-project.com Fingerprint2D:47:CD:CC:B2:36:0D:F9:4B:82:17:E7:63:1D:CC:49:76:52:4E:F8 ValidityThu, 26 Oct 2023 08:49:30 GMT - Wed, 24 Jan 2024 08:49:29 GMT HTTP Headers GET /setuid?bidder=amx&gdpr=0&gdpr_consent=&us_privacy=pbs-ozone&uid= HTTP/1.1 Host: elb.the-ozone-project.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://prebid.a-mo.net/ Cookie: __cf_bm=zChs99CvjZqsRcLR9QT21d7udPFZIgwFKY3dfKzX444-1698396479-0-Af78IS5VyGHOwdkzP16zj165zyPOiCaL5Ys+vinjgDqU+rZxiMdqCqtyrVVa6QlQBn63WGKYiw/fZxXX4XyRZLY=; ozone_uid=2XL7Pi6y7yfnUsTs7qy91xUuobn Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Fri, 27 Oct 2023 08:48:04 GMT content-length: 0 cf-ray: 81c9ad89c87a1c0a-OSL cf-cache-status: DYNAMIC cache-control: no-cache, no-store, must-revalidate expires: 0 vary: Origin, Accept-Encoding pragma: no-cache set-cookie: AWSALBTG=LM3lv8kLDLV4IhIW8KG9vSwM/aGxLUynKsmWIgEmVT2NjAl5LORCvSzLngpBcv4yZ4hoaVJjJtL6v1os+ZzDhvzrnvNNiZzemYOan8AlWsNaSEwXtc2aIfXd3vA5O/i/FhMa8WVomRB2to8Sa74Psdx//VgrpDYL0ZbtdNt/XDHocp+5miA=; Expires=Fri, 03 Nov 2023 08:48:04 GMT; Path=/ AWSALBTGCORS=LM3lv8kLDLV4IhIW8KG9vSwM/aGxLUynKsmWIgEmVT2NjAl5LORCvSzLngpBcv4yZ4hoaVJjJtL6v1os+ZzDhvzrnvNNiZzemYOan8AlWsNaSEwXtc2aIfXd3vA5O/i/FhMa8WVomRB2to8Sa74Psdx//VgrpDYL0ZbtdNt/XDHocp+5miA=; Expires=Fri, 03 Nov 2023 08:48:04 GMT; Path=/; SameSite=None uids=eyJiZGF5IjoiMjAyMy0xMC0yN1QwODo0ODowNC4xNTg5MDM4OTVaIn0=; Domain=the-ozone-project.com; Expires=Thu, 25 Jan 2024 08:48:04 GMT; Secure; SameSite=None server: cloudflare X-Firefox-Spdy: h2

	ocsp.r2m03.amazontrust.com/	143.204.53.97		471 B
URL ocsp.r2m03.amazontrust.com/ IP / ASN 143.204.53.97 #16509 AMAZON-02 Requested byN/A Resource Info File typedata First Seen2023-10-27 Last Seen2023-10-27 Times Seen2 Size471 B (471 bytes) MD505b6c66cca5856514c81e3631806fc96 SHA13046233f0e6f1aa1b13716f11cc38759602b6261 SHA2563d91333d30a5f878737d24e94e8e27105ae20731d7c4b0ff7bb1d548c6df77dc HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m03.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=7200 Date: Fri, 27 Oct 2023 08:48:04 GMT Last-Modified: Fri, 27 Oct 2023 07:28:44 GMT Server: ECAcc (ska/F6E3) X-Cache: Miss from cloudfront Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: rDqE6RV_M5e-OXQLpDmwjfrYFkX-SzML6D-VkU-DDEQw11nugrMJDQ== Age: 4760`

	GET assets.a-mo.net/js/n1.js	104.19.159.19	200 OK	32 B
URL assets.a-mo.net/js/n1.js IP / ASN 104.19.159.19 #13335 CLOUDFLARENET Requested byhttps://prebid.a-mo.net/isyn?gdpr=0&gdpr_consent=&us_privacy=pbs-ozone&s=pbs&cb=https%3A%2F%2Felb.the-ozone-project.com%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26us_privacy%3Dpbs-ozone%26uid%3D Resource Info File typeASCII text First Seen2023-08-28 Last Seen2023-11-12 Times Seen45 Size32 B (32 bytes) MD5a8b2f555a0227aec5e980e5ec98f6d15 SHA1f7e596d68dfc9cea4613818fe49de98c98328669 SHA256f149423f67ceab2e28ca0b092dc80f612b3ed93a067b80641bf8c37f5eee06d5 Certificate Info IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint16:14:03:EC:C3:09:49:04:A4:62:B9:B7:04:2C:DB:FD:F6:B2:C7:57 ValidityFri, 10 Mar 2023 00:00:00 GMT - Sat, 09 Mar 2024 23:59:59 GMT HTTP Headers `GET /js/n1.js HTTP/1.1 Host: assets.a-mo.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://prebid.a-mo.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 27 Oct 2023 08:48:04 GMT content-type: text/javascript content-length: 32 last-modified: Thu, 17 Aug 2023 15:48:19 GMT etag: "a8b2f555a0227aec5e980e5ec98f6d15" x-amz-server-side-encryption: AES256 x-cache: Hit from cloudfront via: 1.1 b34d5d8e5954d0b7b46d5f0eb534c166.cloudfront.net (CloudFront) x-amz-cf-pop: ARN56-P1 x-amz-cf-id: c4E1Re6VxUoZbiKyeeXjmr--nNqtwLjq5BAQWVB-UTdgAG2FavdEsw== cf-cache-status: HIT age: 398 expires: Fri, 27 Oct 2023 09:48:04 GMT cache-control: public, max-age=3600 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 81c9ad8a49fd56c4-OSL X-Firefox-Spdy: h2

	GET ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID	54.87.176.240	302 Found	0 B
URL ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID IP / ASN 54.87.176.240 #14618 AMAZON-AES Requested byhttps://public.servenobid.com/sync.html Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerAmazon Subjectssp.disqus.com Fingerprint96:FD:73:B5:E9:EF:6E:2E:4D:32:F8:DA:60:AD:74:67:56:BA:B7:89 ValiditySat, 21 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT HTTP Headers `GET /redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID HTTP/1.1 Host: ssp.disqus.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://public.servenobid.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 302 Found date: Fri, 27 Oct 2023 08:48:04 GMT content-length: 0 location: https://ads.servenobid.com/sync?pid=346&uid=ua-c488b7f3-3b4d-3a63-840b-c0fe195965b1 cache-control: no-store pragma: no-cache expires: 0 set-cookie: zeta-ssp-user-id=ua-c488b7f3-3b4d-3a63-840b-c0fe195965b1; Max-Age=31536000; Expires=Sat, 26 Oct 2024 08:48:04 GMT; Path=/; Domain=disqus.com; Secure; SameSite=None X-Firefox-Spdy: h2`

	GET ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID	54.87.176.240	302 Found	0 B
URL ssp.disqus.com/redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID IP / ASN 54.87.176.240 #14618 AMAZON-AES Requested byhttps://public.servenobid.com/sync.html Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerAmazon Subjectssp.disqus.com Fingerprint96:FD:73:B5:E9:EF:6E:2E:4D:32:F8:DA:60:AD:74:67:56:BA:B7:89 ValiditySat, 21 Oct 2023 00:00:00 GMT - Sun, 17 Nov 2024 23:59:59 GMT HTTP Headers `GET /redirectuser?r=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D346%26uid%3DBUYERUID HTTP/1.1 Host: ssp.disqus.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://public.servenobid.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 302 Found date: Fri, 27 Oct 2023 08:48:04 GMT content-length: 0 location: https://ads.servenobid.com/sync?pid=346&uid=ua-c488b7f3-3b4d-3a63-840b-c0fe195965b1 cache-control: no-store pragma: no-cache expires: 0 set-cookie: zeta-ssp-user-id=ua-c488b7f3-3b4d-3a63-840b-c0fe195965b1; Max-Age=31536000; Expires=Sat, 26 Oct 2024 08:48:04 GMT; Path=/; Domain=disqus.com; Secure; SameSite=None X-Firefox-Spdy: h2`

	GET ads.servenobid.com/sync?pid=346&uid=ua-c488b7f3-3b4d-3a63-840b-c0fe195965b1	34.251.33.30	200 OK	0 B
URL ads.servenobid.com/sync?pid=346&uid=ua-c488b7f3-3b4d-3a63-840b-c0fe195965b1 IP / ASN 34.251.33.30 #16509 AMAZON-02 Requested byhttps://public.servenobid.com/sync.html Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerAmazon Subjectads.servenobid.com Fingerprint04:03:97:A8:76:2C:37:18:84:D5:67:84:2E:F1:24:92:24:C7:52:6F ValiditySat, 29 Apr 2023 00:00:00 GMT - Mon, 27 May 2024 23:59:59 GMT HTTP Headers `GET /sync?pid=346&uid=ua-c488b7f3-3b4d-3a63-840b-c0fe195965b1 HTTP/1.1 Host: ads.servenobid.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://public.servenobid.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Fri, 27 Oct 2023 08:48:04 GMT content-type: image/avif;charset=ISO-8859-1 content-length: 0 set-cookie: pid_346=ua-c488b7f3-3b4d-3a63-840b-c0fe195965b1; domain=servenobid.com; SameSite=None; Expires=Fri, 03 Nov 2023 08:48:04 GMT; secure access-control-allow-origin: * amp-access-control-allow-source-origin: * access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin access-control-allow-credentials: true cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0 X-Firefox-Spdy: h2

	GET ads.servenobid.com/sync?pid=346&uid=ua-c488b7f3-3b4d-3a63-840b-c0fe195965b1	34.251.33.30	200 OK	0 B
URL ads.servenobid.com/sync?pid=346&uid=ua-c488b7f3-3b4d-3a63-840b-c0fe195965b1 IP / ASN 34.251.33.30 #16509 AMAZON-02 Requested byhttps://public.servenobid.com/sync.html Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerAmazon Subjectads.servenobid.com Fingerprint04:03:97:A8:76:2C:37:18:84:D5:67:84:2E:F1:24:92:24:C7:52:6F ValiditySat, 29 Apr 2023 00:00:00 GMT - Mon, 27 May 2024 23:59:59 GMT HTTP Headers `GET /sync?pid=346&uid=ua-c488b7f3-3b4d-3a63-840b-c0fe195965b1 HTTP/1.1 Host: ads.servenobid.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://public.servenobid.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Fri, 27 Oct 2023 08:48:04 GMT content-type: image/avif;charset=ISO-8859-1 content-length: 0 set-cookie: pid_346=ua-c488b7f3-3b4d-3a63-840b-c0fe195965b1; domain=servenobid.com; SameSite=None; Expires=Fri, 03 Nov 2023 08:48:04 GMT; secure access-control-allow-origin: * amp-access-control-allow-source-origin: * access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin access-control-allow-credentials: true cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0 X-Firefox-Spdy: h2

	GET ads.servenobid.com/sync?pid=327&uid=&us_privacy=1YN-&gdpr=0	34.251.33.30	200 OK	0 B
URL ads.servenobid.com/sync?pid=327&uid=&us_privacy=1YN-&gdpr=0 IP / ASN 34.251.33.30 #16509 AMAZON-02 Requested byhttps://public.servenobid.com/sync.html Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerAmazon Subjectads.servenobid.com Fingerprint04:03:97:A8:76:2C:37:18:84:D5:67:84:2E:F1:24:92:24:C7:52:6F ValiditySat, 29 Apr 2023 00:00:00 GMT - Mon, 27 May 2024 23:59:59 GMT HTTP Headers `GET /sync?pid=327&uid=&us_privacy=1YN-&gdpr=0 HTTP/1.1 Host: ads.servenobid.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://public.servenobid.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK date: Fri, 27 Oct 2023 08:48:06 GMT content-type: image/avif;charset=ISO-8859-1 content-length: 0 access-control-allow-origin: * amp-access-control-allow-source-origin: * access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin access-control-allow-credentials: true cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0 X-Firefox-Spdy: h2`

	POST elb.the-ozone-project.com/cdn-cgi/rum?	104.18.43.178	204 No Content	0 B
URL elb.the-ozone-project.com/cdn-cgi/rum? IP / ASN 104.18.43.178 #13335 CLOUDFLARENET Requested byhttps://elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480693&bidder=ozone Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerLet's Encrypt Subjectthe-ozone-project.com Fingerprint2D:47:CD:CC:B2:36:0D:F9:4B:82:17:E7:63:1D:CC:49:76:52:4E:F8 ValidityThu, 26 Oct 2023 08:49:30 GMT - Wed, 24 Jan 2024 08:49:29 GMT HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: elb.the-ozone-project.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 477 Origin: https://elb.the-ozone-project.com DNT: 1 Connection: keep-alive Referer: https://elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480693&bidder=ozone Cookie: __cf_bm=zChs99CvjZqsRcLR9QT21d7udPFZIgwFKY3dfKzX444-1698396479-0-Af78IS5VyGHOwdkzP16zj165zyPOiCaL5Ys+vinjgDqU+rZxiMdqCqtyrVVa6QlQBn63WGKYiw/fZxXX4XyRZLY=; ozone_uid=2XL7Pi6y7yfnUsTs7qy91xUuobn; uids=eyJiZGF5IjoiMjAyMy0xMC0yN1QwODo0ODowNC4xNTg5MDM4OTVaIn0= Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 204 No Content date: Fri, 27 Oct 2023 08:48:14 GMT access-control-allow-origin: https://elb.the-ozone-project.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 81c9adc98f511c0a-OSL x-frame-options: DENY x-content-type-options: nosniff X-Firefox-Spdy: h2`

	POST elb.the-ozone-project.com/cdn-cgi/rum?	104.18.43.178	204 No Content	0 B
URL elb.the-ozone-project.com/cdn-cgi/rum? IP / ASN 104.18.43.178 #13335 CLOUDFLARENET Requested byhttps://elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480693&bidder=ozone Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerLet's Encrypt Subjectthe-ozone-project.com Fingerprint2D:47:CD:CC:B2:36:0D:F9:4B:82:17:E7:63:1D:CC:49:76:52:4E:F8 ValidityThu, 26 Oct 2023 08:49:30 GMT - Wed, 24 Jan 2024 08:49:29 GMT HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: elb.the-ozone-project.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 477 Origin: https://elb.the-ozone-project.com DNT: 1 Connection: keep-alive Referer: https://elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480616&bidder=ozone Cookie: __cf_bm=zChs99CvjZqsRcLR9QT21d7udPFZIgwFKY3dfKzX444-1698396479-0-Af78IS5VyGHOwdkzP16zj165zyPOiCaL5Ys+vinjgDqU+rZxiMdqCqtyrVVa6QlQBn63WGKYiw/fZxXX4XyRZLY=; ozone_uid=2XL7Pi6y7yfnUsTs7qy91xUuobn; uids=eyJiZGF5IjoiMjAyMy0xMC0yN1QwODo0ODowNC4xNTg5MDM4OTVaIn0= Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 204 No Content date: Fri, 27 Oct 2023 08:48:14 GMT access-control-allow-origin: https://elb.the-ozone-project.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 81c9adc98f531c0a-OSL x-frame-options: DENY x-content-type-options: nosniff X-Firefox-Spdy: h2`

	GET hb.vntsm.com/v2/live/627d0f4def45bb56a68e11af.enc	194.242.11.186	200 OK	108 kB
URL hb.vntsm.com/v2/live/627d0f4def45bb56a68e11af.enc IP / ASN 194.242.11.186 #34989 ServeTheWorld AS Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with very long lines (65536), with no line terminators First Seen2023-10-21 Last Seen2023-10-27 Times Seen2 Size108 kB (107684 bytes) MD56176468f0f1f2a97b0de26499b3c0b63 SHA135df213e66cbc6878f1400501a64fd4115cc7115 SHA256dc4bbb0185c7082797cea1a1d8a81ba8ea5b56be0c62224ff666bfa5b64767ed Certificate Info IssuerSectigo Limited Subject.vntsm.com Fingerprint1D:6F:27:A5:F3:3F:6A:90:6C:66:D2:FD:5A:74:FA:87:86:A8:7F:23 ValidityFri, 10 Mar 2023 00:00:00 GMT - Mon, 08 Apr 2024 23:59:59 GMT HTTP Headers `GET /v2/live/627d0f4def45bb56a68e11af.enc HTTP/1.1 Host: hb.vntsm.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://playfootball.games DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 27 Oct 2023 08:47:58 GMT content-type: text/plain vary: Accept-Encoding server: BunnyCDN-NO1-830 cdn-pullzone: 131999 cdn-uid: 5d6cd18c-1b61-4922-947b-91a6b9ea7b00 cdn-requestcountrycode: NO access-control-allow-origin: * access-control-allow-headers: cdn-requestcountrycode,Content-Type,x-bl,ref_url access-control-expose-headers: x-geo-subdivision,X-Geo,cdn-requestcountrycode,Content-Type,x-bl access-control-allow-credentials: true access-control-allow-methods: GET, OPTIONS cache-control: public, max-age=86400 etag: W/"6176468f0f1f2a97b0de26499b3c0b63" last-modified: Wed, 11 Oct 2023 15:58:59 GMT x-amz-server-side-encryption: AES256 cdn-proxyver: 1.04 cdn-requestpullsuccess: True cdn-requestpullcode: 200 cdn-cachedat: 10/26/2023 11:31:13 cdn-edgestorageid: 830 x-bl: 0 cdn-status: 200 cdn-requestid: f56a0593cc5d9f72d7d71793216b6e71 cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	GET ads.avct.cloud/getuid?&gdpr=0&gdpr_consent=&us_privacy=pbs-ozone&url=https%3A%2F%2Felb.the-ozone-project.com%%3Fbidder%3Davocet%26gdpr%3D0%26gdpr_consent%3D%26uid%3D%7B%7BUUID%7D%7D	52.209.125.101	503 Service Unavailable: Back-end server is at capacity	0 B
URL ads.avct.cloud/getuid?&gdpr=0&gdpr_consent=&us_privacy=pbs-ozone&url=https%3A%2F%2Felb.the-ozone-project.com%%3Fbidder%3Davocet%26gdpr%3D0%26gdpr_consent%3D%26uid%3D%7B%7BUUID%7D%7D IP / ASN 52.209.125.101 #16509 AMAZON-02 Requested byhttps://elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480693&bidder=ozone Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerAmazon Subjectads-eu.avct.cloud Fingerprint5F:8B:26:A0:C0:8A:9C:79:65:D9:84:75:18:9E:5A:40:71:A5:45:1F ValidityThu, 09 Feb 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT HTTP Headers GET /getuid?&gdpr=0&gdpr_consent=&us_privacy=pbs-ozone&url=https%3A%2F%2Felb.the-ozone-project.com%%3Fbidder%3Davocet%26gdpr%3D0%26gdpr_consent%3D%26uid%3D%7B%7BUUID%7D%7D HTTP/1.1 Host: ads.avct.cloud User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://elb.the-ozone-project.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 503 Service Unavailable: Back-end server is at capacity Content-Length: 0 Connection: keep-alive`

	GET public.servenobid.com/sync.html	143.204.55.62	200 OK	9.1 kB
URL public.servenobid.com/sync.html IP / ASN 143.204.55.62 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (9363), with no line terminators First Seen2023-10-06 Last Seen2024-08-21 Times Seen230 Size9.1 kB (9086 bytes) MD560f941a57c9611ce100b3f53486848f8 SHA1efa4c6e15165035e2e25334bf52c94207139b6b8 SHA25669b1906e80a05cb117c3d6bc45a98376c19f498a62c8d208a3dbba9d4702f990 Certificate Info IssuerAmazon Subject.servenobid.com FingerprintEC:DE:0D:FF:C6:03:2E:45:D6:AC:38:06:CE:E8:9B:7E:AC:05:E0:8B ValidityTue, 21 Feb 2023 00:00:00 GMT - Mon, 05 Feb 2024 23:59:59 GMT HTTP Headers GET /sync.html HTTP/1.1 Host: public.servenobid.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/html last-modified: Mon, 02 Oct 2023 23:54:30 GMT x-amz-server-side-encryption: AES256 x-amz-meta-codebuild-content-sha256: 8aa4841af9e8588faa6f0e126d94acab1f39eb0115dfa16eac2daccf149690d0 x-amz-meta-codebuild-buildarn: arn:aws:codebuild:us-east-1:559734745816:build/adserver-public-prod:58584356-ee8f-4de0-abcc-b50f847fba2c x-amz-meta-codebuild-content-md5: d3f9c0952d74faa30fada14e06b377b0 server: AmazonS3 content-encoding: gzip date: Fri, 27 Oct 2023 05:27:26 GMT cache-control: max-age=86400 etag: W/"ea81456e0a6e1fca0e7a864b1d3121aa" x-cache: Hit from cloudfront via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: z2VklYtyPCuQmTJob2Tl9zcdrxrT2b-yFqL_PxqvaQms5npgxvhmNA== age: 12054 vary: Accept-Encoding, Origin X-Firefox-Spdy: h2

	GET public.servenobid.com/sync.html	143.204.55.62	200 OK	9.1 kB
URL public.servenobid.com/sync.html IP / ASN 143.204.55.62 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (9363), with no line terminators First Seen2023-10-06 Last Seen2024-08-21 Times Seen230 Size9.1 kB (9086 bytes) MD560f941a57c9611ce100b3f53486848f8 SHA1efa4c6e15165035e2e25334bf52c94207139b6b8 SHA25669b1906e80a05cb117c3d6bc45a98376c19f498a62c8d208a3dbba9d4702f990 Certificate Info IssuerAmazon Subject.servenobid.com FingerprintEC:DE:0D:FF:C6:03:2E:45:D6:AC:38:06:CE:E8:9B:7E:AC:05:E0:8B ValidityTue, 21 Feb 2023 00:00:00 GMT - Mon, 05 Feb 2024 23:59:59 GMT HTTP Headers GET /sync.html HTTP/1.1 Host: public.servenobid.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/html last-modified: Mon, 02 Oct 2023 23:54:30 GMT x-amz-server-side-encryption: AES256 x-amz-meta-codebuild-content-sha256: 8aa4841af9e8588faa6f0e126d94acab1f39eb0115dfa16eac2daccf149690d0 x-amz-meta-codebuild-buildarn: arn:aws:codebuild:us-east-1:559734745816:build/adserver-public-prod:58584356-ee8f-4de0-abcc-b50f847fba2c x-amz-meta-codebuild-content-md5: d3f9c0952d74faa30fada14e06b377b0 server: AmazonS3 content-encoding: gzip date: Fri, 27 Oct 2023 05:27:26 GMT cache-control: max-age=86400 etag: W/"ea81456e0a6e1fca0e7a864b1d3121aa" x-cache: Hit from cloudfront via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: ppHGzdVOn4UVHDzY6UORf9UNhP6Ulz0rin83gQJvq1WNLXJzGZboDQ== age: 12054 vary: Accept-Encoding, Origin X-Firefox-Spdy: h2

	POST mp.4dex.io/prebid	172.64.153.78	200 OK	60 B
URL mp.4dex.io/prebid IP / ASN 172.64.153.78 #13335 CLOUDFLARENET Requested byhttps://playfootball.games/ Resource Info File typetroff or preprocessor input, ASCII text, with no line terminators First Seen2023-07-15 Last Seen2025-03-31 Times Seen645 Size60 B (60 bytes) MD5a1884f600d7fc4b248d48992e08cbcc9 SHA10c1d2c3753339249da9c28a4941ad7271fda0bef SHA25624a9b895cda57aea260bce4c6ef89964ee518f931a019d068f5dfb0500244f18 Certificate Info IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint02:E1:92:C5:72:6D:E0:64:4A:46:05:69:81:98:7C:43:13:E7:15:7A ValidityTue, 01 Aug 2023 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT HTTP Headers `POST /prebid HTTP/1.1 Host: mp.4dex.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 2645 Origin: https://playfootball.games DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 27 Oct 2023 08:47:59 GMT content-type: application/json; charset=utf-8 access-control-allow-credentials: true access-control-allow-origin: https://playfootball.games cache-control: no-cache, no-store, must-revalidate expires: 0 pragma: no-cache vary: Origin, Accept-Encoding x-err: Shapings: no adunits with size and seat and mapping x-version: 3.0.0-gcp-ams via: 1.1 google cf-cache-status: DYNAMIC server: cloudflare cf-ray: 81c9ad6e887256b5-OSL content-encoding: gzip X-Firefox-Spdy: h2

	GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D	145.40.97.67	302 Found	0 B
URL prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D IP / ASN 145.40.97.67 #54825 PACKET Requested byhttps://public.servenobid.com/sync.html Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerLet's Encrypt Subject.a-mo.net Fingerprint5D:67:7D:2D:E3:95:FC:C1:C1:A0:21:79:01:E7:63:2B:B9:29:29:9D ValidityFri, 06 Oct 2023 13:41:28 GMT - Thu, 04 Jan 2024 13:41:27 GMT HTTP Headers GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D HTTP/1.1 Host: prebid.a-mo.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://public.servenobid.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 302 Found cache-control: max-age=0, private, must-revalidate content-length: 0 date: Fri, 27 Oct 2023 08:48:03 GMT location: https://ads.servenobid.com/sync?pid=327&uid=&us_privacy=1YN-&gdpr=0 server: envoy x-envoy-upstream-service-time: 0 X-Firefox-Spdy: h2`

	GET id.hadron.ad.gt/api/v1/pbhid?partner_id=288&_it=prebid	172.67.23.234	200 OK	227 B
URL id.hadron.ad.gt/api/v1/pbhid?partner_id=288&_it=prebid IP / ASN 172.67.23.234 #13335 CLOUDFLARENET Requested byhttps://playfootball.games/ Resource Info File typetroff or preprocessor input, ASCII text, with no line terminators First Seen2023-10-18 Last Seen2024-12-02 Times Seen303 Size227 B (227 bytes) MD54dd3f270344755618d1674b24f52486b SHA19d9d03713efb513ba76ac99122158e815fdb4e94 SHA25621ac92cee55c589c163ed1c27c95697216ea20270445035ea6991054d27828de Certificate Info IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintB5:9E:06:D8:8A:F4:6D:CC:E3:9D:4E:09:8B:28:E7:06:4F:08:42:44 ValidityTue, 28 Feb 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT HTTP Headers `GET /api/v1/pbhid?partner_id=288&_it=prebid HTTP/1.1 Host: id.hadron.ad.gt User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Origin: https://playfootball.games DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Fri, 27 Oct 2023 08:48:03 GMT content-type: application/json access-control-allow-origin: * allow: POST, OPTIONS, GET access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept vary: Accept-Encoding server: cloudflare cf-ray: 81c9ad830f95069b-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	GET hb.vntsm.com/ab/live/7471/ad-manager.min.js	194.242.11.186	200 OK	1.0 MB
URL hb.vntsm.com/ab/live/7471/ad-manager.min.js IP / ASN 194.242.11.186 #34989 ServeTheWorld AS Requested byhttps://playfootball.games/ Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size1.0 MB (1008298 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerSectigo Limited Subject.vntsm.com Fingerprint1D:6F:27:A5:F3:3F:6A:90:6C:66:D2:FD:5A:74:FA:87:86:A8:7F:23 ValidityFri, 10 Mar 2023 00:00:00 GMT - Mon, 08 Apr 2024 23:59:59 GMT HTTP Headers `GET /ab/live/7471/ad-manager.min.js HTTP/1.1 Host: hb.vntsm.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://playfootball.games/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 27 Oct 2023 08:47:57 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 131999 cdn-uid: 5d6cd18c-1b61-4922-947b-91a6b9ea7b00 cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-allow-headers: cdn-requestcountrycode,Content-Type,x-bl,ref_url access-control-expose-headers: x-geo-subdivision,X-Geo,cdn-requestcountrycode,Content-Type,x-bl access-control-allow-methods: GET, OPTIONS cache-control: public, max-age=86400 etag: W/"6b10da3a8401da1470bd5b30abf2a8ff" last-modified: Mon, 17 Jul 2023 16:47:08 GMT x-amz-server-side-encryption: AES256 cdn-proxyver: 1.04 cdn-requestpullsuccess: True cdn-requestpullcode: 200 cdn-cachedat: 10/26/2023 11:31:12 cdn-edgestorageid: 830 x-bl: 0 cdn-status: 200 cdn-requestid: de903329ea7bff514f1eaecf6371ec57 cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	GET cs-rtb.minutemedia-prebid.com/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D348%26uid%3D%7BpartnerId%7D	143.204.55.36	204 No Content	0 B
URL cs-rtb.minutemedia-prebid.com/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D348%26uid%3D%7BpartnerId%7D IP / ASN 143.204.55.36 #16509 AMAZON-02 Requested byhttps://public.servenobid.com/sync.html Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerAmazon Subject.minutemedia-prebid.com Fingerprint0F:2C:DE:53:B9:0F:30:1F:0D:6E:F1:0B:A6:C7:1C:E2:F2:BB:39:FD ValidityMon, 01 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT HTTP Headers GET /sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D348%26uid%3D%7BpartnerId%7D HTTP/1.1 Host: cs-rtb.minutemedia-prebid.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://public.servenobid.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 204 No Content date: Fri, 27 Oct 2023 08:48:03 GMT x-envoy-upstream-service-time: 1 server: istio-envoy x-cache: Miss from cloudfront via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 0Ul94ZPi34iOaV6WNq_SdcXwbr3tLgwiV5kVflnd6WPX_qwOV-g3nA== X-Firefox-Spdy: h2`

	GET cs-rtb.minutemedia-prebid.com/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D348%26uid%3D%7BpartnerId%7D	143.204.55.36	204 No Content	0 B
URL cs-rtb.minutemedia-prebid.com/sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D348%26uid%3D%7BpartnerId%7D IP / ASN 143.204.55.36 #16509 AMAZON-02 Requested byhttps://public.servenobid.com/sync.html Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerAmazon Subject.minutemedia-prebid.com Fingerprint0F:2C:DE:53:B9:0F:30:1F:0D:6E:F1:0B:A6:C7:1C:E2:F2:BB:39:FD ValidityMon, 01 May 2023 00:00:00 GMT - Wed, 29 May 2024 23:59:59 GMT HTTP Headers GET /sync-iframe?gdpr=0&gdpr_consent=&us_privacy=1YN-&&redirect=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D348%26uid%3D%7BpartnerId%7D HTTP/1.1 Host: cs-rtb.minutemedia-prebid.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://public.servenobid.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 204 No Content date: Fri, 27 Oct 2023 08:48:03 GMT x-envoy-upstream-service-time: 0 server: istio-envoy x-cache: Miss from cloudfront via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: RWG7FRiBZDUyClNlMTHX-pw922wvNmJyHk4lxe6ytuc1xNhQlmgdlA== X-Firefox-Spdy: h2`

	GET prebid.a-mo.net/isyn?gdpr=0&gdpr_consent=&us_privacy=pbs-ozone&s=pbs&cb=https%3A%2F%2Felb.the-ozone-project.com%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26us_privacy%3Dpbs-ozone%26uid%3D	145.40.97.67	200 OK	168 B
URL prebid.a-mo.net/isyn?gdpr=0&gdpr_consent=&us_privacy=pbs-ozone&s=pbs&cb=https%3A%2F%2Felb.the-ozone-project.com%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26us_privacy%3Dpbs-ozone%26uid%3D IP / ASN 145.40.97.67 #54825 PACKET Requested byhttps://elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480616&bidder=ozone Resource Info File typeHTML document, ASCII text, with no line terminators First Seen2023-10-21 Last Seen2023-12-03 Times Seen4 Size168 B (168 bytes) MD57dc5387ff612496a649839aad759013e SHA1b5a10b94d3af85a313facd9134b075f5c83b54e7 SHA25682061fcc41a634c304f33448c3767877ad4989cc744a315587901a24a69fd868 Certificate Info IssuerLet's Encrypt Subject.a-mo.net Fingerprint5D:67:7D:2D:E3:95:FC:C1:C1:A0:21:79:01:E7:63:2B:B9:29:29:9D ValidityFri, 06 Oct 2023 13:41:28 GMT - Thu, 04 Jan 2024 13:41:27 GMT HTTP Headers GET /isyn?gdpr=0&gdpr_consent=&us_privacy=pbs-ozone&s=pbs&cb=https%3A%2F%2Felb.the-ozone-project.com%2Fsetuid%3Fbidder%3Damx%26gdpr%3D0%26gdpr_consent%3D%26us_privacy%3Dpbs-ozone%26uid%3D HTTP/1.1 Host: prebid.a-mo.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://elb.the-ozone-project.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK cache-control: max-age=0, private, must-revalidate content-type: text/html; charset=utf-8 date: Fri, 27 Oct 2023 08:48:03 GMT server: envoy x-envoy-upstream-service-time: 0 content-encoding: gzip vary: Accept-Encoding X-Firefox-Spdy: h2`

	GET elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480693&bidder=ozone	104.18.43.178	200 OK	13 kB
URL elb.the-ozone-project.com/static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480693&bidder=ozone IP / ASN 104.18.43.178 #13335 CLOUDFLARENET Requested byhttps://playfootball.games/ Resource Info File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (461) First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size13 kB (12627 bytes) MD5292dcd905db72652f6437c692ab914dd SHA1746d6cfeae225dd448bab59cb67a0834ba674be0 SHA256daf19d86030033ac02ace92347ffe163d70c1c8954a8c5bc5bde8d4d73eb4527 Certificate Info IssuerLet's Encrypt Subjectthe-ozone-project.com Fingerprint2D:47:CD:CC:B2:36:0D:F9:4B:82:17:E7:63:1D:CC:49:76:52:4E:F8 ValidityThu, 26 Oct 2023 08:49:30 GMT - Wed, 24 Jan 2024 08:49:29 GMT HTTP Headers GET /static/load-cookie.html?gdpr=0&gdpr_consent=&usp_consent=&pubcid=1ba7cc72-8ff9-4196-b700-ab758036898a&publisherId=OZONEVEN0005&siteId=1500000121&cb=1698396480693&bidder=ozone HTTP/1.1 Host: elb.the-ozone-project.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Cookie: __cf_bm=zChs99CvjZqsRcLR9QT21d7udPFZIgwFKY3dfKzX444-1698396479-0-Af78IS5VyGHOwdkzP16zj165zyPOiCaL5Ys+vinjgDqU+rZxiMdqCqtyrVVa6QlQBn63WGKYiw/fZxXX4XyRZLY= Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Fri, 27 Oct 2023 08:48:03 GMT content-type: text/html; charset=utf-8 cf-ray: 81c9ad82ad0c1c0a-OSL cf-cache-status: DYNAMIC cache-control: no-cache, no-store, must-revalidate expires: 0 last-modified: Wed, 25 Oct 2023 12:22:01 GMT vary: Origin, Accept-Encoding pragma: no-cache set-cookie: AWSALBTG=PSZIrFL99AcshlARmgb5rJ2BcqIDw+hRcVKGNxV6Tuvf8JH1sp/1P0Zm6mWKLj4mHR5Z8B8Gd07TnSyj/P/RC/A1Pz44S6GGmUkOTurKlgfz7/fICW3hwA/mBsy+QspN64Gsoi6xXwNkNiY3MqI0lhr0bxcckyCZjS2r89f9R0oJraZpngc=; Expires=Fri, 03 Nov 2023 08:48:03 GMT; Path=/ AWSALBTGCORS=PSZIrFL99AcshlARmgb5rJ2BcqIDw+hRcVKGNxV6Tuvf8JH1sp/1P0Zm6mWKLj4mHR5Z8B8Gd07TnSyj/P/RC/A1Pz44S6GGmUkOTurKlgfz7/fICW3hwA/mBsy+QspN64Gsoi6xXwNkNiY3MqI0lhr0bxcckyCZjS2r89f9R0oJraZpngc=; Expires=Fri, 03 Nov 2023 08:48:03 GMT; Path=/; SameSite=None server: cloudflare content-encoding: gzip X-Firefox-Spdy: h2

	POST mp.4dex.io/prebid	172.64.153.78	200 OK	60 B
URL mp.4dex.io/prebid IP / ASN 172.64.153.78 #13335 CLOUDFLARENET Requested byhttps://playfootball.games/ Resource Info File typetroff or preprocessor input, ASCII text, with no line terminators First Seen2023-07-15 Last Seen2025-03-31 Times Seen645 Size60 B (60 bytes) MD5a1884f600d7fc4b248d48992e08cbcc9 SHA10c1d2c3753339249da9c28a4941ad7271fda0bef SHA25624a9b895cda57aea260bce4c6ef89964ee518f931a019d068f5dfb0500244f18 Certificate Info IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint02:E1:92:C5:72:6D:E0:64:4A:46:05:69:81:98:7C:43:13:E7:15:7A ValidityTue, 01 Aug 2023 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT HTTP Headers `POST /prebid HTTP/1.1 Host: mp.4dex.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 2656 Origin: https://playfootball.games DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Fri, 27 Oct 2023 08:47:59 GMT content-type: application/json; charset=utf-8 access-control-allow-credentials: true access-control-allow-origin: https://playfootball.games cache-control: no-cache, no-store, must-revalidate expires: 0 pragma: no-cache vary: Origin, Accept-Encoding x-version: 3.0.0-gcp-ams x-warn: Selecting bids. No selected bids via: 1.1 google cf-cache-status: DYNAMIC server: cloudflare cf-ray: 81c9ad6d0f3a56b5-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	GET prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D	145.40.97.67	302 Found	0 B
URL prebid.a-mo.net/cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D IP / ASN 145.40.97.67 #54825 PACKET Requested byhttps://public.servenobid.com/sync.html Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerLet's Encrypt Subject.a-mo.net Fingerprint5D:67:7D:2D:E3:95:FC:C1:C1:A0:21:79:01:E7:63:2B:B9:29:29:9D ValidityFri, 06 Oct 2023 13:41:28 GMT - Thu, 04 Jan 2024 13:41:27 GMT HTTP Headers GET /cchain/0?gdpr=0&gdpr_consent=&us_privacy=1YN-&&cb=https%3A%2F%2Fads.servenobid.com%2Fsync%3Fpid%3D327%26uid%3D HTTP/1.1 Host: prebid.a-mo.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://public.servenobid.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 302 Found cache-control: max-age=0, private, must-revalidate content-length: 0 date: Fri, 27 Oct 2023 08:48:03 GMT location: https://ads.servenobid.com/sync?pid=327&uid=&us_privacy=1YN-&gdpr=0 server: envoy x-envoy-upstream-service-time: 0 X-Firefox-Spdy: h2`

	GET p.cpx.to/p/13058/px.js	54.228.100.29	200 OK	4.8 kB
URL p.cpx.to/p/13058/px.js IP / ASN 54.228.100.29 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typeASCII text, with very long lines (5015), with no line terminators First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size4.8 kB (4827 bytes) MD54ae0efb67519976b393c609e5b4dc3bb SHA185c66deaddfde8b5d1797f67c4f67a73901c719a SHA25619714c9afcc7e0620c4cfd089e913c8ead9f6654e8ac32f2c550538286e54ee5 Certificate Info IssuerSectigo Limited Subjectp.cpx.to FingerprintB7:D4:04:01:07:C8:6E:F6:F4:A7:B7:F7:0A:5D:BE:2E:A4:E2:2D:D7 ValidityThu, 12 Jan 2023 00:00:00 GMT - Sat, 13 Jan 2024 23:59:59 GMT HTTP Headers `GET /p/13058/px.js HTTP/1.1 Host: p.cpx.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Fri, 27 Oct 2023 08:47:59 GMT content-type: application/javascript; charset=UTF-8 content-encoding: gzip cache-control: max-age=7200, public X-Firefox-Spdy: h2`

	POST region1.analytics.google.com/g/collect?v=2&tid=G-M1V4B2GMEC&gtm=45je3ap0v884668648z8865765401&_p=71094318&_gaz=1&gcd=11l1l1l1l1&cid=512579465.1698396479&ul=en-us&sr=1280x1024&_s=1&sid=1698396479&sct=1&seg=0&dl=https%3A%2F%2Fplayfootball.games%2F&dt=Play%20Football%20Games%20-%20Football%20Quiz%20Games&en=page_view&_fv=1&_nsi=1&_ss=1	216.239.32.36	204 No Content	0 B
URL region1.analytics.google.com/g/collect?v=2&tid=G-M1V4B2GMEC&gtm=45je3ap0v884668648z8865765401&_p=71094318&_gaz=1&gcd=11l1l1l1l1&cid=512579465.1698396479&ul=en-us&sr=1280x1024&_s=1&sid=1698396479&sct=1&seg=0&dl=https%3A%2F%2Fplayfootball.games%2F&dt=Play%20Football%20Games%20-%20Football%20Quiz%20Games&en=page_view&_fv=1&_nsi=1&_ss=1 IP / ASN 216.239.32.36 #15169 GOOGLE Requested byhttps://playfootball.games/ Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5605886 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Certificate Info IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint97:15:34:CA:DF:1A:DF:2E:7B:EF:E9:6E:44:21:30:2B:ED:13:54:AE ValidityMon, 09 Oct 2023 08:03:58 GMT - Mon, 01 Jan 2024 08:03:57 GMT HTTP Headers POST /g/collect?v=2&tid=G-M1V4B2GMEC&gtm=45je3ap0v884668648z8865765401&_p=71094318&_gaz=1&gcd=11l1l1l1l1&cid=512579465.1698396479&ul=en-us&sr=1280x1024&_s=1&sid=1698396479&sct=1&seg=0&dl=https%3A%2F%2Fplayfootball.games%2F&dt=Play%20Football%20Games%20-%20Football%20Quiz%20Games&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 Host: region1.analytics.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://playfootball.games DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 `HTTP/2 204 No Content access-control-allow-origin: https://playfootball.games date: Fri, 27 Oct 2023 08:47:59 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	POST ads.servenobid.com/adreq?cb=6875	34.251.33.30	200 OK	267 B
URL ads.servenobid.com/adreq?cb=6875 IP / ASN 34.251.33.30 #16509 AMAZON-02 Requested byhttps://playfootball.games/ Resource Info File typetroff or preprocessor input, ASCII text, with no line terminators First Seen2023-10-27 Last Seen2023-10-27 Times Seen1 Size267 B (267 bytes) MD5edb4a8cc5db7cef8b10ecc276e9960b6 SHA1c55f6dd13c6cb35c7bf4f68c0bcb33a50f8a7471 SHA25656cf114b9aac3872b67670f124e7fb70022cbc4d495b377c7bb95033083da2f6 Certificate Info IssuerAmazon Subjectads.servenobid.com Fingerprint04:03:97:A8:76:2C:37:18:84:D5:67:84:2E:F1:24:92:24:C7:52:6F ValiditySat, 29 Apr 2023 00:00:00 GMT - Mon, 27 May 2024 23:59:59 GMT HTTP Headers `POST /adreq?cb=6875 HTTP/1.1 Host: ads.servenobid.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 836 Origin: https://playfootball.games DNT: 1 Connection: keep-alive Referer: https://playfootball.games/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Fri, 27 Oct 2023 08:47:59 GMT content-type: application/json access-control-allow-origin: https://playfootball.games amp-access-control-allow-source-origin: * access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin access-control-allow-credentials: true cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0 vary: accept-encoding content-encoding: gzip X-Firefox-Spdy: h2`

Detections

Host Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (40)

HTTP Transactions (98)

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers