Report - www.bayanbola5.org/

Report Overview

Visited public
2025-03-14 04:41:17
Tags
URL
www.bayanbola5.org/
Finishing URL
www.bayanbola5.org/
IP / ASN
172.67.158.95
#13335 CLOUDFLARENET
Title
BAYANBOLA - PLATFORM Game Online Terpercaya dan Terbaik

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
v2assets.zopim.io	29214	2012-05-09	2017-01-30	2025-03-06	893 B	248 kB	104.16.200.19
media.fastchecker.us	224498	2018-02-28	2022-05-12	2025-03-11	14 kB	919 kB	104.21.18.144
static.zdassets.com	2154	2013-01-28	2018-06-23	2025-03-12	6.6 kB	1.8 MB	216.198.54.3
www.bayanbola5.org	unknown	2025-01-07	2025-03-14	2025-03-14	10 kB	899 kB	104.21.74.125
landingsplash.xyz	216475	2016-04-09	2016-04-22	2025-03-13	470 B	55 kB	104.21.19.4
object-d001-cloud.cloudstoragesharingservice.com	unknown	2023-06-26	2023-06-28	2025-03-10	501 B	55 kB	172.67.188.187
ekr.zdassets.com	2396	2013-01-28	2018-06-13	2025-03-12	484 B	2.1 kB	216.198.53.3
i.postimg.cc	23840	2016-06-11	2018-04-11	2025-03-12	3.6 kB	1.3 MB	46.105.222.81
wss	unknown	unknown	2025-03-02	2025-03-09	606 B	564 B	3.121.52.16

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-03-13	medium	wss	Sinkholed

ThreatFox

No alerts detected

JavaScript (28)

	URL	From	Size	First Seen	Last Seen
	www.bayanbola5.org/assets/js/jquery-3.6.3.min.js?v=8.6	ScriptElement	90 kB	2023-03-13	2025-03-14
Pretty URL www.bayanbola5.org/assets/js/jquery-3.6.3.min.js?v=8.6 IP 104.21.74.125 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:09 Last Seen2025-03-14 09:15 Times Seen722 Hash 30792621ca010e3c5d5f98162629439f 9bc5b058a9e9fe3820484290bd0810681072e448 448ef0632211ba18d7c1557a6d22250820ac3b4465ba2e73b7137f4dc4a31a12 Loading...

	www.bayanbola5.org/assets/js/bootstrap.min.js?v=8.6	ScriptElement	51 kB	2023-03-07	2025-03-15
Pretty URL www.bayanbola5.org/assets/js/bootstrap.min.js?v=8.6 IP 104.21.74.125 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-03-15 02:58 Times Seen94809 Hash 67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4 Loading...

	static.zdassets.com/web_widget/classic/latest/web-widget-chat-incoming-message-notification-5016640.js	ScriptElement	236 B	2024-09-26	2025-03-15
Pretty URL static.zdassets.com/web_widget/classic/latest/web-widget-chat-incoming-message-notification-5016640.js IP 216.198.54.3 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-26 16:31 Last Seen2025-03-15 03:52 Times Seen4120 Hash e9d8b92096016dfd74d2f2500556464e 0db4e74b955611b21791405af062346f34ac2eee eb2902ff32366de00d3afa351aeceb1357d5a468eacbb2fd92cf115276d626cb Loading...

	www.bayanbola5.org/assets/js/modernizr-custom.js?v=8.6	ScriptElement	39 kB	2023-03-07	2025-03-14
Pretty URL www.bayanbola5.org/assets/js/modernizr-custom.js?v=8.6 IP 104.21.74.125 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40 Last Seen2025-03-14 07:30 Times Seen121 Hash fa8e9c58a688c9eb32c865f531ae53d6 baf04a150a46ebbbe5092dfadab842217a1320e3 34269667e413365a6426f2e870fa9c56274c4bc62061e4a13dd89ff1053f4044 Loading...

	www.bayanbola5.org/assets/js/popper.min.js?v=8.6	ScriptElement	20 kB	2023-03-07	2025-03-14
Pretty URL www.bayanbola5.org/assets/js/popper.min.js?v=8.6 IP 104.21.74.125 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40 Last Seen2025-03-14 07:30 Times Seen178 Hash 0c02519560232e527ee9a41968b64671 cae6310d5c4fb949e6d1055d8f8e9a588f6b6871 15acaaf86c959d48bb6e74d0322ad3ae92f9b980c311a36136f3a3ac983fa8a1 Loading...

	static.zdassets.com/web_widget/classic/latest/web-widget-103-5016640.js	ScriptElement	40 kB	2024-11-07	2025-03-14
Pretty URL static.zdassets.com/web_widget/classic/latest/web-widget-103-5016640.js IP 216.198.54.3 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-07 15:14 Last Seen2025-03-14 06:13 Times Seen65 Hash f21d40ae60d7c0d5b6bfc6f185c65f2c be17d46ab4689b1d2828cdca1f0d0e22d46090b2 a1f01f529535f70605f154c1461fff2c905fdbbe702832bba4e5a332c9a1add8 Loading...

	static.zdassets.com/web_widget/classic/latest/web-widget-8417-5016640.js	ScriptElement	84 kB	2024-11-07	2025-03-14
Pretty URL static.zdassets.com/web_widget/classic/latest/web-widget-8417-5016640.js IP 216.198.54.3 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-07 15:14 Last Seen2025-03-14 06:13 Times Seen65 Hash 120281397869e52108ee156fe7208b66 955c0a841718ef15bb9e134ce1d8c5db2200a292 735124813eaf2c00a5080a53b5211f638c6dadda7a27889b6845f78914e0084c Loading...

	static.zdassets.com/web_widget/classic/latest/web-widget-1442-5016640.js	ScriptElement	39 kB	2024-11-07	2025-03-14
Pretty URL static.zdassets.com/web_widget/classic/latest/web-widget-1442-5016640.js IP 216.198.54.3 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-07 15:14 Last Seen2025-03-14 06:13 Times Seen65 Hash 4d459e1a5f2a9093c9406382d8fc9081 032c5516f46871b97dff990dbc8e4eb6ad00c0bd b8465ff9482317d8d9a9a0c89894736c0981e59319e31768f461403e3433de59 Loading...

	static.zdassets.com/web_widget/classic/latest/web-widget-7623-5016640.js	ScriptElement	38 kB	2024-11-07	2025-03-14
Pretty URL static.zdassets.com/web_widget/classic/latest/web-widget-7623-5016640.js IP 216.198.54.3 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-07 15:14 Last Seen2025-03-14 06:13 Times Seen65 Hash d94ca4e873c32af547b193bc98332a54 3c861e2156d51afee70aefc0b4f598db70edd015 ccb785392612efc150ce4ce0d83d542f4ba2c69fafa4bf6a9e02e75ccca20ced Loading...

	www.bayanbola5.org/assets/js/marquee.min.js?v=8.6	ScriptElement	4.7 kB	2023-03-07	2025-03-14
Pretty URL www.bayanbola5.org/assets/js/marquee.min.js?v=8.6 IP 104.21.74.125 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07 Last Seen2025-03-14 07:30 Times Seen188 Hash e2242d0e2ff6d845fdc7ebebf5f1273f da81e6c22859f8037569104cd426ecaec1c3a8e5 0c474668e4325cc159ac1555013432e62325ac62d3dfe3dbae53bbeefc07b45b Loading...

	www.bayanbola5.org/	ScriptElement	356 B	2025-03-14	2025-03-14
Pretty URL www.bayanbola5.org/ IP 104.21.74.125 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-14 04:41 Last Seen2025-03-14 04:41 Times Seen1 Hash 123d1f4e37d53bcdd6a0d59bdad701f5 a056b22ebc3a66b85cd6a2f88d7c4912b976d8a3 cd5841516a9f51925ddc1b7bf08e07cd66e427f592ead3404017adaa735f1a74 Loading...

	static.zdassets.com/web_widget/classic/latest/web-widget-main-5016640.js	ScriptElement	850 kB	2025-03-11	2025-03-15
Pretty URL static.zdassets.com/web_widget/classic/latest/web-widget-main-5016640.js IP 216.198.54.3 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-11 10:28 Last Seen2025-03-15 03:52 Times Seen384 Hash 5dda45060e90181be8a2292c9a5d0ae7 5002afb08eb807243eced28b20d046310b7fbf6f 681e52512685c028a4e91ad92a7fa2938d5180b1fbaa2b152ef7281f12314704 Loading...

	www.bayanbola5.org/assets/js/jquery.lazyload.js?v=8.6	ScriptElement	9.1 kB	2023-03-07	2025-03-14
Pretty URL www.bayanbola5.org/assets/js/jquery.lazyload.js?v=8.6 IP 104.21.74.125 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40 Last Seen2025-03-14 07:30 Times Seen218 Hash 8b427f9e86864ee3aaf1ae33e6e14263 481fd478650e12b67c201a0ea41e92743f8b45a3 404a5028c8a4aae3f0165e3997e57921de98294731c9d1dc0656808b9ed51963 Loading...

	www.bayanbola5.org/assets/js/plugins/progressbar.js?v=8.6	ScriptElement	407 B	2023-03-07	2025-03-14
Pretty URL www.bayanbola5.org/assets/js/plugins/progressbar.js?v=8.6 IP 104.21.74.125 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40 Last Seen2025-03-14 07:30 Times Seen122 Hash bdad6e448822d31c9c055abed4075810 5bd1917cb70b2408763d90c46855be42e329ac13 12c9738b48a0913b594f3710d678fa98cc270255e2b5b9fa671f6cd9159bff9b Loading...

	static.zdassets.com/web_widget/classic/latest/web-widget-chat-sdk-5016640.js	ScriptElement	222 kB	2024-09-26	2025-03-15
Pretty URL static.zdassets.com/web_widget/classic/latest/web-widget-chat-sdk-5016640.js IP 216.198.54.3 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-26 16:31 Last Seen2025-03-15 03:52 Times Seen4221 Hash 08a68a7308737a004b2991aa3dd00688 40fe1ddf2616c7017f645c08bc6cab484d082a4b f33c7bd75e8107b0e2c531d98af84d90780d913f9246e796ea633d948d91f709 Loading...

	static.zdassets.com/web_widget/classic/latest/web-widget-6108-5016640.js	ScriptElement	26 kB	2024-09-30	2025-03-14
Pretty URL static.zdassets.com/web_widget/classic/latest/web-widget-6108-5016640.js IP 216.198.54.3 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-30 16:45 Last Seen2025-03-14 06:13 Times Seen72 Hash 3c84b8a786a135ceba5ae13bd676184a 5745b6d308e001090aa19ef6ed2523ea8bb069bf 38775791a2ff3c45b3a6a420333e945a80dcbb31ec23eed8c95ccf9ae548d0b6 Loading...

	static.zdassets.com/ekr/snippet.js?key=963c86c9-8450-4c37-8a1c-b4f80246904b	ScriptElement	10 kB	2024-11-04	2025-03-15
Pretty URL static.zdassets.com/ekr/snippet.js?key=963c86c9-8450-4c37-8a1c-b4f80246904b IP 216.198.54.3 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-04 11:47 Last Seen2025-03-15 03:52 Times Seen5116 Hash c88d625098ddb649cf216dba2e52435c 1385fd033122892210b8bbe0970b723bc873d38d c7631939bbc2c74fc9a5fb1ee9565250a15bf95cc0e364da7fc5f15e3db41427 Loading...

	www.bayanbola5.org/assets/js/main.js?v=8.6	ScriptElement	7.2 kB	2023-03-07	2025-03-14
Pretty URL www.bayanbola5.org/assets/js/main.js?v=8.6 IP 104.21.74.125 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40 Last Seen2025-03-14 07:30 Times Seen106 Hash b0a41705a5ef2bd5b4987278cf67de0a ffde658f8a34528d4d49dcdbb2f5fd8c17b13d59 19aae5fc5c052c415c847d5fd063d7f758b4b97dfdf5c5f4405449a5b6ccae0b Loading...

	www.bayanbola5.org/assets/js/accounting.min.js?v=8.6	ScriptElement	3.2 kB	2023-03-07	2025-03-14
Pretty URL www.bayanbola5.org/assets/js/accounting.min.js?v=8.6 IP 104.21.74.125 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40 Last Seen2025-03-14 07:30 Times Seen127 Hash 7187a9bfb19e711f157aea991fd36a31 90769bb4b56209f4145cbc08fe950d67f2b914ae d70b83096533d3fb0879cb98199241b00081f02a97ff119738ccbc407d6475e9 Loading...

	static.zdassets.com/web_widget/classic/latest/web-widget-655-5016640.js	ScriptElement	48 kB	2024-09-30	2025-03-14
Pretty URL static.zdassets.com/web_widget/classic/latest/web-widget-655-5016640.js IP 216.198.54.3 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-30 16:45 Last Seen2025-03-14 06:13 Times Seen72 Hash 79a50dab605e015792198bb8c99c8825 0901826e2378c7e0bf862690f1d5ef52ddd9e6da 54c4df5384fd1f0183340aa37d365d2547b32b3822f1a8048682dd59d9638789 Loading...

	static.zdassets.com/web_widget/classic/latest/web-widget-lazy/chat-5016640.js	ScriptElement	139 kB	2024-11-07	2025-03-14
Pretty URL static.zdassets.com/web_widget/classic/latest/web-widget-lazy/chat-5016640.js IP 216.198.54.3 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-07 15:14 Last Seen2025-03-14 06:13 Times Seen65 Hash 3b156570d5f4463d02ffa8ad4d41058f 9a62776ef12b6287d4b872ea76dbae5406d36f0a a73ae558d7d20cb89dcb88c1e2a3640a9c92ef337cae57e2e045782c0a36f453 Loading...

	www.bayanbola5.org/	ScriptElement	4.9 kB	2025-03-14	2025-03-14
Pretty URL www.bayanbola5.org/ IP 104.21.74.125 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-14 04:41 Last Seen2025-03-14 04:41 Times Seen1 Hash 5ac9e28869da277e503a5b5770420f1a 7019d17cbddc64a141989b7e098ee53ea8dad392 1cf9e9efde2e31d18a426674eed32011843801322684d4386cc945533c37b729 Loading...

	www.bayanbola5.org/assets/js/jquery.sticky.js?v=8.6	ScriptElement	10 kB	2023-03-07	2025-03-14
Pretty URL www.bayanbola5.org/assets/js/jquery.sticky.js?v=8.6 IP 104.21.74.125 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17 Last Seen2025-03-14 07:30 Times Seen480 Hash 24823208c60bfc2a92deaa50cbdc6c29 f2a855219e71fc4224376732b7c64e34670d855d bcf6b9b28cec8958f9d3f3ee39070e85ffd46d670f1f0baa7cd21aa24c188a00 Loading...

	static.zdassets.com/web_widget/classic/latest/web-widget-lazy/embeds-5016640.js	ScriptElement	68 kB	2024-11-07	2025-03-14
Pretty URL static.zdassets.com/web_widget/classic/latest/web-widget-lazy/embeds-5016640.js IP 216.198.54.3 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-07 15:14 Last Seen2025-03-14 06:13 Times Seen64 Hash 06ce63753cde3c59d41156ed0ffbca7a d4ac51f33c6380b56190d319bbb467497890810b 5a4790f7ac4089c6c3ebb07f6dc1b162c02e85ec68cb354e7eb6442529d5699f Loading...

	static.zdassets.com/web_widget/classic/latest/web-widget-locales/classic/en-us-json-5016640.js	ScriptElement	26 kB	2024-09-26	2025-03-15
Pretty URL static.zdassets.com/web_widget/classic/latest/web-widget-locales/classic/en-us-json-5016640.js IP 216.198.54.3 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-26 11:56 Last Seen2025-03-15 03:52 Times Seen4808 Hash ef48436bf7997a9fed0856cd3df28c0f 413d809a8680f59bc72ee16fb46df88350055c67 b87b92cd9b2943bcc97a64011eb833ef4205009327eaffe17db1cd001ae9ecc8 Loading...

	static.zdassets.com/web_widget/classic/latest/web-widget-8777-5016640.js	ScriptElement	193 kB	2024-11-07	2025-03-14
Pretty URL static.zdassets.com/web_widget/classic/latest/web-widget-8777-5016640.js IP 216.198.54.3 ASN #209242 Cloudflare London, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2024-11-07 15:14 Last Seen2025-03-14 06:13 Times Seen65 Hash 7d9a898ac6d7f91f2681d95a5460fb48 63c600a2fee483c1f25131e9ad1884ec7c072e76 6f36b5be4a30624639bc9c75e0db7bfe403cc9cab7571ac9992e3ecac6015cbd Loading...

	www.bayanbola5.org/assets/js/owl.carousel.min.js?v=8.6	ScriptElement	44 kB	2023-03-07	2025-03-15
Pretty URL www.bayanbola5.org/assets/js/owl.carousel.min.js?v=8.6 IP 104.21.74.125 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-03-15 02:33 Times Seen11657 Hash f416f9031fef25ae25ba9756e3eb6978 e2a600e433df72b4cfde93d7880e3114917a3cbe a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d Loading...

	www.bayanbola5.org/assets/js/bootstrap-progressbar.min.js?v=8.6	ScriptElement	2.3 kB	2023-03-07	2025-03-14
Pretty URL www.bayanbola5.org/assets/js/bootstrap-progressbar.min.js?v=8.6 IP 104.21.74.125 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:21 Last Seen2025-03-14 07:30 Times Seen205 Hash 0fc802eba514585043c4960aac6ee00b cbf4840298b5a8d1a08121476e8ee76f26712ffb d515801518c7e11900fc23bf31d9bf3a791ed6c3a71dc72f6d7cab150a74e75b Loading...

HTTP Transactions (76)

URL IP Response Size

media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/Habanero%20Level%20UP%20kalenderIDNSportDesktopSliderBanner685x3497-ezgif.com-optiwebp.webp

104.21.18.144

200 OK

29 kB

URL GET
media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/Habanero%20Level%20UP%20kalenderIDNSportDesktopSliderBanner685x3497-ezgif.com-optiwebp.webp
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
RIFF (little-endian) data, Web/P image
Size
29 kB (29296 bytes)
Hash
5e7b2c3713ba5a5d7495dffb7e8393dc
27089273b84965bda75772600ecbcb0a5d3e1800
a079ebbabbdd50a6ee75ef139da84dc25d3b3b87ebb944a23e6acc19da375820

HTTP Headers

GET /idnsmedia/is/slots-v3/promotions/desktop/Habanero%20Level%20UP%20kalenderIDNSportDesktopSliderBanner685x3497-ezgif.com-optiwebp.webp HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/webp
content-length: 29296
last-modified: Thu, 27 Feb 2025 10:15:56 GMT
etag: "67c03b5c-7270"
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
accept-ranges: bytes
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EhhXi5DBgnGvi3wcQFFFwrh4zt0KC%2Bs9%2BSb5kIBKST4js0cvdIxAVl52yavOO%2FDCa342kHdCdNwvoRdFbDK75xcb1TAXSaFyz248Qv3ajkvY7aoisvydcMmfZ%2FR0XfKFUC6%2B5J8D%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92011886efe6b524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3359&min_rtt=740&rtt_var=2281&sent=350&recv=36&lost=0&retrans=1&sent_bytes=382270&recv_bytes=9244&delivery_rate=161487&cwnd=127200&unsent_bytes=0&cid=f4075f35d97d6119&ts=1558&x=1", cfExtPri, cfHdrFlush;dur=0

static.zdassets.com/web_widget/classic/latest/web-widget-main-5016640.js

216.198.54.3

200 OK

850 kB

URL GET
static.zdassets.com/web_widget/classic/latest/web-widget-main-5016640.js
IP
216.198.54.3:443
ASN
#209242 Cloudflare London, LLC

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectzdassets.com
FingerprintD5:29:E8:49:0A:64:D7:FB:D2:63:3F:10:85:D3:F1:39:3E:1F:15:44
ValiditySat, 01 Mar 2025 14:46:21 GMT - Fri, 30 May 2025 15:46:20 GMT

File type

Size
850 kB (849815 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /web_widget/classic/latest/web-widget-main-5016640.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:40:58 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: 15oGbAuQ7FiPtBF55sBYqxwmWmeHgC5Xs+Jzl4rTBzxDiinw5hM1hcsBTbXY4WeW26eG44FjdCdegFTPVlwGi0jCFuWa20qYRf6b/ZHgDWo=
x-amz-request-id: HVJ9NA7QH42WJHEP
x-amz-replication-status: COMPLETED
last-modified: Mon, 10 Mar 2025 13:09:14 GMT
etag: W/"5dda45060e90181be8a2292c9a5d0ae7"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 10 Mar 2026 13:09:13 GMT
x-amz-version-id: 4PNnP0RxcobSFOIgiZUNuWA4cden9TF7
cf-cache-status: HIT
age: 893
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FLvpyuZaNXlIYOt8pv3Hv6lUXmjrSKPUWq5oG1SzpiWYv3ovmpcxiFcWioY90HXaVF15e76vaeblLzZMkvPXwbbfCqNnMp8WJnhDaVzCS4vk9e28nkxofl%2FBp5PZ2pWFzGqEH5M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-max-age: 0
server: cloudflare
cf-ray: 920118927b43abd4-CPH
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/classic/latest/web-widget-655-5016640.js

216.198.54.3

200 OK

48 kB

URL GET
static.zdassets.com/web_widget/classic/latest/web-widget-655-5016640.js
IP
216.198.54.3:443
ASN
#209242 Cloudflare London, LLC

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectzdassets.com
FingerprintD5:29:E8:49:0A:64:D7:FB:D2:63:3F:10:85:D3:F1:39:3E:1F:15:44
ValiditySat, 01 Mar 2025 14:46:21 GMT - Fri, 30 May 2025 15:46:20 GMT

File type

Size
48 kB (47872 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /web_widget/classic/latest/web-widget-655-5016640.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:41:02 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: U/mUO999jU0zob9TUhm05F974GRBZlfDUJH3hWHifmLpFZOirKB18AubBL5hurvaaPvQB0o2CRj273A7rqHlLn1dYNpSCByt
x-amz-request-id: 6B9BQDR9JK36QFEY
x-amz-replication-status: COMPLETED
last-modified: Mon, 10 Mar 2025 13:09:14 GMT
etag: W/"79a50dab605e015792198bb8c99c8825"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 10 Mar 2026 13:09:13 GMT
x-amz-version-id: OhFFGSmqIrLhihN13IkEuOY7_nBUIghR
cf-cache-status: HIT
age: 177651
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZM5s19WSLQmbdP9uWWLlor8ijgFCPBOi3R6vx%2Be3CIA71w%2FFFdLur6wGhexbu%2FzCX2gn4o2cvttuk9PwXIK16hpkH9NXkm4CQnUO%2FgQD7%2BCXaqVn09CAQflLzqrElg4xkW4WzYc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-max-age: 0
server: cloudflare
cf-ray: 920118af0cf8abd4-CPH
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/classic/latest/web-widget-chat-sdk-5016640.js

216.198.54.3

200 OK

222 kB

URL GET
static.zdassets.com/web_widget/classic/latest/web-widget-chat-sdk-5016640.js
IP
216.198.54.3:443
ASN
#209242 Cloudflare London, LLC

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectzdassets.com
FingerprintD5:29:E8:49:0A:64:D7:FB:D2:63:3F:10:85:D3:F1:39:3E:1F:15:44
ValiditySat, 01 Mar 2025 14:46:21 GMT - Fri, 30 May 2025 15:46:20 GMT

File type
JavaScript source, ASCII text, with very long lines (65307)
Size
222 kB (222450 bytes)
Hash
08a68a7308737a004b2991aa3dd00688
40fe1ddf2616c7017f645c08bc6cab484d082a4b
f33c7bd75e8107b0e2c531d98af84d90780d913f9246e796ea633d948d91f709

HTTP Headers

GET /web_widget/classic/latest/web-widget-chat-sdk-5016640.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:40:58 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: nrEZOibuS9OwWAPev8r/lEDS0ozENXI2ZPduxWbFR99/siPZ9oZPZfv+dpBOhQD1zK41SUQywVz7eIf6HZ2n8w==
x-amz-request-id: MM0J450XV3SCAV56
x-amz-replication-status: COMPLETED
last-modified: Mon, 10 Mar 2025 13:09:14 GMT
etag: W/"08a68a7308737a004b2991aa3dd00688"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 10 Mar 2026 13:09:13 GMT
x-amz-version-id: OwM22Q5m2yC__.4Cal_F0ytB3QpktCZb
cf-cache-status: HIT
age: 238646
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K0mVvuQwqNGTDMoXtzVczV0RosyXygwXlSDss%2BVdoMbwaMLgx3RwgC%2FcXITdXeOKk4kkF3JxqrZuMDnFUkobtJsp7s3WXyQkfWpcS51um5V8wd22XJTIfLpom05qponcZNRn0f4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-max-age: 0
server: cloudflare
cf-ray: 92011896fdb5abd4-CPH
content-encoding: br
X-Firefox-Spdy: h2

media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/nlcIDNSportDesktopSliderBanner-ezgif.com-optiwebp.webp

104.21.18.144

200 OK

29 kB

URL GET
media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/nlcIDNSportDesktopSliderBanner-ezgif.com-optiwebp.webp
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
RIFF (little-endian) data, Web/P image
Size
29 kB (29254 bytes)
Hash
02441e1a18a3678b71258be205a368e3
61ab2a45152d2e71173826a182edebfee5f0c985
2f93965cf4983921e44e8c837445ac864bd883abf111a6ab3171cf2e39d7058c

HTTP Headers

GET /idnsmedia/is/slots-v3/promotions/desktop/nlcIDNSportDesktopSliderBanner-ezgif.com-optiwebp.webp HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/webp
content-length: 29254
last-modified: Tue, 25 Feb 2025 10:32:25 GMT
etag: "67bd9c39-7246"
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lbLofSkSXhtGzwGoEbhPHHomPN%2FyMZrqb3TOgvK%2BwBVxm1dsoa8pJGQsqUu5TfsMOjd2lW%2Bkd8v5xKv1DwiCA2QVx0j3pzC49dOXUk0oUQPSnHmq%2BdgrXNgoKB0PTdVw76A4QzhQwg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920118874818b524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3359&min_rtt=740&rtt_var=2281&sent=431&recv=36&lost=0&retrans=1&sent_bytes=477412&recv_bytes=9244&delivery_rate=161487&cwnd=127200&unsent_bytes=0&cid=f4075f35d97d6119&ts=1630&x=1", cfExtPri, cfHdrFlush;dur=101

i.postimg.cc/5tdXtjLn/bawah3.jpg

46.105.222.81

200 OK

96 kB

URL GET
i.postimg.cc/5tdXtjLn/bawah3.jpg
IP
46.105.222.81:443
ASN
#16276 OVH SAS

Requested by
https://www.bayanbola5.org/
Certificate
IssuerLet's Encrypt
Subjectpostimg.cc
Fingerprint24:B8:90:7C:62:71:35:E0:C0:CD:09:7F:C0:F8:68:33:F2:F4:A2:59
ValidityMon, 17 Feb 2025 15:33:09 GMT - Sun, 18 May 2025 15:33:08 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2021:02:06 09:56:42], progressive, precision 8, 340x190, components 3
Size
96 kB (96482 bytes)
Hash
3bc8542808a1bce79ff7b3b7fbc6e107
7e856ca2bd469427eee16fcfdae67b5561e73ec3
6c57f5a2fa0a67c14576d54df188691df4ce41a2644bdef89692c1ff6fbff668

HTTP Headers

GET /5tdXtjLn/bawah3.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/jpeg
content-length: 96482
last-modified: Fri, 19 Mar 2021 08:17:27 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bayanbola5.org/assets/js/marquee.min.js?v=8.6

104.21.74.125

200 OK

4.7 kB

URL GET
www.bayanbola5.org/assets/js/marquee.min.js?v=8.6
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
JavaScript source, ASCII text, with very long lines (4970), with no line terminators
Size
4.7 kB (4655 bytes)
Hash
c2fc513ef6e294f6afe44474d3e7a319
af2e4920dfb95c89193d754327fb870d1a612224
342710977c361b4825ca204f4a17fc49dc5ea4d6b1aa8f6d9b7ac2761efad7a3

HTTP Headers

GET /assets/js/marquee.min.js?v=8.6 HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: application/javascript
last-modified: Mon, 21 Dec 2020 11:36:26 GMT
vary: Accept-Encoding
etag: W/"5fe088ba-122f"
expires: Mon, 09 Mar 2026 04:40:55 GMT
cache-control: public, max-age=31104000
pragma: public
content-encoding: gzip
x-cache: MISS
x-cache-hits: 0
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RiQz0bVn1wjIeIaO%2F%2B6P7m0rW5V2%2B%2F0mgogxubm3cOkukxIAp2TeaLJRxoLhJBBTo2IpG4%2BAAhL2hAB6JIcURWTaCeW2YJGcim79KGXNLDXoBsXZoSMIsat4o9l5M%2BguCxzwTQM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9201187e28c3569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3310&min_rtt=1908&rtt_var=1632&sent=58&recv=25&lost=0&retrans=0&sent_bytes=39296&recv_bytes=5385&delivery_rate=5506686&cwnd=24000&unsent_bytes=0&cid=3bf65a2294a41659&ts=883&x=1", cfExtPri, cfHdrFlush;dur=0

media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/IDNSportDesktopSliderBanner685x349_SMK-ezgif.com-optiwebp%20(1).webp

104.21.18.144

200 OK

31 kB

URL GET
media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/IDNSportDesktopSliderBanner685x349_SMK-ezgif.com-optiwebp%20(1).webp
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
RIFF (little-endian) data, Web/P image
Size
31 kB (30680 bytes)
Hash
64a9c20efe7b2ee7fe148b423836f3fe
7bee02e1f2e4bf4864c44d7ee7b419d4380f2f64
0d8c320c727fbf5d91f10e438dd5b384e91ca45a6b76f9d93c0732c45e467a73

HTTP Headers

GET /idnsmedia/is/slots-v3/promotions/desktop/IDNSportDesktopSliderBanner685x349_SMK-ezgif.com-optiwebp%20(1).webp HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/webp
content-length: 30680
last-modified: Tue, 18 Feb 2025 08:50:18 GMT
etag: "67b449ca-77d8"
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X7QAyOGxwaS6kGWw9oVeY2%2BBT03H34130OCD4u5DxYKkovuiZSapA%2BbtgBUOuBU5pnWj34Rm4xJH%2Fr4VYa2FaQtkoMtaODUxmu6IhxWXKibCpQv4vga5b114Q6AYJZ6rUDqTTDS2WA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92011887682fb524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3418&min_rtt=740&rtt_var=2884&sent=295&recv=35&lost=0&retrans=0&sent_bytes=317998&recv_bytes=9198&delivery_rate=3204252&cwnd=127200&unsent_bytes=0&cid=f4075f35d97d6119&ts=1425&x=1", cfExtPri, cfHdrFlush;dur=0

www.bayanbola5.org/

104.21.74.125

200 OK

258 kB

URL User Request GET
www.bayanbola5.org/
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type

Size
258 kB (258056 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:40:54 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: public, s-maxage=86400
x-cacheable: 1
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
age: 10
x-cache: HIT
x-cache-hits: 5
set-cookie: SRVNAME=140a; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5vQK2hDPMvlvMWwusIPsoc4l57z4NpsTgdDUpKaT6qhb8LQH7IgJ3jouOdiupXjqfJarxMzSQdfubrJbefRoWvbFTTLAbIynVR22GE%2FG7XOr%2BXSX%2Bmha7xv5Vy5AvPL4KApJX%2BM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 92011878bc987130-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6229&min_rtt=422&rtt_var=11355&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3209&recv_bytes=1128&delivery_rate=3431279&cwnd=254&unsent_bytes=0&cid=68dc358ca826e040&ts=403&x=0"
X-Firefox-Spdy: h2

media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/css/style.css?v=8.6

104.21.18.144

200 OK

44 kB

URL GET
media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/css/style.css?v=8.6
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
ASCII text, with CRLF line terminators
Size
44 kB (44319 bytes)
Hash
f40665cc9321f8b1580dc299e7be2226
89ec6f3fa7c9e733951758d7a7a14284269a0b3c
38e76ba3b658b094cd611ada4ac20d6164be60395cb2fd37d27f43b3ce43c832

HTTP Headers

GET /idnsmedia/is/assets/themes/aagbbf/css/style.css?v=8.6 HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:40:54 GMT
content-type: text/css
last-modified: Thu, 18 Feb 2021 10:42:56 GMT
vary: Accept-Encoding
etag: W/"602e44b0-ad1f"
expires: Sun, 13 Apr 2025 04:40:54 GMT
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cna97g8Wh8vjcUKfTLt8Olu9V7TLkmI4LeSpKYD%2FhBAO0foyQ1g54eWhlkY%2BbYIb6y2SmEFmOP8uOYilQ94Yq2ulFxtTkG7tqp74mKt3MaSYe9%2FIzfSTbdIWv7TBCDU5lz721Mwf%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9201187d4e971bfe-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=709&min_rtt=429&rtt_var=471&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3279&recv_bytes=1245&delivery_rate=6378854&cwnd=248&unsent_bytes=0&cid=e5d33ab6c797f85e&ts=436&x=0"
X-Firefox-Spdy: h2

landingsplash.xyz/banner/image/idnsport/idns-1b-3b.jpg?v=1

104.21.19.4

301 Moved Permanently

54 kB

URL GET
landingsplash.xyz/banner/image/idnsport/idns-1b-3b.jpg?v=1
IP
104.21.19.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectlandingsplash.xyz
Fingerprint15:3D:E1:FF:44:CA:9F:5A:58:3A:53:5B:09:18:CC:94:CD:9A:3A:1C
ValidityThu, 13 Feb 2025 15:56:24 GMT - Wed, 14 May 2025 16:53:57 GMT

File type

Size
54 kB (54326 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /banner/image/idnsport/idns-1b-3b.jpg?v=1 HTTP/1.1
Host: landingsplash.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Fri, 14 Mar 2025 04:40:57 GMT
content-type: text/html
location: https://object-d001-cloud.cloudstoragesharingservice.com/banner/image/idnsport/idns-1b-3b.jpg?v=1
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bBd%2FUEMEAZA0Xr1QFSWPvbc9112d3hTEzwwtQD7xO1%2BSqg8WLrAkbe1MP6p6CB7agY56bmJ9xdTMKuYJE%2FXih972qJFVTbPMh0k5kyp1bsQAkiJG7HrGdFZMYYkuP6HCdvh2NQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9201188cda8256a4-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=5531&min_rtt=451&rtt_var=10140&sent=8&recv=12&lost=0&retrans=0&sent_bytes=3215&recv_bytes=1108&delivery_rate=6332361&cwnd=254&unsent_bytes=0&cid=e1f215ea8a325d9c&ts=593&x=0"
X-Firefox-Spdy: h2

object-d001-cloud.cloudstoragesharingservice.com/banner/image/idnsport/idns-1b-3b.jpg?v=1

172.67.188.187

200 OK

54 kB

URL GET
object-d001-cloud.cloudstoragesharingservice.com/banner/image/idnsport/idns-1b-3b.jpg?v=1
IP
172.67.188.187:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectcloudstoragesharingservice.com
FingerprintC2:24:4C:9B:B2:D4:0A:7C:FD:2E:97:6C:AF:CE:DF:36:CD:FD:28:BA
ValidityWed, 05 Feb 2025 07:50:30 GMT - Tue, 06 May 2025 08:49:05 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 685x349, components 3
Size
54 kB (54326 bytes)
Hash
a54553a1bf6c2b3ce2dbdc33fc4ead5a
b6330231306875d3e1ee8fdb42fa2ca644587d11
a1d2f815c458fd6f8a24d3c2aaf10c65c3d6462c3ea27e973e37ef4b82dc3692

HTTP Headers

GET /banner/image/idnsport/idns-1b-3b.jpg?v=1 HTTP/1.1
Host: object-d001-cloud.cloudstoragesharingservice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bayanbola5.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:40:59 GMT
content-type: image/jpeg
content-length: 54326
last-modified: Thu, 11 Jun 2020 04:58:43 GMT
etag: "5ee1ba03-d436"
x-frame-options: SAMEORIGIN
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hT8Z%2B6L2elgFbUE5bpZ%2FzPSJfI4YssByoiKAxYGwswSZ27dpLf8uwpxsx437pCzX92SH67Ehq2L2hIrX2GpG3Yyh5jRvFl8gzWJBmhX60dNGU%2BRhG23qSvyY%2BDVXzGxrUVlk%2FwXuJYgYqELmVkER%2BOQDDL7b0Dz93TrWdc48NNpYbBY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9201189468d8b523-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=459&min_rtt=376&rtt_var=142&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3328&recv_bytes=1289&delivery_rate=7387755&cwnd=254&unsent_bytes=0&cid=18e3bc7d080de5f6&ts=910&x=0"
X-Firefox-Spdy: h2

media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/Home%20of%20the%20Brave%20Cash%20Drop%20desktop.webp

104.21.18.144

200 OK

29 kB

URL GET
media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/Home%20of%20the%20Brave%20Cash%20Drop%20desktop.webp
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
RIFF (little-endian) data, Web/P image
Size
29 kB (28990 bytes)
Hash
10ec3829c6bc35d28984b14d3ed0b2f5
b51fddbf4ce687a0618a8212ca4497e89a938b7e
4bc112eefabe36b4302e221f7331226715e54745abc8f3c70594ed45a8af1c75

HTTP Headers

GET /idnsmedia/is/slots-v3/promotions/desktop/Home%20of%20the%20Brave%20Cash%20Drop%20desktop.webp HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/webp
content-length: 28990
last-modified: Tue, 11 Mar 2025 10:26:27 GMT
etag: "67d00fd3-713e"
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XKS4mztJuSlwj23UlNtOUkGyrMjEaP0Xx0U8eI9%2FjsyLnQgt1OjqtaM7fIwh9RsrCQ%2Bejne58CTtUXGbKcvzyl4IOO2OdMjn%2BZBOrHzMBRovt9UsA92lvs%2BnDTP20WWNfPZYZ44dyA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920118873812b524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3359&min_rtt=740&rtt_var=2281&sent=431&recv=36&lost=0&retrans=1&sent_bytes=477412&recv_bytes=9244&delivery_rate=161487&cwnd=127200&unsent_bytes=0&cid=f4075f35d97d6119&ts=1618&x=1", cfExtPri, cfHdrFlush;dur=113

media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/IDNSportDesktopSliderBanner3-ezgif.com-optiwebp.webp

104.21.18.144

200 OK

29 kB

URL GET
media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/IDNSportDesktopSliderBanner3-ezgif.com-optiwebp.webp
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
RIFF (little-endian) data, Web/P image
Size
29 kB (29166 bytes)
Hash
39845d721fd88a6f6fefe372d1988fc6
d2aca031e7fda7b0102344090c89710b167e912a
7027d92ee79ce32ab8cba29b3b1c33306d6d7aeed4e3ea21a3691db4a4e19023

HTTP Headers

GET /idnsmedia/is/slots-v3/promotions/desktop/IDNSportDesktopSliderBanner3-ezgif.com-optiwebp.webp HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/webp
content-length: 29166
last-modified: Thu, 27 Feb 2025 09:40:22 GMT
etag: "67c03306-71ee"
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cache-control: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QvhaoweDYfPAvPTujFqsByfkajwOIuFZxgVKiKOsBQ%2FzpNtwQItSb8GWwdfIQNTCNw6L11mpg1Cj%2BKtiuJO7FXuV3U9dEWJfWjSw84UDuzV9e9vMRL7tVJNpt2a36E9BcOUmSgrDqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92011887280cb524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=15997&min_rtt=740&rtt_var=26986&sent=566&recv=37&lost=0&retrans=3&sent_bytes=636412&recv_bytes=9290&delivery_rate=573886&cwnd=159000&unsent_bytes=0&cid=f4075f35d97d6119&ts=1776&x=1", cfExtPri, cfHdrFlush;dur=10

www.bayanbola5.org/assets/img/game-slider-holder.webp

104.21.74.125

200 OK

568 B

URL GET
www.bayanbola5.org/assets/img/game-slider-holder.webp
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 685x349, Scaling: [none]x[none], YUV color, decoders should clamp
Size
568 B (568 bytes)
Hash
15065d6096f3bfb266611e13bc202d38
e2df5fad65237c429349c35bbabaefa0b73a8567
06e86c2179ad719ccbf1388601014ceaa7355c646e8ab37144b1c63e74c9621a

HTTP Headers

GET /assets/img/game-slider-holder.webp HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:54 GMT
content-type: image/webp
content-length: 568
last-modified: Thu, 08 Apr 2021 09:56:44 GMT
etag: "606ed35c-238"
expires: Mon, 09 Mar 2026 04:40:54 GMT
cache-control: public, max-age=31104000
pragma: public
x-cache: MISS
x-cache-hits: 0
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mds0Nzod6up1dcgrbbdYp3t4K%2FPl%2FGNA7sMIJvF7tXjvyzj59p4I8AIWyXroDPqFKUVSRNp9%2FAhEwecmDs4lvRBa5b19qtDhPFijuJ3UdNFJ%2Bpd2j6oqKuoFTsiU5SY2Qjj95bo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9201187cb83a569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3497&min_rtt=2123&rtt_var=1778&sent=27&recv=20&lost=0&retrans=0&sent_bytes=5519&recv_bytes=5165&delivery_rate=277373&cwnd=12000&unsent_bytes=0&cid=3bf65a2294a41659&ts=659&x=1", cfExtPri, cfHdrFlush;dur=0

www.bayanbola5.org/assets/js/jquery.sticky.js?v=8.6

104.21.74.125

200 OK

10 kB

URL GET
www.bayanbola5.org/assets/js/jquery.sticky.js?v=8.6
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
JavaScript source, ASCII text
Size
10 kB (10085 bytes)
Hash
24823208c60bfc2a92deaa50cbdc6c29
f2a855219e71fc4224376732b7c64e34670d855d
bcf6b9b28cec8958f9d3f3ee39070e85ffd46d670f1f0baa7cd21aa24c188a00

HTTP Headers

GET /assets/js/jquery.sticky.js?v=8.6 HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: application/javascript
last-modified: Mon, 21 Dec 2020 11:36:26 GMT
vary: Accept-Encoding
etag: W/"5fe088ba-2765"
expires: Mon, 09 Mar 2026 04:40:55 GMT
cache-control: public, max-age=31104000
pragma: public
content-encoding: gzip
age: 0
x-cache: MISS
x-cache-hits: 0
accept-ranges: bytes
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=awksc7IgCuT46CDYQ8KHl1QKaYUzhisTwVFuMPJW2G4nRQQx4NIeqqCuZSZ5t6FhUCgI6fcWAPgm5J1HvJY2JW04qjXrbUpqeKL77KWL4pfKiT9g45pHXKg%2FwrGTlTnevvX9Dzs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9201187e68e3569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3230&min_rtt=1680&rtt_var=1472&sent=68&recv=27&lost=0&retrans=0&sent_bytes=48202&recv_bytes=5473&delivery_rate=430385&cwnd=24000&unsent_bytes=0&cid=3bf65a2294a41659&ts=909&x=1", cfExtPri, cfHdrFlush;dur=0

media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/fonts/montserrat-regular.woff

104.21.18.144

200 OK

17 kB

URL GET
media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/fonts/montserrat-regular.woff
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
Web Open Font Format, TrueType, length 17044, version 1.0
Size
17 kB (17044 bytes)
Hash
7d1393c14c60a3a80f531ef5e2438a5b
efdcc6751c2161fa8dabf619a883c8c5e7099ad3
a2f075d1ac2e6ff806192f8ceb7929fe6fe789d471aa6da6d8877fc9eef189d8

HTTP Headers

GET /idnsmedia/is/assets/themes/aagbbf/fonts/montserrat-regular.woff HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bayanbola5.org
DNT: 1
Connection: keep-alive
Referer: https://media.fastchecker.us/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: application/font-woff
content-length: 17044
last-modified: Thu, 18 Feb 2021 10:43:08 GMT
etag: "602e44bc-4294"
expires: Sun, 13 Apr 2025 04:40:55 GMT
cache-control: public, max-age=31536000
access-control-allow-origin: *
accept-ranges: bytes
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w6nkKh%2B0ChzFgWg73ARCf91GCJ3Hnjqt%2FfV0mpSeBfoYll18%2Bs6X%2FPjHDkyQPRi6pmgFF509UdE1J8oTAj2FA3zw4o8Hzl1rdT%2BWvNKhomj28dRp4QZCpRl%2FKK8Qdm9AT7mFedvxXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920118813d31b524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5129&min_rtt=2325&rtt_var=2827&sent=17&recv=11&lost=0&retrans=0&sent_bytes=6323&recv_bytes=2673&delivery_rate=4119&cwnd=12000&unsent_bytes=0&cid=f4075f35d97d6119&ts=655&x=1", cfExtPri, cfHdrFlush;dur=0

i.postimg.cc/VkDzx64J/SAMPING2.jpg

46.105.222.81

200 OK

102 kB

URL GET
i.postimg.cc/VkDzx64J/SAMPING2.jpg
IP
46.105.222.81:443
ASN
#16276 OVH SAS

Requested by
https://www.bayanbola5.org/
Certificate
IssuerLet's Encrypt
Subjectpostimg.cc
Fingerprint24:B8:90:7C:62:71:35:E0:C0:CD:09:7F:C0:F8:68:33:F2:F4:A2:59
ValidityMon, 17 Feb 2025 15:33:09 GMT - Sun, 18 May 2025 15:33:08 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2021:02:12 21:37:47], progressive, precision 8, 340x172, components 3
Size
102 kB (101905 bytes)
Hash
25af88e748c6a1dfeee75fd1a3bef16b
5533189ab67cd5c17125b2509eeeee584a34fb78
5043d71042974f55c187a443eb75940fa486f67c481fe69d82764021dac59e35

HTTP Headers

GET /VkDzx64J/SAMPING2.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/jpeg
content-length: 101905
last-modified: Fri, 19 Mar 2021 08:22:22 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.postimg.cc/cH7wWwzR/slide-2.jpg

46.105.222.81

200 OK

266 kB

URL GET
i.postimg.cc/cH7wWwzR/slide-2.jpg
IP
46.105.222.81:443
ASN
#16276 OVH SAS

Requested by
https://www.bayanbola5.org/
Certificate
IssuerLet's Encrypt
Subjectpostimg.cc
Fingerprint24:B8:90:7C:62:71:35:E0:C0:CD:09:7F:C0:F8:68:33:F2:F4:A2:59
ValidityMon, 17 Feb 2025 15:33:09 GMT - Sun, 18 May 2025 15:33:08 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=350, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=685], progressive, precision 8, 685x350, components 3
Size
266 kB (265542 bytes)
Hash
bf4019364ff9d5cabbf14d73c46c135e
8e210aa6753830347bce38a3994c87059d53597e
19a144c731faaedaf0e38ab6812424560aebaccb6e5292c1b55256e737a02e57

HTTP Headers

GET /cH7wWwzR/slide-2.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/jpeg
content-length: 265542
last-modified: Fri, 19 Mar 2021 08:15:17 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bayanbola5.org/assets/js/owl.carousel.min.js?v=8.6

104.21.74.125

200 OK

44 kB

URL GET
www.bayanbola5.org/assets/js/owl.carousel.min.js?v=8.6
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
JavaScript source, ASCII text, with very long lines (31997)
Size
44 kB (44342 bytes)
Hash
f416f9031fef25ae25ba9756e3eb6978
e2a600e433df72b4cfde93d7880e3114917a3cbe
a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d

HTTP Headers

GET /assets/js/owl.carousel.min.js?v=8.6 HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: application/javascript
last-modified: Thu, 08 Apr 2021 09:15:18 GMT
vary: Accept-Encoding
etag: W/"606ec9a6-ad36"
expires: Mon, 09 Mar 2026 04:40:55 GMT
cache-control: public, max-age=31104000
pragma: public
content-encoding: gzip
x-cache: MISS
x-cache-hits: 0
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=awaktY0TIV3Sl1wjLEq0T7TT0tcwa%2FtSYOYKY42NPtiJbHzAa%2FwfZvl4BBhHpCcR23jTkgn0XMCCHL65ezhOGyZKI90u7XiWtvVgQnv23kWo3PaeQ3InHpVihub29dYdyxnpvWs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9201187e38cc569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3472&min_rtt=1908&rtt_var=1745&sent=47&recv=24&lost=0&retrans=0&sent_bytes=26843&recv_bytes=5341&delivery_rate=1648075&cwnd=12000&unsent_bytes=0&cid=3bf65a2294a41659&ts=863&x=1", cfExtPri, cfHdrFlush;dur=0

media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/SG%20mobile.webp

104.21.18.144

200 OK

29 kB

URL GET
media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/SG%20mobile.webp
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 640x299, Scaling: [none]x[none], YUV color, decoders should clamp
Size
29 kB (29328 bytes)
Hash
c07d854aecd42bf231e9a831d7666bda
8564e6bb376daf3e87d6ec00f7bd21cfedf20918
c1121915441f47a5939983ca6673cd5e94df309ccba85037981a8e3464a91fb2

HTTP Headers

GET /idnsmedia/is/slots-v3/promotions/desktop/SG%20mobile.webp HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/webp
content-length: 29328
last-modified: Thu, 14 Nov 2024 10:51:31 GMT
etag: "6735d633-7290"
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LyAUHK5yI%2Fnbf2bBIJlsd2qgATa2OfbVLb1d38FcxlQY%2BfgbxmjVJ%2FNp9jHUT7%2BiUSr%2BV7pNos8NUNbJ520z%2BNCaJaz3rlB0A2uFm6lZH0EvX1hfpotvc%2BRZVmpFacDEwfpX%2B4yEEA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920118884895b524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=18415&min_rtt=740&rtt_var=25076&sent=735&recv=38&lost=0&retrans=3&sent_bytes=835012&recv_bytes=9336&delivery_rate=716006&cwnd=198600&unsent_bytes=0&cid=f4075f35d97d6119&ts=1802&x=1", cfExtPri, cfHdrFlush;dur=30

media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/img/apple-touch-icon.png

104.21.18.144

200 OK

12 kB

URL GET
media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/img/apple-touch-icon.png
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
12 kB (12517 bytes)
Hash
7239b80f703f394a83a01b2505d818d0
5df9dc47f8593fbdb8fa934c7f8fb776f19cbd62
6e3705d47f6a5850fceb45cb6bb9e4f637b6aee4ca22549ea6bf3f2f082efa07

HTTP Headers

GET /idnsmedia/is/assets/themes/aagbbf/img/apple-touch-icon.png HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:58 GMT
content-type: image/png
content-length: 12517
last-modified: Thu, 18 Feb 2021 10:43:21 GMT
etag: "602e44c9-30e5"
expires: Sun, 13 Apr 2025 04:40:58 GMT
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R6wcyy7rXmRa2eWUrvgcd4qAL3MGaiPoZEQbMnzayo7WmbnLfpvUbneDSS%2FoycCbdoGndSunll%2BrGtxpQ9FNXlJZCHdSl2UHOr67%2F4vXVjQtuoQPAjqL3gPNFvudR6n%2FXgp%2BOuhmjw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920118937df3b524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=18160&min_rtt=740&rtt_var=14195&sent=776&recv=42&lost=0&retrans=3&sent_bytes=881264&recv_bytes=10069&delivery_rate=121341&cwnd=248400&unsent_bytes=0&cid=f4075f35d97d6119&ts=3541&x=1", cfExtPri, cfHdrFlush;dur=0

ekr.zdassets.com/compose/963c86c9-8450-4c37-8a1c-b4f80246904b

216.198.53.3

200 OK

882 B

URL GET
ekr.zdassets.com/compose/963c86c9-8450-4c37-8a1c-b4f80246904b
IP
216.198.53.3:443
ASN
#209242 Cloudflare London, LLC

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectzdassets.com
FingerprintD5:29:E8:49:0A:64:D7:FB:D2:63:3F:10:85:D3:F1:39:3E:1F:15:44
ValiditySat, 01 Mar 2025 14:46:21 GMT - Fri, 30 May 2025 15:46:20 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (988), with no line terminators
Size
882 B (882 bytes)
Hash
47556e8ecfcc320159b497f5e5e96bb2
700ccc359d247f7b2de0f924c95315ae0ece1618
cf45066ac753cf916e134cbffba51b4e8c32e76322f4046154d3fb0a42d1fcd6

HTTP Headers

GET /compose/963c86c9-8450-4c37-8a1c-b4f80246904b HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bayanbola5.org/
Origin: https://www.bayanbola5.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: 
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
vary: Accept, Origin, Accept-Encoding
cache-control: max-age=300, public, stale-while-revalidate=300, stale-if-error=21600
etag: W/"8c0e5df1a43f3c19a45ec353182d8a76"
x-request-id: 9201183eee37e625-SEA, 9201183eee37e625-SEA, 9201183eee37e625-SEA
x-runtime: 0.003061
x-zendesk-zorg: yes, yes
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BIdbZedl4m58Ynv%2BSO9x%2BT0nUz576lg1P5%2Fefi86zH5dSprsYUtRwMh555wQy4vDsUtnfbjSpJ0vVyVNBqWFQ1CsWSx2AlkMhsDqPCdmxb4IG3Skdei5cGTR%2BsDR2dLfMDU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 9201187f78838f62-CPH
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/classic/latest/web-widget-lazy/embeds-5016640.js

216.198.54.3

200 OK

68 kB

URL GET
static.zdassets.com/web_widget/classic/latest/web-widget-lazy/embeds-5016640.js
IP
216.198.54.3:443
ASN
#209242 Cloudflare London, LLC

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectzdassets.com
FingerprintD5:29:E8:49:0A:64:D7:FB:D2:63:3F:10:85:D3:F1:39:3E:1F:15:44
ValiditySat, 01 Mar 2025 14:46:21 GMT - Fri, 30 May 2025 15:46:20 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
68 kB (67669 bytes)
Hash
06ce63753cde3c59d41156ed0ffbca7a
d4ac51f33c6380b56190d319bbb467497890810b
5a4790f7ac4089c6c3ebb07f6dc1b162c02e85ec68cb354e7eb6442529d5699f

HTTP Headers

GET /web_widget/classic/latest/web-widget-lazy/embeds-5016640.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:41:02 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: aboXzmzkzcn6Jp2DEPLShBEqrIgw2cQ+PX9jmVzCj4R6zh/IvwBDyVuygpqMLJ/kv9eVgilK9DUfXjwUjWb412vigVlAFBbs
x-amz-request-id: C3D6424WZGT8CH65
x-amz-replication-status: COMPLETED
last-modified: Mon, 10 Mar 2025 13:09:14 GMT
etag: W/"06ce63753cde3c59d41156ed0ffbca7a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 10 Mar 2026 13:09:13 GMT
x-amz-version-id: VmZoYFulw2fXHe77ulhEgeOaHe2F0VmD
cf-cache-status: HIT
age: 238631
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wc6LOBTeFYC6bC9q5CA5NjV9pJry7dT0TON8snddP4outHZeTklbaPOreOyeDMpx0lUdGFLjmXtOs9hSl3O%2F7K84IrxSEuMztowX3mZE%2BCNgUI4RiyPkOLfn49aAFopfCg7LSwA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-max-age: 0
server: cloudflare
cf-ray: 920118acbb4cabd4-CPH
content-encoding: br
X-Firefox-Spdy: h2

www.bayanbola5.org/assets/img/game-slider2-holder.webp

104.21.74.125

200 OK

202 B

URL GET
www.bayanbola5.org/assets/img/game-slider2-holder.webp
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 340x190, Scaling: [none]x[none], YUV color, decoders should clamp
Size
202 B (202 bytes)
Hash
cdb958746c28e92bfd8bb02bbbba6eaf
c3cd8499755e4726aca577f3cd45a9702c4075ed
7c58c7134eb3f13a2516d8ad4a1d98b84eb482f11205633254d17ce9caa9cd4b

HTTP Headers

GET /assets/img/game-slider2-holder.webp HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:54 GMT
content-type: image/webp
content-length: 202
last-modified: Thu, 08 Apr 2021 09:56:44 GMT
etag: "606ed35c-ca"
expires: Mon, 09 Mar 2026 04:40:54 GMT
cache-control: public, max-age=31104000
pragma: public
x-cache: MISS
x-cache-hits: 0
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=miJlIcAgWvT1Y9mVR5QGMXnDsOF3%2B4gUr0nmtV07jpqnDgvREZznRjO9JV7z48d4ecvlZsglX90Xk6c09mBSxG5rhlqgprNFlB80uisfvgBugnoh%2FzSGqG%2BBp0Ki%2BpPWX%2BVK3aM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9201187cc83c569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3497&min_rtt=2123&rtt_var=1778&sent=26&recv=20&lost=0&retrans=0&sent_bytes=4499&recv_bytes=5165&delivery_rate=277373&cwnd=12000&unsent_bytes=0&cid=3bf65a2294a41659&ts=629&x=1", cfExtPri, cfHdrFlush;dur=0

www.bayanbola5.org/assets/img/promo7.jpg

104.21.74.125

200 OK

90 kB

URL GET
www.bayanbola5.org/assets/img/promo7.jpg
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 340x172, components 3
Size
90 kB (89998 bytes)
Hash
6c1fc789156fbe61c3315bdeba64fc44
9428adc7d205d3c8e886bdfb100cb22f0a4d125b
846955b2c055e8d06da97dd2152631daf1791237258fd41f03282aa58f0546ae

HTTP Headers

GET /assets/img/promo7.jpg HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:57 GMT
content-type: image/jpeg
content-length: 89998
last-modified: Mon, 21 Dec 2020 11:36:25 GMT
etag: "5fe088b9-15f8e"
expires: Mon, 09 Mar 2026 04:40:56 GMT
cache-control: public, max-age=31104000
pragma: public
x-cache: MISS
x-cache-hits: 0
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A6IktAJUxGEh0coCugk63b%2Bh9IEwgkxeR4f%2BxDBGAKQzUhxBZ4%2BGorX4BClzvW3OB2JTW5HxCYfuXGesfv06vYnhO%2BZkkKq5lEgKCLWWcx9bnJ8n00Fy8e69htByFr8zqfiWbdk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92011889cde4569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4790&min_rtt=1680&rtt_var=4114&sent=301&recv=44&lost=0&retrans=4&sent_bytes=312314&recv_bytes=8168&delivery_rate=2038785&cwnd=127200&unsent_bytes=0&cid=3bf65a2294a41659&ts=3165&x=1", cfExtPri, cfHdrFlush;dur=0

www.bayanbola5.org/assets/js/accounting.min.js?v=8.6

104.21.74.125

200 OK

3.2 kB

URL GET
www.bayanbola5.org/assets/js/accounting.min.js?v=8.6
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
JavaScript source, ASCII text, with very long lines (3360), with no line terminators
Size
3.2 kB (3241 bytes)
Hash
1613214de138bdafd0969d0c6cab1652
d88fa75ff2176e51c19dbb2733424f2b313b1b1d
3bae925c3680a536289aa63e0a0079d3afd89e383c180de460d331b59c60a399

HTTP Headers

GET /assets/js/accounting.min.js?v=8.6 HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: application/javascript
content-length: 1345
last-modified: Mon, 21 Dec 2020 11:36:26 GMT
vary: Accept-Encoding
etag: W/"5fe088ba-ca9"
expires: Mon, 09 Mar 2026 04:40:55 GMT
cache-control: public, max-age=31104000
pragma: public
content-encoding: gzip
age: 0
x-cache: MISS
x-cache-hits: 0
accept-ranges: bytes
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xm2YfCQ287AUlul57ig0LjIa0SSGa2BAQP2v1NuU2HgCwXUWbfT1LZAT8F9uhD1%2BEktj34xs%2FRGodW7xTTTXZOD9uBBMu9VXoIJ6XIOjhwfVi81YzhNfPT%2FI4g4doDkZdxN814E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9201187e58e1569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3230&min_rtt=1680&rtt_var=1472&sent=65&recv=27&lost=0&retrans=0&sent_bytes=46027&recv_bytes=5473&delivery_rate=430385&cwnd=24000&unsent_bytes=0&cid=3bf65a2294a41659&ts=908&x=1", cfExtPri, cfHdrFlush;dur=0

media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/IDNSportDesktopSliderBanner685x349_A-ezgif.com-optiwebp.webp

104.21.18.144

200 OK

29 kB

URL GET
media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/IDNSportDesktopSliderBanner685x349_A-ezgif.com-optiwebp.webp
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
RIFF (little-endian) data, Web/P image
Size
29 kB (29234 bytes)
Hash
6679e32fb16eae8610bf2df46403a2f2
b7aaa0cf34f96d26c567fdc60c64cc23becc3162
abc6a186a5247776eb64153f5b455239eb272c730cab218554f4f4314fb9f97a

HTTP Headers

GET /idnsmedia/is/slots-v3/promotions/desktop/IDNSportDesktopSliderBanner685x349_A-ezgif.com-optiwebp.webp HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/webp
content-length: 29234
last-modified: Wed, 26 Feb 2025 09:55:11 GMT
etag: "67bee4ff-7232"
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8CbijnytOUbsrzZcw9Bnyo%2FDM6xE1SI74npH5AGWArhS6liOW79Y%2Fg%2F9n6i8hIkuMg8yFW5dr9ZGkeJi%2FXlgkkM1Qa6ii03UM1dmhYxmmnRpnW5MktqpmxBTJ7N1eO046oxbyyc9QQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920118872803b524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3359&min_rtt=740&rtt_var=2281&sent=402&recv=36&lost=0&retrans=1&sent_bytes=444094&recv_bytes=9244&delivery_rate=161487&cwnd=127200&unsent_bytes=0&cid=f4075f35d97d6119&ts=1601&x=1", cfExtPri, cfHdrFlush;dur=0

static.zdassets.com/web_widget/classic/latest/web-widget-chat-incoming-message-notification-5016640.js

216.198.54.3

200 OK

236 B

URL GET
static.zdassets.com/web_widget/classic/latest/web-widget-chat-incoming-message-notification-5016640.js
IP
216.198.54.3:443
ASN
#209242 Cloudflare London, LLC

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectzdassets.com
FingerprintD5:29:E8:49:0A:64:D7:FB:D2:63:3F:10:85:D3:F1:39:3E:1F:15:44
ValiditySat, 01 Mar 2025 14:46:21 GMT - Fri, 30 May 2025 15:46:20 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
236 B (236 bytes)
Hash
40ae0c1cbc351a19908b810d12338c54
8d359c89d3e8751d9fd18130dec2054e270a1591
619dfba62b6f789ef2e7bf7f7745faf576fb634304a7e187931cb6ff9681bae9

HTTP Headers

GET /web_widget/classic/latest/web-widget-chat-incoming-message-notification-5016640.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:41:01 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: WK3AtHQ3vf1EvQpBzfDgEfRdeWBGQpbo2UWnsLlLWaACGSnRvbPXuIY59i3IZOCrQRXRjgsDwbuHHF34lRUWjot1NPzeUhX5
x-amz-request-id: SRFX00D20NARGBXP
x-amz-replication-status: COMPLETED
last-modified: Mon, 10 Mar 2025 13:09:14 GMT
etag: W/"e9d8b92096016dfd74d2f2500556464e"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 10 Mar 2026 13:09:13 GMT
x-amz-version-id: 4Pfc_7UOKyKdbr5uwHazyZ3w9uLTBLe_
cf-cache-status: HIT
age: 238648
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NGwSCtDjWHMCMq%2F0wh%2BOGh96sLzi%2FVcrzWw0awKC5dhHTCyqmSVB8sxWNr0l%2BXJYaoDdDQn35P3UuwMcdWro5jNUfWA2eJgIj7AbDBt9MPAPvJ0%2FDu6AStbo0NKagoTPT2%2BDqlE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-max-age: 0
server: cloudflare
cf-ray: 920118a65eb1abd4-CPH
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/classic/latest/web-widget-lazy/chat-5016640.js

216.198.54.3

200 OK

139 kB

URL GET
static.zdassets.com/web_widget/classic/latest/web-widget-lazy/chat-5016640.js
IP
216.198.54.3:443
ASN
#209242 Cloudflare London, LLC

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectzdassets.com
FingerprintD5:29:E8:49:0A:64:D7:FB:D2:63:3F:10:85:D3:F1:39:3E:1F:15:44
ValiditySat, 01 Mar 2025 14:46:21 GMT - Fri, 30 May 2025 15:46:20 GMT

File type

Size
139 kB (139278 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /web_widget/classic/latest/web-widget-lazy/chat-5016640.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:41:02 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: XbxW0JTPcFQ12tKcgiNozprCBL0Y3hqhz2gLVShSGij2jno84EDyvPv6HPZECgSa/zk+RkblGaC637v0W3AUVVdsG5HClt1L
x-amz-request-id: 6B9BVB72BB75MXWM
x-amz-replication-status: COMPLETED
last-modified: Mon, 10 Mar 2025 13:09:14 GMT
etag: W/"3b156570d5f4463d02ffa8ad4d41058f"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 10 Mar 2026 13:09:13 GMT
x-amz-version-id: Jx1HGtX1J4AFit6rkgtYjm9dCj2GapEg
cf-cache-status: HIT
age: 84792
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=03L5PmIxq3rMBxJVzqvTdoimJaWvgCPj0CEc%2B%2Bpm650P5ndMt%2BMEj8rzZuRsDncRnY95zy5nPxxBBHolVDkXRCmQU4LAtwQhcLSIog9pFIFRUC26Dlk4E8MPb92GmZV9xH8Otm4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-max-age: 0
server: cloudflare
cf-ray: 920118af8d41abd4-CPH
content-encoding: br
X-Firefox-Spdy: h2

www.bayanbola5.org/assets/js/jquery-3.6.3.min.js?v=8.6

104.21.74.125

200 OK

90 kB

URL GET
www.bayanbola5.org/assets/js/jquery-3.6.3.min.js?v=8.6
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
90 kB (89946 bytes)
Hash
30792621ca010e3c5d5f98162629439f
9bc5b058a9e9fe3820484290bd0810681072e448
448ef0632211ba18d7c1557a6d22250820ac3b4465ba2e73b7137f4dc4a31a12

HTTP Headers

GET /assets/js/jquery-3.6.3.min.js?v=8.6 HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 03:54:43 GMT
vary: Accept-Encoding
etag: W/"63c8bf03-15f5a"
expires: Mon, 09 Mar 2026 04:40:54 GMT
cache-control: public, max-age=31104000
pragma: public
content-encoding: gzip
x-cache: MISS
x-cache-hits: 0
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=czW0mtFoEm6EhufUZhb2WeceW%2BgRm3qwf090OUuaaMOAM8lBALr4lKoAJKF0%2F0MS3LyISaI%2F49bgAwEvebnLO96znvLqDpRaMvsNzBrWeyPB534d%2BqXHyycaQdyuB3lUw72%2F3%2B0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9201187da892569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3277&min_rtt=1680&rtt_var=1588&sent=75&recv=31&lost=0&retrans=0&sent_bytes=53464&recv_bytes=6194&delivery_rate=227423&cwnd=24000&unsent_bytes=0&cid=3bf65a2294a41659&ts=1009&x=1", cfExtPri, cfHdrFlush;dur=0

www.bayanbola5.org/assets/js/popper.min.js?v=8.6

104.21.74.125

200 OK

20 kB

URL GET
www.bayanbola5.org/assets/js/popper.min.js?v=8.6
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
JavaScript source, ASCII text, with very long lines (20164)
Size
20 kB (20299 bytes)
Hash
0c02519560232e527ee9a41968b64671
cae6310d5c4fb949e6d1055d8f8e9a588f6b6871
15acaaf86c959d48bb6e74d0322ad3ae92f9b980c311a36136f3a3ac983fa8a1

HTTP Headers

GET /assets/js/popper.min.js?v=8.6 HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: application/javascript
last-modified: Thu, 08 Apr 2021 09:15:18 GMT
vary: Accept-Encoding
etag: W/"606ec9a6-4f4b"
expires: Mon, 09 Mar 2026 04:40:54 GMT
cache-control: public, max-age=31104000
pragma: public
content-encoding: gzip
x-cache: MISS
x-cache-hits: 0
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TNCKs5OLOfQlOUlUVR309WWS%2BkZ1tvWy4A%2BlR7YXab6AQNVhwgiZ8IETr1w8xa3VtcScSQ1UGGvXQZ%2F3txAgTfQMI%2FL1SPRGTqvxPMsi4OMBY5%2F1KKdeprNtW3k0TVMZ7LMj%2BmM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9201187da894569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3893&min_rtt=2123&rtt_var=1780&sent=37&recv=22&lost=0&retrans=0&sent_bytes=15544&recv_bytes=5253&delivery_rate=1330366&cwnd=12000&unsent_bytes=0&cid=3bf65a2294a41659&ts=808&x=1", cfExtPri, cfHdrFlush;dur=0

media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/Spin%20Royal%20Turnamen%20&%20Cashdrop%20desktop.webp

104.21.18.144

200 OK

29 kB

URL GET
media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/Spin%20Royal%20Turnamen%20&%20Cashdrop%20desktop.webp
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
RIFF (little-endian) data, Web/P image
Size
29 kB (29316 bytes)
Hash
92f46fcd78bef9b5d313259d34829a81
759a9015b64e30bd8c131b139044ab7b8044d49f
f485ae06cbcafd9cd4c75619922ff2847037775beb0e757fb9a12f523d537f60

HTTP Headers

GET /idnsmedia/is/slots-v3/promotions/desktop/Spin%20Royal%20Turnamen%20&%20Cashdrop%20desktop.webp HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/webp
content-length: 29316
last-modified: Wed, 12 Mar 2025 09:53:06 GMT
etag: "67d15982-7284"
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=txwBKl3mpw7XcdJW%2BplN4l9DzgavMLNlNiipq%2FuG4ZOUsgtWxJiJViFytRUY5qlWr2b36SrTJWBrH%2F65otKz9gTa%2FMUjmokxjkIUSXtWv%2FVzRClTSNXN6ekTG1LEZ72Hc3%2F3skEoaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92011886dfe5b524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3359&min_rtt=740&rtt_var=2281&sent=322&recv=36&lost=0&retrans=0&sent_bytes=350212&recv_bytes=9244&delivery_rate=161487&cwnd=127200&unsent_bytes=0&cid=f4075f35d97d6119&ts=1509&x=1", cfExtPri, cfHdrFlush;dur=0

media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/685x349px_SlideBannerDesktopHomepage-ezgif.com-optiwebp.webp

104.21.18.144

200 OK

30 kB

URL GET
media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/685x349px_SlideBannerDesktopHomepage-ezgif.com-optiwebp.webp
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
RIFF (little-endian) data, Web/P image
Size
30 kB (29742 bytes)
Hash
e9911d0cdaa991d00cd259dcda05d758
21f6dc42ab557e2bfdff5de5b4cc5dabd4419004
1790c9a56842d20645208091942f80a7465dd2cdf9442fd0844e5e925efab12e

HTTP Headers

GET /idnsmedia/is/slots-v3/promotions/desktop/685x349px_SlideBannerDesktopHomepage-ezgif.com-optiwebp.webp HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/webp
content-length: 29742
last-modified: Tue, 11 Feb 2025 07:08:46 GMT
etag: "67aaf77e-742e"
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V3NyKUBmsmPaWa%2F3zq1fCnvEhinPZGObeEmLczWVnlPGHkYgygZEKzEwR822Ozc2wjf70qtJHqc3Iq3LLLMWymVCxq%2BOw00pR4Qg%2Fot4Gaprq6KeB2sMiEPqoxXfvvxubIUf6oW6MQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92011887783ab524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3359&min_rtt=740&rtt_var=2281&sent=431&recv=36&lost=0&retrans=1&sent_bytes=477412&recv_bytes=9244&delivery_rate=161487&cwnd=127200&unsent_bytes=0&cid=f4075f35d97d6119&ts=1646&x=1", cfExtPri, cfHdrFlush;dur=85

i.postimg.cc/mZvkjt6R/SAMPING-1.jpg

46.105.222.81

200 OK

90 kB

URL GET
i.postimg.cc/mZvkjt6R/SAMPING-1.jpg
IP
46.105.222.81:443
ASN
#16276 OVH SAS

Requested by
https://www.bayanbola5.org/
Certificate
IssuerLet's Encrypt
Subjectpostimg.cc
Fingerprint24:B8:90:7C:62:71:35:E0:C0:CD:09:7F:C0:F8:68:33:F2:F4:A2:59
ValidityMon, 17 Feb 2025 15:33:09 GMT - Sun, 18 May 2025 15:33:08 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2021:02:12 20:02:22], progressive, precision 8, 340x172, components 3
Size
90 kB (89786 bytes)
Hash
a9ba37a43c83b31b944fb30a21f60d60
a80227cc27c45f34b60652399a5e6d0ae37e94eb
bfcca17ca09f82d8e1c8b47b791f362b6d8430e3b33e9173227b81365ce017c5

HTTP Headers

GET /mZvkjt6R/SAMPING-1.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/jpeg
content-length: 89786
last-modified: Fri, 19 Mar 2021 08:21:08 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/classic/latest/web-widget-1442-5016640.js

216.198.54.3

200 OK

39 kB

URL GET
static.zdassets.com/web_widget/classic/latest/web-widget-1442-5016640.js
IP
216.198.54.3:443
ASN
#209242 Cloudflare London, LLC

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectzdassets.com
FingerprintD5:29:E8:49:0A:64:D7:FB:D2:63:3F:10:85:D3:F1:39:3E:1F:15:44
ValiditySat, 01 Mar 2025 14:46:21 GMT - Fri, 30 May 2025 15:46:20 GMT

File type
JavaScript source, ASCII text, with very long lines (39172)
Size
39 kB (39401 bytes)
Hash
4d459e1a5f2a9093c9406382d8fc9081
032c5516f46871b97dff990dbc8e4eb6ad00c0bd
b8465ff9482317d8d9a9a0c89894736c0981e59319e31768f461403e3433de59

HTTP Headers

GET /web_widget/classic/latest/web-widget-1442-5016640.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:41:02 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: lZSen8jM+3t1rMxIwglWhzR+7o/MML+qqEJby3vH9uuuh4synzlr1k7HqEgyIgfjoLdG/83qb/U=
x-amz-request-id: 6B95813B24MA0JZ6
x-amz-replication-status: COMPLETED
last-modified: Mon, 10 Mar 2025 13:09:14 GMT
etag: W/"4d459e1a5f2a9093c9406382d8fc9081"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 10 Mar 2026 13:09:13 GMT
x-amz-version-id: CseERvZIOkBBOiWROlavHSL.3ubFiB0g
cf-cache-status: HIT
age: 47563
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RV0BdB53TZj4F4mlOuFk8UyMy4pJaLu8nauSwJEDP11Ao%2BrCktgW%2B7ZF5nzbyQK70yGKHXu8rnwCtOvu%2B9ASFyyJmBlCnRJYXnZyzxhUAX7s8T1MMxYRNGqe1qyHHHmPaItWp6I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-max-age: 0
server: cloudflare
cf-ray: 920118af2d11abd4-CPH
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/classic/latest/web-widget-7623-5016640.js

216.198.54.3

200 OK

38 kB

URL GET
static.zdassets.com/web_widget/classic/latest/web-widget-7623-5016640.js
IP
216.198.54.3:443
ASN
#209242 Cloudflare London, LLC

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectzdassets.com
FingerprintD5:29:E8:49:0A:64:D7:FB:D2:63:3F:10:85:D3:F1:39:3E:1F:15:44
ValiditySat, 01 Mar 2025 14:46:21 GMT - Fri, 30 May 2025 15:46:20 GMT

File type

Size
38 kB (37760 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /web_widget/classic/latest/web-widget-7623-5016640.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:41:02 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: XLnK9t1BeSHwmY1ZV8+osB6v3dW9qNjI2BkvpzdyyHx2wpBLysDWADCEE0Z+7fuJgkuBGxVm2faJdZ9rf0DSEQ==
x-amz-request-id: 6B96W6BHMJDJQP6R
x-amz-replication-status: COMPLETED
last-modified: Mon, 10 Mar 2025 13:09:14 GMT
etag: W/"d94ca4e873c32af547b193bc98332a54"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 10 Mar 2026 13:09:13 GMT
x-amz-version-id: uyyR2Jjf7MiJ558GI5xtD9ukeBkqeToH
cf-cache-status: HIT
age: 238630
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HhrxOqXJSozdHoPc27hD3Rflm1S7N8TPjUDiOKlQv%2FJ6ihzRT2GleC50NzPQcpsBN3Ta8rCW9AjUMWWjFy%2B%2FzkcyBR42vx%2BPnrwClafx9B2CTH7E4mPdLJGFrOEO5N5w5zeTTY8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-max-age: 0
server: cloudflare
cf-ray: 920118af5d27abd4-CPH
content-encoding: br
X-Firefox-Spdy: h2

www.bayanbola5.org/assets/js/bootstrap.min.js?v=8.6

104.21.74.125

200 OK

51 kB

URL GET
www.bayanbola5.org/assets/js/bootstrap.min.js?v=8.6
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
JavaScript source, ASCII text, with very long lines (50758)
Size
51 kB (51039 bytes)
Hash
67176c242e1bdc20603c878dee836df3
27a71b00383d61ef3c489326b3564d698fc1227c
56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4

HTTP Headers

GET /assets/js/bootstrap.min.js?v=8.6 HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: application/javascript
last-modified: Mon, 21 Dec 2020 11:36:26 GMT
vary: Accept-Encoding
etag: W/"5fe088ba-c75f"
expires: Mon, 09 Mar 2026 04:40:55 GMT
cache-control: public, max-age=31104000
pragma: public
content-encoding: gzip
x-cache: MISS
x-cache-hits: 0
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wOyYrpoqe5kIOkcjcXWU81J1Cgo6vbi2r9%2B9gWwM851PzJ2sL%2BTbp1ony5Y%2B2vX4sGOqaDm3ppiqpz54zbKqV7bjs3Ok4OwlWFFGZehFeBredi9jt3FuqmVQN4u2kTTXqR%2BOQsc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9201187da895569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2957&min_rtt=1680&rtt_var=1437&sent=118&recv=33&lost=0&retrans=0&sent_bytes=103562&recv_bytes=6285&delivery_rate=12585561&cwnd=48000&unsent_bytes=0&cid=3bf65a2294a41659&ts=1036&x=1", cfExtPri, cfHdrFlush;dur=0

www.bayanbola5.org/assets/css/fontawesome.all.min.css?v=8.6

104.21.74.125

200 OK

54 kB

URL GET
www.bayanbola5.org/assets/css/fontawesome.all.min.css?v=8.6
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
ASCII text, with very long lines (53575)
Size
54 kB (53760 bytes)
Hash
d32b30df1c6d1667e199c9674f63d662
2dfd7651ef0fa335c1b124244cb9c6d1871d75f5
d4578d6b27cd9ab9f387b3da7b30f2f25bd6ebdc37a2c61c0c54a0d2205582cf

HTTP Headers

GET /assets/css/fontawesome.all.min.css?v=8.6 HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: text/css
last-modified: Thu, 08 Apr 2021 09:15:18 GMT
vary: Accept-Encoding
etag: W/"606ec9a6-d200"
expires: Mon, 09 Mar 2026 04:40:55 GMT
cache-control: public, max-age=31104000
pragma: public
content-encoding: gzip
age: 0
x-cache: MISS
x-cache-hits: 0
accept-ranges: bytes
cf-cache-status: MISS
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iJb4DYTDZo%2F7CJmnanryKNDI237C0SYdFx49E38upiHZzFU%2B%2FjFxAYSBUbvqSKxH8yXv8hA4xwmAf2VwasiF60zFbwfUByv9SIuUrQ%2FdoRWcYrz1CGK0CqQTxwjvD9xu%2BPTXGy0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 920118819a50569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3058&min_rtt=1680&rtt_var=1279&sent=131&recv=34&lost=0&retrans=0&sent_bytes=118750&recv_bytes=6330&delivery_rate=3570619&cwnd=48000&unsent_bytes=0&cid=3bf65a2294a41659&ts=1443&x=1", cfExtPri, cfHdrFlush;dur=0

www.bayanbola5.org/assets/js/main.js?v=8.6

104.21.74.125

200 OK

7.2 kB

URL GET
www.bayanbola5.org/assets/js/main.js?v=8.6
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
JavaScript source, ASCII text, with very long lines (7519), with no line terminators
Size
7.2 kB (7232 bytes)
Hash
cdea49f235d0f94879e25cf01a216eb6
0d924ecc298cf53a2f637b48fe1c0b96e0536af3
7d56249690984b0aa2de8f4498c9be6e3da125dcbdb9cbaa613fb9fc32e571a6

HTTP Headers

GET /assets/js/main.js?v=8.6 HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: application/javascript
content-length: 2215
last-modified: Thu, 08 Apr 2021 09:15:18 GMT
vary: Accept-Encoding
etag: W/"606ec9a6-1c40"
expires: Mon, 09 Mar 2026 04:40:55 GMT
cache-control: public, max-age=31104000
pragma: public
content-encoding: gzip
x-cache: MISS
x-cache-hits: 0
cf-cache-status: MISS
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P1JvKenu7%2BZhB1oYTDEaLCGyHwCwA6wn3A1w8bkSBLipq0bVxdJeeJZ%2BWbGiG7LwWZisS5qoxJOLkXDHab%2BYe6A3RuHyEyu6QZrVpGYf1FxYT18DajO%2FCHjA0%2FadkfPrtC7NkEw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9201187e58de569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3106&min_rtt=1680&rtt_var=1631&sent=61&recv=26&lost=0&retrans=0&sent_bytes=42011&recv_bytes=5428&delivery_rate=163166&cwnd=24000&unsent_bytes=0&cid=3bf65a2294a41659&ts=895&x=1", cfExtPri, cfHdrFlush;dur=0

media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/EKSKLUSIFGAMESMARETdesktop-ezgif.com-optiwebp.webp

104.21.18.144

200 OK

30 kB

URL GET
media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/EKSKLUSIFGAMESMARETdesktop-ezgif.com-optiwebp.webp
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
RIFF (little-endian) data, Web/P image
Size
30 kB (29512 bytes)
Hash
0b7820d6bd3675c07d60846da58fa16d
95e6e84c12069cb3d0cff46a3c0e67cf3e419295
eae44dc053576ac5bc3fb19d229e7e872e2b018071e4ac2df347d0d355d2fd36

HTTP Headers

GET /idnsmedia/is/slots-v3/promotions/desktop/EKSKLUSIFGAMESMARETdesktop-ezgif.com-optiwebp.webp HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/webp
content-length: 29512
last-modified: Fri, 28 Feb 2025 11:11:50 GMT
etag: "67c199f6-7348"
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6LmEug1rj%2Fymo3zi%2F2THLq8w31ydXUJ9PBp5eWLMe%2FicrbjYOhko8gOLHCQUyI4u1%2FrmTEjtcn4g7LWUvI4m6CfwKPJo6mSYWD1%2B7OHq%2BpAlZRCh1qXEDhcv6i8fg1RgyYEf6XmODA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920118872809b524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3359&min_rtt=740&rtt_var=2281&sent=376&recv=36&lost=0&retrans=1&sent_bytes=413072&recv_bytes=9244&delivery_rate=161487&cwnd=127200&unsent_bytes=0&cid=f4075f35d97d6119&ts=1577&x=1", cfExtPri, cfHdrFlush;dur=0

static.zdassets.com/web_widget/classic/latest/web-widget-103-5016640.js

216.198.54.3

200 OK

40 kB

URL GET
static.zdassets.com/web_widget/classic/latest/web-widget-103-5016640.js
IP
216.198.54.3:443
ASN
#209242 Cloudflare London, LLC

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectzdassets.com
FingerprintD5:29:E8:49:0A:64:D7:FB:D2:63:3F:10:85:D3:F1:39:3E:1F:15:44
ValiditySat, 01 Mar 2025 14:46:21 GMT - Fri, 30 May 2025 15:46:20 GMT

File type

Size
40 kB (40099 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /web_widget/classic/latest/web-widget-103-5016640.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:41:02 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: lbPDt3rA0TVjQK+mf9HTXL3nzGv/3Osk982jgE7TT3uCzjM0cypRe9dFinsykk0U2hV2O+tlRdU=
x-amz-request-id: C3D2E5J0MA56R02Y
x-amz-replication-status: COMPLETED
last-modified: Mon, 10 Mar 2025 13:09:14 GMT
etag: W/"f21d40ae60d7c0d5b6bfc6f185c65f2c"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 10 Mar 2026 13:09:13 GMT
x-amz-version-id: 7TJGQaUFiIEsIsP.9wxQKRZtZhbKosC9
cf-cache-status: HIT
age: 79394
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mof%2BMSR6apQQi9NxmR9Ky7aPV3j%2BDlrCoJMBbibk9uklQKJm%2F0qzIyOYhEYN6aKWRyDceipvbnG2n9uo%2FLhqe831CQNgTnq4%2BtuKa78XtqOM3U66yuprlW3PPGf1JKulNWgSnys%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-max-age: 0
server: cloudflare
cf-ray: 920118ac9b31abd4-CPH
content-encoding: br
X-Firefox-Spdy: h2

media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/lottedesktop-ezgif.com-optiwebp.webp

104.21.18.144

200 OK

29 kB

URL GET
media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/lottedesktop-ezgif.com-optiwebp.webp
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
RIFF (little-endian) data, Web/P image
Size
29 kB (29420 bytes)
Hash
f5dd75353c2b117995e61c9888742394
43e79bcbb03694b37f736c030541ff652a94b912
6d036693116a81cccff0cd5c3d96fc8156cf2e9a371861352a8b888767abb572

HTTP Headers

GET /idnsmedia/is/slots-v3/promotions/desktop/lottedesktop-ezgif.com-optiwebp.webp HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/webp
content-length: 29420
last-modified: Thu, 27 Feb 2025 09:53:22 GMT
etag: "67c03612-72ec"
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2RM0%2F9Ygi220aPlj2RpuhXeuWCuiqDBqnOFiUcWm1Yc%2BPvrijPY2uIDuq8a2plcFHobiSujdnnX%2FtG1%2FdDcr1ETPA40Bx3HMaP7To7AGje3gmAipH4WLhcvlnN9tycfPukXL1ncLeQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920118884896b524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=15997&min_rtt=740&rtt_var=26986&sent=566&recv=37&lost=0&retrans=3&sent_bytes=636412&recv_bytes=9290&delivery_rate=573886&cwnd=159000&unsent_bytes=0&cid=f4075f35d97d6119&ts=1760&x=1", cfExtPri, cfHdrFlush;dur=26

www.bayanbola5.org/assets/js/bootstrap-progressbar.min.js?v=8.6

104.21.74.125

200 OK

2.3 kB

URL GET
www.bayanbola5.org/assets/js/bootstrap-progressbar.min.js?v=8.6
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (2405), with no line terminators
Size
2.3 kB (2333 bytes)
Hash
0d022d6df1c482cd579afa49e997dac8
0cc70bb1f262a10c2109f82a6fb9f1c53503d0b3
4d3e069eed4b0c373c98032f7b46a06b0da12cff999e0d0d082df7d6c80891e8

HTTP Headers

GET /assets/js/bootstrap-progressbar.min.js?v=8.6 HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: application/javascript
content-length: 997
last-modified: Mon, 21 Dec 2020 11:36:26 GMT
vary: Accept-Encoding
etag: W/"5fe088ba-91d"
expires: Mon, 09 Mar 2026 04:40:55 GMT
cache-control: public, max-age=31104000
pragma: public
content-encoding: gzip
x-cache: MISS
x-cache-hits: 0
cf-cache-status: MISS
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9uu4F5zscSDizlTiaexauAVxMJn0aX4PcEUUWONQ2nUbR%2FcTlaIK1E238LRLbN9ukf7dQnff1EMFypit0Be67Kbms2dpGqMGEoZ%2Bv9hz0lranu4aBs20%2BkOPhPsDGVCqMCFnezs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9201187e68e2569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3474&min_rtt=1680&rtt_var=1592&sent=72&recv=29&lost=0&retrans=0&sent_bytes=51641&recv_bytes=5835&delivery_rate=641048&cwnd=24000&unsent_bytes=0&cid=3bf65a2294a41659&ts=932&x=1", cfExtPri, cfHdrFlush;dur=0

media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/img/icon/ftr-ico.png

104.21.18.144

200 OK

70 kB

URL GET
media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/img/icon/ftr-ico.png
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
PNG image data, 1382 x 66, 8-bit/color RGBA, non-interlaced
Size
70 kB (69537 bytes)
Hash
8eff74b9fe2adbad2f44b709a9f19131
de9fd5bd1fcb751d3a62a25213bdd3cf7eab0f18
025e13dbc2dec576a43248820b64409e8c356a022dd7f5b7dfd218d3d6d5b6f0

HTTP Headers

GET /idnsmedia/is/assets/themes/aagbbf/img/icon/ftr-ico.png HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/css/style.css?v=8.6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: image/png
content-length: 69537
last-modified: Thu, 18 Feb 2021 10:45:29 GMT
etag: "602e4549-10fa1"
expires: Sun, 13 Apr 2025 04:40:55 GMT
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SjkubBWX4W8ly9k2fbLbrtcjvS%2B14jSomk8KX0ZoBFumZBUyswpy6C4z4PJ7JZlC3iA%2BkaeeOk0Qf3QqOLRfboeyHrgX%2FlaL5I4VoRkmM4cwMD6JMDyKiI%2Bxz5z2%2FzHUlpRIJ3GgzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92011880dcffb524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3792&min_rtt=740&rtt_var=2590&sent=53&recv=15&lost=0&retrans=0&sent_bytes=45067&recv_bytes=2848&delivery_rate=407252&cwnd=24000&unsent_bytes=0&cid=f4075f35d97d6119&ts=986&x=1", cfExtPri, cfHdrFlush;dur=0

media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/combined%20IDNSportDesktopSliderBanner8-ezgif.com-optiwebp.webp

104.21.18.144

200 OK

30 kB

URL GET
media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/combined%20IDNSportDesktopSliderBanner8-ezgif.com-optiwebp.webp
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
RIFF (little-endian) data, Web/P image
Size
30 kB (29658 bytes)
Hash
65eff450ecb5deb3a265cc489487309c
ad04955c5a352fb181434036fa18155ad15591bd
d6e7936fe670386772fb4ee970f27689f7b6ea044724158d038ded1c0ffabfb3

HTTP Headers

GET /idnsmedia/is/slots-v3/promotions/desktop/combined%20IDNSportDesktopSliderBanner8-ezgif.com-optiwebp.webp HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/webp
content-length: 29658
last-modified: Tue, 18 Feb 2025 09:36:02 GMT
etag: "67b45482-73da"
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n3IXN8LO9Zwfr5AjTPPku1j5FxflZJU%2BSQgBjEG06tV8NGNYuNmYiKy3BBkdK6j8qMgnBwZ2BJ17dNeELwLemlhRbAnaiLB0YWijce6kwDAfDmK4XkebqzNHOTKOKVEBRnjunzLTBw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920118881881b524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=15997&min_rtt=740&rtt_var=26986&sent=566&recv=37&lost=0&retrans=3&sent_bytes=636412&recv_bytes=9290&delivery_rate=573886&cwnd=159000&unsent_bytes=0&cid=f4075f35d97d6119&ts=1745&x=1", cfExtPri, cfHdrFlush;dur=41

static.zdassets.com/ekr/snippet.js?key=963c86c9-8450-4c37-8a1c-b4f80246904b

216.198.54.3

200 OK

10 kB

URL GET
static.zdassets.com/ekr/snippet.js?key=963c86c9-8450-4c37-8a1c-b4f80246904b
IP
216.198.54.3:443
ASN
#209242 Cloudflare London, LLC

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectzdassets.com
FingerprintD5:29:E8:49:0A:64:D7:FB:D2:63:3F:10:85:D3:F1:39:3E:1F:15:44
ValiditySat, 01 Mar 2025 14:46:21 GMT - Fri, 30 May 2025 15:46:20 GMT

File type
JavaScript source, ASCII text, with very long lines (10215), with no line terminators
Size
10 kB (10215 bytes)
Hash
c88d625098ddb649cf216dba2e52435c
1385fd033122892210b8bbe0970b723bc873d38d
c7631939bbc2c74fc9a5fb1ee9565250a15bf95cc0e364da7fc5f15e3db41427

HTTP Headers

GET /ekr/snippet.js?key=963c86c9-8450-4c37-8a1c-b4f80246904b HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:40:54 GMT
content-type: application/javascript
x-amz-id-2: +k3BT6ortg7zuMSL7VokgXCYRFC7eFnqgAOXp4eMJVI0+c0ouN/4+km2svixM6hpQfXKAsO1Vlz+AJ2Yf9gP7LgPHiY9giuQ
x-amz-request-id: 8A3TE66VKBRQP8MH
x-amz-replication-status: COMPLETED
last-modified: Mon, 04 Nov 2024 09:45:04 GMT
etag: W/"c88d625098ddb649cf216dba2e52435c"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: C4qpYKgeT8.DeRlre_wbz3El4DCj0uok
cf-cache-status: HIT
age: 38
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LDi6b8DtM3J1kPxB8a6d3RDmZYBDZ%2FDFdvsLvWRho0jBnWD9vaUllG9r6bzMt23%2BAnmYGVTD7XcS2sEkpt2IjPozWDRNwpeYT%2BoyEdlNt9igW4qegSmcH91ZaJ%2F2KVtcw4BOydg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-max-age: 0
server: cloudflare
cf-ray: 9201187d6f5aabd4-CPH
content-encoding: br
X-Firefox-Spdy: h2

www.bayanbola5.org/assets/js/modernizr-custom.js?v=8.6

104.21.74.125

200 OK

39 kB

URL GET
www.bayanbola5.org/assets/js/modernizr-custom.js?v=8.6
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
JavaScript source, ASCII text, with very long lines (33351)
Size
39 kB (38802 bytes)
Hash
fa8e9c58a688c9eb32c865f531ae53d6
baf04a150a46ebbbe5092dfadab842217a1320e3
34269667e413365a6426f2e870fa9c56274c4bc62061e4a13dd89ff1053f4044

HTTP Headers

GET /assets/js/modernizr-custom.js?v=8.6 HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: application/javascript
last-modified: Mon, 21 Dec 2020 11:36:26 GMT
vary: Accept-Encoding
etag: W/"5fe088ba-9792"
expires: Mon, 09 Mar 2026 04:40:54 GMT
cache-control: public, max-age=31104000
pragma: public
content-encoding: gzip
x-cache: MISS
x-cache-hits: 0
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8UDWy03LL5xN1bqW%2B154AZSqkA4TlISZt0VQxysowB%2BPQj%2BDwDUIFkeuAhvIsZKWbt7ALm9xPMCN%2FebUcHiIQopYJ3eaVPO2xU63UimhWTjbbJWS4RZAmxtlJzezjGpR0da8zQw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9201187d988f569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3277&min_rtt=1680&rtt_var=1588&sent=95&recv=31&lost=0&retrans=0&sent_bytes=77464&recv_bytes=6194&delivery_rate=227423&cwnd=24000&unsent_bytes=0&cid=3bf65a2294a41659&ts=1010&x=1", cfExtPri, cfHdrFlush;dur=2

media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/Turnamen%20Go!%20Fishing%20Reelin%E2%80%99%20Fortunes%20desktop.webp

104.21.18.144

200 OK

29 kB

URL GET
media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/Turnamen%20Go!%20Fishing%20Reelin%E2%80%99%20Fortunes%20desktop.webp
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
RIFF (little-endian) data, Web/P image
Size
29 kB (29156 bytes)
Hash
60721029a05a34156579a2da83118059
79a256fa8a08e3949eb3ba7de58465a0da534703
71a5ac4b78c639ea5a558d635627a07331aa3291f8159e6afe74e5572484a092

HTTP Headers

GET /idnsmedia/is/slots-v3/promotions/desktop/Turnamen%20Go!%20Fishing%20Reelin%E2%80%99%20Fortunes%20desktop.webp HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/webp
content-length: 29156
last-modified: Wed, 12 Mar 2025 08:59:59 GMT
etag: "67d14d0f-71e4"
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g3uaCA5Xj9ba6gEvsWYFm7wo9tFn600qg7W9hPjiG%2FSKKumUrkJWNHywJxjm%2FCLIVm8zXdy9vZKYTuS7bh4lEVgJl6piDcDTag0eL3vUTGDZ%2BkmtH8Sy1r1okqZhzTkK9mmtR7zF7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92011887380eb524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3359&min_rtt=740&rtt_var=2281&sent=428&recv=36&lost=0&retrans=1&sent_bytes=474832&recv_bytes=9244&delivery_rate=161487&cwnd=127200&unsent_bytes=0&cid=f4075f35d97d6119&ts=1606&x=1", cfExtPri, cfHdrFlush;dur=0

media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/IDNSportDesktopSliderBanner9-ezgif.com-optiwebp.webp

104.21.18.144

200 OK

29 kB

URL GET
media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/IDNSportDesktopSliderBanner9-ezgif.com-optiwebp.webp
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
RIFF (little-endian) data, Web/P image
Size
29 kB (29150 bytes)
Hash
96afddeff66caabcda34c42671be05f1
6771fe201446a379883804e895c646b0ae27a92d
50d227a81b7b643af6b4aefa0d4db570e4dabbe2dd983f36fa67fc026eda370f

HTTP Headers

GET /idnsmedia/is/slots-v3/promotions/desktop/IDNSportDesktopSliderBanner9-ezgif.com-optiwebp.webp HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/webp
content-length: 29150
last-modified: Thu, 27 Feb 2025 01:41:11 GMT
etag: "67bfc2b7-71de"
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6FVgUOPNdPuQS6Zt8kmGEmfpTg3MUFEVChL8mcawtvQMBmx8vOEcN4vma84WtknL%2B7phdPvPoWCR50OhOm4YoiQhNf%2BHoCpeCKo2aZhjPLDAWlRaAfly8EiNDvQbi32tDEErinuRBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92011887682bb524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3359&min_rtt=740&rtt_var=2281&sent=431&recv=36&lost=0&retrans=1&sent_bytes=477412&recv_bytes=9244&delivery_rate=161487&cwnd=127200&unsent_bytes=0&cid=f4075f35d97d6119&ts=1639&x=1", cfExtPri, cfHdrFlush;dur=92

v2assets.zopim.io/ATbgCOyZH342JyY5z1Vr6cPib2ojkOhD-banner?1617248936429

104.16.200.19

200 OK

240 kB

URL GET
v2assets.zopim.io/ATbgCOyZH342JyY5z1Vr6cPib2ojkOhD-banner?1617248936429
IP
104.16.200.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectzopim.io
Fingerprint7E:9D:B9:DD:E8:57:19:B9:ED:45:38:E4:69:CF:C4:CF:49:B3:FC:88
ValidityTue, 21 Jan 2025 00:11:48 GMT - Mon, 21 Apr 2025 01:11:44 GMT

File type
GIF image data, version 89a, 240 x 164
Size
240 kB (240549 bytes)
Hash
1dcde75d45d5e12ab7e4156ec3b5f85d
7c3b1a21d015d3c3b34a42c1bdb3577df716474e
ee2b75902a7970fce1419621b19d85306592e5d19c3a90a8c080d57319feee91

HTTP Headers

GET /ATbgCOyZH342JyY5z1Vr6cPib2ojkOhD-banner?1617248936429 HTTP/1.1
Host: v2assets.zopim.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:41:01 GMT
content-type: image/gif
content-length: 240549
last-modified: Thu, 01 Apr 2021 03:49:02 GMT
etag: "1dcde75d45d5e12ab7e4156ec3b5f85d"
cf-cache-status: MISS
expires: Sat, 15 Mar 2025 04:41:01 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
vary: Accept-Encoding
x-robots-tag: none, noarchive
server: cloudflare
cf-ray: 920118a56e8d56c9-OSL
X-Firefox-Spdy: h2

media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/img/bg-header.jpg

104.21.18.144

200 OK

1.3 kB

URL GET
media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/img/bg-header.jpg
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x74, components 3
Size
1.3 kB (1327 bytes)
Hash
deebaaa34618eeef9cf0dbadc7104675
80da87e6fb83ec20d71f7d25c06d175cf3167081
ecc5f0297382a6d66b6b6cd46b59f0c210955fbe217248a7f44e2d8ae32e6866

HTTP Headers

GET /idnsmedia/is/assets/themes/aagbbf/img/bg-header.jpg HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/css/style.css?v=8.6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: image/jpeg
content-length: 1327
last-modified: Thu, 18 Feb 2021 10:43:23 GMT
etag: "602e44cb-52f"
expires: Sun, 13 Apr 2025 04:40:55 GMT
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fyviv3sAlkjV5rlEC8blAw%2FwROIfwwnCDQXqoyKR%2B3wbXeJNYU8zjBOiRIOzaIvyAgKosp8Gaa1BeFxbirn03CCrhKbeBZ%2F1ho4I17uzFkSp3TcFVy1AWLW0BVpF6mZDyoGE%2F6KGgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92011880bcf5b524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5530&min_rtt=3678&rtt_var=2702&sent=15&recv=10&lost=0&retrans=0&sent_bytes=4210&recv_bytes=2629&delivery_rate=161484&cwnd=12000&unsent_bytes=0&cid=f4075f35d97d6119&ts=529&x=1", cfExtPri, cfHdrFlush;dur=0

v2assets.zopim.io/ATbgCOyZH342JyY5z1Vr6cPib2ojkOhD-concierge?1617249535322

104.16.200.19

200 OK

7.1 kB

URL GET
v2assets.zopim.io/ATbgCOyZH342JyY5z1Vr6cPib2ojkOhD-concierge?1617249535322
IP
104.16.200.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectzopim.io
Fingerprint7E:9D:B9:DD:E8:57:19:B9:ED:45:38:E4:69:CF:C4:CF:49:B3:FC:88
ValidityTue, 21 Jan 2025 00:11:48 GMT - Mon, 21 Apr 2025 01:11:44 GMT

File type
PNG image data, 50 x 50, 8-bit/color RGB, non-interlaced
Size
7.1 kB (7099 bytes)
Hash
0ab6787a68e0c6449763aac2e41d3c39
5d57dfd53a1684aaa1b7cf2741adec9a5bbcd33f
41e112dee762918c559535b2eda2a9d5879fa624f02b968b10246a5d97a8855d

HTTP Headers

GET /ATbgCOyZH342JyY5z1Vr6cPib2ojkOhD-concierge?1617249535322 HTTP/1.1
Host: v2assets.zopim.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:41:03 GMT
content-type: image/png
content-length: 7099
last-modified: Thu, 01 Apr 2021 03:58:57 GMT
etag: "0ab6787a68e0c6449763aac2e41d3c39"
cf-cache-status: MISS
expires: Sat, 15 Mar 2025 04:41:03 GMT
cache-control: public, max-age=86400
accept-ranges: bytes
vary: Accept-Encoding
x-robots-tag: none, noarchive
server: cloudflare
cf-ray: 920118b26ca956c9-OSL
X-Firefox-Spdy: h2

media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/img/logo-big.png

104.21.18.144

200 OK

19 kB

URL GET
media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/img/logo-big.png
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
PNG image data, 260 x 65, 8-bit/color RGBA, non-interlaced
Size
19 kB (19284 bytes)
Hash
5da7603a8fdaab5b00ecea26b83f9d97
d007ef0ff54520dd4bb9bf493e4924c35e7c7d7c
8b6c7352c72eec3c25f782e2999cd84ce39bc390b336a970c4975371d9c147ca

HTTP Headers

GET /idnsmedia/is/assets/themes/aagbbf/img/logo-big.png HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/css/style.css?v=8.6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: image/png
content-length: 19284
last-modified: Thu, 18 Feb 2021 10:44:39 GMT
etag: "602e4517-4b54"
expires: Sun, 13 Apr 2025 04:40:55 GMT
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kz5AGJ27jpbgRuNtKI71K5sQJWwH6KoIbxD2w%2FW2KGg1BE18C5nZwmWNimhR%2FCyjMzuJ0v%2F1WsT5lQkwHfO42DH%2FSsuv%2FXZB8ODc8P%2F4lSCUysx5OrR6%2FVYqD3DLv7%2B51CYeMAzijQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92011880dcfcb524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4292&min_rtt=740&rtt_var=3100&sent=31&recv=13&lost=0&retrans=0&sent_bytes=21285&recv_bytes=2760&delivery_rate=3997435&cwnd=24000&unsent_bytes=0&cid=f4075f35d97d6119&ts=732&x=1", cfExtPri, cfHdrFlush;dur=0

static.zdassets.com/web_widget/classic/latest/fda6cd35495c75f83508d9d2e77ee33d.mp3

216.198.54.3

206 Partial Content

20 kB

URL GET
static.zdassets.com/web_widget/classic/latest/fda6cd35495c75f83508d9d2e77ee33d.mp3
IP
216.198.54.3:443
ASN
#209242 Cloudflare London, LLC

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectzdassets.com
FingerprintD5:29:E8:49:0A:64:D7:FB:D2:63:3F:10:85:D3:F1:39:3E:1F:15:44
ValiditySat, 01 Mar 2025 14:46:21 GMT - Fri, 30 May 2025 15:46:20 GMT

File type
Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, JntStereo
Size
20 kB (19698 bytes)
Hash
f11ce9e8f40a392830217253fe75d6de
89ba57fcc360da34756c127acba15a8b23267fc6
05069cc62b394b6ecc2daf3c51b4b2ba7f6cc8735988e8234487234af47eceee

HTTP Headers

GET /web_widget/classic/latest/fda6cd35495c75f83508d9d2e77ee33d.mp3 HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
date: Fri, 14 Mar 2025 04:41:01 GMT
content-type: audio/mpeg; charset=utf-8
content-length: 19698
x-amz-id-2: EwJG3MvmG7Pkb5y9hUBk4MwamVqWrqiQe71DZz17bkR58PbYfvj3naftpBxvqzxSV4pbertktEmsnVOaCXKkjOjWGfPlrv1D
x-amz-request-id: S86B5DGWRSV3981T
x-amz-replication-status: COMPLETED
last-modified: Fri, 27 Dec 2024 08:59:09 GMT
etag: "f11ce9e8f40a392830217253fe75d6de"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Fri, 23 Jan 2026 13:08:14 GMT
x-amz-version-id: SbGCIJ2SN2UNtezVUBsPz6twHS7ItMYi
cf-cache-status: HIT
age: 1828263
content-range: bytes 0-19697/19698
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aFcatO7%2F3o5KDH3NMtTo4iWpAtc8f8ctGg1K5bdZswkg57eQWcAHq%2FCQDwG69Chk3HF8s27Kia2RR9c6fL%2BYktKOIR2AygoSgD6FbXDuLPyb9UTlLnmp8S9ZnW6lqMaGfKS3xfI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-max-age: 0
server: cloudflare
cf-ray: 920118a8b85fabd4-CPH
X-Firefox-Spdy: h2

i.postimg.cc/1X5nZTwS/bawah1.jpg

46.105.222.81

200 OK

110 kB

URL GET
i.postimg.cc/1X5nZTwS/bawah1.jpg
IP
46.105.222.81:443
ASN
#16276 OVH SAS

Requested by
https://www.bayanbola5.org/
Certificate
IssuerLet's Encrypt
Subjectpostimg.cc
Fingerprint24:B8:90:7C:62:71:35:E0:C0:CD:09:7F:C0:F8:68:33:F2:F4:A2:59
ValidityMon, 17 Feb 2025 15:33:09 GMT - Sun, 18 May 2025 15:33:08 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2021:02:06 09:44:12], progressive, precision 8, 340x190, components 3
Size
110 kB (110213 bytes)
Hash
6f97c268d4bf230801ff6307df21d66a
906dd5560a79e1273000d7de94d375e7a2610901
9427c2049457fe244fffb2435409c266bed5af587d77fd6d151b557b8ad8232c

HTTP Headers

GET /1X5nZTwS/bawah1.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/jpeg
content-length: 110213
last-modified: Fri, 19 Mar 2021 08:16:55 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.postimg.cc/qMDnpk15/slide-1.jpg

46.105.222.81

200 OK

272 kB

URL GET
i.postimg.cc/qMDnpk15/slide-1.jpg
IP
46.105.222.81:443
ASN
#16276 OVH SAS

Requested by
https://www.bayanbola5.org/
Certificate
IssuerLet's Encrypt
Subjectpostimg.cc
Fingerprint24:B8:90:7C:62:71:35:E0:C0:CD:09:7F:C0:F8:68:33:F2:F4:A2:59
ValidityMon, 17 Feb 2025 15:33:09 GMT - Sun, 18 May 2025 15:33:08 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=350, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=685], progressive, precision 8, 685x350, components 3
Size
272 kB (271525 bytes)
Hash
3655c491e7c704fbd48b1df4bcb4a32f
b2e6c5d1001c57aa1688b26868a0ef92327258ae
e7ce5e598d61869fd105fa552f78e2abe00e6733f9413d6961fd2acb9d91a460

HTTP Headers

GET /qMDnpk15/slide-1.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/jpeg
content-length: 271525
last-modified: Fri, 19 Mar 2021 08:15:49 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bayanbola5.org/assets/img/promo6.jpg

104.21.74.125

200 OK

80 kB

URL GET
www.bayanbola5.org/assets/img/promo6.jpg
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 340x172, components 3
Size
80 kB (80095 bytes)
Hash
80dc6a01aa3eea710cdf947009037e39
bccd21fc5fc851faf3d72ce9a9dba6935635a969
4788c0ed26fb07342af6b42490930e782acff8c6e48b5eec88ae3b676be0b4d5

HTTP Headers

GET /assets/img/promo6.jpg HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:57 GMT
content-type: image/jpeg
content-length: 80095
last-modified: Mon, 21 Dec 2020 11:36:25 GMT
etag: "5fe088b9-138df"
expires: Mon, 09 Mar 2026 04:40:56 GMT
cache-control: public, max-age=31104000
pragma: public
x-cache: MISS
x-cache-hits: 0
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cd%2BTCrmyvvV1JLuuHCpYjiln6Cjh7cXjG%2BZlhBYvKk0olTCG4k7Y33k%2Fw5lHs9755%2B2c%2Bc%2F3uLQLB6p%2BZg90DUuA8GDABP%2FUc%2Fuy%2Be7AZqmpCX2xtpChCmeoaoIB3suCAg7D6PE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92011889cde3569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5364&min_rtt=1680&rtt_var=5441&sent=231&recv=42&lost=0&retrans=4&sent_bytes=229375&recv_bytes=8076&delivery_rate=617726&cwnd=67200&unsent_bytes=0&cid=3bf65a2294a41659&ts=3140&x=1", cfExtPri, cfHdrFlush;dur=0

static.zdassets.com/web_widget/classic/latest/web-widget-locales/classic/en-us-json-5016640.js

216.198.54.3

200 OK

26 kB

URL GET
static.zdassets.com/web_widget/classic/latest/web-widget-locales/classic/en-us-json-5016640.js
IP
216.198.54.3:443
ASN
#209242 Cloudflare London, LLC

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectzdassets.com
FingerprintD5:29:E8:49:0A:64:D7:FB:D2:63:3F:10:85:D3:F1:39:3E:1F:15:44
ValiditySat, 01 Mar 2025 14:46:21 GMT - Fri, 30 May 2025 15:46:20 GMT

File type

Size
26 kB (25703 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /web_widget/classic/latest/web-widget-locales/classic/en-us-json-5016640.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:40:58 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: dQ3R+9YruzxydmfsehO3eQRCSv9mT5rimhVgP4Wmdj8Oy7bDDCdN+g7K/7LmuCDqWZE1/xVsDUl7V96rkBVQanHrsVvWNz+9
x-amz-request-id: PQ5JHTA03BFX34BE
x-amz-replication-status: COMPLETED
last-modified: Mon, 10 Mar 2025 13:09:16 GMT
etag: W/"ef48436bf7997a9fed0856cd3df28c0f"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 10 Mar 2026 13:09:15 GMT
x-amz-version-id: wPwFf2c74agjAPGyH9sIlHKMDlCT3tpt
cf-cache-status: HIT
age: 87947
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T3aWyeS%2F2200D6DD22h32h2M83iMQeCM6a47LvOiZMb38YnCRc7YtygPVOXAxRSumXCPJ7jcmcgYGDxv6mBjjrQTWIOxyep2zVeeHGoboOgKgmYqoD%2B6ybRqIf7NJAWkekNE%2BFg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-max-age: 0
server: cloudflare
cf-ray: 920118967d89abd4-CPH
content-encoding: br
X-Firefox-Spdy: h2

media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/img/bg-main.jpg

104.21.18.144

200 OK

195 kB

URL GET
media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/img/bg-main.jpg
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x688, components 3
Size
195 kB (195012 bytes)
Hash
8a77e6642f965d73116029dfbd237a14
4549e2bd826c5fbf15516d1afad6967f72a6654b
83f4b97425c04166fdebac517f67e1cb807afe6c5c259d5bdc2e0ef3dd9c553f

HTTP Headers

GET /idnsmedia/is/assets/themes/aagbbf/img/bg-main.jpg HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/css/style.css?v=8.6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/jpeg
content-length: 195012
last-modified: Thu, 18 Feb 2021 10:43:25 GMT
etag: "602e44cd-2f9c4"
expires: Sun, 13 Apr 2025 04:40:55 GMT
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lqRqc8A603HhzlswJGMYpCOq3Ks0zvW%2FDlvWy2yWeKLBZ9hdm%2BKr2ytM%2B92ZwiMYHpcn7PIY4ns0dnCTEv8Ip1SFu38JSNjG9X9JfF1ljgeg1jJX5aQY1Y1GNCA%2BRgOoH1aihuHYyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92011880dcfdb524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3350&min_rtt=740&rtt_var=2217&sent=113&recv=17&lost=0&retrans=0&sent_bytes=117031&recv_bytes=2940&delivery_rate=9436425&cwnd=48000&unsent_bytes=0&cid=f4075f35d97d6119&ts=1001&x=1", cfExtPri, cfHdrFlush;dur=0

static.zdassets.com/web_widget/classic/latest/web-widget-8777-5016640.js

216.198.54.3

200 OK

193 kB

URL GET
static.zdassets.com/web_widget/classic/latest/web-widget-8777-5016640.js
IP
216.198.54.3:443
ASN
#209242 Cloudflare London, LLC

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectzdassets.com
FingerprintD5:29:E8:49:0A:64:D7:FB:D2:63:3F:10:85:D3:F1:39:3E:1F:15:44
ValiditySat, 01 Mar 2025 14:46:21 GMT - Fri, 30 May 2025 15:46:20 GMT

File type

Size
193 kB (192844 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /web_widget/classic/latest/web-widget-8777-5016640.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:41:02 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: FTjvTPg8v5LVXyNb4O2rJPxPXlW/AhPHdkHT3qofdT5lEHi7cSizm5AxR8SFG44IX0WMPkNTc+o=
x-amz-request-id: C3DAYTAZF8XKF2BT
x-amz-replication-status: COMPLETED
last-modified: Mon, 10 Mar 2025 13:09:14 GMT
etag: W/"7d9a898ac6d7f91f2681d95a5460fb48"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 10 Mar 2026 13:09:13 GMT
x-amz-version-id: vOFUAxZLkeAqOjrHDwJ2K8FVX2aRYddK
cf-cache-status: HIT
age: 238630
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5L7Iss1Y%2FXGieyzNhmUvILOYow1%2Fxq%2F55O7rm43m%2FB2e1FzaQuxov%2F72xJbOZUKPaJXnfcMAfKEz%2BqhMow%2F41HUv25JpjSnt4DS%2FwlRQMVukuk%2FDA16kAgkbdniASLzaE1QqVdk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-max-age: 0
server: cloudflare
cf-ray: 920118aeece4abd4-CPH
content-encoding: br
X-Firefox-Spdy: h2

media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/LEVEL%20UP%20GAME%20REWARDSIDNSportDesktopSliderBanner1-ezgif.com-optiwebp.webp

104.21.18.144

200 OK

29 kB

URL GET
media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/LEVEL%20UP%20GAME%20REWARDSIDNSportDesktopSliderBanner1-ezgif.com-optiwebp.webp
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
RIFF (little-endian) data, Web/P image
Size
29 kB (29292 bytes)
Hash
7cf7cf08bc6d28f735ea9fc20c92fd07
be101cbe7f7d289bf16a692433aeb7eb55071304
a3fb47d308906bdd82f363a28dc104f5700b118d0cb141f12e43838e0770d159

HTTP Headers

GET /idnsmedia/is/slots-v3/promotions/desktop/LEVEL%20UP%20GAME%20REWARDSIDNSportDesktopSliderBanner1-ezgif.com-optiwebp.webp HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/webp
content-length: 29292
last-modified: Sat, 08 Feb 2025 10:09:38 GMT
etag: "67a72d62-726c"
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5saa19LQNbhNJCiCozeMyAAbngwvH6lzs9KdRsF2%2BUZdlFAc8%2B2D5nqpoOnCNBEWQrUbBuKHuOOfV0Gf0%2FThA94De8rukwZSHj2cF3M8fPYkk1x5OD1mfsc7pylgUOx4JkD%2Bme9BTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920118872807b524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3359&min_rtt=740&rtt_var=2281&sent=431&recv=36&lost=0&retrans=1&sent_bytes=477412&recv_bytes=9244&delivery_rate=161487&cwnd=127200&unsent_bytes=0&cid=f4075f35d97d6119&ts=1619&x=1", cfExtPri, cfHdrFlush;dur=112

media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/VIP%20SLOT%20MANIA%20IDNSportDesktopSliderBanner7-ezgif.com-optiwebp.webp

104.21.18.144

200 OK

30 kB

URL GET
media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/VIP%20SLOT%20MANIA%20IDNSportDesktopSliderBanner7-ezgif.com-optiwebp.webp
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
RIFF (little-endian) data, Web/P image
Size
30 kB (29570 bytes)
Hash
cd02e02e434a8824c3c6fe40b50ad632
c415510902d44c2efe2133ceb6ea5f3a535f01e7
4f1d68c4c96496d30edbc86bed67207f0f7829d0c72fac25953f83ced2cd0dac

HTTP Headers

GET /idnsmedia/is/slots-v3/promotions/desktop/VIP%20SLOT%20MANIA%20IDNSportDesktopSliderBanner7-ezgif.com-optiwebp.webp HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/webp
content-length: 29570
last-modified: Tue, 18 Feb 2025 09:03:17 GMT
etag: "67b44cd5-7382"
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SXEHUsUUH%2FCYs7WEqwfz%2BVaOnLEgHtFIuTbaY%2FmTkzCPGK3iVQvp1n4J2Dk7DCvLEclW5zOeqYu6gYf6VDF5L%2F7CZC2AYlnkeAgmcT913ZVqMX%2FybpP5vQGI3QLhkdPJYTGvmEJD%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92011887f875b524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3359&min_rtt=740&rtt_var=2281&sent=433&recv=36&lost=0&retrans=3&sent_bytes=479812&recv_bytes=9244&delivery_rate=161487&cwnd=127200&unsent_bytes=0&cid=f4075f35d97d6119&ts=1722&x=1", cfExtPri, cfHdrFlush;dur=9

media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/Carnival%20Cash%20Drop_desktop.webp

104.21.18.144

200 OK

30 kB

URL GET
media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/Carnival%20Cash%20Drop_desktop.webp
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 685x349, Scaling: [none]x[none], YUV color, decoders should clamp
Size
30 kB (29856 bytes)
Hash
d5c700df4162eb680d30a37fb686245a
22399f23cad0e72f91850f880751564ff3f233b0
2cd4f10122cc958bd0e3c8b4a3f540cbe3f488490fa19b232b6481435ea09603

HTTP Headers

GET /idnsmedia/is/slots-v3/promotions/desktop/Carnival%20Cash%20Drop_desktop.webp HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/webp
content-length: 29856
last-modified: Tue, 22 Oct 2024 09:33:51 GMT
etag: "6717717f-74a0"
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
accept-ranges: bytes
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ujclPuzfNJAUXmCnZP8lrC9sECWCkT%2FTh0lydyxfZSyjiu1MD5l7tsxTWs9bLMsrhxJG7%2FzDUMIs0mOtDZLbWGh1k8fysd%2F6Hs%2B3HrANM8kEfVpgZay4IHYJEgxoAA3L56HvhL2UOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920118884894b524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=15997&min_rtt=740&rtt_var=26986&sent=566&recv=37&lost=0&retrans=3&sent_bytes=636412&recv_bytes=9290&delivery_rate=573886&cwnd=159000&unsent_bytes=0&cid=f4075f35d97d6119&ts=1737&x=1", cfExtPri, cfHdrFlush;dur=49

i.postimg.cc/Pf2vMXn5/bawah2.jpg

46.105.222.81

200 OK

124 kB

URL GET
i.postimg.cc/Pf2vMXn5/bawah2.jpg
IP
46.105.222.81:443
ASN
#16276 OVH SAS

Requested by
https://www.bayanbola5.org/
Certificate
IssuerLet's Encrypt
Subjectpostimg.cc
Fingerprint24:B8:90:7C:62:71:35:E0:C0:CD:09:7F:C0:F8:68:33:F2:F4:A2:59
ValidityMon, 17 Feb 2025 15:33:09 GMT - Sun, 18 May 2025 15:33:08 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2021:02:06 09:48:01], progressive, precision 8, 340x190, components 3
Size
124 kB (124171 bytes)
Hash
91aff0d2d21b3001affb66304b56e948
e5e88aca66cc96db4de4e4ae4842c3ab59f7f6db
0f9ca81b22a2f6f8bdd013d2d272c0b67f332f5a1b0cd96aef7397d6f6d1d72e

HTTP Headers

GET /Pf2vMXn5/bawah2.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/jpeg
content-length: 124171
last-modified: Fri, 19 Mar 2021 08:17:12 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

www.bayanbola5.org/assets/js/plugins/progressbar.js?v=8.6

104.21.74.125

200 OK

407 B

URL GET
www.bayanbola5.org/assets/js/plugins/progressbar.js?v=8.6
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
ASCII text, with very long lines (423), with no line terminators
Size
407 B (407 bytes)
Hash
f6678abc09113024eb224e8eff0559dd
673ccb20fc8e9c573ae9af66819e6674aabe033b
fce3d8797b7e975ecafc1a4d8b06d2e9aa344d14c7422c6b28063d26f9b80322

HTTP Headers

GET /assets/js/plugins/progressbar.js?v=8.6 HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: application/javascript
last-modified: Mon, 21 Dec 2020 11:36:26 GMT
etag: W/"5fe088ba-197"
expires: Mon, 09 Mar 2026 04:40:55 GMT
cache-control: public, max-age=31104000
pragma: public
age: 0
x-cache: MISS
x-cache-hits: 0
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xihMVBA2WOvtVjSpcKGlJ55UUu4ieL2wEAWpxJ1WXc9Y5%2FxQObFTbA%2BV37otCVp7Z5QFLohSu0umguNpIAviNNcBICkzP4Mh1wCPMPwGCWWvDx9dRMaXc4aJt1IbDIGZtCjTqek%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9201187e68e7569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3106&min_rtt=1680&rtt_var=1631&sent=64&recv=26&lost=0&retrans=0&sent_bytes=45058&recv_bytes=5428&delivery_rate=163166&cwnd=24000&unsent_bytes=0&cid=3bf65a2294a41659&ts=895&x=1", cfExtPri, cfHdrFlush;dur=0

i.postimg.cc/8PZdsdzw/slide-3.jpg

46.105.222.81

200 OK

221 kB

URL GET
i.postimg.cc/8PZdsdzw/slide-3.jpg
IP
46.105.222.81:443
ASN
#16276 OVH SAS

Requested by
https://www.bayanbola5.org/
Certificate
IssuerLet's Encrypt
Subjectpostimg.cc
Fingerprint24:B8:90:7C:62:71:35:E0:C0:CD:09:7F:C0:F8:68:33:F2:F4:A2:59
ValidityMon, 17 Feb 2025 15:33:09 GMT - Sun, 18 May 2025 15:33:08 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=350, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=685], progressive, precision 8, 685x350, components 3
Size
221 kB (220954 bytes)
Hash
005eb69cf9cd092067b79648e9a09e8e
1d5582b4352b5c419b94d09e921059a428123f02
8651e15279d69e3380eaed5ade67581be242950e7e15ffb15b00780016627671

HTTP Headers

GET /8PZdsdzw/slide-3.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/jpeg
content-length: 220954
last-modified: Fri, 19 Mar 2021 08:14:13 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/plinkoballpromodesktop-ezgif.com-optiwebp.webp

104.21.18.144

200 OK

29 kB

URL GET
media.fastchecker.us/idnsmedia/is/slots-v3/promotions/desktop/plinkoballpromodesktop-ezgif.com-optiwebp.webp
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
RIFF (little-endian) data, Web/P image
Size
29 kB (29000 bytes)
Hash
cd01ad3787acada0279cc470c3300728
54d8a9cacf75d5fcaa371a5b2385f7de8e10be06
5acc0131d075aeeac2e5793032a2401b59ea79311c9968ef9b5b5049b6da7d68

HTTP Headers

GET /idnsmedia/is/slots-v3/promotions/desktop/plinkoballpromodesktop-ezgif.com-optiwebp.webp HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: image/webp
content-length: 29000
last-modified: Thu, 27 Feb 2025 10:44:01 GMT
etag: "67c041f1-7148"
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000;includeSubDomains
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U614TOKh5cDo7OmYhOl55J1j%2FP5%2FfTKvguu0vUtYtLb3pGfNp3iUOsUZwfts3oQzYBhDvVxOMV2TtVnF0hjIbfyL5uCf9b76sbGjmI7JYYtiYjzZfRtiE8rmUj%2F5dQpSy%2FPNoielPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92011887f877b524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3359&min_rtt=740&rtt_var=2281&sent=433&recv=36&lost=0&retrans=3&sent_bytes=479812&recv_bytes=9244&delivery_rate=161487&cwnd=127200&unsent_bytes=0&cid=f4075f35d97d6119&ts=1723&x=1", cfExtPri, cfHdrFlush;dur=63

static.zdassets.com/web_widget/classic/latest/web-widget-8417-5016640.js

216.198.54.3

200 OK

84 kB

URL GET
static.zdassets.com/web_widget/classic/latest/web-widget-8417-5016640.js
IP
216.198.54.3:443
ASN
#209242 Cloudflare London, LLC

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectzdassets.com
FingerprintD5:29:E8:49:0A:64:D7:FB:D2:63:3F:10:85:D3:F1:39:3E:1F:15:44
ValiditySat, 01 Mar 2025 14:46:21 GMT - Fri, 30 May 2025 15:46:20 GMT

File type
JavaScript source, ASCII text, with very long lines (65307)
Size
84 kB (84224 bytes)
Hash
120281397869e52108ee156fe7208b66
955c0a841718ef15bb9e134ce1d8c5db2200a292
735124813eaf2c00a5080a53b5211f638c6dadda7a27889b6845f78914e0084c

HTTP Headers

GET /web_widget/classic/latest/web-widget-8417-5016640.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:41:02 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: rwTsC0htHGV4E5NFlKiL7rMv6EKkf12sTYizNSZ9kArKUxPJqIefs4GBuGVHcaSdKTZBlS1vlqQ=
x-amz-request-id: C3DC7N1HTWCR88D8
x-amz-replication-status: COMPLETED
last-modified: Mon, 10 Mar 2025 13:09:14 GMT
etag: W/"120281397869e52108ee156fe7208b66"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 10 Mar 2026 13:09:13 GMT
x-amz-version-id: SanY2byFtMA_L2SobmkBwUCN3G4bYUux
cf-cache-status: HIT
age: 238630
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9fD9kmKI2gAT8Fq%2FTaeJwrzBfLer5oQdWv3l8vikulhX1%2F7uygpa7UtNguC26L5HwRvO%2B1bfN2%2F5nYEKbu0iZbbJcUZuoanxaJTdMOVEVfPGMOPFHvfFUPLUC7vcbejI5yHLzNg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-max-age: 0
server: cloudflare
cf-ray: 920118aefce6abd4-CPH
content-encoding: br
X-Firefox-Spdy: h2

www.bayanbola5.org/assets/webfonts/fa-solid-900.woff2

104.21.74.125

200 OK

79 kB

URL GET
www.bayanbola5.org/assets/webfonts/fa-solid-900.woff2
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
Web Open Font Format (Version 2), TrueType, length 79072, version 1.0
Size
79 kB (79072 bytes)
Hash
59ea9019c9b9bc4d83ab9783e830735c
fa1fcc52e59615a6f131b9b2eff1638f0138c617
08aa3a5ee68a21d5771a70b20495b6da1c0f996c46982cd1b0447ad2db730d11

HTTP Headers

GET /assets/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/assets/css/fontawesome.all.min.css?v=8.6
Cookie: SRVNAME=140a
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:56 GMT
content-type: application/octet-stream
content-length: 79072
last-modified: Mon, 21 Dec 2020 11:36:26 GMT
etag: "5fe088ba-134e0"
expires: Mon, 09 Mar 2026 04:40:56 GMT
cache-control: public, max-age=31104000
pragma: public
x-cache: MISS
x-cache-hits: 0
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JXfWd2v07DydhIlDb4arO%2BS8mX0nHu0WJSPM63m7pVIa4Pv8NycoPG2H6%2F69cd%2Bu8c0631IgP%2Bsuvvt8aydEa%2FDBhqkQN5l%2FJoovDZKUbPFry9tjmH9u1Fxsu9K0%2FeukxmHCvhQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92011884eba6569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3006&min_rtt=1680&rtt_var=803&sent=155&recv=38&lost=0&retrans=0&sent_bytes=142588&recv_bytes=7371&delivery_rate=264677&cwnd=48000&unsent_bytes=0&cid=3bf65a2294a41659&ts=2342&x=1", cfExtPri, cfHdrFlush;dur=0

www.bayanbola5.org/assets/img/bank/Desktop_Status_Info.svg

104.21.74.125

200 OK

26 kB

URL GET
www.bayanbola5.org/assets/img/bank/Desktop_Status_Info.svg
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
SVG Scalable Vector Graphics image
Size
26 kB (26306 bytes)
Hash
6fd65d61aac0687ac700d192a49d804d
421ba2adcd4093b15a06fd0ac314f401c75059b1
24da42e34ed4fe88078139eabae89d1d3e1b634a84d316c28426086d350424a0

HTTP Headers

GET /assets/img/bank/Desktop_Status_Info.svg HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: image/svg+xml
last-modified: Mon, 18 Sep 2023 09:37:00 GMT
etag: W/"65081a3c-66c2"
expires: Mon, 09 Mar 2026 04:40:55 GMT
cache-control: public, max-age=31104000
pragma: public
x-cache: MISS
x-cache-hits: 0
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AHlvrw3p4kU%2FJoh%2B7qLzEroFhGfIqNwmM0HlQz8rvxv5Qv8PzyP923NQ80V0Vchdr0BbKRfARD%2Bdk5Km11rN1nWfWaYnApj14CITd4REm5OCQ%2BsRbIHj8YxinMTV6EYpia5Obps%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920118811a14569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3018&min_rtt=1680&rtt_var=1039&sent=144&recv=36&lost=0&retrans=0&sent_bytes=131639&recv_bytes=6753&delivery_rate=2787812&cwnd=48000&unsent_bytes=0&cid=3bf65a2294a41659&ts=1570&x=1", cfExtPri, cfHdrFlush;dur=0

wss://widget-mediator.zopim.com/s/W/ws/HZ08AEY1QCb2cr7a/c/1741927258905

3.121.52.16

101 Switching Protocols

0 B

URL GET
wss://widget-mediator.zopim.com/s/W/ws/HZ08AEY1QCb2cr7a/c/1741927258905
IP
3.121.52.16:443
ASN
#16509 AMAZON-02

Requested by
https://www.bayanbola5.org/
Certificate
IssuerAmazon
Subject*.zopim.com
FingerprintF5:6D:E7:00:23:72:09:7B:2A:4D:A3:95:64:A6:78:46:FF:D5:69:C1
ValiditySun, 08 Sep 2024 00:00:00 GMT - Wed, 08 Oct 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /s/W/ws/HZ08AEY1QCb2cr7a/c/1741927258905 HTTP/1.1
Host: widget-mediator.zopim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.bayanbola5.org
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: sVt/Vk6OfovEEoc1vRlsbQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Fri, 14 Mar 2025 04:40:59 GMT
Connection: upgrade
Set-Cookie: AWSALB=tGdR1OU8KOXs8pRO0RXoUQwENX0xHpdMZJzUW3XHtQXDIJpdkGVE28VJuPW0how22gybHWaiobajh34k+tmZraOuW/X9VIdPQBGAsW//Tm4pe8II43B7B6crZpY+; Expires=Fri, 21 Mar 2025 04:40:59 GMT; Path=/
AWSALBCORS=tGdR1OU8KOXs8pRO0RXoUQwENX0xHpdMZJzUW3XHtQXDIJpdkGVE28VJuPW0how22gybHWaiobajh34k+tmZraOuW/X9VIdPQBGAsW//Tm4pe8II43B7B6crZpY+; Expires=Fri, 21 Mar 2025 04:40:59 GMT; Path=/; SameSite=None; Secure
Upgrade: websocket
Sec-WebSocket-Accept: UhaaWLS64YRdE8dIRDRmxBDfceI=

static.zdassets.com/web_widget/classic/latest/web-widget-6108-5016640.js

216.198.54.3

200 OK

26 kB

URL GET
static.zdassets.com/web_widget/classic/latest/web-widget-6108-5016640.js
IP
216.198.54.3:443
ASN
#209242 Cloudflare London, LLC

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectzdassets.com
FingerprintD5:29:E8:49:0A:64:D7:FB:D2:63:3F:10:85:D3:F1:39:3E:1F:15:44
ValiditySat, 01 Mar 2025 14:46:21 GMT - Fri, 30 May 2025 15:46:20 GMT

File type

Size
26 kB (25514 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /web_widget/classic/latest/web-widget-6108-5016640.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 14 Mar 2025 04:41:02 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: /N/CBLpNoFpDgthy2UJOG95AkT8YQuyZcjHOZDyyQjmLV9yV+vbexRQFmhurJwCUTFjIqaYVLP0=
x-amz-request-id: 6B938GW6C4B2RSQT
x-amz-replication-status: COMPLETED
last-modified: Mon, 10 Mar 2025 13:09:14 GMT
etag: W/"3c84b8a786a135ceba5ae13bd676184a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 10 Mar 2026 13:09:13 GMT
x-amz-version-id: nQ3qICzpNS2cj8w0h1L_aYqTggrwKbi0
cf-cache-status: HIT
age: 238630
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eF%2FXKA1YAuzni4QKz3nbcP7a6HRJzkVD%2BqVC%2Fx72MdugKxP07Yh3JVKZAe%2F3ZuPnqkspebvSndiNWrilJ57WwM%2FhFGsmc52gV80%2BVC8enfKqOE2cu2eQwZ8mWS%2FBi2pXewuwnyk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-max-age: 0
server: cloudflare
cf-ray: 920118af0cf9abd4-CPH
content-encoding: br
X-Firefox-Spdy: h2

www.bayanbola5.org/assets/img/balance-loading.gif

104.21.74.125

200 OK

7.7 kB

URL GET
www.bayanbola5.org/assets/img/balance-loading.gif
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
GIF image data, version 89a, 160 x 20
Size
7.7 kB (7684 bytes)
Hash
0158e9a124af13359d05817b62446211
99b2954139c7050c196dc0e40d10df7f86416538
feb8f46c9242ce9a5fc0453b12022c2ab3c8b6f1e1faa337e4b9d8691b3ec61b

HTTP Headers

GET /assets/img/balance-loading.gif HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: image/gif
content-length: 7684
last-modified: Mon, 21 Dec 2020 11:36:25 GMT
etag: "5fe088b9-1e04"
expires: Mon, 09 Mar 2026 04:40:54 GMT
cache-control: public, max-age=31104000
pragma: public
x-cache: MISS
x-cache-hits: 0
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cTrDVw7Xr6NOk6oeOpN%2Bt9lIRzZUDp7zskcXlc4ElYbn%2BCLDnw3dgS8idjFZfte1PMiP1XA0yy3kAaJWscG%2ByJv6getpvOO%2FBAnyNS5zUyuUjV9fw%2BXLGXJkxwPZ7ycNg%2FC1Kfs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9201187d988e569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3521&min_rtt=2123&rtt_var=1380&sent=29&recv=21&lost=0&retrans=0&sent_bytes=6895&recv_bytes=5209&delivery_rate=3764&cwnd=12000&unsent_bytes=0&cid=3bf65a2294a41659&ts=766&x=1", cfExtPri, cfHdrFlush;dur=0

www.bayanbola5.org/assets/js/jquery.lazyload.js?v=8.6

104.21.74.125

200 OK

9.1 kB

URL GET
www.bayanbola5.org/assets/js/jquery.lazyload.js?v=8.6
IP
104.21.74.125:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectbayanbola5.org
Fingerprint6F:3B:7E:1A:E6:B8:8B:C4:A4:EE:D7:58:45:FA:35:0C:25:3B:BC:3F
ValidityFri, 07 Mar 2025 08:19:46 GMT - Thu, 05 Jun 2025 09:18:16 GMT

File type
JavaScript source, ASCII text, with very long lines (9378), with no line terminators
Size
9.1 kB (9058 bytes)
Hash
f7f45145ab2ca17d888f303958794fee
470eb963cdd802ecc6f70289e01e7caf8a70a964
f8b8f7e045dae4992ad9139a74cc7856f308894a158314208ba6b871eacded38

HTTP Headers

GET /assets/js/jquery.lazyload.js?v=8.6 HTTP/1.1
Host: www.bayanbola5.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Cookie: SRVNAME=140a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:55 GMT
content-type: application/javascript
last-modified: Mon, 21 Dec 2020 11:36:26 GMT
vary: Accept-Encoding
etag: W/"5fe088ba-2362"
expires: Mon, 09 Mar 2026 04:40:55 GMT
cache-control: public, max-age=31104000
pragma: public
content-encoding: gzip
age: 0
x-cache: MISS
x-cache-hits: 0
accept-ranges: bytes
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8UYLKOHRKN4BQAn1THtCabaHJRYApbxbnTOM34008lFXiiMbZyu2j0YM0ohhouWSwPCrElBSm7wCizxz1PAXPOZfSFBgrRA8Tr1UCYR%2BaFfmHAL8FMzdptG%2BRyzbAMn3YlvBVaI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9201187e48da569b-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3695&min_rtt=2123&rtt_var=1732&sent=44&recv=23&lost=0&retrans=0&sent_bytes=23697&recv_bytes=5297&delivery_rate=3536201&cwnd=12000&unsent_bytes=0&cid=3bf65a2294a41659&ts=854&x=1", cfExtPri, cfHdrFlush;dur=0

media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/img/favicon.png?v=8.6

104.21.18.144

200 OK

1.7 kB

URL GET
media.fastchecker.us/idnsmedia/is/assets/themes/aagbbf/img/favicon.png?v=8.6
IP
104.21.18.144:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bayanbola5.org/
Certificate
IssuerGoogle Trust Services
Subjectfastchecker.us
Fingerprint34:78:F5:46:34:D7:19:E0:AA:BD:18:05:D6:6E:01:BA:ED:A4:EC:17
ValiditySun, 19 Jan 2025 14:50:24 GMT - Sat, 19 Apr 2025 15:49:05 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
1.7 kB (1746 bytes)
Hash
b42ae865ed34934700b400de1776d30d
e8ab34cab5fd0c4efd3dd196845bef0883ba3764
e92a5637b6b3c3d34d62bc15f0d4283b417e590a364b72238a1e24652fcf5544

HTTP Headers

GET /idnsmedia/is/assets/themes/aagbbf/img/favicon.png?v=8.6 HTTP/1.1
Host: media.fastchecker.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bayanbola5.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 14 Mar 2025 04:40:58 GMT
content-type: image/png
content-length: 1746
last-modified: Thu, 18 Feb 2021 10:44:29 GMT
etag: "602e450d-6d2"
expires: Sat, 12 Apr 2025 17:31:32 GMT
cache-control: public, max-age=31536000
access-control-allow-origin: *
accept-ranges: bytes
age: 40165
cf-cache-status: HIT
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N3MUpD55bYpeSTvucSUrg940baaPsz4YVyMqYdO1dvDYThzs09UlitxfYXO0WCTjORWQ8pdTVcsR%2BVAidOVowjg4AQm7FL4KfRb5jL4ckmCMLEhMontLbNU1E7mp4ZyE1iFt5CDXWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920118937df5b524-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=19395&min_rtt=740&rtt_var=15633&sent=773&recv=41&lost=0&retrans=3&sent_bytes=878731&recv_bytes=10023&delivery_rate=1632585&cwnd=248400&unsent_bytes=0&cid=f4075f35d97d6119&ts=3159&x=1", cfExtPri, cfHdrFlush;dur=0

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (28)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML