cfstatic.livesports.mobi/img/icon-home.png
104.18.42.84200 OK 657 B URL GET HTTP/2 cfstatic.livesports.mobi/img/icon-home.png
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced
Hash 71589c214e627f753a06dff5a6579e51
1a1a0e366d26c2aa5d435f39bb9c6c52102e864a
89cd439b5a22bd494b238de0646f268b8ecc3dcb3c5f14a8785d750cf9ac551f
GET /img/icon-home.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: image/png
content-length: 657
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/icon-home.png
cache-control: public, max-age=2592000
last-modified: Thu, 25 Apr 2024 09:21:10 GMT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4f09231c06-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/img/1st/icon_arrow_small.png
104.18.42.84200 OK 470 B URL GET HTTP/2 cfstatic.livesports.mobi/img/1st/icon_arrow_small.png
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type PNG image data, 28 x 16, 8-bit/color RGBA, non-interlaced
Hash 456a645ba6f3144946795282003695a7
3a56d18c68dee872a1bbc3186a3d1ed1843c6b57
13ecfc47133ce2f8feb77fd8272757b1cbac4cf28f8ca15f65483e9c819b7cb1
GET /img/1st/icon_arrow_small.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cfstatic.livesports.mobi/_nuxt/css/8fd559fa.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:29 GMT
content-type: image/png
content-length: 470
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/1st/icon_arrow_small.png
cache-control: public, max-age=2592000
last-modified: Thu, 25 Apr 2024 09:21:08 GMT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a531ca31c06-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/_nuxt/css/1d4365f8.css
104.18.42.84200 OK 4.9 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/css/1d4365f8.css
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Hash 91c5ebdb9a40424caff7756a0c402e70
3b273611eaed74727a2c073ba7e62c1d3429cadf
bc3d7bccec2b79d99399c59aaacb7c5ac576c1a4157259cb1269bb1754625d2e
GET /_nuxt/css/1d4365f8.css HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:29 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/css/1d4365f8.css
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a556e751c06-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-EPY2TCZ2GD
142.250.74.168200 OK 102 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-EPY2TCZ2GD
IP 142.250.74.168:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File type JavaScript source, ASCII text, with very long lines (7711)
Size 102 kB (101619 bytes)
Hash 79dde20751f231eb9cbbc88283062872
906821c092056dda9f62544688a0f32da3afcc4f
b482290da8cde44a6309dcf54c614469371152416d11506d570accea88d71cc8
GET /gtag/js?id=G-EPY2TCZ2GD HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 21:10:30 GMT
expires: Sat, 04 May 2024 21:10:30 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101619
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/_nuxt/532c76abse8.js
104.18.42.84200 OK 9.3 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/532c76abse8.js
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Hash 955ba4663ffae5540dd76dce9584733b
769e4b2027c66b5a0a17bafcb453b4a754073812
838008c4e56d5c9dffd6da560f198cf82c4a99bd3fc9f23c52ad5f53f01aa8fb
GET /_nuxt/532c76abse8.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:29 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/532c76abse8.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:08 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a556e781c06-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/_nuxt/css/eaef5a8e.css
104.18.42.84200 OK 4.1 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/css/eaef5a8e.css
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Hash 8eb1e6f581a28fc42e4db0f91e31a28d
fe68d1244e7be8dd82feaa4efed994a457eef94b
51f06c33d3739fe02053e2667c1492da7df527d41a21cbe2b936647c91196861
GET /_nuxt/css/eaef5a8e.css HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/css/eaef5a8e.css
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9071c06-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/img/player/icon-player-holder-football.jpg
104.18.42.84200 OK 83 kB URL GET HTTP/2 cfstatic.livesports.mobi/img/player/icon-player-holder-football.jpg
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1500x842, components 3
Hash 7491117fbedcafaf5d3bfb2ede104b45
6a9a70d49998bf8ba37bdafd7cc0062539fca6cb
64cb236895fc3a5bac670f9b01211b6b75043cb941bff4a320529161e7f23ff9
GET /img/player/icon-player-holder-football.jpg HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cfstatic.livesports.mobi/_nuxt/css/8fd559fa.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:29 GMT
content-type: image/jpeg
cache-control: public, max-age=2592000
cf-bgj: h2pri
vary: Accept-Encoding
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/player/icon-player-holder-football.jpg
x-frame-options: SAMEORIGIN
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a531ca21c06-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/img/icon-backtop-old.png
104.18.42.84 2.5 kB URL GET cfstatic.livesports.mobi/img/icon-backtop-old.png
IP 104.18.42.84:0
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Hash 36c3b67f4ef56c01b4d0e8a78f1c97e9
d7d275947fbb028e6b79325c74e41a1ce92bb2c4
590fff274cbeadd41445d30c2c22accb4fe4462a3ab175a0b02e51a639e0fbd1
GET /img/icon-backtop-old.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:31 GMT
content-type: image/png
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/icon-backtop-old.png
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:11 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5c0b9c1c06-OSL
X-Firefox-Spdy: h2
dapiaa.livesports.mobi/api/checkin
104.18.42.84200 OK 10 kB URL GET HTTP/2 dapiaa.livesports.mobi/api/checkin
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (26955), with no line terminators
Hash efaeb9a8103301134650f5b5b6ab4d16
979e168348d04c87c7d0e41c46863bd05b273532
e52f518c1dd7dec50672ae2d72285ca778242ca2c97efe202e586c1397ac1091
GET /api/checkin HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:30 GMT
content-type: application/json; charset=utf-8
etag: W/"589F50756E52C23289C91F6A3691E5F6"
x-frame-options: SAMEORIGIN
cache-control: public, max-age=120
cf-cache-status: DYNAMIC
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a58bdf556ca-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=939720785&si=847b69b93869381c249c82d6c97e896e&v=1.3.0&lv=1&sn=2686&r=0&ww=1280&u=https%3A%2F%2Fus.marza13.com%2Ffootball%2F2437086-alnassr-vs-alwehda.html&tt=Live%20Sport%20Streaming%2C%20Watch%20Live%20Football%2CBasketball
14.215.182.140200 OK 43 B URL GET HTTP/1.1 hm.baidu.com/hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=939720785&si=847b69b93869381c249c82d6c97e896e&v=1.3.0&lv=1&sn=2686&r=0&ww=1280&u=https%3A%2F%2Fus.marza13.com%2Ffootball%2F2437086-alnassr-vs-alwehda.html&tt=Live%20Sport%20Streaming%2C%20Watch%20Live%20Football%2CBasketball
IP 14.215.182.140:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type GIF image data, version 89a, 1 x 1
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hm.gif?cc=1&ck=1&cl=24-bit&ds=1280x1024&vl=1024&et=0&ja=0&ln=en-us&lo=0&rnd=939720785&si=847b69b93869381c249c82d6c97e896e&v=1.3.0&lv=1&sn=2686&r=0&ww=1280&u=https%3A%2F%2Fus.marza13.com%2Ffootball%2F2437086-alnassr-vs-alwehda.html&tt=Live%20Sport%20Streaming%2C%20Watch%20Live%20Football%2CBasketball HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: private, max-age=0, no-cache
Content-Length: 43
Content-Type: image/gif
Date: Sat, 04 May 2024 21:10:31 GMT
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Pragma: no-cache
Server: apache
Set-Cookie: HMACCOUNT=E65CB88C7B36DED5; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
X-Content-Type-Options: nosniff
cfstatic.livesports.mobi/_nuxt/68124412se2.js
104.18.42.84200 OK 28 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/68124412se2.js
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Hash bb8e96d855dc57c8e8f3ffeb3d932192
1ff1642c85b8918a7163331e337504ee88d3acf6
ccae1bc683dd470166b7da810b44bcd0e27b354dac0f0b93e81ca9e7ba3e902d
GET /_nuxt/68124412se2.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/68124412se2.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9001c06-OSL
X-Firefox-Spdy: h2
proftrafficcounter.com/stats
52.29.105.35200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP 52.29.105.35:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash fd6b45a5125bafcbee0c17cb51aefda9
f218e33284de108993cb3824a9765d4e50c73513
af258c6bfe5f11af9e8aee61be95048db2feb8224fc3b8de4322c564c1ef7091
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:31 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://us.marza13.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=9571cb06-0a90-4f1c-bcd0-0f657b1cd787:3:1; expires=Tue, 02 May 2034 21:10:31 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
dapiaa.livesports.mobi/api/config/get?d=us.marza13.com
104.18.42.84200 OK 66 kB URL GET HTTP/2 dapiaa.livesports.mobi/api/config/get?d=us.marza13.com
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Hash 679932c12a037d498c80f0fe5d4e9f00
6e28e25e2e936558b86ab0a8e0aa171a06c4a852
ac416a339925fe20f8521837d84789f90509872b1a76b2a1eda441c70e4feb6f
GET /api/config/get?d=us.marza13.com HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:30 GMT
content-type: text/plain; charset=utf-8
vary: Accept-Encoding
etag: W/"6043E272D353FC03C1A3EEFD4BFAB5AB"
x-frame-options: SAMEORIGIN
x-dapi-cache: EXPIRED || 60s || /api/config/get?d=us.marza13.com
cache-control: public, max-age=120
content-encoding: gzip
cf-cache-status: REVALIDATED
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a569b8556ca-OSL
X-Firefox-Spdy: h2
dapiaa.livesports.mobi/api/ftb/battletwodata?id=2437086
104.18.42.84200 OK 17 kB URL GET HTTP/2 dapiaa.livesports.mobi/api/ftb/battletwodata?id=2437086
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type JavaScript source, ASCII text, with very long lines (48944), with no line terminators
Hash e6887a9dd6b4bcc64d6bee6fd15f512f
ad8f154790d1db2eac82ecce6169793332d8eac4
f56f1989022ca1f468016f093ec0b5410be5b1210e6df792e6e3006066b27106
GET /api/ftb/battletwodata?id=2437086 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:31 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"0135CEAD1524B17BC5E4E9B00B3FFA5F"
x-frame-options: SAMEORIGIN
x-dapi-def-cache: MISS || 10s || /api/ftb/battletwodata?id=2437086
cache-control: public, max-age=5
content-encoding: gzip
cf-cache-status: REVALIDATED
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5c39d456ca-OSL
X-Firefox-Spdy: h2
dapiaa.livesports.mobi/api/ftb/detail?d=us.marza13.com&id=2437086
104.18.42.84200 OK 3.0 kB URL GET HTTP/2 dapiaa.livesports.mobi/api/ftb/detail?d=us.marza13.com&id=2437086
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Hash 3689e8e6f08ed0842786c13f0cf9dacf
5f532c77a677700ba6da437412b7becfed407605
9391bfdc67f8b17a07ecd558d306f5a76ad997ee5a6d7b2f500724a34d09e1f4
GET /api/ftb/detail?d=us.marza13.com&id=2437086 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"30E84B60B60C2454466D91F8E95F263F"
x-frame-options: SAMEORIGIN
x-dapi-def-cache: MISS || 10s || /api/ftb/detail?d=us.marza13.com&id=2437086
cache-control: public, max-age=5
content-encoding: gzip
cf-cache-status: EXPIRED
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5e4c2656ca-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/img/icon-ball-3.png
104.18.42.84200 OK 453 B URL GET HTTP/2 cfstatic.livesports.mobi/img/icon-ball-3.png
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Hash 1f3fc80e40fb1256541b798a16dc5094
2ac960c4eadaf2264bf9fc59e44dbad3676ac10b
8bd0b2ddb60102b27634b329d3b9a89a5df82f9d60694804e97072e30e24f1d5
GET /img/icon-ball-3.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: image/png
content-length: 453
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/icon-ball-3.png
cache-control: public, max-age=2592000
last-modified: Thu, 25 Apr 2024 09:21:06 GMT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a65cc811c06-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/img/icon-ball-11.png
104.18.42.84200 OK 671 B URL GET HTTP/2 cfstatic.livesports.mobi/img/icon-ball-11.png
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Hash c1e9c380717d78a5d3f21d26d64d32cc
b694956d2bff61a46ffd596fb4987bd8ac184cb5
bf63b863bc93270860f5d1eb2073d0a57e858e2f320db6ff246c296a1c0f2bcd
GET /img/icon-ball-11.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: image/png
content-length: 671
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/icon-ball-11.png
cache-control: public, max-age=2592000
last-modified: Thu, 25 Apr 2024 09:21:12 GMT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a65cc8b1c06-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/img/icon-ball-14.svg
104.18.42.84200 OK 1.4 kB URL GET HTTP/2 cfstatic.livesports.mobi/img/icon-ball-14.svg
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Hash d0d68b69bfe443e7e5dfa0bf9f73d2ad
d37960b0e284249f986c527177e76c0847597e4a
49387d56456d1ca1b554855caeb482fa7346a018dfe7b514032f0071d2f9616b
GET /img/icon-ball-14.svg HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: image/svg+xml
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/icon-ball-14.svg
cache-control: public, max-age=2592000
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a65dc951c06-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cfcdn.livesports.mobi/prod/svimg/b7228054-d9b0-4f78-a137-39ed92ae1c5e.gif
104.18.42.84 128 kB URL GET cfcdn.livesports.mobi/prod/svimg/b7228054-d9b0-4f78-a137-39ed92ae1c5e.gif
IP 104.18.42.84:0
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type GIF image data, version 89a, 750 x 80
Size 128 kB (128358 bytes)
Hash 8137e29b1ae49b12f53471dba6125f4c
38724db0ec225f2008ec469f24e15ccdb6bbfd1c
0acfabd0d2ef26e03d2c2159073426e56506f30b594c8465d9ed1947758fc918
GET /prod/svimg/b7228054-d9b0-4f78-a137-39ed92ae1c5e.gif HTTP/1.1
Host: cfcdn.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Fri, 12 Jan 2024 07:39:32 GMT
etag: W/"1da452a7b461265"
content-encoding: gzip
cache-control: public, max-age=31536000
x-cache: svimg/prod|30d|HIT|/svimg/b7228054-d9b0-4f78-a137-39ed92ae1c5e.gif
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a62297d1c06-OSL
X-Firefox-Spdy: h2
greedcocoatouchy.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzkYRZBF1LyriHPagsJl0z4%2FuGfcQzGYjwbhZdhUFhaW6qnpSpqarqeqenuQUDMgeBy%2BLt843yYbVVfQPcJWZBQ8BISMecthcdAX3IIqwHrzIjGHDvkO99%2Br7Cr763vtkOzsiFWT0cOFtvSGVorP1slt69X3PO19alnHWLXUb%2FjW%2Fdr5kOq83%2FbL7WulNwdb0bMX1XNdzvdKiNCLS3dkxCJncbnrlpluuVcpevYaueby3mQNLHfDOEXkOko%2Bm7zpnINkAcfvrBWHXUp2cu9jOFE21QYfvvRuvxTqP0T4pI%2BMgiveO2dD2YPEOdLw7kQvdeUQM5Yg4P9xBGO8di0TY2ZnoDBVEjJA%2FjbwzgFADSDoA01uQ%2FIAAjOPSCuL2zUva5HT9f5SO0RGZfvg3ZD4i0%2FfOIG5%2FNa9kt3RVqyyVOrboRgVkdwDZGiDJhkg3piDzIVj6MST%2Fkcw%2BXEbc3lmxSkPyw7PNeuCx0PVnXNp0Z2qRx2ZCxt0ZN%2FLrQegxHjSCiUFSDiCjAZTogdpTyKyDTDrIIgdZ4qDND0vM87zA5Yy6jSZjVR6I0OeuR4PIo57rN5Cx8R96SJMemOqBmU0kZhNrsgeTfQ%2B7WsByBzYl6PACuSDILUFOCXJJkKcEeafY5cpWbHGTK5uF3nGuHOdq0ddpa5vu6rQlYgJqejC82E6OyLNjA53Gnw%2BwJg5Lfj1kEaV%2Boxr4TRZFtCl4LRBB1Ixc7gkfVt66sDhTrdUa1zxIOwVqHWzIEXnlhQdI5Ig89c%2BvCOkQVg3B5POg2cugeQG6WmAj%2FtIybUTDbZRlHGlwXSBJp5GuO9vqiLw0GebKloVg%2B3O%2FBX8d%2FXz6NJgpkJgCH8m7BC11vX9F52Tnis4t%2BWYlSWVbbtDxoK%2BmNBVPfP6WWM%2B14UsLtnfrDTYGxuXtd4RNl2nMZdyy5It5ybkwi9owQb5dsu%2BJ8HJmV%2BczE2fJ8uULi0vtxAhrpY4HoPLg4g0wOSLPfPfhZIPPfXAf0gxgsgLtbJ8cB6QegiWbsMn%2B3C%2F%2F%2FjG88dl9WE1g1AknTBzkWdE3lfDkUkkCJU56GhawYn%2Fu9yfP3pt9sUAoHtnRN3T8mspi215Hy0yBpluI2wU6pkBHFaCqB5ud6qeJ2Z%2F7qToJhGqqHyoztRMqoz6dmDw%2BUlh5WAqqVZf6zboXBFQEYa3SiHyPU1qp%2BRXfp1WkdhT5O0v%2FAQAA%2F%2F8BAAD%2F%2FzKLm8qbBAAA
172.240.127.234200 OK 7 B URL GET HTTP/1.1 greedcocoatouchy.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzkYRZBF1LyriHPagsJl0z4%2FuGfcQzGYjwbhZdhUFhaW6qnpSpqarqeqenuQUDMgeBy%2BLt843yYbVVfQPcJWZBQ8BISMecthcdAX3IIqwHrzIjGHDvkO99%2Br7Cr763vtkOzsiFWT0cOFtvSGVorP1slt69X3PO19alnHWLXUb%2FjW%2Fdr5kOq83%2FbL7WulNwdb0bMX1XNdzvdKiNCLS3dkxCJncbnrlpluuVcpevYaueby3mQNLHfDOEXkOko%2Bm7zpnINkAcfvrBWHXUp2cu9jOFE21QYfvvRuvxTqP0T4pI%2BMgiveO2dD2YPEOdLw7kQvdeUQM5Yg4P9xBGO8di0TY2ZnoDBVEjJA%2FjbwzgFADSDoA01uQ%2FIAAjOPSCuL2zUva5HT9f5SO0RGZfvg3ZD4i0%2FfOIG5%2FNa9kt3RVqyyVOrboRgVkdwDZGiDJhkg3piDzIVj6MST%2Fkcw%2BXEbc3lmxSkPyw7PNeuCx0PVnXNp0Z2qRx2ZCxt0ZN%2FLrQegxHjSCiUFSDiCjAZTogdpTyKyDTDrIIgdZ4qDND0vM87zA5Yy6jSZjVR6I0OeuR4PIo57rN5Cx8R96SJMemOqBmU0kZhNrsgeTfQ%2B7WsByBzYl6PACuSDILUFOCXJJkKcEeafY5cpWbHGTK5uF3nGuHOdq0ddpa5vu6rQlYgJqejC82E6OyLNjA53Gnw%2BwJg5Lfj1kEaV%2Boxr4TRZFtCl4LRBB1Ixc7gkfVt66sDhTrdUa1zxIOwVqHWzIEXnlhQdI5Ig89c%2BvCOkQVg3B5POg2cugeQG6WmAj%2FtIybUTDbZRlHGlwXSBJp5GuO9vqiLw0GebKloVg%2B3O%2FBX8d%2FXz6NJgpkJgCH8m7BC11vX9F52Tnis4t%2BWYlSWVbbtDxoK%2BmNBVPfP6WWM%2B14UsLtnfrDTYGxuXtd4RNl2nMZdyy5It5ybkwi9owQb5dsu%2BJ8HJmV%2BczE2fJ8uULi0vtxAhrpY4HoPLg4g0wOSLPfPfhZIPPfXAf0gxgsgLtbJ8cB6QegiWbsMn%2B3C%2F%2F%2FjG88dl9WE1g1AknTBzkWdE3lfDkUkkCJU56GhawYn%2Fu9yfP3pt9sUAoHtnRN3T8mspi215Hy0yBpluI2wU6pkBHFaCqB5ud6qeJ2Z%2F7qToJhGqqHyoztRMqoz6dmDw%2BUlh5WAqqVZf6zboXBFQEYa3SiHyPU1qp%2BRXfp1WkdhT5O0v%2FAQAA%2F%2F8BAAD%2F%2FzKLm8qbBAAA
IP 172.240.127.234:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerLet's Encrypt
Subjectgreedcocoatouchy.com
FingerprintFF:2D:AC:C6:23:1E:3B:BF:ED:36:B0:82:37:80:54:07:C0:C2:10:7E
ValidityMon, 29 Apr 2024 13:07:00 GMT - Sun, 28 Jul 2024 13:06:59 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzkYRZBF1LyriHPagsJl0z4%2FuGfcQzGYjwbhZdhUFhaW6qnpSpqarqeqenuQUDMgeBy%2BLt843yYbVVfQPcJWZBQ8BISMecthcdAX3IIqwHrzIjGHDvkO99%2Br7Cr763vtkOzsiFWT0cOFtvSGVorP1slt69X3PO19alnHWLXUb%2FjW%2Fdr5kOq83%2FbL7WulNwdb0bMX1XNdzvdKiNCLS3dkxCJncbnrlpluuVcpevYaueby3mQNLHfDOEXkOko%2Bm7zpnINkAcfvrBWHXUp2cu9jOFE21QYfvvRuvxTqP0T4pI%2BMgiveO2dD2YPEOdLw7kQvdeUQM5Yg4P9xBGO8di0TY2ZnoDBVEjJA%2FjbwzgFADSDoA01uQ%2FIAAjOPSCuL2zUva5HT9f5SO0RGZfvg3ZD4i0%2FfOIG5%2FNa9kt3RVqyyVOrboRgVkdwDZGiDJhkg3piDzIVj6MST%2Fkcw%2BXEbc3lmxSkPyw7PNeuCx0PVnXNp0Z2qRx2ZCxt0ZN%2FLrQegxHjSCiUFSDiCjAZTogdpTyKyDTDrIIgdZ4qDND0vM87zA5Yy6jSZjVR6I0OeuR4PIo57rN5Cx8R96SJMemOqBmU0kZhNrsgeTfQ%2B7WsByBzYl6PACuSDILUFOCXJJkKcEeafY5cpWbHGTK5uF3nGuHOdq0ddpa5vu6rQlYgJqejC82E6OyLNjA53Gnw%2BwJg5Lfj1kEaV%2Boxr4TRZFtCl4LRBB1Ixc7gkfVt66sDhTrdUa1zxIOwVqHWzIEXnlhQdI5Ig89c%2BvCOkQVg3B5POg2cugeQG6WmAj%2FtIybUTDbZRlHGlwXSBJp5GuO9vqiLw0GebKloVg%2B3O%2FBX8d%2FXz6NJgpkJgCH8m7BC11vX9F52Tnis4t%2BWYlSWVbbtDxoK%2BmNBVPfP6WWM%2B14UsLtnfrDTYGxuXtd4RNl2nMZdyy5It5ybkwi9owQb5dsu%2BJ8HJmV%2BczE2fJ8uULi0vtxAhrpY4HoPLg4g0wOSLPfPfhZIPPfXAf0gxgsgLtbJ8cB6QegiWbsMn%2B3C%2F%2F%2FjG88dl9WE1g1AknTBzkWdE3lfDkUkkCJU56GhawYn%2Fu9yfP3pt9sUAoHtnRN3T8mspi215Hy0yBpluI2wU6pkBHFaCqB5ud6qeJ2Z%2F7qToJhGqqHyoztRMqoz6dmDw%2BUlh5WAqqVZf6zboXBFQEYa3SiHyPU1qp%2BRXfp1WkdhT5O0v%2FAQAA%2F%2F8BAAD%2F%2FzKLm8qbBAAA HTTP/1.1
Host: greedcocoatouchy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Cookie: u_pl=20508906; uid_id2=9571cb06-0a90-4f1c-bcd0-0f657b1cd787:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec65bcfaa683769cffa9ed47e7f9f0d1e6=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:10:33 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c54feb8fe80e7be572fb08ac5f6a90df
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.yourwebbars.com/sb/notifications/gambling/default/android-btn/8/index.html
104.26.7.19200 OK 480 B URL GET HTTP/2 cdn.yourwebbars.com/sb/notifications/gambling/default/android-btn/8/index.html
IP 104.26.7.19:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49
ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT
File type HTML document, ASCII text
Hash 988cd00695890a395de736ef1f43180a
fc35045adb5a0bb89e9150574db517cffb44b0c9
100f83963832c14a85c4d7095f0279b0962b83ee6323481ece9b1b2b39515036
GET /sb/notifications/gambling/default/android-btn/8/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:34 GMT
content-type: text/html
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=77C5GFfFxkFnDgCr10pZYqi3n45kqaLuiGZMQPF5QLhsUrzQTu3voo8nQTtKs8hiY5WuzOx466JL3Ady0%2Fj00XcBXnLUy2cGou8RzQvyB%2BEwLPflTT0TJUg4YR5NG32RnvLqpMA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eb7a6c0837b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/_nuxt/7291bffbse1.js
104.18.42.84200 OK 209 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/7291bffbse1.js
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Size 209 kB (209280 bytes)
Hash 36ef848fced516fca9b1905a14a222e4
564cd1bc6d8ba7f5013f23a2486702dc43ba83da
32fd29d719ab80d99dfd95eace5ce63a2f55beda174921d5edb5c5e656dab392
GET /_nuxt/7291bffbse1.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/7291bffbse1.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9041c06-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/_nuxt/31ec54a9se11.js
104.18.42.84200 OK 188 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/31ec54a9se11.js
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Size 188 kB (188254 bytes)
Hash fc03fbaee979983aed0d75b8edf7f393
fb9496ee1857c9f7b6642000540643f1c412f9ec
dc7773546b5b3a7f0177c14a50cb76f0c50e520154167b96a9804aa0fb539858
GET /_nuxt/31ec54a9se11.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/31ec54a9se11.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4f09251c06-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.106200 OK 1.2 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP 142.250.74.106:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File type gzip compressed data, max compression
Hash d7f194b9ecb48cc1f7732aa11f657af8
78bf4b130952a61d8c6c199b28ba35e75efc5521
5d1db349bd4390728870488442f17c7eb56399a95005b3d423dc2dfdce5c0454
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 21:10:34 GMT
date: Sat, 04 May 2024 21:10:34 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
greedcocoatouchy.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fanimate.css&l=78693&fd=254
172.240.127.234200 OK 0 B URL GET HTTP/1.1 greedcocoatouchy.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fanimate.css&l=78693&fd=254
IP 172.240.127.234:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerLet's Encrypt
Subjectgreedcocoatouchy.com
FingerprintFF:2D:AC:C6:23:1E:3B:BF:ED:36:B0:82:37:80:54:07:C0:C2:10:7E
ValidityMon, 29 Apr 2024 13:07:00 GMT - Sun, 28 Jul 2024 13:06:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fanimate.css&l=78693&fd=254 HTTP/1.1
Host: greedcocoatouchy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Cookie: u_pl=20508906; uid_id2=9571cb06-0a90-4f1c-bcd0-0f657b1cd787:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec65bcfaa683769cffa9ed47e7f9f0d1e6=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:10:34 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
greedcocoatouchy.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fstyle.css&l=3348&fd=403
172.240.127.234200 OK 0 B URL GET HTTP/1.1 greedcocoatouchy.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fstyle.css&l=3348&fd=403
IP 172.240.127.234:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerLet's Encrypt
Subjectgreedcocoatouchy.com
FingerprintFF:2D:AC:C6:23:1E:3B:BF:ED:36:B0:82:37:80:54:07:C0:C2:10:7E
ValidityMon, 29 Apr 2024 13:07:00 GMT - Sun, 28 Jul 2024 13:06:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fcss%2Fstyle.css&l=3348&fd=403 HTTP/1.1
Host: greedcocoatouchy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Cookie: u_pl=20508906; uid_id2=9571cb06-0a90-4f1c-bcd0-0f657b1cd787:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec65bcfaa683769cffa9ed47e7f9f0d1e6=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:10:34 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cfstatic.livesports.mobi/_nuxt/css/0e43bae6.css
104.18.42.84200 OK 4.8 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/css/0e43bae6.css
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Hash 82c7adb9c40f88c49b20804a07a5b575
a1b0e3174dad06badde860aefc6caecb3a397922
9d7670506ef39be3ca458da773f8330ecce530b38d622750b7597e03516f90f1
GET /_nuxt/css/0e43bae6.css HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/css/0e43bae6.css
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:06 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9011c06-OSL
X-Firefox-Spdy: h2
dapiaa.livesports.mobi/api/ftb/battletwodata?id=2437086
104.18.42.84200 OK 34 kB URL GET HTTP/2 dapiaa.livesports.mobi/api/ftb/battletwodata?id=2437086
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Hash f032caaf65ac1332f3d0841bdf47852b
6337996d7fdef2c4701982d0c4de49dae9627b7a
f4d090ccf616d51f0e46b560116e8d79a8c60193f7425072e1087c74bc6c33f7
GET /api/ftb/battletwodata?id=2437086 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"0135CEAD1524B17BC5E4E9B00B3FFA5F"
x-frame-options: SAMEORIGIN
x-dapi-def-cache: MISS || 10s || /api/ftb/battletwodata?id=2437086
cache-control: public, max-age=5
content-encoding: gzip
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5c49de56ca-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/_nuxt/css/c5371279.css
104.18.42.84200 OK 59 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/css/c5371279.css
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Hash 7b8764f81d0fa5aacdac9fbda876bf04
27744d0690eeb453d56e346642bbb1343b153c55
a7f295e4d472a2b96eed5a85b59ddd03224d24b85772fb74f1ab6e472e76cd45
GET /_nuxt/css/c5371279.css HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/css/c5371279.css
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:06 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4f09291c06-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/_nuxt/e7d6b0e9se10.js
104.18.42.84200 OK 297 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/e7d6b0e9se10.js
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Size 297 kB (296604 bytes)
Hash a3f319d3fb6878065acd2f4d23f42064
794664d933fdbc5f693d2a46fce23d818862d89a
0f1182de9b611c51001b7820c1a7bc33b54a34107e6680638b9afbdafee336b6
GET /_nuxt/e7d6b0e9se10.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: MISS || 30d || cfstatic.livesports.mobi/_nuxt/e7d6b0e9se10.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Sun, 28 Apr 2024 04:03:00 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4f192b1c06-OSL
X-Firefox-Spdy: h2
greedcocoatouchy.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzYscxRuu3uzvhyBB1FxUxDnkoJCd7Z6P7hlzWMzHyuKaDYmioBDqqyfl1nQ1Vd3Tkz0FA5Lj4CV4631mkyUaRf8Ao8wEPCwIO%2BJhD9mLRjAHUYR48CIzLll8D%2FW%2Bbz1PwVPP%2B360me%2BTGnK6d%2BZNs6G0povNql95%2Bd0gOFlZVUner%2FRb4aWwcbJie6%2B2w6r%2FSuV1ydfNYs0PfD%2Fwg8qysjI2%2FcUpCJXeaQfVtl9t1KpBs4G%2B%2FW%2Fvcg%2BOehC9ffIMlJjM3%2FOOQfERku6XZ6Rbz0x64mw31zQzFj2x%2FXaynpgiQfewjK2HONk%2BYMO43eW7MMnNmVyY3mMiUxPifXcXLNk%2BEAnW25rpZBoyARNPouiNIPUIio7AzTUosUsALnBuDUn31jljC3rlX5RO0QmZf%2FQnVDEh8%2FePIel%2BcUqrfuWi0XmmTOLQj0uo%2FgiqM0Kaj5FtzEEVY%2FDsQyjxPVl8tIqku7XmtIESe8fbzSjgzA8XfNr2FxpxwBcYF%2F6CH4fNiAVcRK1oZpBSI6h4BC0HoO4IcuchVx7y2EOeeuiKvQoPgiDyBad%2Bq815XUSShcIPaBQHNPDDFnI%2B%2FcMAWToA1wNwexWpvYp1NYDNv4W7XMIJDy4j6IkShSQoHEFBCQpFUGQERa%2B8KbSrufKW0C5nwUGuHeR6OTRZZ5PeNFlHJgTUDmBFuZnuk6enBnqt3x9iXe5VwibjMaVhqx6FbR7HtC1FI5JR3I59EcgQTt0%2BvbxQbzRalwIoNwfqPGyoCXnpuYdI1YQ88dfPYHQMp8fg6lnQ%2FEXQogS9XGIj%2BdxxY2XLb1VVEhsIUyLN5pFd8Tb1PnlhNsy1aw6S7yz9Ev2x%2F%2BPRo%2BC2RGpLfKDuEXT09eEFU5CtC6Zw5Ku1NFNdtUGng76Y0Uz%2B79M35JXCWLFyxg1uv8anwLS885Z02SpNhEo6jnx2Sgkh7bKxXJKvV9w7kp3P3eVTuU3ydPX86eWVbmqlc8okI1C1e%2FYGuJqQp755f7bBJ957AGVHsHmJbr5DDgLKjMHTq3DpztJPf%2F82vvHJAzhDYPUhh6Ueirwc2ho7vNSKQMvDnrISTu4s%2Ffr%2F4%2FcXny%2FB5GM7hpZOX1NVbrrr6Ng50Owakm6Jni3R0yWoHsDlR4ZZaneWfqjPAkzPDZm2c1tMW%2F3xzOTpkcGpvUrdFxGTsYyYbDQbseSCNZvM5zFnddFqcWRuEodbK%2F8AAAD%2F%2FwEAAP%2F%2Fsl9OIpsEAAA%3D
172.240.127.234200 OK 7 B URL GET HTTP/1.1 greedcocoatouchy.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzYscxRuu3uzvhyBB1FxUxDnkoJCd7Z6P7hlzWMzHyuKaDYmioBDqqyfl1nQ1Vd3Tkz0FA5Lj4CV4631mkyUaRf8Ao8wEPCwIO%2BJhD9mLRjAHUYR48CIzLll8D%2FW%2Bbz1PwVPP%2B360me%2BTGnK6d%2BZNs6G0povNql95%2Bd0gOFlZVUner%2FRb4aWwcbJie6%2B2w6r%2FSuV1ydfNYs0PfD%2Fwg8qysjI2%2FcUpCJXeaQfVtl9t1KpBs4G%2B%2FW%2Fvcg%2BOehC9ffIMlJjM3%2FOOQfERku6XZ6Rbz0x64mw31zQzFj2x%2FXaynpgiQfewjK2HONk%2BYMO43eW7MMnNmVyY3mMiUxPifXcXLNk%2BEAnW25rpZBoyARNPouiNIPUIio7AzTUosUsALnBuDUn31jljC3rlX5RO0QmZf%2FQnVDEh8%2FePIel%2BcUqrfuWi0XmmTOLQj0uo%2FgiqM0Kaj5FtzEEVY%2FDsQyjxPVl8tIqku7XmtIESe8fbzSjgzA8XfNr2FxpxwBcYF%2F6CH4fNiAVcRK1oZpBSI6h4BC0HoO4IcuchVx7y2EOeeuiKvQoPgiDyBad%2Bq815XUSShcIPaBQHNPDDFnI%2B%2FcMAWToA1wNwexWpvYp1NYDNv4W7XMIJDy4j6IkShSQoHEFBCQpFUGQERa%2B8KbSrufKW0C5nwUGuHeR6OTRZZ5PeNFlHJgTUDmBFuZnuk6enBnqt3x9iXe5VwibjMaVhqx6FbR7HtC1FI5JR3I59EcgQTt0%2BvbxQbzRalwIoNwfqPGyoCXnpuYdI1YQ88dfPYHQMp8fg6lnQ%2FEXQogS9XGIj%2BdxxY2XLb1VVEhsIUyLN5pFd8Tb1PnlhNsy1aw6S7yz9Ev2x%2F%2BPRo%2BC2RGpLfKDuEXT09eEFU5CtC6Zw5Ku1NFNdtUGng76Y0Uz%2B79M35JXCWLFyxg1uv8anwLS885Z02SpNhEo6jnx2Sgkh7bKxXJKvV9w7kp3P3eVTuU3ydPX86eWVbmqlc8okI1C1e%2FYGuJqQp755f7bBJ957AGVHsHmJbr5DDgLKjMHTq3DpztJPf%2F82vvHJAzhDYPUhh6Ueirwc2ho7vNSKQMvDnrISTu4s%2Ffr%2F4%2FcXny%2FB5GM7hpZOX1NVbrrr6Ng50Owakm6Jni3R0yWoHsDlR4ZZaneWfqjPAkzPDZm2c1tMW%2F3xzOTpkcGpvUrdFxGTsYyYbDQbseSCNZvM5zFnddFqcWRuEodbK%2F8AAAD%2F%2FwEAAP%2F%2Fsl9OIpsEAAA%3D
IP 172.240.127.234:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerLet's Encrypt
Subjectgreedcocoatouchy.com
FingerprintFF:2D:AC:C6:23:1E:3B:BF:ED:36:B0:82:37:80:54:07:C0:C2:10:7E
ValidityMon, 29 Apr 2024 13:07:00 GMT - Sun, 28 Jul 2024 13:06:59 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSzYscxRuu3uzvhyBB1FxUxDnkoJCd7Z6P7hlzWMzHyuKaDYmioBDqqyfl1nQ1Vd3Tkz0FA5Lj4CV4631mkyUaRf8Ao8wEPCwIO%2BJhD9mLRjAHUYR48CIzLll8D%2FW%2Bbz1PwVPP%2B360me%2BTGnK6d%2BZNs6G0povNql95%2Bd0gOFlZVUner%2FRb4aWwcbJie6%2B2w6r%2FSuV1ydfNYs0PfD%2Fwg8qysjI2%2FcUpCJXeaQfVtl9t1KpBs4G%2B%2FW%2Fvcg%2BOehC9ffIMlJjM3%2FOOQfERku6XZ6Rbz0x64mw31zQzFj2x%2FXaynpgiQfewjK2HONk%2BYMO43eW7MMnNmVyY3mMiUxPifXcXLNk%2BEAnW25rpZBoyARNPouiNIPUIio7AzTUosUsALnBuDUn31jljC3rlX5RO0QmZf%2FQnVDEh8%2FePIel%2BcUqrfuWi0XmmTOLQj0uo%2FgiqM0Kaj5FtzEEVY%2FDsQyjxPVl8tIqku7XmtIESe8fbzSjgzA8XfNr2FxpxwBcYF%2F6CH4fNiAVcRK1oZpBSI6h4BC0HoO4IcuchVx7y2EOeeuiKvQoPgiDyBad%2Bq815XUSShcIPaBQHNPDDFnI%2B%2FcMAWToA1wNwexWpvYp1NYDNv4W7XMIJDy4j6IkShSQoHEFBCQpFUGQERa%2B8KbSrufKW0C5nwUGuHeR6OTRZZ5PeNFlHJgTUDmBFuZnuk6enBnqt3x9iXe5VwibjMaVhqx6FbR7HtC1FI5JR3I59EcgQTt0%2BvbxQbzRalwIoNwfqPGyoCXnpuYdI1YQ88dfPYHQMp8fg6lnQ%2FEXQogS9XGIj%2BdxxY2XLb1VVEhsIUyLN5pFd8Tb1PnlhNsy1aw6S7yz9Ev2x%2F%2BPRo%2BC2RGpLfKDuEXT09eEFU5CtC6Zw5Ku1NFNdtUGng76Y0Uz%2B79M35JXCWLFyxg1uv8anwLS885Z02SpNhEo6jnx2Sgkh7bKxXJKvV9w7kp3P3eVTuU3ydPX86eWVbmqlc8okI1C1e%2FYGuJqQp755f7bBJ957AGVHsHmJbr5DDgLKjMHTq3DpztJPf%2F82vvHJAzhDYPUhh6Ueirwc2ho7vNSKQMvDnrISTu4s%2Ffr%2F4%2FcXny%2FB5GM7hpZOX1NVbrrr6Ng50Owakm6Jni3R0yWoHsDlR4ZZaneWfqjPAkzPDZm2c1tMW%2F3xzOTpkcGpvUrdFxGTsYyYbDQbseSCNZvM5zFnddFqcWRuEodbK%2F8AAAD%2F%2FwEAAP%2F%2Fsl9OIpsEAAA%3D HTTP/1.1
Host: greedcocoatouchy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Cookie: u_pl=20508906; uid_id2=9571cb06-0a90-4f1c-bcd0-0f657b1cd787:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec65bcfaa683769cffa9ed47e7f9f0d1e6=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:10:34 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ba7a1bf6fee851919b324271ca2189ea
Strict-Transport-Security: max-age=0; includeSubdomains
greedcocoatouchy.com/pixel/sbs?c=1
172.240.108.84200 OK 0 B URL GET HTTP/1.1 greedcocoatouchy.com/pixel/sbs?c=1
IP 172.240.108.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerLet's Encrypt
Subjectgreedcocoatouchy.com
FingerprintFF:2D:AC:C6:23:1E:3B:BF:ED:36:B0:82:37:80:54:07:C0:C2:10:7E
ValidityMon, 29 Apr 2024 13:07:00 GMT - Sun, 28 Jul 2024 13:06:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: greedcocoatouchy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Cookie: u_pl=20508906; uid_id2=9571cb06-0a90-4f1c-bcd0-0f657b1cd787:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec65bcfaa683769cffa9ed47e7f9f0d1e6=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:10:35 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cfapi.livesports.mobi/gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086
104.18.42.84200 OK 17 B URL GET HTTP/2 cfapi.livesports.mobi/gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
Hash f73a72e9fc2875e3d313370d0a31d6da
9d0e0415fb4ed6a369e98c97fe7e864826409927
c0926d73b6ca2e1dde2aed9d6294fd8b5eebb3035e8f92f3dff894d5f6da75fd
GET /gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086 HTTP/1.1
Host: cfapi.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:35 GMT
content-type: application/json; charset=utf-8
content-length: 17
etag: "938C0C8EA06EC8AAB34D868931A171B1"
x-frame-options: SAMEORIGIN
x-cfapi-cache: MISS || 60s || /gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086
cache-control: public, max-age=60
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a762fa756ca-OSL
X-Firefox-Spdy: h2
cfapi.livesports.mobi/gate5babd00de944d27d1a571dc366/api/ftb/detail/odds?matchId=2437086
104.18.42.84200 OK 86 B URL GET HTTP/2 cfapi.livesports.mobi/gate5babd00de944d27d1a571dc366/api/ftb/detail/odds?matchId=2437086
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Hash f3bae0548c97be39ad1a60224528e6f3
d443d11a7ecb39f41eb3592fe2b7fcb825cedc28
f8280f8d23e032aec55c8cbce527ab3f37b65ccf57c67e9f675f4e5e6b3961b6
GET /gate5babd00de944d27d1a571dc366/api/ftb/detail/odds?matchId=2437086 HTTP/1.1
Host: cfapi.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:35 GMT
content-type: application/json; charset=utf-8
etag: W/"CD8206CE913072C0D56A6E9892F99DC9"
x-frame-options: SAMEORIGIN
x-cfapi-cache: MISS || 60s || /gate5babd00de944d27d1a571dc366/api/ftb/detail/odds?matchId=2437086
cache-control: public, max-age=60
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a762faa56ca-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
dapiaa.livesports.mobi/api/vc?reqs=3&reqs=4&reqs=5&matchId=2437086
104.18.42.84200 OK 2.4 kB URL GET HTTP/2 dapiaa.livesports.mobi/api/vc?reqs=3&reqs=4&reqs=5&matchId=2437086
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Hash 51fdd996be8e1ddd4f73bbf96b1f7039
97fc5f97f71a7fffa849eab7eaf044a0d28dff48
619c5c0af571fefe1a49d7c8ffe20a97e592fc233733d111d2a940eb4febf676
GET /api/vc?reqs=3&reqs=4&reqs=5&matchId=2437086 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:37 GMT
content-type: application/json; charset=utf-8
etag: W/"DBB9DBD85899162B7ED698A4495E828B"
x-frame-options: SAMEORIGIN
x-dapi-cache: EXPIRED || 2s || /api/vc?reqs=3&reqs=4&reqs=5&matchId=2437086
cache-control: public, max-age=3
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a818cb956ca-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cfapi.livesports.mobi/gate715ea6237b1c756a733a75758e8fc5cb9549d5396a/api/ftb/detail?d=us.marza13.com&id=2437086
104.18.42.84200 OK 8.9 kB URL GET HTTP/2 cfapi.livesports.mobi/gate715ea6237b1c756a733a75758e8fc5cb9549d5396a/api/ftb/detail?d=us.marza13.com&id=2437086
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Hash bfc94a0337ca0f1c832b4d948c839d42
9ce8c63af499f2a431cab9244495c2b9e61d115c
30024bc30c450514a5321ba30c5cd20835d1978ac93b055c4ae7a7fa0ed2f005
GET /gate715ea6237b1c756a733a75758e8fc5cb9549d5396a/api/ftb/detail?d=us.marza13.com&id=2437086 HTTP/1.1
Host: cfapi.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:37 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"30E84B60B60C2454466D91F8E95F263F"
x-frame-options: SAMEORIGIN
x-cfapi-cache: MISS || 60s || /gate715ea6237b1c756a733a75758e8fc5cb9549d5396a/api/ftb/detail?d=us.marza13.com&id=2437086
cache-control: public, max-age=60
content-encoding: gzip
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a81bcfd56ca-OSL
X-Firefox-Spdy: h2
cfapi.livesports.mobi/gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086
104.18.42.84200 OK 17 B URL GET HTTP/2 cfapi.livesports.mobi/gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
Hash f73a72e9fc2875e3d313370d0a31d6da
9d0e0415fb4ed6a369e98c97fe7e864826409927
c0926d73b6ca2e1dde2aed9d6294fd8b5eebb3035e8f92f3dff894d5f6da75fd
GET /gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086 HTTP/1.1
Host: cfapi.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:40 GMT
content-type: application/json; charset=utf-8
content-length: 17
etag: "938C0C8EA06EC8AAB34D868931A171B1"
x-frame-options: SAMEORIGIN
x-cfapi-cache: MISS || 60s || /gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086
cache-control: public, max-age=60
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a961cc956ca-OSL
X-Firefox-Spdy: h2
cfapi.livesports.mobi/gate5babd00de944d27d1a571dc366/api/ftb/detail/odds?matchId=2437086
104.18.42.84200 OK 174 B URL GET HTTP/2 cfapi.livesports.mobi/gate5babd00de944d27d1a571dc366/api/ftb/detail/odds?matchId=2437086
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Hash d59c7d7ab3498415baae26c50a37b3cd
e209baba1c0c5f0dfa1a20489e2959d35c443f20
df4f0643da38649cd86c99b2b4143937813908e3f75e489e158b2b9bc35a7fdd
GET /gate5babd00de944d27d1a571dc366/api/ftb/detail/odds?matchId=2437086 HTTP/1.1
Host: cfapi.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:40 GMT
content-type: application/json; charset=utf-8
etag: W/"CD8206CE913072C0D56A6E9892F99DC9"
x-frame-options: SAMEORIGIN
x-cfapi-cache: MISS || 60s || /gate5babd00de944d27d1a571dc366/api/ftb/detail/odds?matchId=2437086
cache-control: public, max-age=60
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a961cd056ca-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cfapi.livesports.mobi/gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086
104.18.42.84200 OK 17 B URL GET HTTP/2 cfapi.livesports.mobi/gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
Hash f73a72e9fc2875e3d313370d0a31d6da
9d0e0415fb4ed6a369e98c97fe7e864826409927
c0926d73b6ca2e1dde2aed9d6294fd8b5eebb3035e8f92f3dff894d5f6da75fd
GET /gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086 HTTP/1.1
Host: cfapi.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:46 GMT
content-type: application/json; charset=utf-8
content-length: 17
etag: "938C0C8EA06EC8AAB34D868931A171B1"
x-frame-options: SAMEORIGIN
x-cfapi-cache: MISS || 60s || /gatecbb00259b0f90c871a571dc366/api/ftb/detail/changes?matchId=2437086
cache-control: public, max-age=60
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7abbaa3d56ca-OSL
X-Firefox-Spdy: h2
cfapi.livesports.mobi/gate715ea6237b1c756a733a75758e8fc5cb9549d5396a/api/ftb/detail?d=us.marza13.com&id=2437086
104.18.42.84200 OK 2.6 kB URL GET HTTP/2 cfapi.livesports.mobi/gate715ea6237b1c756a733a75758e8fc5cb9549d5396a/api/ftb/detail?d=us.marza13.com&id=2437086
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Hash fdf4f426499739865a33cde7aabfca2c
3cfc12f9e7faa069382bc507767dde1fdda51d72
8aa0e6d7d26d0e35ab00aa9ede72ac50549569294d5b9509a8b455db88f8b243
GET /gate715ea6237b1c756a733a75758e8fc5cb9549d5396a/api/ftb/detail?d=us.marza13.com&id=2437086 HTTP/1.1
Host: cfapi.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:40 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"30E84B60B60C2454466D91F8E95F263F"
x-frame-options: SAMEORIGIN
x-cfapi-cache: MISS || 60s || /gate715ea6237b1c756a733a75758e8fc5cb9549d5396a/api/ftb/detail?d=us.marza13.com&id=2437086
cache-control: public, max-age=60
content-encoding: gzip
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a961ccb56ca-OSL
X-Firefox-Spdy: h2
dapiaa.livesports.mobi/api/vc?reqs=3&reqs=4&reqs=5&matchId=2437086
104.18.42.84200 OK 105 B URL GET HTTP/2 dapiaa.livesports.mobi/api/vc?reqs=3&reqs=4&reqs=5&matchId=2437086
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type gzip compressed data, from Unix
Hash 594491e3f98d08f672efb3a1a864401e
1c05a59638073298185dc15b8443ea711f7cb444
bf0d05d9c917b2d8952c28a5c7f565b1df2bec032532a9c2a526399450d1b902
GET /api/vc?reqs=3&reqs=4&reqs=5&matchId=2437086 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:52 GMT
content-type: application/json; charset=utf-8
etag: W/"DBB9DBD85899162B7ED698A4495E828B"
x-frame-options: SAMEORIGIN
x-dapi-cache: EXPIRED || 2s || /api/vc?reqs=3&reqs=4&reqs=5&matchId=2437086
cache-control: public, max-age=3
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7adf3e3556ca-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/animate.css
104.21.70.253200 OK 79 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/animate.css
IP 104.21.70.253:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash 49a38187f94418e173e4bcc50c96dc4b
b64e899d0c6bbb13e6f63e191b77b3eb5e5a6293
92db03d6a48c8756e15b1b2ffb9d1ea5aae5e2d9a706b630f93f73e3debbb3b0
GET /sb/notifications/gambling/default/android-btn/8/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:34 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: W/"65aa8644-13365"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F7hP%2FbfDfMIN3%2FqiuJn2Ed%2BXpFkX5JMivqz7ZhW2EQPvvlHXS3dcsHdqeYggf16280z0kfFz%2BH%2FRrNsANqTXWIJgfFC3S8K5W%2FKYbTxlblDFqhNugpSyb7v1Ys6yo9fet4ixr%2B73Gqav"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eb7a707fcfb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/_nuxt/88c8a109se0.js
104.18.42.84200 OK 1.5 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/88c8a109se0.js
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type JavaScript source, ASCII text, with very long lines (1489), with no line terminators
Hash 349935d871de1f1401be88d91c784e2a
213a5571f99c1cfa488e780f4424a5c465ebf875
74b3b9f8fd84588a01bb8bf7984730dde05007f58fd791472968dab7100a4f77
GET /_nuxt/88c8a109se0.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/88c8a109se0.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9021c06-OSL
X-Firefox-Spdy: h2
cfcdn.livesports.mobi/zqwin007/Image/team/images/2204/1gqrkhaxrb13.png?v=1
0.0.0.0 0 B URL GET cfcdn.livesports.mobi/zqwin007/Image/team/images/2204/1gqrkhaxrb13.png?v=1
IP 0.0.0.0:0
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zqwin007/Image/team/images/2204/1gqrkhaxrb13.png?v=1 HTTP/1.1
Host: cfcdn.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: image/png
last-modified: Fri, 27 Jan 2023 03:15:01 GMT
vary: Accept-Encoding
etag: W/"63d341b5-316c"
expires: Sun, 31 Mar 2024 00:38:38 GMT
content-encoding: gzip
x-cache: zqwin007:/Image/team/images/2204/1gqrkhaxrb13.png|30d|HIT
cache-control: public, max-age=2592000
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4f09261c06-OSL
X-Firefox-Spdy: h2
greedcocoatouchy.com/sbar.json?key=65bcfaa683769cffa9ed47e7f9f0d1e6&psid=CF-3448_1&uuid=9571cb06-0a90-4f1c-bcd0-0f657b1cd787%3A3%3A1
172.240.127.234200 OK 12 kB URL GET HTTP/1.1 greedcocoatouchy.com/sbar.json?key=65bcfaa683769cffa9ed47e7f9f0d1e6&psid=CF-3448_1&uuid=9571cb06-0a90-4f1c-bcd0-0f657b1cd787%3A3%3A1
IP 172.240.127.234:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerLet's Encrypt
Subjectgreedcocoatouchy.com
FingerprintFF:2D:AC:C6:23:1E:3B:BF:ED:36:B0:82:37:80:54:07:C0:C2:10:7E
ValidityMon, 29 Apr 2024 13:07:00 GMT - Sun, 28 Jul 2024 13:06:59 GMT
Hash 6507fc757510d2901c1d6a0625402767
295fcf70f93ac7d8b055d6abd06cd211dbf2d848
22fff54c01ca2653b788fffb0218fe8b57624fc87f96e12521190c0e86b9a94b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sbar.json?key=65bcfaa683769cffa9ed47e7f9f0d1e6&psid=CF-3448_1&uuid=9571cb06-0a90-4f1c-bcd0-0f657b1cd787%3A3%3A1 HTTP/1.1
Host: greedcocoatouchy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:10:33 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://us.marza13.com
Access-Control-Allow-Origin: https://us.marza13.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=20508906; expires=Sun, 05 May 2024 21:10:33 GMT; secure; SameSite=None
uid_id2=9571cb06-0a90-4f1c-bcd0-0f657b1cd787:3:1; expires=Sat, 11 May 2024 21:10:33 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 05 May 2024 21:10:33 GMT; secure; SameSite=None
uncs=1; expires=Sun, 05 May 2024 21:10:33 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sun, 05 May 2024 21:10:33 GMT; secure; SameSite=None
uncs29=1; expires=Sun, 05 May 2024 21:10:33 GMT; secure; SameSite=None
slec65bcfaa683769cffa9ed47e7f9f0d1e6=[5210995,5210996]; expires=Sat, 04 May 2024 21:10:38 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0fe5be127329766c69e9760f0f2d145c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cfstatic.livesports.mobi/_nuxt/5b8d2e1ase21.js
104.18.42.84200 OK 1.4 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/5b8d2e1ase21.js
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type JavaScript source, ASCII text, with very long lines (1411), with no line terminators
Hash 46ad232e678fa7a93676681810f81277
6ea390693a0a42cbb9c09e1a863e954f99b48b3f
9afd8de456557a6da950e99124f1a111765017201ad09a92a2a2371d739f6db0
GET /_nuxt/5b8d2e1ase21.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/5b8d2e1ase21.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed8ff1c06-OSL
X-Firefox-Spdy: h2
cfcdn.livesports.mobi/prod/svimg/a9775d6e-1ca0-478e-9d17-d6dac83f31b0.gif
0.0.0.0 0 B URL GET cfcdn.livesports.mobi/prod/svimg/a9775d6e-1ca0-478e-9d17-d6dac83f31b0.gif
IP 0.0.0.0:0
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prod/svimg/a9775d6e-1ca0-478e-9d17-d6dac83f31b0.gif HTTP/1.1
Host: cfcdn.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Sat, 04 May 2024 02:42:25 GMT
etag: W/"1da9dccb23b2a67"
content-encoding: gzip
cache-control: public, max-age=31536000
x-cache: svimg/prod|30d|MISS|/svimg/a9775d6e-1ca0-478e-9d17-d6dac83f31b0.gif
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a6219741c06-OSL
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/close.svg
104.21.70.253200 OK 1.3 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/close.svg
IP 104.21.70.253:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File type SVG Scalable Vector Graphics image
Hash 24937fd159a21f2e91207d5788e86c70
1b07e0334cc16c5cd659de56314bd2188e3a82f9
b38a482faa1471a520d231f954412ee0293b0401610af1392038be206dc51b8a
GET /sb/notifications/gambling/default/android-btn/8/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:34 GMT
content-type: image/svg+xml
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: W/"65aa8644-4ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 359018
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QUfo4rCwEZ1c28ddnLaix7wNPK64MAXHbCHAYMAWRwHNXa4xOJJ9EgPFQDzRfes9Pg2sNIQuG8r2aFskH6adQkbcOtJeUyi0HLrqKFnkxxq1zSbDRxQwlEZVG25WmRnvDw0sEdtpZLV%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eb7a70a822b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/img/icon-ball-1.png
104.18.42.84200 OK 497 B URL GET HTTP/2 cfstatic.livesports.mobi/img/icon-ball-1.png
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced
Hash 0a900b2dcc4196c9a95bcedca4970f5a
493e077f242890ba7500fa25e3b8fd6285ed91b5
c038858eae47cbf38c362e462fb255dbe943c83a301cb87cdb7e5a292534a4d3
GET /img/icon-ball-1.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: image/png
content-length: 497
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/icon-ball-1.png
cache-control: public, max-age=2592000
last-modified: Thu, 25 Apr 2024 09:21:06 GMT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a65bc751c06-OSL
X-Firefox-Spdy: h2
us.marza13.com/football/2437086-alnassr-vs-alwehda.html
188.114.96.1200 OK 20 kB URL User Request GET HTTP/2 us.marza13.com/football/2437086-alnassr-vs-alwehda.html
IP 188.114.96.1:443
Certificate IssuerLet's Encrypt
Subjectmarza13.com
FingerprintEE:FF:A7:54:29:A7:72:1D:3C:AE:4A:CA:71:F8:05:53:A4:16:57:B3
ValidityFri, 26 Apr 2024 02:23:09 GMT - Thu, 25 Jul 2024 02:23:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /football/2437086-alnassr-vs-alwehda.html HTTP/1.1
Host: us.marza13.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cache-control: public, max-age=66
etag: W/"4e77-1n5GGDV4WPxs8bLm/HcFhSWUuc8"
access-control-allow-origin: *
access-control-allow-methods: *
access-control-allow-headers: *
x-cache: MISS || 3600s || us.marza13.com/football/2437086-alnassr-vs-alwehda.html
cf-cache-status: HIT
age: 9616
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O1VD1xaLg6D6rYfCGjUcNSYYNfHrHsCxx8wEVCDO4rgXkKYeMNqm7NKDxQSQJSuCIuU5Nead1mlvFfmOmdJeHB4g7nspK7uRCBk3rqtCbMkyeLXwk9QR2M5uic1Xy27QtA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000; includeSubDomains; preload
server: cloudflare
cf-ray: 87eb7a4c68490b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/_nuxt/css/8fd559fa.css
104.18.42.84200 OK 946 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/css/8fd559fa.css
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 946 kB (946448 bytes)
Hash 6afcb654db05abea336ce0903834ed2f
141558e7cb0e630102aa6858f1b77a59e4427a39
19dcddb1fc227b38da30debae3a1631127493e808169665736d5cb9dbd34f614
GET /_nuxt/css/8fd559fa.css HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: MISS || 30d || cfstatic.livesports.mobi/_nuxt/css/8fd559fa.css
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Sun, 28 Apr 2024 04:03:00 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9051c06-OSL
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/bonus-stars-6593305-5446274.mp4
104.21.70.253206 Partial Content 34 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/bonus-stars-6593305-5446274.mp4
IP 104.21.70.253:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]
Hash 69e52ff16a779d8ab66a1156cc50ab23
27f8897a2acc3bcfd319c267d137aaa4650fb3c5
2048e8325f6d17e0fefb2226c4191a9e300c562f2bc46543ac616d49ff971d61
GET /sb/notifications/gambling/default/android-btn/8/img/bonus-stars-6593305-5446274.mp4 HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 206 Partial Content
date: Sat, 04 May 2024 21:10:34 GMT
content-type: video/mp4
content-length: 34238
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: "65aa8644-85be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 354652
content-range: bytes 0-34237/34238
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HFy%2FtctCpzEJvES%2F%2FpNg1rAsXDCs%2FIJQg2%2BkyL3QPxrFwZlBvo9GxV2DfKHQTzEz0JKOax5HOf98Z4ZR5Fe512EJ%2F%2F4meFMmU7a09qP2pJEK7wDpi3VJxIl8YHNvQfziz0tLUIISc8JJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eb7a70a83bb50c-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/_nuxt/5443376ase5.js
104.18.42.84200 OK 1.9 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/5443376ase5.js
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type JavaScript source, ASCII text, with very long lines (1906), with no line terminators
Hash 27c882094e18bf5c4d789e3d18a973ef
2045f2cd1ae2b928020126bbd29f9579fbd5758f
37438e1400c40ccfa0d9ad3501a4d26ce180c2a3d5b4021ed3eee25168e40c66
GET /_nuxt/5443376ase5.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:29 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/5443376ase5.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a555e671c06-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/_nuxt/cc721da1se35.js
104.18.42.84200 OK 306 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/cc721da1se35.js
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
Size 306 kB (305785 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_nuxt/cc721da1se35.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: MISS || 30d || cfstatic.livesports.mobi/_nuxt/cc721da1se35.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Sun, 28 Apr 2024 04:03:00 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9061c06-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/img/1st/apple-touch-icon.png
0.0.0.0 0 B URL GET cfstatic.livesports.mobi/img/1st/apple-touch-icon.png
IP 0.0.0.0:0
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/1st/apple-touch-icon.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:30 GMT
content-type: image/png
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/1st/apple-touch-icon.png
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a55ae971c06-OSL
X-Firefox-Spdy: h2
dapiaa.livesports.mobi/api/getFocusMatch?category=1
104.18.42.84200 OK 2.4 kB URL GET HTTP/2 dapiaa.livesports.mobi/api/getFocusMatch?category=1
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type ASCII text, with very long lines (2680), with no line terminators
Hash 187fe1c24ee466f98a58930e8bfa2789
aac21fa8e918850a0d7330c9044b111269c50120
179e15714d5eb8372c15b195c4a2577d97d0fb18f99a54ebbd4e60259bf39f00
GET /api/getFocusMatch?category=1 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"7D9F22DCCD951280E6A055693D26605A"
x-frame-options: SAMEORIGIN
x-dapi-cache: EXPIRED || 7s || /api/getFocusMatch?category=1
cache-control: public, max-age=120
content-encoding: gzip
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5c29cb56ca-OSL
X-Firefox-Spdy: h2
dapiaa.livesports.mobi/api/ftb/battledata?id=2437086
104.18.42.84200 OK 1.7 kB URL GET HTTP/2 dapiaa.livesports.mobi/api/ftb/battledata?id=2437086
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1928), with no line terminators
Hash 0ed0062fc920cda939c5cc19d287bf81
130241e5a4cf494b21394f9053fec2b09d169e98
1a5be30c15e98e1a528b78f4e82cc0a3b70c481b984c1be40fe091cdcfd603f8
GET /api/ftb/battledata?id=2437086 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"99E6746B1BE4DAE1A0F5D6A5F09FE539"
x-frame-options: SAMEORIGIN
x-dapi-def-cache: MISS || 10s || /api/ftb/battledata?id=2437086
cache-control: public, max-age=5
content-encoding: gzip
cf-cache-status: REVALIDATED
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5c39d156ca-OSL
X-Firefox-Spdy: h2
dapiaa.livesports.mobi/api/ftb/detail/changes?matchId=2437086
104.18.42.84200 OK 17 B URL GET HTTP/2 dapiaa.livesports.mobi/api/ftb/detail/changes?matchId=2437086
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 99c806388d7bb25a4587cd2342e64c0d
ff8f57cec4366de4cd65f5ae3fa861452f0b4cd0
5e5fedf902caa7ae4cae7566ed0695094bcc0b830299cf2a6d26cf040b207029
GET /api/ftb/detail/changes?matchId=2437086 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:31 GMT
content-type: application/json; charset=utf-8
content-length: 17
etag: "938C0C8EA06EC8AAB34D868931A171B1"
x-frame-options: SAMEORIGIN
x-dapi-def-cache: EXPIRED || 10s || /api/ftb/detail/changes?matchId=2437086
cache-control: public, max-age=5
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5c39d656ca-OSL
X-Firefox-Spdy: h2
dapiaa.livesports.mobi/api/ftb/detail/odds?matchId=2437086
104.18.42.84200 OK 83 B URL GET HTTP/2 dapiaa.livesports.mobi/api/ftb/detail/odds?matchId=2437086
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash b10746e52d6cdf4bd0d565b584bdc862
684f6c464ee35f53998df2443730d607612a39f7
29c76b45f0c22f0a34959af426dc3c3d5dedbdbb852c286fbd39561a780fb934
GET /api/ftb/detail/odds?matchId=2437086 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:31 GMT
content-type: application/json; charset=utf-8
etag: W/"CD8206CE913072C0D56A6E9892F99DC9"
x-frame-options: SAMEORIGIN
x-dapi-def-cache: EXPIRED || 10s || /api/ftb/detail/odds?matchId=2437086
cache-control: public, max-age=5
cf-cache-status: REVALIDATED
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5c39d956ca-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/img/1st/icon_clock.png
104.18.42.84200 OK 913 B URL GET HTTP/2 cfstatic.livesports.mobi/img/1st/icon_clock.png
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type PNG image data, 42 x 36, 8-bit/color RGBA, non-interlaced
Hash f331755822bd8e53cf4573ee3705e4e2
9c2b943dcee163a6d956c95dcdb676c80202d41d
6cd6756012fc64567df068aecb0fbfcf2cac0ad0cc20b85a0e0b336e97f19bdf
GET /img/1st/icon_clock.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cfstatic.livesports.mobi/_nuxt/css/8fd559fa.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: image/png
content-length: 913
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/1st/icon_clock.png
cache-control: public, max-age=2592000
last-modified: Mon, 29 Apr 2024 15:55:58 GMT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a668d1c1c06-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:55:00 GMT
expires: Fri, 02 May 2025 01:55:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 242134
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/js/script.js
104.21.70.253200 OK 9.5 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/js/script.js
IP 104.21.70.253:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File type Unicode text, UTF-8 text, with very long lines (8821), with no line terminators
Hash d0707ac5d95047febbb8f131cc7a9af4
65021f149e99900eeaf7d298d2303160872b43f3
3e2e7ab351d401339df520fbd7ce4f177643dca01cad22bf59dd4b3e14853810
GET /sb/notifications/gambling/default/android-btn/8/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:34 GMT
content-type: application/javascript
last-modified: Tue, 20 Feb 2024 10:37:31 GMT
etag: W/"65d480eb-24fa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t4gMoF68OSMF8QV6x09VEupPtAI7clmFG6oM6T7Ca3v%2Fj%2FqWwbXVaaAxUxbUMI6ToyQBK6If%2BCinh52v8g5A%2FlSv64VIe3z%2F7qptdMqPuyw%2Fdru2PyaFJukI8hFgth2UN7KJqFs5GwYW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eb7a707fd4b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
matchgress-api.livesports.mobi/flashdata/get?id=2437086&t=1714857035
104.18.42.84200 OK 3.4 kB URL GET HTTP/2 matchgress-api.livesports.mobi/flashdata/get?id=2437086&t=1714857035
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type Unicode text, UTF-8 text, with very long lines (3356), with no line terminators
Hash 9957accae7f0472c1d2f2cc78077f595
5f7a61c62f26143a2aca6d34294a42523466eec8
fa9b9a4ccc3266891016407f87f7478e9ea86535e20a3fb0966282b3e049c0f9
GET /flashdata/get?id=2437086&t=1714857035 HTTP/1.1
Host: matchgress-api.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:33 GMT
content-type: text/plain; charset=utf-8
vary: Accept-Encoding
last-modified: Sat, 04 May 2024 19:57:34 GMT
content-encoding: br
cf-cache-status: HIT
expires: Sat, 04 May 2024 21:11:03 GMT
cache-control: public, max-age=30
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a66ae6b56ca-OSL
X-Firefox-Spdy: h2
cfcdn.livesports.mobi/zqwin007/Image/team/images/3412/1h6mrbjn1a2g.png?v=1
0.0.0.0 0 B URL GET cfcdn.livesports.mobi/zqwin007/Image/team/images/3412/1h6mrbjn1a2g.png?v=1
IP 0.0.0.0:0
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zqwin007/Image/team/images/3412/1h6mrbjn1a2g.png?v=1 HTTP/1.1
Host: cfcdn.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: image/png
last-modified: Mon, 31 Jul 2023 01:17:45 GMT
vary: Accept-Encoding
etag: W/"64c70bb9-4df0"
expires: Wed, 01 May 2024 10:54:57 GMT
content-encoding: gzip
x-cache: zqwin007:/Image/team/images/3412/1h6mrbjn1a2g.png|30d|HIT
cache-control: public, max-age=2592000
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4f09271c06-OSL
X-Firefox-Spdy: h2
complementnickel.com/c85408c470ed8e74309a6963405446dc/invoke.js
192.243.59.13200 OK 27 kB URL GET HTTP/1.1 complementnickel.com/c85408c470ed8e74309a6963405446dc/invoke.js
IP 192.243.59.13:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerLet's Encrypt
Subjectcomplementnickel.com
Fingerprint39:EC:9A:D0:3C:1D:CD:B8:4C:51:46:DD:17:76:67:E0:E7:FC:24:85
ValidityFri, 15 Mar 2024 06:52:17 GMT - Thu, 13 Jun 2024 06:52:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /c85408c470ed8e74309a6963405446dc/invoke.js HTTP/1.1
Host: complementnickel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 04 May 2024 21:10:31 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5e1fce7de3a03a1e7fae301e2084bdd6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cfstatic.livesports.mobi/_nuxt/css/0812f467.css
104.18.42.84200 OK 40 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/css/0812f467.css
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type ASCII text, with very long lines (39860), with no line terminators
Hash 65bb6d7e819ede57bee58d7e8c344419
baacb1f7b9ca637feb9aad12b46851ac46c27d41
4128dd291f093924bb0a813fd9302653d17c3b541cf3ada7081841c79476ead0
GET /_nuxt/css/0812f467.css HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/css/0812f467.css
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9031c06-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/_nuxt/css/60976d48.css
104.18.42.84200 OK 33 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/css/60976d48.css
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type ASCII text, with very long lines (33423), with no line terminators
Hash 229f61de5b5bbebf04962140a316f6b8
ce066dc3e1b01dce14ff48b9997abe8a72c5230f
d121384003e759b183238c34c41543ff64a702a084e60a9f2588d9f728f38775
GET /_nuxt/css/60976d48.css HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/css/60976d48.css
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed8fc1c06-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/_nuxt/css/7a554008.css
104.18.42.84200 OK 34 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/css/7a554008.css
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type ASCII text, with very long lines (33529), with no line terminators
Hash f2e891efdabf5a9dcc45ac192dd9eb24
3ba0de0cda0c1529faf863c45c168424c0c088d8
1450212ac5665ce761169ca6cd95c2f5337207562e74180468c501c99a62a55d
GET /_nuxt/css/7a554008.css HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:29 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/css/7a554008.css
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a555e631c06-OSL
X-Firefox-Spdy: h2
smashedpractice.com/65/bc/fa/65bcfaa683769cffa9ed47e7f9f0d1e6.js
172.240.127.234200 OK 45 kB URL GET HTTP/1.1 smashedpractice.com/65/bc/fa/65bcfaa683769cffa9ed47e7f9f0d1e6.js
IP 172.240.127.234:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerLet's Encrypt
Subjectsmashedpractice.com
Fingerprint05:60:8C:52:B5:AD:96:13:FA:53:89:15:B7:74:7F:43:99:E8:07:92
ValidityMon, 29 Apr 2024 08:31:36 GMT - Sun, 28 Jul 2024 08:31:35 GMT
File type JavaScript source, ASCII text, with very long lines (45303), with no line terminators
Hash 8553936fe53236c536d461abb7f1a712
7eb9b377f570d2ea701d8d97b50039ee53ff64ab
4a4dc867ed385e7a2e3de13bce58be63d2cbcf96229f69a92d4599bae7eeff81
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /65/bc/fa/65bcfaa683769cffa9ed47e7f9f0d1e6.js HTTP/1.1
Host: smashedpractice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:10:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-3448=1; expires=Wed, 08 May 2024 00:10:32 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6f13dffc97643d305d85a157975ac050
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cfstatic.livesports.mobi/img/icon-back.png
0.0.0.0 0 B URL GET cfstatic.livesports.mobi/img/icon-back.png
IP 0.0.0.0:0
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/icon-back.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: image/png
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/icon-back.png
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:10 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ef9151c06-OSL
X-Firefox-Spdy: h2
greedcocoatouchy.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Findex.html&l=1444&fd=627
172.240.127.234200 OK 0 B URL GET HTTP/1.1 greedcocoatouchy.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Findex.html&l=1444&fd=627
IP 172.240.127.234:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerLet's Encrypt
Subjectgreedcocoatouchy.com
FingerprintFF:2D:AC:C6:23:1E:3B:BF:ED:36:B0:82:37:80:54:07:C0:C2:10:7E
ValidityMon, 29 Apr 2024 13:07:00 GMT - Sun, 28 Jul 2024 13:06:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Findex.html&l=1444&fd=627 HTTP/1.1
Host: greedcocoatouchy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Cookie: u_pl=20508906; uid_id2=9571cb06-0a90-4f1c-bcd0-0f657b1cd787:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec65bcfaa683769cffa9ed47e7f9f0d1e6=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:10:34 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/confetti.gif
104.21.70.253200 OK 206 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/img/confetti.gif
IP 104.21.70.253:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File type GIF image data, version 89a, 480 x 360
Size 206 kB (206291 bytes)
Hash 0b33face774f2203446507ce5f075538
1dd3522529bce7739df0687f47f5bc84356698a0
ac345899461d5634d25c47281b10e3c1886abb33019e2ce8140573a79e9f52f2
GET /sb/notifications/gambling/default/android-btn/8/img/confetti.gif HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:34 GMT
content-type: image/gif
content-length: 206291
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: "65aa8644-325d3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 354661
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V2s5bVDxnom66cNFkNOAtSmGTPMPhKghFegzdFi2zhrO%2Bc7euYuMslxU78VFaZRIlZOysu%2FVG0ljEwmg1vuNqc1i7%2Bmnl06soHRm0PRdImv7IQ39RF2%2F3Qv8o9k7tzu3IH7rJZ9rE1IU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eb7a70a831b50c-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/_nuxt/6e25e2fese34.js
104.18.42.84200 OK 962 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/6e25e2fese34.js
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
Size 962 kB (961483 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_nuxt/6e25e2fese34.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/6e25e2fese34.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4f09281c06-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/img/1st/favicon-16x16.png
104.18.42.84200 OK 522 B URL GET HTTP/2 cfstatic.livesports.mobi/img/1st/favicon-16x16.png
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type PNG image data, 16 x 16, 4-bit colormap, non-interlaced
Hash f6b85d81c11a22bfbebef3a7f4339f17
56fcbf7977d92845fab4f90582b9da84be1650b0
c5cf4c498409eae2acaccd0bd633dc90ab08f958baa1138a628146dabc4f21f2
GET /img/1st/favicon-16x16.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:30 GMT
content-type: image/png
content-length: 522
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/1st/favicon-16x16.png
cache-control: public, max-age=2592000
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a55aea11c06-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/img/bg-detail-header.png
0.0.0.0 0 B URL GET cfstatic.livesports.mobi/img/bg-detail-header.png
IP 0.0.0.0:0
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/bg-detail-header.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cfstatic.livesports.mobi/_nuxt/css/8fd559fa.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:29 GMT
content-type: image/png
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/bg-detail-header.png
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:08 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a531ca11c06-OSL
X-Firefox-Spdy: h2
dapiaa.livesports.mobi/api/ftb/battledata?id=2437086
104.18.42.84200 OK 1.7 kB URL GET HTTP/2 dapiaa.livesports.mobi/api/ftb/battledata?id=2437086
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1928), with no line terminators
Hash 0ed0062fc920cda939c5cc19d287bf81
130241e5a4cf494b21394f9053fec2b09d169e98
1a5be30c15e98e1a528b78f4e82cc0a3b70c481b984c1be40fe091cdcfd603f8
GET /api/ftb/battledata?id=2437086 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"99E6746B1BE4DAE1A0F5D6A5F09FE539"
x-frame-options: SAMEORIGIN
x-dapi-def-cache: MISS || 10s || /api/ftb/battledata?id=2437086
cache-control: public, max-age=5
content-encoding: gzip
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5c49dc56ca-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/_nuxt/26daa860se4.js
104.18.42.84200 OK 1.1 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/26daa860se4.js
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type JavaScript source, ASCII text, with very long lines (1072), with no line terminators
Hash 37e88332ef50516bf4d7448d23e8c0be
48d2faecfa0e363d0fcc0bc103021d34386b8c8e
02bf5dd8cba1e4977438b6dd9d7eb5e9bb3bed642aac0c96ed04ec68955bf996
GET /_nuxt/26daa860se4.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/26daa860se4.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:07 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9081c06-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:37 GMT
expires: Sun, 04 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 42117
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dapiaa.livesports.mobi/api/gg?hostname=us.marza13.com&countryCode=NO
104.18.42.84200 OK 1.5 kB URL GET HTTP/2 dapiaa.livesports.mobi/api/gg?hostname=us.marza13.com&countryCode=NO
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type ASCII text, with very long lines (1662), with no line terminators
Hash cad418f0af917d29368fd1c5472d73c9
41b73c37c0397f917132ea63a5b0931e18dbae6d
e9b9332eab5129adab479864c6fd653608611ee17a1fac99981b12c81f971160
GET /api/gg?hostname=us.marza13.com&countryCode=NO HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"03F117DCED0B8227164BD749756B5B47"
x-frame-options: SAMEORIGIN
x-dapi-cache: MISS || 2s || /api/gg?hostname=us.marza13.com&countryCode=NO
cache-control: public, max-age=60
content-encoding: gzip
cf-cache-status: REVALIDATED
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5ae8bf56ca-OSL
X-Firefox-Spdy: h2
downstairsnegotiatebarren.com/sfp.js
188.114.96.1200 OK 86 kB URL GET HTTP/2 downstairsnegotiatebarren.com/sfp.js
IP 188.114.96.1:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B
ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 4a742311c0d02c3d98df37ffbd9e504d
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: STALE
age: 0
last-modified: Sat, 04 May 2024 21:10:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wd3PYgdgrKA996BYS6NKxUlECr9B0sezEjb0QN12qxudRDMUFXxPk8fVGnrjM3%2F5VOmGFR9i8zFzkd%2BxfmL9SJuxUo0FXzCYsH1M85gSD8h5Zk1%2FDXknkA3nFRWu5w22BuFZkF1yQN2%2FhdUC0NT%2FzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eb7a655986b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesports.mobi/prod/svimg/0131a2d2-275b-42db-a0e6-2bf9f111716a.gif
104.18.42.84200 OK 105 kB URL GET HTTP/2 cfcdn.livesports.mobi/prod/svimg/0131a2d2-275b-42db-a0e6-2bf9f111716a.gif
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type GIF image data, version 89a, 750 x 422
Size 105 kB (104643 bytes)
Hash 5c553b08eb9cc3983edcb4e317b00363
ad4b6f6c7ae579959fa7895c31f427423ea4150b
87daaf063e263f7429451650cd58297e2cb1d91914fac1cdad1402cc19e9973c
GET /prod/svimg/0131a2d2-275b-42db-a0e6-2bf9f111716a.gif HTTP/1.1
Host: cfcdn.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: image/gif
vary: Accept-Encoding
last-modified: Tue, 30 Apr 2024 01:50:57 GMT
etag: W/"1da9aa0d7fcce43"
content-encoding: gzip
cache-control: public, max-age=31536000
x-cache: svimg/prod|30d|MISS|/svimg/0131a2d2-275b-42db-a0e6-2bf9f111716a.gif
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a667cff1c06-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/img/logo.png
0.0.0.0 0 B URL GET cfstatic.livesports.mobi/img/logo.png
IP 0.0.0.0:0
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/logo.png HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: image/png
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/img/logo.png
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:06 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed9091c06-OSL
X-Firefox-Spdy: h2
greedcocoatouchy.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fjs%2Fscript.js&l=7986&fd=413
172.240.127.234200 OK 0 B URL GET HTTP/1.1 greedcocoatouchy.com/pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fjs%2Fscript.js&l=7986&fd=413
IP 172.240.127.234:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerLet's Encrypt
Subjectgreedcocoatouchy.com
FingerprintFF:2D:AC:C6:23:1E:3B:BF:ED:36:B0:82:37:80:54:07:C0:C2:10:7E
ValidityMon, 29 Apr 2024 13:07:00 GMT - Sun, 28 Jul 2024 13:06:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=24.18.6785&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fgambling%2Fdefault%2Fandroid-btn%2F8%2Fjs%2Fscript.js&l=7986&fd=413 HTTP/1.1
Host: greedcocoatouchy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Cookie: u_pl=20508906; uid_id2=9571cb06-0a90-4f1c-bcd0-0f657b1cd787:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec65bcfaa683769cffa9ed47e7f9f0d1e6=[5210995,5210996]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 04 May 2024 21:10:34 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cfcdn.livesports.mobi/prod/svimg/a435db01-268e-4f1d-b6d8-36c05fa81807.png
0.0.0.0 0 B URL GET cfcdn.livesports.mobi/prod/svimg/a435db01-268e-4f1d-b6d8-36c05fa81807.png
IP 0.0.0.0:0
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /prod/svimg/a435db01-268e-4f1d-b6d8-36c05fa81807.png HTTP/1.1
Host: cfcdn.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:32 GMT
content-type: image/png
vary: Accept-Encoding
last-modified: Thu, 28 Dec 2023 01:29:55 GMT
etag: W/"1da392d5c8605e7"
content-encoding: gzip
cache-control: public, max-age=31536000
x-cache: svimg/prod|30d|HIT|/svimg/a435db01-268e-4f1d-b6d8-36c05fa81807.png
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a6219771c06-OSL
X-Firefox-Spdy: h2
dapiaa.livesports.mobi/api/getFocusMatch?category=1
104.18.42.84200 OK 2.4 kB URL GET HTTP/2 dapiaa.livesports.mobi/api/getFocusMatch?category=1
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type ASCII text, with very long lines (2680), with no line terminators
Hash 187fe1c24ee466f98a58930e8bfa2789
aac21fa8e918850a0d7330c9044b111269c50120
179e15714d5eb8372c15b195c4a2577d97d0fb18f99a54ebbd4e60259bf39f00
GET /api/getFocusMatch?category=1 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:31 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
etag: W/"7D9F22DCCD951280E6A055693D26605A"
x-frame-options: SAMEORIGIN
x-dapi-cache: EXPIRED || 7s || /api/getFocusMatch?category=1
cache-control: public, max-age=120
content-encoding: gzip
cf-cache-status: REVALIDATED
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5c39db56ca-OSL
X-Firefox-Spdy: h2
cfstatic.livesports.mobi/_nuxt/css/1d758b20.css
104.18.42.84200 OK 101 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/css/1d758b20.css
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type ASCII text, with very long lines (63489)
Size 101 kB (101016 bytes)
Hash 6165faf5926b8aa8c7a224b23b12955b
f57b75f22f3874168b55a17f69733fec4aab0517
9830cc64e6b2b85ec8d243bd8d39eee8a03bcbcef5979465eb8073c41e1fb0bb
GET /_nuxt/css/1d758b20.css HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: HIT || 30d || cfstatic.livesports.mobi/_nuxt/css/1d758b20.css
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Thu, 25 Apr 2024 09:21:06 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4ed8fa1c06-OSL
X-Firefox-Spdy: h2
dapiaa.livesports.mobi/api/servertimes?_t=1714857030795
104.18.42.84200 OK 13 B URL GET HTTP/2 dapiaa.livesports.mobi/api/servertimes?_t=1714857030795
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type ASCII text, with no line terminators
Hash 55e96a8eda35f33f78a238e28b460864
a8505243e20fe59993c83f4f298e050ce19857cd
3addc9338dcc00c1a8e4f9353de793b0c3d528aa77a8ccb4b5ffa2b24be1ec5a
GET /api/servertimes?_t=1714857030795 HTTP/1.1
Host: dapiaa.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:30 GMT
content-type: application/json; charset=utf-8
content-length: 13
etag: "1AEC84C2E7A940F034AB7DB4178A1F16"
x-frame-options: SAMEORIGIN
x-dapi-cache: EXPIRED || 2s || /api/servertimes
cache-control: public, max-age=3
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a5a886656ca-OSL
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/style.css
104.21.70.253200 OK 3.3 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/gambling/default/android-btn/8/css/style.css
IP 104.21.70.253:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File type ASCII text, with very long lines (3556), with no line terminators
Hash 5a37dc16b8eecffd5e7e805fee49218c
4187086691ead46033b8f2e76c4efdb611137949
436f451c35127aa88f59b29f7c8df41b3822dc16ada4d685fbeb537ecbbe914c
GET /sb/notifications/gambling/default/android-btn/8/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us.marza13.com
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:34 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:25:08 GMT
etag: W/"65aa8644-d14"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gdlq%2BhGvLctgYP0FSoZ9r%2FoHZpukMnSNMpqH749wOpndGj05ZtDsM2JocEIuIP6uaKtAsHZR3v4zQ4v%2Fn0pRz7FFFlq7XE25ALmjCzTRyKyt%2F7tGhvOnUJDiXO4J2o2lfEuF2c%2FFRgiE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87eb7a707fd3b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
hm.baidu.com/hm.js?847b69b93869381c249c82d6c97e896e
14.215.182.140200 OK 30 kB URL GET HTTP/1.1 hm.baidu.com/hm.js?847b69b93869381c249c82d6c97e896e
IP 14.215.182.140:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGlobalSign nv-sa
Subjectbaidu.com
Fingerprint97:42:D5:98:27:D6:22:88:CF:59:C3:FF:75:86:8D:D5:D3:12:A0:AF
ValidityThu, 06 Jul 2023 01:51:06 GMT - Tue, 06 Aug 2024 01:51:05 GMT
File type JavaScript source, ASCII text, with very long lines (630)
Hash aafaa39c0f8b8077aecf993a27ef0de4
066c8b06d4ccea196f115e310a0db9e12c23a939
e5133b91e9c815075632ab4fe9e71a077745b640dd65fb8c9896dc62eecc70a5
GET /hm.js?847b69b93869381c249c82d6c97e896e HTTP/1.1
Host: hm.baidu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: max-age=0, must-revalidate
Content-Encoding: gzip
Content-Length: 11268
Content-Type: application/javascript
Date: Sat, 04 May 2024 21:10:31 GMT
Etag: f1aae5e866247e6ebc362d42fe18ebdd
P3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Server: apache
Set-Cookie: HMACCOUNT=26A121D271C1A2B2; Path=/; Domain=hm.baidu.com; Expires=Sun, 18 Jan 2038 00:00:00 GMT
Strict-Transport-Security: max-age=172800
cfstatic.livesports.mobi/_nuxt/8197a30e.js
104.18.42.84200 OK 9.2 kB URL GET HTTP/2 cfstatic.livesports.mobi/_nuxt/8197a30e.js
IP 104.18.42.84:443
Requested by https://us.marza13.com/football/2437086-alnassr-vs-alwehda.html
Certificate IssuerGoogle Trust Services LLC
Subjectlivesports.mobi
FingerprintFE:12:AD:A4:E7:86:C0:35:7A:D5:E5:C3:00:F4:5C:E3:57:6E:32:A8
ValidityWed, 20 Mar 2024 08:10:07 GMT - Tue, 18 Jun 2024 08:10:06 GMT
File type JavaScript source, ASCII text, with very long lines (9245), with no line terminators
Hash 1152852a1de7898fa3b65538c44f8cf8
1927016ac15cf3fd4265255ffe5a290b889aaa02
0b04800a88bd2ec03e287241b64fbb001199ebf1a346c1de8ba4e33ae24f862d
GET /_nuxt/8197a30e.js HTTP/1.1
Host: cfstatic.livesports.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://us.marza13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 21:10:28 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-cache: EXPIRED || 30d || cfstatic.livesports.mobi/_nuxt/8197a30e.js
cache-control: public, max-age=2592000
content-encoding: gzip
last-modified: Tue, 30 Apr 2024 05:43:09 GMT
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains; preload
access-control-allow-credentials: true
access-control-allow-headers: *,Content-Type,Authorization
access-control-allow-methods: *
access-control-allow-origin: *
access-control-expose-headers: *,ip-src-city,ip-src
server: cloudflare
cf-ray: 87eb7a4f09241c06-OSL
X-Firefox-Spdy: h2