Report - us.marza13.com/football/2437086-alnassr-vs-alwehda.html

Report Overview

Submitted URL
us.marza13.com/football/2437086-alnassr-vs-alwehda.html
IP
188.114.97.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-04 21:10:57
Access
public
Website Title
(1) New Message!
Final URL
us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
20

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-03	421 B	102 kB	142.250.74.168
matchgress-api.livesports.mobi	unknown	2022-02-10	2023-06-29	2024-02-25	501 B	4.0 kB	104.18.42.84
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-05-03	429 B	421 B	52.29.105.35
cfcdn.livesports.mobi	unknown	2022-02-10	2023-06-27	2024-04-20	2.9 kB	237 kB	104.18.42.84
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-04	416 B	1.8 kB	142.250.74.106
us.marza13.com	unknown	unknown	No data	No data	511 B	21 kB	188.114.96.1
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-05-03	411 B	87 kB	188.114.96.1
greedcocoatouchy.com	unknown	2024-04-29	2024-04-30	2024-05-03	8.1 kB	17 kB	172.240.127.234
cdn.yourwebbars.com	62037	2020-08-21	2021-01-29	2024-05-04	479 B	1.2 kB	104.26.7.19
cfapi.livesports.mobi	unknown	2022-02-10	2023-06-28	2024-02-25	3.8 kB	17 kB	104.18.42.84
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-04	1.0 kB	33 kB	216.58.207.227
cfstatic.livesports.mobi	unknown	2022-02-10	2024-01-18	2024-02-25	16 kB	3.4 MB	104.18.42.84
dapiaa.livesports.mobi	unknown	2022-02-10	2023-11-29	2024-05-02	7.4 kB	153 kB	104.18.42.84
hm.baidu.com	8254	1999-10-11	2012-05-26	2024-05-03	1.1 kB	31 kB	14.215.182.140
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15	2024-05-03	2.9 kB	338 kB	104.21.70.253
complementnickel.com	unknown	2023-05-19	2023-05-19	2024-04-20	438 B	28 kB	192.243.59.13
smashedpractice.com	unknown	unknown	No data	No data	439 B	46 kB	172.240.127.234

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	greedcocoatouchy.com	Sinkholed
2024-05-04	medium	greedcocoatouchy.com	Sinkholed
2024-05-04	medium	greedcocoatouchy.com	Sinkholed
2024-05-04	medium	greedcocoatouchy.com	Sinkholed
2024-05-04	medium	greedcocoatouchy.com	Sinkholed
2024-05-04	medium	greedcocoatouchy.com	Sinkholed
2024-05-04	medium	complementnickel.com	Sinkholed
2024-05-04	medium	smashedpractice.com	Sinkholed
2024-05-04	medium	greedcocoatouchy.com	Sinkholed
2024-05-04	medium	greedcocoatouchy.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (22)

	URL	Size	First Seen	Last Seen
	cfstatic.livesports.mobi/_nuxt/68124412se2.js	87 kB	2024-05-04	2024-05-04
Pretty URL cfstatic.livesports.mobi/_nuxt/68124412se2.js IP 104.18.42.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:11:05 Last Seen2024-05-04 23:11:05 Times Seen1 Hash a68ac8ff76d5be543f2bc604bfe37341 1728daa7c08710447357755bdc3e1b43adedca7c c66b3bc7f703a9892384c4872a058ad6ec7287108daa39f91511f34066a845d5 Loading...

	cfstatic.livesports.mobi/_nuxt/cc721da1se35.js	306 kB	2024-05-04	2024-05-04
Pretty URL cfstatic.livesports.mobi/_nuxt/cc721da1se35.js IP 104.18.42.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:11:05 Last Seen2024-05-04 23:11:06 Times Seen1 Hash e119e7b22bdba75e4788ca006e0bf013 5bf08492d1c8c98b163a076eb03bde4a03e78b71 7257ce5943dfd091f7c9290cbf1027e8fa5df8ab26e6a9a329c77c445ae73c2a Loading...

	cfstatic.livesports.mobi/_nuxt/5443376ase5.js	1.9 kB	2024-05-04	2024-05-04
Pretty URL cfstatic.livesports.mobi/_nuxt/5443376ase5.js IP 104.18.42.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:11:06 Last Seen2024-05-04 23:11:06 Times Seen1 Hash 3224ac9c7077135c6305778d616b62e0 fefb4874dd70a662798a211e573fcdd90b8a7a19 16a4de7e73a75601a1a553f7ad472f022fe14ef54c0130205ef929524a6caaad Loading...

	unknown	49 B	2023-04-15	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-15 00:18:54 Last Seen2024-05-04 23:11:06 Times Seen130 Hash 6a3aa9e9653c76810160268fdefaf4ca 318fe4e47ddd7f1ecc5d9195a962fc39c757af47 15674bd64f881b0911eb98129eab57ea258087f235fc7a9c0bf71985ac4f221f Loading...

	hm.baidu.com/hm.js?847b69b93869381c249c82d6c97e896e	30 kB	2024-05-04	2024-05-04
Pretty URL hm.baidu.com/hm.js?847b69b93869381c249c82d6c97e896e IP 14.215.182.140 ASN #4134 Chinanet Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:11:06 Last Seen2024-05-04 23:11:09 Times Seen2 Hash aafaa39c0f8b8077aecf993a27ef0de4 066c8b06d4ccea196f115e310a0db9e12c23a939 e5133b91e9c815075632ab4fe9e71a077745b640dd65fb8c9896dc62eecc70a5 Loading...

	complementnickel.com/c85408c470ed8e74309a6963405446dc/invoke.js	27 kB	2024-05-04	2024-05-04
Pretty URL complementnickel.com/c85408c470ed8e74309a6963405446dc/invoke.js IP 192.243.59.13 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:11:06 Last Seen2024-05-04 23:11:06 Times Seen1 Hash 2cda214277e488cc55aedcb95a821bdd 54c4769ca1d181b6723171d1d76d8381dd6f3427 5bfbafe7eb2d89ce0491221da90db816fe14a68cb90bffc9ff3cb4f848639fb0 Loading...

	cfstatic.livesports.mobi/_nuxt/8197a30e.js	9.2 kB	2024-05-04	2024-05-04
Pretty URL cfstatic.livesports.mobi/_nuxt/8197a30e.js IP 104.18.42.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:11:06 Last Seen2024-05-04 23:11:06 Times Seen1 Hash 0318851ce079a4d90ad69676da41ad15 6fe51ced645198112189f450dd9086a07a4d623c 5cc07f3f78e2c75eb3cdd3a6b6b2382078456df7af266ec75d64fe59d8868330 Loading...

	cfstatic.livesports.mobi/_nuxt/5b8d2e1ase21.js	1.4 kB	2024-05-04	2024-05-04
Pretty URL cfstatic.livesports.mobi/_nuxt/5b8d2e1ase21.js IP 104.18.42.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:11:06 Last Seen2024-05-04 23:11:06 Times Seen1 Hash 6054b127aaee76e420b86b8b7a81f89f c2f20b650929ac1da790aa111d79499e76fdcd69 f2ab2dffc9c58362f878568bdfea69a7c96b8a3ba6020fcd1f7314e9a5223230 Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2024-03-29	2024-05-17
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 13:13:34 Last Seen2024-05-17 14:49:08 Times Seen3553 Hash f4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716 Loading...

	cfstatic.livesports.mobi/_nuxt/26daa860se4.js	1.1 kB	2024-05-04	2024-05-04
Pretty URL cfstatic.livesports.mobi/_nuxt/26daa860se4.js IP 104.18.42.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:11:06 Last Seen2024-05-04 23:11:06 Times Seen1 Hash 7876f80d7f243aecc7ee4b6eb54025bb c300821a53722e981e3e12c3b58da53ae6373a11 c6f32db8088d85fe72bff5d3b57c4ab3ae4c41ecc3c0289774b5efebd7bd3514 Loading...

	cfstatic.livesports.mobi/_nuxt/e7d6b0e9se10.js	1.2 MB	2024-05-04	2024-05-04
Pretty URL cfstatic.livesports.mobi/_nuxt/e7d6b0e9se10.js IP 104.18.42.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:11:06 Last Seen2024-05-04 23:11:06 Times Seen1 Hash 2604831b01bae49210f74b501e1cbd21 7dc8b2c3ffc597053a678a3c3731abc1f25b6eb4 f6b0e4e8dafda739a5ee9644c15f2181fbd56e31ebc1b1dbb034adf4b8dc5caa Loading...

	www.googletagmanager.com/gtag/js?id=G-EPY2TCZ2GD	306 kB	2024-05-04	2024-05-04
Pretty URL www.googletagmanager.com/gtag/js?id=G-EPY2TCZ2GD IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:11:06 Last Seen2024-05-04 23:11:07 Times Seen2 Hash 79dde20751f231eb9cbbc88283062872 906821c092056dda9f62544688a0f32da3afcc4f b482290da8cde44a6309dcf54c614469371152416d11506d570accea88d71cc8 Loading...

	us.marza13.com/football/2437086-alnassr-vs-alwehda.html	9.7 kB	2024-05-04	2024-05-04
Pretty URL us.marza13.com/football/2437086-alnassr-vs-alwehda.html IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 23:11:06 Last Seen2024-05-04 23:11:06 Times Seen1 Hash 98fdfbcb3aee23f675e54a7e2f0cd658 3906341f96082cf61005956f9d2e63422fa86a58 ddf13e2d4414bbe14f8519b51f9bba559f4d807851ee893a2dee26dab696b3a8 Loading...

	cfstatic.livesports.mobi/_nuxt/88c8a109se0.js	1.5 kB	2024-05-04	2024-05-04
Pretty URL cfstatic.livesports.mobi/_nuxt/88c8a109se0.js IP 104.18.42.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:11:06 Last Seen2024-05-04 23:11:07 Times Seen1 Hash 8f6103c5d695e08bac9a88c4fea0dd6f f052135ce7dd82aef3e1ea4b8e01815ad25d65a6 9f296ebe3fbe86f92fa8915339b94ace0e2950715ffbbf70fa5b56e54d3f73b1 Loading...

	unknown	37 B	2023-04-11	2024-05-18
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:49:14 Last Seen2024-05-18 13:52:55 Times Seen22606 Hash 1c5c9160600df2d96d69a4ea16cec7ed 3cf678c9135cc952ba6970ef545035bb757a443f a3520fe88e248d2b6c9c6db93309a037ef969fe297208e5bd7e49a55bb32c808 Loading...

	unknown	352 B	2024-05-04	2024-05-04
Pretty Introduced by Function Embedded in HTML false Observations First Seen2024-05-04 23:11:07 Last Seen2024-05-04 23:11:07 Times Seen1 Hash c721366a33b9d532134785da0493d47a 3476d6d2afdb56ed620377adab6d86ded283230a cc71a26226302785f896abceae881af3d5a8a39d4fee2e21318541daee1fd822 Loading...

	smashedpractice.com/65/bc/fa/65bcfaa683769cffa9ed47e7f9f0d1e6.js	45 kB	2024-05-04	2024-05-04
Pretty URL smashedpractice.com/65/bc/fa/65bcfaa683769cffa9ed47e7f9f0d1e6.js IP 172.240.127.234 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:11:07 Last Seen2024-05-04 23:11:08 Times Seen2 Hash 8553936fe53236c536d461abb7f1a712 7eb9b377f570d2ea701d8d97b50039ee53ff64ab 4a4dc867ed385e7a2e3de13bce58be63d2cbcf96229f69a92d4599bae7eeff81 Loading...

	unknown	9.7 kB	2024-05-04	2024-05-04
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:11:07 Last Seen2024-05-04 23:11:07 Times Seen1 Hash 34e23afb81f2ff0e94c985a01677904e 113eb20a5858782fd8f9aac05f45a5c9f65bb194 f138d7cbed58fcd1e2b544a498a03672d7af250bac4e3cc32186dad8091f1102 Loading...

	cfstatic.livesports.mobi/_nuxt/6e25e2fese34.js	962 kB	2024-05-04	2024-05-04
Pretty URL cfstatic.livesports.mobi/_nuxt/6e25e2fese34.js IP 104.18.42.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:11:07 Last Seen2024-05-04 23:11:07 Times Seen1 Hash 6ade4e7f3af9c34fdff2895a5b171366 eb05faa95affaf582699e0cba702337b399e58ab 12be8c27a428e88dfe587641ffa2369f1f33fe294c3ad930867abcb02c7ea06d Loading...

	cfstatic.livesports.mobi/_nuxt/532c76abse8.js	4.4 kB	2024-05-04	2024-05-04
Pretty URL cfstatic.livesports.mobi/_nuxt/532c76abse8.js IP 104.18.42.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:11:07 Last Seen2024-05-04 23:11:07 Times Seen1 Hash 70781b5011bfad0244114e3e53c38220 ae45f3c81da1b81800b2bf616e631c0719863342 04ae0e6342de2e44d7333b061ebab1b876847d377fe0ad2bb0ffb6d592d07cdb Loading...

	cfstatic.livesports.mobi/_nuxt/7291bffbse1.js	8.8 kB	2024-05-04	2024-05-04
Pretty URL cfstatic.livesports.mobi/_nuxt/7291bffbse1.js IP 104.18.42.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:11:07 Last Seen2024-05-04 23:11:07 Times Seen1 Hash 64d5cf007bbd5ab7bc611ac4931c6f4a 22b576ea54163fbf44818558eb26877fc67f8b98 c451d738caef0eef4e524aa2717c0f75f850015d9733fca342403d650863b8fc Loading...

	cfstatic.livesports.mobi/_nuxt/31ec54a9se11.js	533 kB	2024-05-04	2024-05-04
Pretty URL cfstatic.livesports.mobi/_nuxt/31ec54a9se11.js IP 104.18.42.84 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 23:11:07 Last Seen2024-05-04 23:11:07 Times Seen1 Hash 05986703857c43e3a07aed20a271ffaf c6f7befdf9fd9ae953972647d601e815bb4f529e 397535719b376933a34d7d60d909ebcb44b3d681ca588f4be4177287a919a031 Loading...

HTTP Transactions (90)

URL IP Response Size

cfstatic.livesports.mobi/img/icon-home.png

104.18.42.84

200 OK

657 B

URL GET HTTP/2
cfstatic.livesports.mobi/img/icon-home.png
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced
Size
657 B (657 bytes)
Hash
71589c214e627f753a06dff5a6579e51
1a1a0e366d26c2aa5d435f39bb9c6c52102e864a
89cd439b5a22bd494b238de0646f268b8ecc3dcb3c5f14a8785d750cf9ac551f

HTTP Headers

GET /img/icon-home.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: image/png
content-length: 657
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/icon-home.png
cache-control: public, max-age=2592000
last-modified: Thu, 25 Apr 2024 09:21:10 GMT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4f09231c06-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/img/1st/icon_arrow_small.png

104.18.42.84

200 OK

470 B

URL GET HTTP/2
cfstatic.livesports.mobi/img/1st/icon_arrow_small.png
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
PNG image data, 28 x 16, 8-bit/color RGBA, non-interlaced
Size
470 B (470 bytes)
Hash
456a645ba6f3144946795282003695a7
3a56d18c68dee872a1bbc3186a3d1ed1843c6b57
13ecfc47133ce2f8feb77fd8272757b1cbac4cf28f8ca15f65483e9c819b7cb1

HTTP Headers

GET /img/1st/icon_arrow_small.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cfstatic.livesports.mobi/_nuxt/css/8fd559fa.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:29 GMT
content-type: image/png
content-length: 470
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/1st/icon_arrow_small.png
cache-control: public, max-age=2592000
last-modified: Thu, 25 Apr 2024 09:21:08 GMT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a531ca31c06-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/_nuxt/css/1d4365f8.css

104.18.42.84

200 OK

4.9 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/css/1d4365f8.css
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
4.9 kB (4937 bytes)
Hash
91c5ebdb9a40424caff7756a0c402e70
3b273611eaed74727a2c073ba7e62c1d3429cadf
bc3d7bccec2b79d99399c59aaacb7c5ac576c1a4157259cb1269bb1754625d2e

HTTP Headers

GET /_nuxt/css/1d4365f8.css HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:29 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/css/1d4365f8.css
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a556e751c06-OSL
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-EPY2TCZ2GD

142.250.74.168

200 OK

102 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-EPY2TCZ2GD
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (7711)
Size
102 kB (101619 bytes)
Hash
79dde20751f231eb9cbbc88283062872
906821c092056dda9f62544688a0f32da3afcc4f
b482290da8cde44a6309dcf54c614469371152416d11506d570accea88d71cc8

HTTP Headers

GET /gtag/js?id=G-EPY2TCZ2GD HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 21:10:30 GMT
expires: Sat, 04 May 2024 21:10:30 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101619
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/_nuxt/532c76abse8.js

104.18.42.84

200 OK

9.3 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/532c76abse8.js
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
9.3 kB (9299 bytes)
Hash
955ba4663ffae5540dd76dce9584733b
769e4b2027c66b5a0a17bafcb453b4a754073812
838008c4e56d5c9dffd6da560f198cf82c4a99bd3fc9f23c52ad5f53f01aa8fb

HTTP Headers

GET /_nuxt/532c76abse8.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:29 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/532c76abse8.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:08 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a556e781c06-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/_nuxt/css/eaef5a8e.css

104.18.42.84

200 OK

4.1 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/css/eaef5a8e.css
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
4.1 kB (4147 bytes)
Hash
8eb1e6f581a28fc42e4db0f91e31a28d
fe68d1244e7be8dd82feaa4efed994a457eef94b
51f06c33d3739fe02053e2667c1492da7df527d41a21cbe2b936647c91196861

HTTP Headers

GET /_nuxt/css/eaef5a8e.css HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/css/eaef5a8e.css
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9071c06-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/img/player/icon-player-holder-football.jpg

104.18.42.84

200 OK

83 kB

URL GET HTTP/2
cfstatic.livesports.mobi/img/player/icon-player-holder-football.jpg
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1500x842, components 3
Size
83 kB (83424 bytes)
Hash
7491117fbedcafaf5d3bfb2ede104b45
6a9a70d49998bf8ba37bdafd7cc0062539fca6cb
64cb236895fc3a5bac670f9b01211b6b75043cb941bff4a320529161e7f23ff9

HTTP Headers

GET /img/player/icon-player-holder-football.jpg HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cfstatic.livesports.mobi/_nuxt/css/8fd559fa.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:29 GMT
content-type: image/jpeg
cache-control: public, max-age=2592000
cf-bgj: h2pri
vary: Accept-Encoding
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/player/icon-player-holder-football.jpg
x-frame-options: SAMEORIGIN
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a531ca21c06-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/img/icon-backtop-old.png

104.18.42.84

2.5 kB

URL GET
cfstatic.livesports.mobi/img/icon-backtop-old.png
IP
104.18.42.84:0
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
2.5 kB (2547 bytes)
Hash
36c3b67f4ef56c01b4d0e8a78f1c97e9
d7d275947fbb028e6b79325c74e41a1ce92bb2c4
590fff274cbeadd41445d30c2c22accb4fe4462a3ab175a0b02e51a639e0fbd1

HTTP Headers

GET /img/icon-backtop-old.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:31 GMT
content-type: image/png
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/icon-backtop-old.png
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:11 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5c0b9c1c06-OSL
X-Firefox-Spdy: h2

dapiaa.livesports.mobi/api/checkin

104.18.42.84

200 OK

10 kB

URL GET HTTP/2
dapiaa.livesports.mobi/api/checkin
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (26955), with no line terminators
Size
10 kB (10032 bytes)
Hash
efaeb9a8103301134650f5b5b6ab4d16
979e168348d04c87c7d0e41c46863bd05b273532
e52f518c1dd7dec50672ae2d72285ca778242ca2c97efe202e586c1397ac1091

HTTP Headers

GET /api/checkin HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:30 GMT
content-type: application/json; charset=utf-8
etag: W/"589F50756E52C23289C91F6A3691E5F6"
x-frame-options: SAMEORIGIN
cache-control: public, max-age=120
cf-cache-status: DYNAMIC
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a58bdf556ca-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=939720785&si=847b69b93869381c249c82d6c97e896e&v=1.3.0&lv=1&sn=2686&r=0&ww=1280&u=https%3A%2F%2Fus.marza13.com%2Ffootball%2F2437086-alnassr-vs-alwehda.html&tt=Live%20Sport%20Streaming%2C%20Watch%20Live%20Football%2CBasketball

14.215.182.140

200 OK

43 B

URL GET HTTP/1.1
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=939720785&si=847b69b93869381c249c82d6c97e896e&v=1.3.0&lv=1&sn=2686&r=0&ww=1280&u=https%3A%2F%2Fus.marza13.com%2Ffootball%2F2437086-alnassr-vs-alwehda.html&tt=Live%20Sport%20Streaming%2C%20Watch%20Live%20Football%2CBasketball
IP
14.215.182.140:443
ASN
#4134 Chinanet

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=939720785&si=847b69b93869381c249c82d6c97e896e&v=1.3.0&lv=1&sn=2686&r=0&ww=1280&u=https%3A%2F%2Fus.marza13.com%2Ffootball%2F2437086-alnassr-vs-alwehda.html&tt=Live%20Sport%20Streaming%2C%20Watch%20Live%20Football%2CBasketball HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 21:10:31 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=E65CB88C7B36DED5; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff

cfstatic.livesports.mobi/_nuxt/68124412se2.js

104.18.42.84

200 OK

28 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/68124412se2.js
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
28 kB (28406 bytes)
Hash
bb8e96d855dc57c8e8f3ffeb3d932192
1ff1642c85b8918a7163331e337504ee88d3acf6
ccae1bc683dd470166b7da810b44bcd0e27b354dac0f0b93e81ca9e7ba3e902d

HTTP Headers

GET /_nuxt/68124412se2.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/68124412se2.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9001c06-OSL
X-Firefox-Spdy: h2

proftrafficcounter.com/stats

52.29.105.35

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
52.29.105.35:443
ASN
#16509 AMAZON-02

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
fd6b45a5125bafcbee0c17cb51aefda9
f218e33284de108993cb3824a9765d4e50c73513
af258c6bfe5f11af9e8aee61be95048db2feb8224fc3b8de4322c564c1ef7091

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:31 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://us.marza13.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=9571cb06-0a90-4f1c-bcd0-0f657b1cd787:3:1; expires=Tue, 02 May 2034 21:10:31 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

dapiaa.livesports.mobi/api/config/get?d=us.marza13.com

104.18.42.84

200 OK

66 kB

URL GET HTTP/2
dapiaa.livesports.mobi/api/config/get?d=us.marza13.com
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
66 kB (66307 bytes)
Hash
679932c12a037d498c80f0fe5d4e9f00
6e28e25e2e936558b86ab0a8e0aa171a06c4a852
ac416a339925fe20f8521837d84789f90509872b1a76b2a1eda441c70e4feb6f

HTTP Headers

GET /api/config/get?d=us.marza13.com HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:30 GMT
content-type: text/plain; charset=utf-8
vary: Accept-Encoding
etag: W/"6043E272D353FC03C1A3EEFD4BFAB5AB"
x-frame-options: SAMEORIGIN
x-dapi-cache: EXPIRED || 60s || /api/config/get?d=us.marza13.com
cache-control: public, max-age=120
content-encoding: gzip
cf-cache-status: REVALIDATED
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a569b8556ca-OSL
X-Firefox-Spdy: h2

dapiaa.livesports.mobi/api/ftb/battletwodata?id=2437086

104.18.42.84

200 OK

17 kB

URL GET HTTP/2
dapiaa.livesports.mobi/api/ftb/battletwodata?id=2437086
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
JavaScript source, ASCII text, with very long lines (48944), with no line terminators
Size
17 kB (16774 bytes)
Hash
e6887a9dd6b4bcc64d6bee6fd15f512f
ad8f154790d1db2eac82ecce6169793332d8eac4
f56f1989022ca1f468016f093ec0b5410be5b1210e6df792e6e3006066b27106

HTTP Headers

GET /api/ftb/battletwodata?id=2437086 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:31 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"0135CEAD1524B17BC5E4E9B00B3FFA5F"
x-frame-options: SAMEORIGIN
x-dapi-def-cache: MISS || 10s || /api/ftb/battletwodata?id=2437086
cache-control: public, max-age=5
content-encoding: gzip
cf-cache-status: REVALIDATED
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5c39d456ca-OSL
X-Firefox-Spdy: h2

dapiaa.livesports.mobi/api/ftb/detail?d=us.marza13.com&id=2437086

104.18.42.84

200 OK

3.0 kB

URL GET HTTP/2
dapiaa.livesports.mobi/api/ftb/detail?d=us.marza13.com&id=2437086
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
3.0 kB (2976 bytes)
Hash
3689e8e6f08ed0842786c13f0cf9dacf
5f532c77a677700ba6da437412b7becfed407605
9391bfdc67f8b17a07ecd558d306f5a76ad997ee5a6d7b2f500724a34d09e1f4

HTTP Headers

GET /api/ftb/detail?d=us.marza13.com&id=2437086 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"30E84B60B60C2454466D91F8E95F263F"
x-frame-options: SAMEORIGIN
x-dapi-def-cache: MISS || 10s || /api/ftb/detail?d=us.marza13.com&id=2437086
cache-control: public, max-age=5
content-encoding: gzip
cf-cache-status: EXPIRED
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5e4c2656ca-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/img/icon-ball-3.png

104.18.42.84

200 OK

453 B

URL GET HTTP/2
cfstatic.livesports.mobi/img/icon-ball-3.png
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
453 B (453 bytes)
Hash
1f3fc80e40fb1256541b798a16dc5094
2ac960c4eadaf2264bf9fc59e44dbad3676ac10b
8bd0b2ddb60102b27634b329d3b9a89a5df82f9d60694804e97072e30e24f1d5

HTTP Headers

GET /img/icon-ball-3.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: image/png
content-length: 453
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/icon-ball-3.png
cache-control: public, max-age=2592000
last-modified: Thu, 25 Apr 2024 09:21:06 GMT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a65cc811c06-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/img/icon-ball-11.png

104.18.42.84

200 OK

671 B

URL GET HTTP/2
cfstatic.livesports.mobi/img/icon-ball-11.png
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
671 B (671 bytes)
Hash
c1e9c380717d78a5d3f21d26d64d32cc
b694956d2bff61a46ffd596fb4987bd8ac184cb5
bf63b863bc93270860f5d1eb2073d0a57e858e2f320db6ff246c296a1c0f2bcd

HTTP Headers

GET /img/icon-ball-11.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: image/png
content-length: 671
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/icon-ball-11.png
cache-control: public, max-age=2592000
last-modified: Thu, 25 Apr 2024 09:21:12 GMT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a65cc8b1c06-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/img/icon-ball-14.svg

104.18.42.84

200 OK

1.4 kB

URL GET HTTP/2
cfstatic.livesports.mobi/img/icon-ball-14.svg
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
1.4 kB (1417 bytes)
Hash
d0d68b69bfe443e7e5dfa0bf9f73d2ad
d37960b0e284249f986c527177e76c0847597e4a
49387d56456d1ca1b554855caeb482fa7346a018dfe7b514032f0071d2f9616b

HTTP Headers

GET /img/icon-ball-14.svg HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: image/svg+xml
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/icon-ball-14.svg
cache-control: public, max-age=2592000
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a65dc951c06-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cfcdn.livesports.mobi/prod/svimg/b7228054-d9b0-4f78-a137-39ed92ae1c5e.gif

104.18.42.84

128 kB

URL GET
cfcdn.livesports.mobi/prod/svimg/b7228054-d9b0-4f78-a137-39ed92ae1c5e.gif
IP
104.18.42.84:0
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
GIF image data, version 89a, 750 x 80
Size
128 kB (128358 bytes)
Hash
8137e29b1ae49b12f53471dba6125f4c
38724db0ec225f2008ec469f24e15ccdb6bbfd1c
0acfabd0d2ef26e03d2c2159073426e56506f30b594c8465d9ed1947758fc918

HTTP Headers

GET /prod/svimg/b7228054-d9b0-4f78-a137-39ed92ae1c5e.gif HTTP/1.1
Host: cfcdn.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Fri, 12 Jan 2024 07:39:32 GMT
etag: W/"1da452a7b461265"
content-encoding: gzip
cache-control: public, max-age=31536000
x-cache: svimg/prod|30d|HIT|/svimg/b7228054-d9b0-4f78-a137-39ed92ae1c5e.gif
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a62297d1c06-OSL
X-Firefox-Spdy: h2

greedcocoatouchy.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzkYRZBF1LyriHPagsJl0z4%2FuGfcQzGYjwbhZdhUFhaW6qnpSpqarqeqenuQUDMgeBy%2BLt843yYbVVfQPcJWZBQ8BISMecthcdAX3IIqwHrzIjGHDvkO99%2Br7Cr763vtkOzsiFWT0cOFtvSGVorP1slt69X3PO19alnHWLXUb%2FjW%2Fdr5kOq83%2FbL7WulNwdb0bMX1XNdzvdKiNCLS3dkxCJncbnrlpluuVcpevYaueby3mQNLHfDOEXkOko%2Bm7zpnINkAcfvrBWHXUp2cu9jOFE21QYfvvRuvxTqP0T4pI%2BMgiveO2dD2YPEOdLw7kQvdeUQM5Yg4P9xBGO8di0TY2ZnoDBVEjJA%2FjbwzgFADSDoA01uQ%2FIAAjOPSCuL2zUva5HT9f5SO0RGZfvg3ZD4i0%2FfOIG5%2FNa9kt3RVqyyVOrboRgVkdwDZGiDJhkg3piDzIVj6MST%2Fkcw%2BXEbc3lmxSkPyw7PNeuCx0PVnXNp0Z2qRx2ZCxt0ZN%2FLrQegxHjSCiUFSDiCjAZTogdpTyKyDTDrIIgdZ4qDND0vM87zA5Yy6jSZjVR6I0OeuR4PIo57rN5Cx8R96SJMemOqBmU0kZhNrsgeTfQ%2B7WsByBzYl6PACuSDILUFOCXJJkKcEeafY5cpWbHGTK5uF3nGuHOdq0ddpa5vu6rQlYgJqejC82E6OyLNjA53Gnw%2BwJg5Lfj1kEaV%2Boxr4TRZFtCl4LRBB1Ixc7gkfVt66sDhTrdUa1zxIOwVqHWzIEXnlhQdI5Ig89c%2BvCOkQVg3B5POg2cugeQG6WmAj%2FtIybUTDbZRlHGlwXSBJp5GuO9vqiLw0GebKloVg%2B3O%2FBX8d%2FXz6NJgpkJgCH8m7BC11vX9F52Tnis4t%2BWYlSWVbbtDxoK%2BmNBVPfP6WWM%2B14UsLtnfrDTYGxuXtd4RNl2nMZdyy5It5ybkwi9owQb5dsu%2BJ8HJmV%2BczE2fJ8uULi0vtxAhrpY4HoPLg4g0wOSLPfPfhZIPPfXAf0gxgsgLtbJ8cB6QegiWbsMn%2B3C%2F%2F%2FjG88dl9WE1g1AknTBzkWdE3lfDkUkkCJU56GhawYn%2Fu9yfP3pt9sUAoHtnRN3T8mspi215Hy0yBpluI2wU6pkBHFaCqB5ud6qeJ2Z%2F7qToJhGqqHyoztRMqoz6dmDw%2BUlh5WAqqVZf6zboXBFQEYa3SiHyPU1qp%2BRXfp1WkdhT5O0v%2FAQAA%2F%2F8BAAD%2F%2FzKLm8qbBAAA

172.240.127.234

200 OK

7 B

URL GET HTTP/1.1
greedcocoatouchy.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzkYRZBF1LyriHPagsJl0z4%2FuGfcQzGYjwbhZdhUFhaW6qnpSpqarqeqenuQUDMgeBy%2BLt843yYbVVfQPcJWZBQ8BISMecthcdAX3IIqwHrzIjGHDvkO99%2Br7Cr763vtkOzsiFWT0cOFtvSGVorP1slt69X3PO19alnHWLXUb%2FjW%2Fdr5kOq83%2FbL7WulNwdb0bMX1XNdzvdKiNCLS3dkxCJncbnrlpluuVcpevYaueby3mQNLHfDOEXkOko%2Bm7zpnINkAcfvrBWHXUp2cu9jOFE21QYfvvRuvxTqP0T4pI%2BMgiveO2dD2YPEOdLw7kQvdeUQM5Yg4P9xBGO8di0TY2ZnoDBVEjJA%2FjbwzgFADSDoA01uQ%2FIAAjOPSCuL2zUva5HT9f5SO0RGZfvg3ZD4i0%2FfOIG5%2FNa9kt3RVqyyVOrboRgVkdwDZGiDJhkg3piDzIVj6MST%2Fkcw%2BXEbc3lmxSkPyw7PNeuCx0PVnXNp0Z2qRx2ZCxt0ZN%2FLrQegxHjSCiUFSDiCjAZTogdpTyKyDTDrIIgdZ4qDND0vM87zA5Yy6jSZjVR6I0OeuR4PIo57rN5Cx8R96SJMemOqBmU0kZhNrsgeTfQ%2B7WsByBzYl6PACuSDILUFOCXJJkKcEeafY5cpWbHGTK5uF3nGuHOdq0ddpa5vu6rQlYgJqejC82E6OyLNjA53Gnw%2BwJg5Lfj1kEaV%2Boxr4TRZFtCl4LRBB1Ixc7gkfVt66sDhTrdUa1zxIOwVqHWzIEXnlhQdI5Ig89c%2BvCOkQVg3B5POg2cugeQG6WmAj%2FtIybUTDbZRlHGlwXSBJp5GuO9vqiLw0GebKloVg%2B3O%2FBX8d%2FXz6NJgpkJgCH8m7BC11vX9F52Tnis4t%2BWYlSWVbbtDxoK%2BmNBVPfP6WWM%2B14UsLtnfrDTYGxuXtd4RNl2nMZdyy5It5ybkwi9owQb5dsu%2BJ8HJmV%2BczE2fJ8uULi0vtxAhrpY4HoPLg4g0wOSLPfPfhZIPPfXAf0gxgsgLtbJ8cB6QegiWbsMn%2B3C%2F%2F%2FjG88dl9WE1g1AknTBzkWdE3lfDkUkkCJU56GhawYn%2Fu9yfP3pt9sUAoHtnRN3T8mspi215Hy0yBpluI2wU6pkBHFaCqB5ud6qeJ2Z%2F7qToJhGqqHyoztRMqoz6dmDw%2BUlh5WAqqVZf6zboXBFQEYa3SiHyPU1qp%2BRXfp1WkdhT5O0v%2FAQAA%2F%2F8BAAD%2F%2FzKLm8qbBAAA
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerLet's Encrypt
Subjectgreedcocoatouchy.com
FingerprintFF:2D:AC:C6:23:1E:3B:BF:ED:36:B0:82:37:80:54:07:C0:C2:10:7E
ValidityMon, 29 Apr 2024 13:07:00 GMT - Sun, 28 Jul 2024 13:06:59 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzkYRZBF1LyriHPagsJl0z4%2FuGfcQzGYjwbhZdhUFhaW6qnpSpqarqeqenuQUDMgeBy%2BLt843yYbVVfQPcJWZBQ8BISMecthcdAX3IIqwHrzIjGHDvkO99%2Br7Cr763vtkOzsiFWT0cOFtvSGVorP1slt69X3PO19alnHWLXUb%2FjW%2Fdr5kOq83%2FbL7WulNwdb0bMX1XNdzvdKiNCLS3dkxCJncbnrlpluuVcpevYaueby3mQNLHfDOEXkOko%2Bm7zpnINkAcfvrBWHXUp2cu9jOFE21QYfvvRuvxTqP0T4pI%2BMgiveO2dD2YPEOdLw7kQvdeUQM5Yg4P9xBGO8di0TY2ZnoDBVEjJA%2FjbwzgFADSDoA01uQ%2FIAAjOPSCuL2zUva5HT9f5SO0RGZfvg3ZD4i0%2FfOIG5%2FNa9kt3RVqyyVOrboRgVkdwDZGiDJhkg3piDzIVj6MST%2Fkcw%2BXEbc3lmxSkPyw7PNeuCx0PVnXNp0Z2qRx2ZCxt0ZN%2FLrQegxHjSCiUFSDiCjAZTogdpTyKyDTDrIIgdZ4qDND0vM87zA5Yy6jSZjVR6I0OeuR4PIo57rN5Cx8R96SJMemOqBmU0kZhNrsgeTfQ%2B7WsByBzYl6PACuSDILUFOCXJJkKcEeafY5cpWbHGTK5uF3nGuHOdq0ddpa5vu6rQlYgJqejC82E6OyLNjA53Gnw%2BwJg5Lfj1kEaV%2Boxr4TRZFtCl4LRBB1Ixc7gkfVt66sDhTrdUa1zxIOwVqHWzIEXnlhQdI5Ig89c%2BvCOkQVg3B5POg2cugeQG6WmAj%2FtIybUTDbZRlHGlwXSBJp5GuO9vqiLw0GebKloVg%2B3O%2FBX8d%2FXz6NJgpkJgCH8m7BC11vX9F52Tnis4t%2BWYlSWVbbtDxoK%2BmNBVPfP6WWM%2B14UsLtnfrDTYGxuXtd4RNl2nMZdyy5It5ybkwi9owQb5dsu%2BJ8HJmV%2BczE2fJ8uULi0vtxAhrpY4HoPLg4g0wOSLPfPfhZIPPfXAf0gxgsgLtbJ8cB6QegiWbsMn%2B3C%2F%2F%2FjG88dl9WE1g1AknTBzkWdE3lfDkUkkCJU56GhawYn%2Fu9yfP3pt9sUAoHtnRN3T8mspi215Hy0yBpluI2wU6pkBHFaCqB5ud6qeJ2Z%2F7qToJhGqqHyoztRMqoz6dmDw%2BUlh5WAqqVZf6zboXBFQEYa3SiHyPU1qp%2BRXfp1WkdhT5O0v%2FAQAA%2F%2F8BAAD%2F%2FzKLm8qbBAAA HTTP/1.1
Host: greedcocoatouchy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Cookie: u_pl=20508906; uid_id2=9571cb06-0a90-4f1c-bcd0-0f657b1cd787:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec65bcfaa683769cffa9ed47e7f9f0d1e6=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:10:33 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c54feb8fe80e7be572fb08ac5f6a90df
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.yourwebbars.com/sb/notifications/gambling/default/android-btn/8/index.html

104.26.7.19

200 OK

480 B

URL GET HTTP/2
cdn.yourwebbars.com/sb/notifications/gambling/default/android-btn/8/index.html
IP
104.26.7.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49
ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT

File type
HTML document, ASCII text
Size
480 B (480 bytes)
Hash
988cd00695890a395de736ef1f43180a
fc35045adb5a0bb89e9150574db517cffb44b0c9
100f83963832c14a85c4d7095f0279b0962b83ee6323481ece9b1b2b39515036

HTTP Headers

GET /sb/notifications/gambling/default/android-btn/8/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:34 GMT
content-type: text/html
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=77C5GFfFxkFnDgCr10pZYqi3n45kqaLuiGZMQPF5QLhsUrzQTu3voo8nQTtKs8hiY5WuzOx466JL3Ady0%2Fj00XcBXnLUy2cGou8RzQvyB%2BEwLPflTT0TJUg4YR5NG32RnvLqpMA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eb7a6c0837b527-OSL
content-encoding: br
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/_nuxt/7291bffbse1.js

104.18.42.84

200 OK

209 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/7291bffbse1.js
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
209 kB (209280 bytes)
Hash
36ef848fced516fca9b1905a14a222e4
564cd1bc6d8ba7f5013f23a2486702dc43ba83da
32fd29d719ab80d99dfd95eace5ce63a2f55beda174921d5edb5c5e656dab392

HTTP Headers

GET /_nuxt/7291bffbse1.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/7291bffbse1.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9041c06-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/_nuxt/31ec54a9se11.js

104.18.42.84

200 OK

188 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/31ec54a9se11.js
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
188 kB (188254 bytes)
Hash
fc03fbaee979983aed0d75b8edf7f393
fb9496ee1857c9f7b6642000540643f1c412f9ec
dc7773546b5b3a7f0177c14a50cb76f0c50e520154167b96a9804aa0fb539858

HTTP Headers

GET /_nuxt/31ec54a9se11.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/31ec54a9se11.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4f09251c06-OSL
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

142.250.74.106

200 OK

1.2 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
gzip compressed data, max compression
Size
1.2 kB (1188 bytes)
Hash
d7f194b9ecb48cc1f7732aa11f657af8
78bf4b130952a61d8c6c199b28ba35e75efc5521
5d1db349bd4390728870488442f17c7eb56399a95005b3d423dc2dfdce5c0454

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 21:10:34 GMT
date: Sat, 04 May 2024 21:10:34 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

greedcocoatouchy.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fanimate.css&l=78693&fd=254

172.240.127.234

200 OK

0 B

URL GET HTTP/1.1
greedcocoatouchy.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fanimate.css&l=78693&fd=254
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerLet's Encrypt
Subjectgreedcocoatouchy.com
FingerprintFF:2D:AC:C6:23:1E:3B:BF:ED:36:B0:82:37:80:54:07:C0:C2:10:7E
ValidityMon, 29 Apr 2024 13:07:00 GMT - Sun, 28 Jul 2024 13:06:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fanimate.css&l=78693&fd=254 HTTP/1.1
Host: greedcocoatouchy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Cookie: u_pl=20508906; uid_id2=9571cb06-0a90-4f1c-bcd0-0f657b1cd787:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec65bcfaa683769cffa9ed47e7f9f0d1e6=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:10:34 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

greedcocoatouchy.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fstyle.css&l=3348&fd=403

172.240.127.234

200 OK

0 B

URL GET HTTP/1.1
greedcocoatouchy.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fstyle.css&l=3348&fd=403
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerLet's Encrypt
Subjectgreedcocoatouchy.com
FingerprintFF:2D:AC:C6:23:1E:3B:BF:ED:36:B0:82:37:80:54:07:C0:C2:10:7E
ValidityMon, 29 Apr 2024 13:07:00 GMT - Sun, 28 Jul 2024 13:06:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fstyle.css&l=3348&fd=403 HTTP/1.1
Host: greedcocoatouchy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Cookie: u_pl=20508906; uid_id2=9571cb06-0a90-4f1c-bcd0-0f657b1cd787:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec65bcfaa683769cffa9ed47e7f9f0d1e6=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:10:34 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cfstatic.livesports.mobi/_nuxt/css/0e43bae6.css

104.18.42.84

200 OK

4.8 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/css/0e43bae6.css
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
4.8 kB (4751 bytes)
Hash
82c7adb9c40f88c49b20804a07a5b575
a1b0e3174dad06badde860aefc6caecb3a397922
9d7670506ef39be3ca458da773f8330ecce530b38d622750b7597e03516f90f1

HTTP Headers

GET /_nuxt/css/0e43bae6.css HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/css/0e43bae6.css
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:06 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9011c06-OSL
X-Firefox-Spdy: h2

dapiaa.livesports.mobi/api/ftb/battletwodata?id=2437086

104.18.42.84

200 OK

34 kB

URL GET HTTP/2
dapiaa.livesports.mobi/api/ftb/battletwodata?id=2437086
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
34 kB (33942 bytes)
Hash
f032caaf65ac1332f3d0841bdf47852b
6337996d7fdef2c4701982d0c4de49dae9627b7a
f4d090ccf616d51f0e46b560116e8d79a8c60193f7425072e1087c74bc6c33f7

HTTP Headers

GET /api/ftb/battletwodata?id=2437086 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"0135CEAD1524B17BC5E4E9B00B3FFA5F"
x-frame-options: SAMEORIGIN
x-dapi-def-cache: MISS || 10s || /api/ftb/battletwodata?id=2437086
cache-control: public, max-age=5
content-encoding: gzip
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5c49de56ca-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/_nuxt/css/c5371279.css

104.18.42.84

200 OK

59 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/css/c5371279.css
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
59 kB (59246 bytes)
Hash
7b8764f81d0fa5aacdac9fbda876bf04
27744d0690eeb453d56e346642bbb1343b153c55
a7f295e4d472a2b96eed5a85b59ddd03224d24b85772fb74f1ab6e472e76cd45

HTTP Headers

GET /_nuxt/css/c5371279.css HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/css/c5371279.css
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:06 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4f09291c06-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/_nuxt/e7d6b0e9se10.js

104.18.42.84

200 OK

297 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/e7d6b0e9se10.js
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
297 kB (296604 bytes)
Hash
a3f319d3fb6878065acd2f4d23f42064
794664d933fdbc5f693d2a46fce23d818862d89a
0f1182de9b611c51001b7820c1a7bc33b54a34107e6680638b9afbdafee336b6

HTTP Headers

GET /_nuxt/e7d6b0e9se10.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: MISS || 30d || cfstatic.livesports.mobi/_nuxt/e7d6b0e9se10.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Sun, 28 Apr 2024 04:03:00 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4f192b1c06-OSL
X-Firefox-Spdy: h2

greedcocoatouchy.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzYscxRuu3uzvhyBB1FxUxDnkoJCd7Z6P7hlzWMzHyuKaDYmioBDqqyfl1nQ1Vd3Tkz0FA5Lj4CV4631mkyUaRf8Ao8wEPCwIO%2BJhD9mLRjAHUYR48CIzLll8D%2FW%2Bbz1PwVPP%2B360me%2BTGnK6d%2BZNs6G0povNql95%2Bd0gOFlZVUner%2FRb4aWwcbJie6%2B2w6r%2FSuV1ydfNYs0PfD%2Fwg8qysjI2%2FcUpCJXeaQfVtl9t1KpBs4G%2B%2FW%2Fvcg%2BOehC9ffIMlJjM3%2FOOQfERku6XZ6Rbz0x64mw31zQzFj2x%2FXaynpgiQfewjK2HONk%2BYMO43eW7MMnNmVyY3mMiUxPifXcXLNk%2BEAnW25rpZBoyARNPouiNIPUIio7AzTUosUsALnBuDUn31jljC3rlX5RO0QmZf%2FQnVDEh8%2FePIel%2BcUqrfuWi0XmmTOLQj0uo%2FgiqM0Kaj5FtzEEVY%2FDsQyjxPVl8tIqku7XmtIESe8fbzSjgzA8XfNr2FxpxwBcYF%2F6CH4fNiAVcRK1oZpBSI6h4BC0HoO4IcuchVx7y2EOeeuiKvQoPgiDyBad%2Bq815XUSShcIPaBQHNPDDFnI%2B%2FcMAWToA1wNwexWpvYp1NYDNv4W7XMIJDy4j6IkShSQoHEFBCQpFUGQERa%2B8KbSrufKW0C5nwUGuHeR6OTRZZ5PeNFlHJgTUDmBFuZnuk6enBnqt3x9iXe5VwibjMaVhqx6FbR7HtC1FI5JR3I59EcgQTt0%2BvbxQbzRalwIoNwfqPGyoCXnpuYdI1YQ88dfPYHQMp8fg6lnQ%2FEXQogS9XGIj%2BdxxY2XLb1VVEhsIUyLN5pFd8Tb1PnlhNsy1aw6S7yz9Ev2x%2F%2BPRo%2BC2RGpLfKDuEXT09eEFU5CtC6Zw5Ku1NFNdtUGng76Y0Uz%2B79M35JXCWLFyxg1uv8anwLS885Z02SpNhEo6jnx2Sgkh7bKxXJKvV9w7kp3P3eVTuU3ydPX86eWVbmqlc8okI1C1e%2FYGuJqQp755f7bBJ957AGVHsHmJbr5DDgLKjMHTq3DpztJPf%2F82vvHJAzhDYPUhh6Ueirwc2ho7vNSKQMvDnrISTu4s%2Ffr%2F4%2FcXny%2FB5GM7hpZOX1NVbrrr6Ng50Owakm6Jni3R0yWoHsDlR4ZZaneWfqjPAkzPDZm2c1tMW%2F3xzOTpkcGpvUrdFxGTsYyYbDQbseSCNZvM5zFnddFqcWRuEodbK%2F8AAAD%2F%2FwEAAP%2F%2Fsl9OIpsEAAA%3D

172.240.127.234

200 OK

7 B

URL GET HTTP/1.1
greedcocoatouchy.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzYscxRuu3uzvhyBB1FxUxDnkoJCd7Z6P7hlzWMzHyuKaDYmioBDqqyfl1nQ1Vd3Tkz0FA5Lj4CV4631mkyUaRf8Ao8wEPCwIO%2BJhD9mLRjAHUYR48CIzLll8D%2FW%2Bbz1PwVPP%2B360me%2BTGnK6d%2BZNs6G0povNql95%2Bd0gOFlZVUner%2FRb4aWwcbJie6%2B2w6r%2FSuV1ydfNYs0PfD%2Fwg8qysjI2%2FcUpCJXeaQfVtl9t1KpBs4G%2B%2FW%2Fvcg%2BOehC9ffIMlJjM3%2FOOQfERku6XZ6Rbz0x64mw31zQzFj2x%2FXaynpgiQfewjK2HONk%2BYMO43eW7MMnNmVyY3mMiUxPifXcXLNk%2BEAnW25rpZBoyARNPouiNIPUIio7AzTUosUsALnBuDUn31jljC3rlX5RO0QmZf%2FQnVDEh8%2FePIel%2BcUqrfuWi0XmmTOLQj0uo%2FgiqM0Kaj5FtzEEVY%2FDsQyjxPVl8tIqku7XmtIESe8fbzSjgzA8XfNr2FxpxwBcYF%2F6CH4fNiAVcRK1oZpBSI6h4BC0HoO4IcuchVx7y2EOeeuiKvQoPgiDyBad%2Bq815XUSShcIPaBQHNPDDFnI%2B%2FcMAWToA1wNwexWpvYp1NYDNv4W7XMIJDy4j6IkShSQoHEFBCQpFUGQERa%2B8KbSrufKW0C5nwUGuHeR6OTRZZ5PeNFlHJgTUDmBFuZnuk6enBnqt3x9iXe5VwibjMaVhqx6FbR7HtC1FI5JR3I59EcgQTt0%2BvbxQbzRalwIoNwfqPGyoCXnpuYdI1YQ88dfPYHQMp8fg6lnQ%2FEXQogS9XGIj%2BdxxY2XLb1VVEhsIUyLN5pFd8Tb1PnlhNsy1aw6S7yz9Ev2x%2F%2BPRo%2BC2RGpLfKDuEXT09eEFU5CtC6Zw5Ku1NFNdtUGng76Y0Uz%2B79M35JXCWLFyxg1uv8anwLS885Z02SpNhEo6jnx2Sgkh7bKxXJKvV9w7kp3P3eVTuU3ydPX86eWVbmqlc8okI1C1e%2FYGuJqQp755f7bBJ957AGVHsHmJbr5DDgLKjMHTq3DpztJPf%2F82vvHJAzhDYPUhh6Ueirwc2ho7vNSKQMvDnrISTu4s%2Ffr%2F4%2FcXny%2FB5GM7hpZOX1NVbrrr6Ng50Owakm6Jni3R0yWoHsDlR4ZZaneWfqjPAkzPDZm2c1tMW%2F3xzOTpkcGpvUrdFxGTsYyYbDQbseSCNZvM5zFnddFqcWRuEodbK%2F8AAAD%2F%2FwEAAP%2F%2Fsl9OIpsEAAA%3D
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerLet's Encrypt
Subjectgreedcocoatouchy.com
FingerprintFF:2D:AC:C6:23:1E:3B:BF:ED:36:B0:82:37:80:54:07:C0:C2:10:7E
ValidityMon, 29 Apr 2024 13:07:00 GMT - Sun, 28 Jul 2024 13:06:59 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSzYscxRuu3uzvhyBB1FxUxDnkoJCd7Z6P7hlzWMzHyuKaDYmioBDqqyfl1nQ1Vd3Tkz0FA5Lj4CV4631mkyUaRf8Ao8wEPCwIO%2BJhD9mLRjAHUYR48CIzLll8D%2FW%2Bbz1PwVPP%2B360me%2BTGnK6d%2BZNs6G0povNql95%2Bd0gOFlZVUner%2FRb4aWwcbJie6%2B2w6r%2FSuV1ydfNYs0PfD%2Fwg8qysjI2%2FcUpCJXeaQfVtl9t1KpBs4G%2B%2FW%2Fvcg%2BOehC9ffIMlJjM3%2FOOQfERku6XZ6Rbz0x64mw31zQzFj2x%2FXaynpgiQfewjK2HONk%2BYMO43eW7MMnNmVyY3mMiUxPifXcXLNk%2BEAnW25rpZBoyARNPouiNIPUIio7AzTUosUsALnBuDUn31jljC3rlX5RO0QmZf%2FQnVDEh8%2FePIel%2BcUqrfuWi0XmmTOLQj0uo%2FgiqM0Kaj5FtzEEVY%2FDsQyjxPVl8tIqku7XmtIESe8fbzSjgzA8XfNr2FxpxwBcYF%2F6CH4fNiAVcRK1oZpBSI6h4BC0HoO4IcuchVx7y2EOeeuiKvQoPgiDyBad%2Bq815XUSShcIPaBQHNPDDFnI%2B%2FcMAWToA1wNwexWpvYp1NYDNv4W7XMIJDy4j6IkShSQoHEFBCQpFUGQERa%2B8KbSrufKW0C5nwUGuHeR6OTRZZ5PeNFlHJgTUDmBFuZnuk6enBnqt3x9iXe5VwibjMaVhqx6FbR7HtC1FI5JR3I59EcgQTt0%2BvbxQbzRalwIoNwfqPGyoCXnpuYdI1YQ88dfPYHQMp8fg6lnQ%2FEXQogS9XGIj%2BdxxY2XLb1VVEhsIUyLN5pFd8Tb1PnlhNsy1aw6S7yz9Ev2x%2F%2BPRo%2BC2RGpLfKDuEXT09eEFU5CtC6Zw5Ku1NFNdtUGng76Y0Uz%2B79M35JXCWLFyxg1uv8anwLS885Z02SpNhEo6jnx2Sgkh7bKxXJKvV9w7kp3P3eVTuU3ydPX86eWVbmqlc8okI1C1e%2FYGuJqQp755f7bBJ957AGVHsHmJbr5DDgLKjMHTq3DpztJPf%2F82vvHJAzhDYPUhh6Ueirwc2ho7vNSKQMvDnrISTu4s%2Ffr%2F4%2FcXny%2FB5GM7hpZOX1NVbrrr6Ng50Owakm6Jni3R0yWoHsDlR4ZZaneWfqjPAkzPDZm2c1tMW%2F3xzOTpkcGpvUrdFxGTsYyYbDQbseSCNZvM5zFnddFqcWRuEodbK%2F8AAAD%2F%2FwEAAP%2F%2Fsl9OIpsEAAA%3D HTTP/1.1
Host: greedcocoatouchy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Cookie: u_pl=20508906; uid_id2=9571cb06-0a90-4f1c-bcd0-0f657b1cd787:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec65bcfaa683769cffa9ed47e7f9f0d1e6=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:10:34 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ba7a1bf6fee851919b324271ca2189ea
Strict-Transport-Security: max-age=0; includeSubdomains

greedcocoatouchy.com/pixel/sbs?c=1

172.240.108.84

200 OK

0 B

URL GET HTTP/1.1
greedcocoatouchy.com/pixel/sbs?c=1
IP
172.240.108.84:443
ASN
#7979 SERVERS-COM

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerLet's Encrypt
Subjectgreedcocoatouchy.com
FingerprintFF:2D:AC:C6:23:1E:3B:BF:ED:36:B0:82:37:80:54:07:C0:C2:10:7E
ValidityMon, 29 Apr 2024 13:07:00 GMT - Sun, 28 Jul 2024 13:06:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: greedcocoatouchy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Cookie: u_pl=20508906; uid_id2=9571cb06-0a90-4f1c-bcd0-0f657b1cd787:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec65bcfaa683769cffa9ed47e7f9f0d1e6=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:10:35 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cfapi.livesports.mobi/gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086

104.18.42.84

200 OK

17 B

URL GET HTTP/2
cfapi.livesports.mobi/gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
JSON text data
Size
17 B (17 bytes)
Hash
f73a72e9fc2875e3d313370d0a31d6da
9d0e0415fb4ed6a369e98c97fe7e864826409927
c0926d73b6ca2e1dde2aed9d6294fd8b5eebb3035e8f92f3dff894d5f6da75fd

HTTP Headers

GET /gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086 HTTP/1.1
Host: cfapi.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:35 GMT
content-type: application/json; charset=utf-8
content-length: 17
etag: "938C0C8EA06EC8AAB34D868931A171B1"
x-frame-options: SAMEORIGIN
x-cfapi-cache: MISS || 60s || /gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086
cache-control: public, max-age=60
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a762fa756ca-OSL
X-Firefox-Spdy: h2

cfapi.livesports.mobi/gate5babd00de944d27d1a571dc366/api/ftb/detail/odds?matchId=2437086

104.18.42.84

200 OK

86 B

URL GET HTTP/2
cfapi.livesports.mobi/gate5babd00de944d27d1a571dc366/api/ftb/detail/odds?matchId=2437086
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
86 B (86 bytes)
Hash
f3bae0548c97be39ad1a60224528e6f3
d443d11a7ecb39f41eb3592fe2b7fcb825cedc28
f8280f8d23e032aec55c8cbce527ab3f37b65ccf57c67e9f675f4e5e6b3961b6

HTTP Headers

GET /gate5babd00de944d27d1a571dc366/api/ftb/detail/odds?matchId=2437086 HTTP/1.1
Host: cfapi.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:35 GMT
content-type: application/json; charset=utf-8
etag: W/"CD8206CE913072C0D56A6E9892F99DC9"
x-frame-options: SAMEORIGIN
x-cfapi-cache: MISS || 60s || /gate5babd00de944d27d1a571dc366/api/ftb/detail/odds?matchId=2437086
cache-control: public, max-age=60
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a762faa56ca-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

dapiaa.livesports.mobi/api/vc?reqs=3&reqs=4&reqs=5&matchId=2437086

104.18.42.84

200 OK

2.4 kB

URL GET HTTP/2
dapiaa.livesports.mobi/api/vc?reqs=3&reqs=4&reqs=5&matchId=2437086
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
2.4 kB (2443 bytes)
Hash
51fdd996be8e1ddd4f73bbf96b1f7039
97fc5f97f71a7fffa849eab7eaf044a0d28dff48
619c5c0af571fefe1a49d7c8ffe20a97e592fc233733d111d2a940eb4febf676

HTTP Headers

GET /api/vc?reqs=3&reqs=4&reqs=5&matchId=2437086 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:37 GMT
content-type: application/json; charset=utf-8
etag: W/"DBB9DBD85899162B7ED698A4495E828B"
x-frame-options: SAMEORIGIN
x-dapi-cache: EXPIRED || 2s || /api/vc?reqs=3&reqs=4&reqs=5&matchId=2437086
cache-control: public, max-age=3
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a818cb956ca-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cfapi.livesports.mobi/gate715ea6237b1c756a733a75758e8fc5cb9549d5396a/api/ftb/detail?d=us.marza13.com&id=2437086

104.18.42.84

200 OK

8.9 kB

URL GET HTTP/2
cfapi.livesports.mobi/gate715ea6237b1c756a733a75758e8fc5cb9549d5396a/api/ftb/detail?d=us.marza13.com&id=2437086
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
8.9 kB (8931 bytes)
Hash
bfc94a0337ca0f1c832b4d948c839d42
9ce8c63af499f2a431cab9244495c2b9e61d115c
30024bc30c450514a5321ba30c5cd20835d1978ac93b055c4ae7a7fa0ed2f005

HTTP Headers

GET /gate715ea6237b1c756a733a75758e8fc5cb9549d5396a/api/ftb/detail?d=us.marza13.com&id=2437086 HTTP/1.1
Host: cfapi.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:37 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"30E84B60B60C2454466D91F8E95F263F"
x-frame-options: SAMEORIGIN
x-cfapi-cache: MISS || 60s || /gate715ea6237b1c756a733a75758e8fc5cb9549d5396a/api/ftb/detail?d=us.marza13.com&id=2437086
cache-control: public, max-age=60
content-encoding: gzip
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a81bcfd56ca-OSL
X-Firefox-Spdy: h2

cfapi.livesports.mobi/gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086

104.18.42.84

200 OK

17 B

URL GET HTTP/2
cfapi.livesports.mobi/gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
JSON text data
Size
17 B (17 bytes)
Hash
f73a72e9fc2875e3d313370d0a31d6da
9d0e0415fb4ed6a369e98c97fe7e864826409927
c0926d73b6ca2e1dde2aed9d6294fd8b5eebb3035e8f92f3dff894d5f6da75fd

HTTP Headers

GET /gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086 HTTP/1.1
Host: cfapi.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:40 GMT
content-type: application/json; charset=utf-8
content-length: 17
etag: "938C0C8EA06EC8AAB34D868931A171B1"
x-frame-options: SAMEORIGIN
x-cfapi-cache: MISS || 60s || /gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086
cache-control: public, max-age=60
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a961cc956ca-OSL
X-Firefox-Spdy: h2

cfapi.livesports.mobi/gate5babd00de944d27d1a571dc366/api/ftb/detail/odds?matchId=2437086

104.18.42.84

200 OK

174 B

URL GET HTTP/2
cfapi.livesports.mobi/gate5babd00de944d27d1a571dc366/api/ftb/detail/odds?matchId=2437086
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
174 B (174 bytes)
Hash
d59c7d7ab3498415baae26c50a37b3cd
e209baba1c0c5f0dfa1a20489e2959d35c443f20
df4f0643da38649cd86c99b2b4143937813908e3f75e489e158b2b9bc35a7fdd

HTTP Headers

GET /gate5babd00de944d27d1a571dc366/api/ftb/detail/odds?matchId=2437086 HTTP/1.1
Host: cfapi.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:40 GMT
content-type: application/json; charset=utf-8
etag: W/"CD8206CE913072C0D56A6E9892F99DC9"
x-frame-options: SAMEORIGIN
x-cfapi-cache: MISS || 60s || /gate5babd00de944d27d1a571dc366/api/ftb/detail/odds?matchId=2437086
cache-control: public, max-age=60
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a961cd056ca-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cfapi.livesports.mobi/gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086

104.18.42.84

200 OK

17 B

URL GET HTTP/2
cfapi.livesports.mobi/gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
JSON text data
Size
17 B (17 bytes)
Hash
f73a72e9fc2875e3d313370d0a31d6da
9d0e0415fb4ed6a369e98c97fe7e864826409927
c0926d73b6ca2e1dde2aed9d6294fd8b5eebb3035e8f92f3dff894d5f6da75fd

HTTP Headers

GET /gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086 HTTP/1.1
Host: cfapi.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:46 GMT
content-type: application/json; charset=utf-8
content-length: 17
etag: "938C0C8EA06EC8AAB34D868931A171B1"
x-frame-options: SAMEORIGIN
x-cfapi-cache: MISS || 60s || /gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086
cache-control: public, max-age=60
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7abbaa3d56ca-OSL
X-Firefox-Spdy: h2

cfapi.livesports.mobi/gate715ea6237b1c756a733a75758e8fc5cb9549d5396a/api/ftb/detail?d=us.marza13.com&id=2437086

104.18.42.84

200 OK

2.6 kB

URL GET HTTP/2
cfapi.livesports.mobi/gate715ea6237b1c756a733a75758e8fc5cb9549d5396a/api/ftb/detail?d=us.marza13.com&id=2437086
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
2.6 kB (2584 bytes)
Hash
fdf4f426499739865a33cde7aabfca2c
3cfc12f9e7faa069382bc507767dde1fdda51d72
8aa0e6d7d26d0e35ab00aa9ede72ac50549569294d5b9509a8b455db88f8b243

HTTP Headers

GET /gate715ea6237b1c756a733a75758e8fc5cb9549d5396a/api/ftb/detail?d=us.marza13.com&id=2437086 HTTP/1.1
Host: cfapi.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:40 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"30E84B60B60C2454466D91F8E95F263F"
x-frame-options: SAMEORIGIN
x-cfapi-cache: MISS || 60s || /gate715ea6237b1c756a733a75758e8fc5cb9549d5396a/api/ftb/detail?d=us.marza13.com&id=2437086
cache-control: public, max-age=60
content-encoding: gzip
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a961ccb56ca-OSL
X-Firefox-Spdy: h2

dapiaa.livesports.mobi/api/vc?reqs=3&reqs=4&reqs=5&matchId=2437086

104.18.42.84

200 OK

105 B

URL GET HTTP/2
dapiaa.livesports.mobi/api/vc?reqs=3&reqs=4&reqs=5&matchId=2437086
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
gzip compressed data, from Unix
Size
105 B (105 bytes)
Hash
594491e3f98d08f672efb3a1a864401e
1c05a59638073298185dc15b8443ea711f7cb444
bf0d05d9c917b2d8952c28a5c7f565b1df2bec032532a9c2a526399450d1b902

HTTP Headers

GET /api/vc?reqs=3&reqs=4&reqs=5&matchId=2437086 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:52 GMT
content-type: application/json; charset=utf-8
etag: W/"DBB9DBD85899162B7ED698A4495E828B"
x-frame-options: SAMEORIGIN
x-dapi-cache: EXPIRED || 2s || /api/vc?reqs=3&reqs=4&reqs=5&matchId=2437086
cache-control: public, max-age=3
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7adf3e3556ca-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/animate.css

104.21.70.253

200 OK

79 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/animate.css
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
79 kB (78693 bytes)
Hash
49a38187f94418e173e4bcc50c96dc4b
b64e899d0c6bbb13e6f63e191b77b3eb5e5a6293
92db03d6a48c8756e15b1b2ffb9d1ea5aae5e2d9a706b630f93f73e3debbb3b0

HTTP Headers

GET /sb/notifications/gambling/default/android-btn/8/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:34 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: W/"65aa8644-13365"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F7hP%2FbfDfMIN3%2FqiuJn2Ed%2BXpFkX5JMivqz7ZhW2EQPvvlHXS3dcsHdqeYggf16280z0kfFz%2BH%2FRrNsANqTXWIJgfFC3S8K5W%2FKYbTxlblDFqhNugpSyb7v1Ys6yo9fet4ixr%2B73Gqav"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eb7a707fcfb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/_nuxt/88c8a109se0.js

104.18.42.84

200 OK

1.5 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/88c8a109se0.js
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
JavaScript source, ASCII text, with very long lines (1489), with no line terminators
Size
1.5 kB (1488 bytes)
Hash
349935d871de1f1401be88d91c784e2a
213a5571f99c1cfa488e780f4424a5c465ebf875
74b3b9f8fd84588a01bb8bf7984730dde05007f58fd791472968dab7100a4f77

HTTP Headers

GET /_nuxt/88c8a109se0.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/88c8a109se0.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9021c06-OSL
X-Firefox-Spdy: h2

cfcdn.livesports.mobi/zqwin007/Image/team/images/2204/1gqrkhaxrb13.png?v=1

0.0.0.0

0 B

URL GET
cfcdn.livesports.mobi/zqwin007/Image/team/images/2204/1gqrkhaxrb13.png?v=1
IP
0.0.0.0:0
ASN
#0

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /zqwin007/Image/team/images/2204/1gqrkhaxrb13.png?v=1 HTTP/1.1
Host: cfcdn.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: image/png
last-modified: Fri, 27 Jan 2023 03:15:01 GMT
vary: Accept-Encoding
etag: W/"63d341b5-316c"
expires: Sun, 31 Mar 2024 00:38:38 GMT
content-encoding: gzip
x-cache: zqwin007:/Image/team/images/2204/1gqrkhaxrb13.png|30d|HIT
cache-control: public, max-age=2592000
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4f09261c06-OSL
X-Firefox-Spdy: h2

greedcocoatouchy.com/sbar.json?key=65bcfaa683769cffa9ed47e7f9f0d1e6&psid=CF-3448_1&uuid=9571cb06-0a90-4f1c-bcd0-0f657b1cd787%3A3%3A1

172.240.127.234

200 OK

12 kB

URL GET HTTP/1.1
greedcocoatouchy.com/sbar.json?key=65bcfaa683769cffa9ed47e7f9f0d1e6&psid=CF-3448_1&uuid=9571cb06-0a90-4f1c-bcd0-0f657b1cd787%3A3%3A1
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerLet's Encrypt
Subjectgreedcocoatouchy.com
FingerprintFF:2D:AC:C6:23:1E:3B:BF:ED:36:B0:82:37:80:54:07:C0:C2:10:7E
ValidityMon, 29 Apr 2024 13:07:00 GMT - Sun, 28 Jul 2024 13:06:59 GMT

File type
JSON text data
Size
12 kB (11951 bytes)
Hash
6507fc757510d2901c1d6a0625402767
295fcf70f93ac7d8b055d6abd06cd211dbf2d848
22fff54c01ca2653b788fffb0218fe8b57624fc87f96e12521190c0e86b9a94b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sbar.json?key=65bcfaa683769cffa9ed47e7f9f0d1e6&psid=CF-3448_1&uuid=9571cb06-0a90-4f1c-bcd0-0f657b1cd787%3A3%3A1 HTTP/1.1
Host: greedcocoatouchy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:10:33 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://us.marza13.com
Access-Control-Allow-Origin: https://us.marza13.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=20508906; expires=Sun, 05 May 2024 21:10:33 GMT; secure; SameSite=None
uid_id2=9571cb06-0a90-4f1c-bcd0-0f657b1cd787:3:1; expires=Sat, 11 May 2024 21:10:33 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 05 May 2024 21:10:33 GMT; secure; SameSite=None
uncs=1; expires=Sun, 05 May 2024 21:10:33 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sun, 05 May 2024 21:10:33 GMT; secure; SameSite=None
uncs29=1; expires=Sun, 05 May 2024 21:10:33 GMT; secure; SameSite=None
slec65bcfaa683769cffa9ed47e7f9f0d1e6=[5210995,5210996]; expires=Sat, 04 May 2024 21:10:38 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0fe5be127329766c69e9760f0f2d145c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

cfstatic.livesports.mobi/_nuxt/5b8d2e1ase21.js

104.18.42.84

200 OK

1.4 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/5b8d2e1ase21.js
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
JavaScript source, ASCII text, with very long lines (1411), with no line terminators
Size
1.4 kB (1404 bytes)
Hash
46ad232e678fa7a93676681810f81277
6ea390693a0a42cbb9c09e1a863e954f99b48b3f
9afd8de456557a6da950e99124f1a111765017201ad09a92a2a2371d739f6db0

HTTP Headers

GET /_nuxt/5b8d2e1ase21.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/5b8d2e1ase21.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed8ff1c06-OSL
X-Firefox-Spdy: h2

cfcdn.livesports.mobi/prod/svimg/a9775d6e-1ca0-478e-9d17-d6dac83f31b0.gif

0.0.0.0

0 B

URL GET
cfcdn.livesports.mobi/prod/svimg/a9775d6e-1ca0-478e-9d17-d6dac83f31b0.gif
IP
0.0.0.0:0
ASN
#0

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /prod/svimg/a9775d6e-1ca0-478e-9d17-d6dac83f31b0.gif HTTP/1.1
Host: cfcdn.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Sat, 04 May 2024 02:42:25 GMT
etag: W/"1da9dccb23b2a67"
content-encoding: gzip
cache-control: public, max-age=31536000
x-cache: svimg/prod|30d|MISS|/svimg/a9775d6e-1ca0-478e-9d17-d6dac83f31b0.gif
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a6219741c06-OSL
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/close.svg

104.21.70.253

200 OK

1.3 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/close.svg
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
SVG Scalable Vector Graphics image
Size
1.3 kB (1279 bytes)
Hash
24937fd159a21f2e91207d5788e86c70
1b07e0334cc16c5cd659de56314bd2188e3a82f9
b38a482faa1471a520d231f954412ee0293b0401610af1392038be206dc51b8a

HTTP Headers

GET /sb/notifications/gambling/default/android-btn/8/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:34 GMT
content-type: image/svg+xml
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: W/"65aa8644-4ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 359018
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QUfo4rCwEZ1c28ddnLaix7wNPK64MAXHbCHAYMAWRwHNXa4xOJJ9EgPFQDzRfes9Pg2sNIQuG8r2aFskH6adQkbcOtJeUyi0HLrqKFnkxxq1zSbDRxQwlEZVG25WmRnvDw0sEdtpZLV%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eb7a70a822b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/img/icon-ball-1.png

104.18.42.84

200 OK

497 B

URL GET HTTP/2
cfstatic.livesports.mobi/img/icon-ball-1.png
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
PNG image data, 32 x 32, 8-bit colormap, non-interlaced
Size
497 B (497 bytes)
Hash
0a900b2dcc4196c9a95bcedca4970f5a
493e077f242890ba7500fa25e3b8fd6285ed91b5
c038858eae47cbf38c362e462fb255dbe943c83a301cb87cdb7e5a292534a4d3

HTTP Headers

GET /img/icon-ball-1.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: image/png
content-length: 497
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/icon-ball-1.png
cache-control: public, max-age=2592000
last-modified: Thu, 25 Apr 2024 09:21:06 GMT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a65bc751c06-OSL
X-Firefox-Spdy: h2

us.marza13.com/football/2437086-alnassr-vs-alwehda.html

188.114.96.1

200 OK

20 kB

URL User Request GET HTTP/2
us.marza13.com/football/2437086-alnassr-vs-alwehda.html
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectmarza13.com
FingerprintEE:FF:A7:54:29:A7:72:1D:3C:AE:4A:CA:71:F8:05:53:A4:16:57:B3
ValidityFri, 26 Apr 2024 02:23:09 GMT - Thu, 25 Jul 2024 02:23:08 GMT

File type

Size
20 kB (20087 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /football/2437086-alnassr-vs-alwehda.html HTTP/1.1
Host: us.marza13.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cache-control: public, max-age=66
etag: W/"4e77-1n5GGDV4WPxs8bLm/HcFhSWUuc8"
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: *
x-cache: MISS || 3600s || us.marza13.com/football/2437086-alnassr-vs-alwehda.html
cf-cache-status: HIT
age: 9616
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O1VD1xaLg6D6rYfCGjUcNSYYNfHrHsCxx8wEVCDO4rgXkKYeMNqm7NKDxQSQJSuCIuU5Nead1mlvFfmOmdJeHB4g7nspK7uRCBk3rqtCbMkyeLXwk9QR2M5uic1Xy27QtA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000; includeSubDomains; preload
server: cloudflare
cf-ray: 87eb7a4c68490b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/_nuxt/css/8fd559fa.css

104.18.42.84

200 OK

946 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/css/8fd559fa.css
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
946 kB (946448 bytes)
Hash
6afcb654db05abea336ce0903834ed2f
141558e7cb0e630102aa6858f1b77a59e4427a39
19dcddb1fc227b38da30debae3a1631127493e808169665736d5cb9dbd34f614

HTTP Headers

GET /_nuxt/css/8fd559fa.css HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: MISS || 30d || cfstatic.livesports.mobi/_nuxt/css/8fd559fa.css
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Sun, 28 Apr 2024 04:03:00 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9051c06-OSL
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/bonus-stars-6593305-5446274.mp4

104.21.70.253

206 Partial Content

34 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/bonus-stars-6593305-5446274.mp4
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]
Size
34 kB (34238 bytes)
Hash
69e52ff16a779d8ab66a1156cc50ab23
27f8897a2acc3bcfd319c267d137aaa4650fb3c5
2048e8325f6d17e0fefb2226c4191a9e300c562f2bc46543ac616d49ff971d61

HTTP Headers

GET /sb/notifications/gambling/default/android-btn/8/img/bonus-stars-6593305-5446274.mp4 HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
date: Sat, 04 May 2024 21:10:34 GMT
content-type: video/mp4
content-length: 34238
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: "65aa8644-85be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 354652
content-range: bytes 0-34237/34238
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HFy%2FtctCpzEJvES%2F%2FpNg1rAsXDCs%2FIJQg2%2BkyL3QPxrFwZlBvo9GxV2DfKHQTzEz0JKOax5HOf98Z4ZR5Fe512EJ%2F%2F4meFMmU7a09qP2pJEK7wDpi3VJxIl8YHNvQfziz0tLUIISc8JJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eb7a70a83bb50c-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/_nuxt/5443376ase5.js

104.18.42.84

200 OK

1.9 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/5443376ase5.js
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
JavaScript source, ASCII text, with very long lines (1906), with no line terminators
Size
1.9 kB (1905 bytes)
Hash
27c882094e18bf5c4d789e3d18a973ef
2045f2cd1ae2b928020126bbd29f9579fbd5758f
37438e1400c40ccfa0d9ad3501a4d26ce180c2a3d5b4021ed3eee25168e40c66

HTTP Headers

GET /_nuxt/5443376ase5.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:29 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/5443376ase5.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a555e671c06-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/_nuxt/cc721da1se35.js

104.18.42.84

200 OK

306 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/cc721da1se35.js
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type

Size
306 kB (305785 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_nuxt/cc721da1se35.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: MISS || 30d || cfstatic.livesports.mobi/_nuxt/cc721da1se35.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Sun, 28 Apr 2024 04:03:00 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9061c06-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/img/1st/apple-touch-icon.png

0.0.0.0

0 B

URL GET
cfstatic.livesports.mobi/img/1st/apple-touch-icon.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /img/1st/apple-touch-icon.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:30 GMT
content-type: image/png
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/1st/apple-touch-icon.png
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a55ae971c06-OSL
X-Firefox-Spdy: h2

dapiaa.livesports.mobi/api/getFocusMatch?category=1

104.18.42.84

200 OK

2.4 kB

URL GET HTTP/2
dapiaa.livesports.mobi/api/getFocusMatch?category=1
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
ASCII text, with very long lines (2680), with no line terminators
Size
2.4 kB (2440 bytes)
Hash
187fe1c24ee466f98a58930e8bfa2789
aac21fa8e918850a0d7330c9044b111269c50120
179e15714d5eb8372c15b195c4a2577d97d0fb18f99a54ebbd4e60259bf39f00

HTTP Headers

GET /api/getFocusMatch?category=1 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"7D9F22DCCD951280E6A055693D26605A"
x-frame-options: SAMEORIGIN
x-dapi-cache: EXPIRED || 7s || /api/getFocusMatch?category=1
cache-control: public, max-age=120
content-encoding: gzip
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5c29cb56ca-OSL
X-Firefox-Spdy: h2

dapiaa.livesports.mobi/api/ftb/battledata?id=2437086

104.18.42.84

200 OK

1.7 kB

URL GET HTTP/2
dapiaa.livesports.mobi/api/ftb/battledata?id=2437086
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1928), with no line terminators
Size
1.7 kB (1718 bytes)
Hash
0ed0062fc920cda939c5cc19d287bf81
130241e5a4cf494b21394f9053fec2b09d169e98
1a5be30c15e98e1a528b78f4e82cc0a3b70c481b984c1be40fe091cdcfd603f8

HTTP Headers

GET /api/ftb/battledata?id=2437086 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"99E6746B1BE4DAE1A0F5D6A5F09FE539"
x-frame-options: SAMEORIGIN
x-dapi-def-cache: MISS || 10s || /api/ftb/battledata?id=2437086
cache-control: public, max-age=5
content-encoding: gzip
cf-cache-status: REVALIDATED
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5c39d156ca-OSL
X-Firefox-Spdy: h2

dapiaa.livesports.mobi/api/ftb/detail/changes?matchId=2437086

104.18.42.84

200 OK

17 B

URL GET HTTP/2
dapiaa.livesports.mobi/api/ftb/detail/changes?matchId=2437086
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
17 B (17 bytes)
Hash
99c806388d7bb25a4587cd2342e64c0d
ff8f57cec4366de4cd65f5ae3fa861452f0b4cd0
5e5fedf902caa7ae4cae7566ed0695094bcc0b830299cf2a6d26cf040b207029

HTTP Headers

GET /api/ftb/detail/changes?matchId=2437086 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:31 GMT
content-type: application/json; charset=utf-8
content-length: 17
etag: "938C0C8EA06EC8AAB34D868931A171B1"
x-frame-options: SAMEORIGIN
x-dapi-def-cache: EXPIRED || 10s || /api/ftb/detail/changes?matchId=2437086
cache-control: public, max-age=5
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5c39d656ca-OSL
X-Firefox-Spdy: h2

dapiaa.livesports.mobi/api/ftb/detail/odds?matchId=2437086

104.18.42.84

200 OK

83 B

URL GET HTTP/2
dapiaa.livesports.mobi/api/ftb/detail/odds?matchId=2437086
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
83 B (83 bytes)
Hash
b10746e52d6cdf4bd0d565b584bdc862
684f6c464ee35f53998df2443730d607612a39f7
29c76b45f0c22f0a34959af426dc3c3d5dedbdbb852c286fbd39561a780fb934

HTTP Headers

GET /api/ftb/detail/odds?matchId=2437086 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:31 GMT
content-type: application/json; charset=utf-8
etag: W/"CD8206CE913072C0D56A6E9892F99DC9"
x-frame-options: SAMEORIGIN
x-dapi-def-cache: EXPIRED || 10s || /api/ftb/detail/odds?matchId=2437086
cache-control: public, max-age=5
cf-cache-status: REVALIDATED
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5c39d956ca-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/img/1st/icon_clock.png

104.18.42.84

200 OK

913 B

URL GET HTTP/2
cfstatic.livesports.mobi/img/1st/icon_clock.png
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
PNG image data, 42 x 36, 8-bit/color RGBA, non-interlaced
Size
913 B (913 bytes)
Hash
f331755822bd8e53cf4573ee3705e4e2
9c2b943dcee163a6d956c95dcdb676c80202d41d
6cd6756012fc64567df068aecb0fbfcf2cac0ad0cc20b85a0e0b336e97f19bdf

HTTP Headers

GET /img/1st/icon_clock.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cfstatic.livesports.mobi/_nuxt/css/8fd559fa.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: image/png
content-length: 913
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/1st/icon_clock.png
cache-control: public, max-age=2592000
last-modified: Mon, 29 Apr 2024 15:55:58 GMT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a668d1c1c06-OSL
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:55:00 GMT
expires: Fri, 02 May 2025 01:55:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 242134
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/js/script.js

104.21.70.253

200 OK

9.5 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/js/script.js
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
Unicode text, UTF-8 text, with very long lines (8821), with no line terminators
Size
9.5 kB (9466 bytes)
Hash
d0707ac5d95047febbb8f131cc7a9af4
65021f149e99900eeaf7d298d2303160872b43f3
3e2e7ab351d401339df520fbd7ce4f177643dca01cad22bf59dd4b3e14853810

HTTP Headers

GET /sb/notifications/gambling/default/android-btn/8/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:34 GMT
content-type: application/javascript
last-modified: Tue, 20 Feb 2024 10:37:31 GMT
etag: W/"65d480eb-24fa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t4gMoF68OSMF8QV6x09VEupPtAI7clmFG6oM6T7Ca3v%2Fj%2FqWwbXVaaAxUxbUMI6ToyQBK6If%2BCinh52v8g5A%2FlSv64VIe3z%2F7qptdMqPuyw%2Fdru2PyaFJukI8hFgth2UN7KJqFs5GwYW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eb7a707fd4b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

matchgress-api.livesports.mobi/flashdata/get?id=2437086&t=1714857035

104.18.42.84

200 OK

3.4 kB

URL GET HTTP/2
matchgress-api.livesports.mobi/flashdata/get?id=2437086&t=1714857035
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
Unicode text, UTF-8 text, with very long lines (3356), with no line terminators
Size
3.4 kB (3398 bytes)
Hash
9957accae7f0472c1d2f2cc78077f595
5f7a61c62f26143a2aca6d34294a42523466eec8
fa9b9a4ccc3266891016407f87f7478e9ea86535e20a3fb0966282b3e049c0f9

HTTP Headers

GET /flashdata/get?id=2437086&t=1714857035 HTTP/1.1
Host: matchgress-api.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:33 GMT
content-type: text/plain; charset=utf-8
vary: Accept-Encoding
last-modified: Sat, 04 May 2024 19:57:34 GMT
content-encoding: br
cf-cache-status: HIT
expires: Sat, 04 May 2024 21:11:03 GMT
cache-control: public, max-age=30
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a66ae6b56ca-OSL
X-Firefox-Spdy: h2

cfcdn.livesports.mobi/zqwin007/Image/team/images/3412/1h6mrbjn1a2g.png?v=1

0.0.0.0

0 B

URL GET
cfcdn.livesports.mobi/zqwin007/Image/team/images/3412/1h6mrbjn1a2g.png?v=1
IP
0.0.0.0:0
ASN
#0

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /zqwin007/Image/team/images/3412/1h6mrbjn1a2g.png?v=1 HTTP/1.1
Host: cfcdn.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: image/png
last-modified: Mon, 31 Jul 2023 01:17:45 GMT
vary: Accept-Encoding
etag: W/"64c70bb9-4df0"
expires: Wed, 01 May 2024 10:54:57 GMT
content-encoding: gzip
x-cache: zqwin007:/Image/team/images/3412/1h6mrbjn1a2g.png|30d|HIT
cache-control: public, max-age=2592000
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4f09271c06-OSL
X-Firefox-Spdy: h2

complementnickel.com/c85408c470ed8e74309a6963405446dc/invoke.js

192.243.59.13

200 OK

27 kB

URL GET HTTP/1.1
complementnickel.com/c85408c470ed8e74309a6963405446dc/invoke.js
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerLet's Encrypt
Subjectcomplementnickel.com
Fingerprint39:EC:9A:D0:3C:1D:CD:B8:4C:51:46:DD:17:76:67:E0:E7:FC:24:85
ValidityFri, 15 Mar 2024 06:52:17 GMT - Thu, 13 Jun 2024 06:52:16 GMT

File type

Size
27 kB (26866 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /c85408c470ed8e74309a6963405446dc/invoke.js HTTP/1.1
Host: complementnickel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 21:10:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5e1fce7de3a03a1e7fae301e2084bdd6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

cfstatic.livesports.mobi/_nuxt/css/0812f467.css

104.18.42.84

200 OK

40 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/css/0812f467.css
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
ASCII text, with very long lines (39860), with no line terminators
Size
40 kB (39860 bytes)
Hash
65bb6d7e819ede57bee58d7e8c344419
baacb1f7b9ca637feb9aad12b46851ac46c27d41
4128dd291f093924bb0a813fd9302653d17c3b541cf3ada7081841c79476ead0

HTTP Headers

GET /_nuxt/css/0812f467.css HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/css/0812f467.css
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9031c06-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/_nuxt/css/60976d48.css

104.18.42.84

200 OK

33 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/css/60976d48.css
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
ASCII text, with very long lines (33423), with no line terminators
Size
33 kB (33423 bytes)
Hash
229f61de5b5bbebf04962140a316f6b8
ce066dc3e1b01dce14ff48b9997abe8a72c5230f
d121384003e759b183238c34c41543ff64a702a084e60a9f2588d9f728f38775

HTTP Headers

GET /_nuxt/css/60976d48.css HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/css/60976d48.css
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed8fc1c06-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/_nuxt/css/7a554008.css

104.18.42.84

200 OK

34 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/css/7a554008.css
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
ASCII text, with very long lines (33529), with no line terminators
Size
34 kB (33529 bytes)
Hash
f2e891efdabf5a9dcc45ac192dd9eb24
3ba0de0cda0c1529faf863c45c168424c0c088d8
1450212ac5665ce761169ca6cd95c2f5337207562e74180468c501c99a62a55d

HTTP Headers

GET /_nuxt/css/7a554008.css HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:29 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/css/7a554008.css
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a555e631c06-OSL
X-Firefox-Spdy: h2

smashedpractice.com/65/bc/fa/65bcfaa683769cffa9ed47e7f9f0d1e6.js

172.240.127.234

200 OK

45 kB

URL GET HTTP/1.1
smashedpractice.com/65/bc/fa/65bcfaa683769cffa9ed47e7f9f0d1e6.js
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerLet's Encrypt
Subjectsmashedpractice.com
Fingerprint05:60:8C:52:B5:AD:96:13:FA:53:89:15:B7:74:7F:43:99:E8:07:92
ValidityMon, 29 Apr 2024 08:31:36 GMT - Sun, 28 Jul 2024 08:31:35 GMT

File type
JavaScript source, ASCII text, with very long lines (45303), with no line terminators
Size
45 kB (45303 bytes)
Hash
8553936fe53236c536d461abb7f1a712
7eb9b377f570d2ea701d8d97b50039ee53ff64ab
4a4dc867ed385e7a2e3de13bce58be63d2cbcf96229f69a92d4599bae7eeff81

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /65/bc/fa/65bcfaa683769cffa9ed47e7f9f0d1e6.js HTTP/1.1
Host: smashedpractice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:10:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-3448=1; expires=Wed, 08 May 2024 00:10:32 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6f13dffc97643d305d85a157975ac050
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

cfstatic.livesports.mobi/img/icon-back.png

0.0.0.0

0 B

URL GET
cfstatic.livesports.mobi/img/icon-back.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /img/icon-back.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: image/png
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/icon-back.png
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:10 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ef9151c06-OSL
X-Firefox-Spdy: h2

greedcocoatouchy.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Findex.html&l=1444&fd=627

172.240.127.234

200 OK

0 B

URL GET HTTP/1.1
greedcocoatouchy.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Findex.html&l=1444&fd=627
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerLet's Encrypt
Subjectgreedcocoatouchy.com
FingerprintFF:2D:AC:C6:23:1E:3B:BF:ED:36:B0:82:37:80:54:07:C0:C2:10:7E
ValidityMon, 29 Apr 2024 13:07:00 GMT - Sun, 28 Jul 2024 13:06:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Findex.html&l=1444&fd=627 HTTP/1.1
Host: greedcocoatouchy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Cookie: u_pl=20508906; uid_id2=9571cb06-0a90-4f1c-bcd0-0f657b1cd787:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec65bcfaa683769cffa9ed47e7f9f0d1e6=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:10:34 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/confetti.gif

104.21.70.253

200 OK

206 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/confetti.gif
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
GIF image data, version 89a, 480 x 360
Size
206 kB (206291 bytes)
Hash
0b33face774f2203446507ce5f075538
1dd3522529bce7739df0687f47f5bc84356698a0
ac345899461d5634d25c47281b10e3c1886abb33019e2ce8140573a79e9f52f2

HTTP Headers

GET /sb/notifications/gambling/default/android-btn/8/img/confetti.gif HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:34 GMT
content-type: image/gif
content-length: 206291
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: "65aa8644-325d3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 354661
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V2s5bVDxnom66cNFkNOAtSmGTPMPhKghFegzdFi2zhrO%2Bc7euYuMslxU78VFaZRIlZOysu%2FVG0ljEwmg1vuNqc1i7%2Bmnl06soHRm0PRdImv7IQ39RF2%2F3Qv8o9k7tzu3IH7rJZ9rE1IU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eb7a70a831b50c-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/_nuxt/6e25e2fese34.js

104.18.42.84

200 OK

962 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/6e25e2fese34.js
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type

Size
962 kB (961483 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_nuxt/6e25e2fese34.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/6e25e2fese34.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4f09281c06-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/img/1st/favicon-16x16.png

104.18.42.84

200 OK

522 B

URL GET HTTP/2
cfstatic.livesports.mobi/img/1st/favicon-16x16.png
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
PNG image data, 16 x 16, 4-bit colormap, non-interlaced
Size
522 B (522 bytes)
Hash
f6b85d81c11a22bfbebef3a7f4339f17
56fcbf7977d92845fab4f90582b9da84be1650b0
c5cf4c498409eae2acaccd0bd633dc90ab08f958baa1138a628146dabc4f21f2

HTTP Headers

GET /img/1st/favicon-16x16.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:30 GMT
content-type: image/png
content-length: 522
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/1st/favicon-16x16.png
cache-control: public, max-age=2592000
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a55aea11c06-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/img/bg-detail-header.png

0.0.0.0

0 B

URL GET
cfstatic.livesports.mobi/img/bg-detail-header.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /img/bg-detail-header.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cfstatic.livesports.mobi/_nuxt/css/8fd559fa.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:29 GMT
content-type: image/png
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/bg-detail-header.png
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:08 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a531ca11c06-OSL
X-Firefox-Spdy: h2

dapiaa.livesports.mobi/api/ftb/battledata?id=2437086

104.18.42.84

200 OK

1.7 kB

URL GET HTTP/2
dapiaa.livesports.mobi/api/ftb/battledata?id=2437086
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1928), with no line terminators
Size
1.7 kB (1718 bytes)
Hash
0ed0062fc920cda939c5cc19d287bf81
130241e5a4cf494b21394f9053fec2b09d169e98
1a5be30c15e98e1a528b78f4e82cc0a3b70c481b984c1be40fe091cdcfd603f8

HTTP Headers

GET /api/ftb/battledata?id=2437086 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"99E6746B1BE4DAE1A0F5D6A5F09FE539"
x-frame-options: SAMEORIGIN
x-dapi-def-cache: MISS || 10s || /api/ftb/battledata?id=2437086
cache-control: public, max-age=5
content-encoding: gzip
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5c49dc56ca-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/_nuxt/26daa860se4.js

104.18.42.84

200 OK

1.1 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/26daa860se4.js
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
JavaScript source, ASCII text, with very long lines (1072), with no line terminators
Size
1.1 kB (1066 bytes)
Hash
37e88332ef50516bf4d7448d23e8c0be
48d2faecfa0e363d0fcc0bc103021d34386b8c8e
02bf5dd8cba1e4977438b6dd9d7eb5e9bb3bed642aac0c96ed04ec68955bf996

HTTP Headers

GET /_nuxt/26daa860se4.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/26daa860se4.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9081c06-OSL
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:37 GMT
expires: Sun, 04 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 42117
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dapiaa.livesports.mobi/api/gg?hostname=us.marza13.com&countryCode=NO

104.18.42.84

200 OK

1.5 kB

URL GET HTTP/2
dapiaa.livesports.mobi/api/gg?hostname=us.marza13.com&countryCode=NO
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
ASCII text, with very long lines (1662), with no line terminators
Size
1.5 kB (1514 bytes)
Hash
cad418f0af917d29368fd1c5472d73c9
41b73c37c0397f917132ea63a5b0931e18dbae6d
e9b9332eab5129adab479864c6fd653608611ee17a1fac99981b12c81f971160

HTTP Headers

GET /api/gg?hostname=us.marza13.com&countryCode=NO HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"03F117DCED0B8227164BD749756B5B47"
x-frame-options: SAMEORIGIN
x-dapi-cache: MISS || 2s || /api/gg?hostname=us.marza13.com&countryCode=NO
cache-control: public, max-age=60
content-encoding: gzip
cf-cache-status: REVALIDATED
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5ae8bf56ca-OSL
X-Firefox-Spdy: h2

downstairsnegotiatebarren.com/sfp.js

188.114.96.1

200 OK

86 kB

URL GET HTTP/2
downstairsnegotiatebarren.com/sfp.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B
ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT

File type

Size
86 kB (85611 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 4a742311c0d02c3d98df37ffbd9e504d
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: STALE
age: 0
last-modified: Sat, 04 May 2024 21:10:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wd3PYgdgrKA996BYS6NKxUlECr9B0sezEjb0QN12qxudRDMUFXxPk8fVGnrjM3%2F5VOmGFR9i8zFzkd%2BxfmL9SJuxUo0FXzCYsH1M85gSD8h5Zk1%2FDXknkA3nFRWu5w22BuFZkF1yQN2%2FhdUC0NT%2FzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eb7a655986b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cfcdn.livesports.mobi/prod/svimg/0131a2d2-275b-42db-a0e6-2bf9f111716a.gif

104.18.42.84

200 OK

105 kB

URL GET HTTP/2
cfcdn.livesports.mobi/prod/svimg/0131a2d2-275b-42db-a0e6-2bf9f111716a.gif
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
GIF image data, version 89a, 750 x 422
Size
105 kB (104643 bytes)
Hash
5c553b08eb9cc3983edcb4e317b00363
ad4b6f6c7ae579959fa7895c31f427423ea4150b
87daaf063e263f7429451650cd58297e2cb1d91914fac1cdad1402cc19e9973c

HTTP Headers

GET /prod/svimg/0131a2d2-275b-42db-a0e6-2bf9f111716a.gif HTTP/1.1
Host: cfcdn.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Tue, 30 Apr 2024 01:50:57 GMT
etag: W/"1da9aa0d7fcce43"
content-encoding: gzip
cache-control: public, max-age=31536000
x-cache: svimg/prod|30d|MISS|/svimg/0131a2d2-275b-42db-a0e6-2bf9f111716a.gif
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a667cff1c06-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/img/logo.png

0.0.0.0

0 B

URL GET
cfstatic.livesports.mobi/img/logo.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /img/logo.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: image/png
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/logo.png
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:06 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9091c06-OSL
X-Firefox-Spdy: h2

greedcocoatouchy.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fjs%2Fscript.js&l=7986&fd=413

172.240.127.234

200 OK

0 B

URL GET HTTP/1.1
greedcocoatouchy.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fjs%2Fscript.js&l=7986&fd=413
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerLet's Encrypt
Subjectgreedcocoatouchy.com
FingerprintFF:2D:AC:C6:23:1E:3B:BF:ED:36:B0:82:37:80:54:07:C0:C2:10:7E
ValidityMon, 29 Apr 2024 13:07:00 GMT - Sun, 28 Jul 2024 13:06:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fjs%2Fscript.js&l=7986&fd=413 HTTP/1.1
Host: greedcocoatouchy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Cookie: u_pl=20508906; uid_id2=9571cb06-0a90-4f1c-bcd0-0f657b1cd787:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec65bcfaa683769cffa9ed47e7f9f0d1e6=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:10:34 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cfcdn.livesports.mobi/prod/svimg/a435db01-268e-4f1d-b6d8-36c05fa81807.png

0.0.0.0

0 B

URL GET
cfcdn.livesports.mobi/prod/svimg/a435db01-268e-4f1d-b6d8-36c05fa81807.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /prod/svimg/a435db01-268e-4f1d-b6d8-36c05fa81807.png HTTP/1.1
Host: cfcdn.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: image/png
vary: Accept-Encoding
last-modified: Thu, 28 Dec 2023 01:29:55 GMT
etag: W/"1da392d5c8605e7"
content-encoding: gzip
cache-control: public, max-age=31536000
x-cache: svimg/prod|30d|HIT|/svimg/a435db01-268e-4f1d-b6d8-36c05fa81807.png
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a6219771c06-OSL
X-Firefox-Spdy: h2

dapiaa.livesports.mobi/api/getFocusMatch?category=1

104.18.42.84

200 OK

2.4 kB

URL GET HTTP/2
dapiaa.livesports.mobi/api/getFocusMatch?category=1
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
ASCII text, with very long lines (2680), with no line terminators
Size
2.4 kB (2440 bytes)
Hash
187fe1c24ee466f98a58930e8bfa2789
aac21fa8e918850a0d7330c9044b111269c50120
179e15714d5eb8372c15b195c4a2577d97d0fb18f99a54ebbd4e60259bf39f00

HTTP Headers

GET /api/getFocusMatch?category=1 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:31 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"7D9F22DCCD951280E6A055693D26605A"
x-frame-options: SAMEORIGIN
x-dapi-cache: EXPIRED || 7s || /api/getFocusMatch?category=1
cache-control: public, max-age=120
content-encoding: gzip
cf-cache-status: REVALIDATED
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5c39db56ca-OSL
X-Firefox-Spdy: h2

cfstatic.livesports.mobi/_nuxt/css/1d758b20.css

104.18.42.84

200 OK

101 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/css/1d758b20.css
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
ASCII text, with very long lines (63489)
Size
101 kB (101016 bytes)
Hash
6165faf5926b8aa8c7a224b23b12955b
f57b75f22f3874168b55a17f69733fec4aab0517
9830cc64e6b2b85ec8d243bd8d39eee8a03bcbcef5979465eb8073c41e1fb0bb

HTTP Headers

GET /_nuxt/css/1d758b20.css HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/css/1d758b20.css
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:06 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed8fa1c06-OSL
X-Firefox-Spdy: h2

dapiaa.livesports.mobi/api/servertimes?_t=1714857030795

104.18.42.84

200 OK

13 B

URL GET HTTP/2
dapiaa.livesports.mobi/api/servertimes?_t=1714857030795
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
ASCII text, with no line terminators
Size
13 B (13 bytes)
Hash
55e96a8eda35f33f78a238e28b460864
a8505243e20fe59993c83f4f298e050ce19857cd
3addc9338dcc00c1a8e4f9353de793b0c3d528aa77a8ccb4b5ffa2b24be1ec5a

HTTP Headers

GET /api/servertimes?_t=1714857030795 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:30 GMT
content-type: application/json; charset=utf-8
content-length: 13
etag: "1AEC84C2E7A940F034AB7DB4178A1F16"
x-frame-options: SAMEORIGIN
x-dapi-cache: EXPIRED || 2s || /api/servertimes
cache-control: public, max-age=3
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5a886656ca-OSL
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/style.css

104.21.70.253

200 OK

3.3 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/style.css
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text, with very long lines (3556), with no line terminators
Size
3.3 kB (3348 bytes)
Hash
5a37dc16b8eecffd5e7e805fee49218c
4187086691ead46033b8f2e76c4efdb611137949
436f451c35127aa88f59b29f7c8df41b3822dc16ada4d685fbeb537ecbbe914c

HTTP Headers

GET /sb/notifications/gambling/default/android-btn/8/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:34 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: W/"65aa8644-d14"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gdlq%2BhGvLctgYP0FSoZ9r%2FoHZpukMnSNMpqH749wOpndGj05ZtDsM2JocEIuIP6uaKtAsHZR3v4zQ4v%2Fn0pRz7FFFlq7XE25ALmjCzTRyKyt%2F7tGhvOnUJDiXO4J2o2lfEuF2c%2FFRgiE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eb7a707fd3b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

hm.baidu.com/hm.js?847b69b93869381c249c82d6c97e896e

14.215.182.140

200 OK

30 kB

URL GET HTTP/1.1
hm.baidu.com/hm.js?847b69b93869381c249c82d6c97e896e
IP
14.215.182.140:443
ASN
#4134 Chinanet

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT

File type
JavaScript source, ASCII text, with very long lines (630)
Size
30 kB (29790 bytes)
Hash
aafaa39c0f8b8077aecf993a27ef0de4
066c8b06d4ccea196f115e310a0db9e12c23a939
e5133b91e9c815075632ab4fe9e71a077745b640dd65fb8c9896dc62eecc70a5

HTTP Headers

GET /hm.js?847b69b93869381c249c82d6c97e896e HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11268
Content-Type: application/javascript
Date: Sat, 04 May 2024 21:10:31 GMT
Etag: f1aae5e866247e6ebc362d42fe18ebdd
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=26A121D271C1A2B2; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800

cfstatic.livesports.mobi/_nuxt/8197a30e.js

104.18.42.84

200 OK

9.2 kB

URL GET HTTP/2
cfstatic.livesports.mobi/_nuxt/8197a30e.js
IP
104.18.42.84:443
ASN
#13335 CLOUDFLARENET

Requested by
https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate
IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT

File type
JavaScript source, ASCII text, with very long lines (9245), with no line terminators
Size
9.2 kB (9235 bytes)
Hash
1152852a1de7898fa3b65538c44f8cf8
1927016ac15cf3fd4265255ffe5a290b889aaa02
0b04800a88bd2ec03e287241b64fbb001199ebf1a346c1de8ba4e33ae24f862d

HTTP Headers

GET /_nuxt/8197a30e.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: EXPIRED || 30d || cfstatic.livesports.mobi/_nuxt/8197a30e.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Tue, 30 Apr 2024 05:43:09 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4f09241c06-OSL
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL