Report - bet365-fixed-matches.com/

Report Overview

Submitted URL
bet365-fixed-matches.com/
IP
162.213.253.11
ASN
#22612 NAMECHEAP-NET
Submitted
2022-12-05 23:22:22
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
28

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
bet365-fixed-matches.com	334996	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	9.8 kB	181 kB	162.213.253.11
iqfixed.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	415 B	18 kB	104.21.73.59
tipster1x2.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	426 B	51 kB	94.156.46.193
s4.histats.com	12782	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	852 B	236 B	149.56.240.127
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
www.best-bet.asia	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	404 B	18 kB	91.215.216.44
ocsp.comodoca.com	1696	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	1.0 kB	104.18.32.68
pawabet-fixed.com	448783	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	416 B	5.2 kB	35.232.16.77
i.imgur.com	5110	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	388 B	18 kB	151.101.244.193
h2hfacts.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	28 kB	104.21.2.241
propick1x2.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	420 B	40 kB	188.114.96.1
s10.histats.com	15211	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	762 B	11 kB	46.105.201.240
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.9 kB	104.18.32.68
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.89.114.252
winfixedbet.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	423 B	12 kB	172.67.143.209
victor-prediction.com	411378	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	438 B	80 kB	35.209.0.180
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226
9ja-fixed.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	411 B	4.6 kB	35.232.16.77
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.9 kB	95.101.11.115
solo-predictions.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	433 B	7.0 kB	188.114.96.1
fixedbet1x2.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	426 B	50 kB	104.21.92.35
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	54 kB	34.120.237.76
arsenal-1x2.com	536860	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	427 B	6.5 kB	162.213.253.11
haaland-1x2.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	422 B	18 kB	162.213.253.11
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	6.1 kB	93.184.220.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-05	medium	bet365-fixed-matches.com/	Phishing
2022-12-05	medium	bet365-fixed-matches.com/	Phishing
2022-12-05	medium	bet365-fixed-matches.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1	Phishing
2022-12-05	medium	bet365-fixed-matches.com/wp-includes/css/classic-themes.min.css?ver=1	Phishing
2022-12-05	medium	bet365-fixed-matches.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Phishing
2022-12-05	medium	bet365-fixed-matches.com/wp-content/themes/comicpress/js/ddsmoothmenu.js?ver=6.1.1	Phishing
2022-12-05	medium	bet365-fixed-matches.com/wp-content/themes/comicpress/js/menubar.js?ver=6.1.1	Phishing
2022-12-05	medium	bet365-fixed-matches.com/wp-content/themes/comicpress/js/instant.js	Phishing
2022-12-05	medium	bet365-fixed-matches.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1	Phishing
2022-12-05	medium	bet365-fixed-matches.com/wp-content/themes/comicpress/js/scroll.js	Phishing
2022-12-05	medium	bet365-fixed-matches.com/wp-content/themes/comicpress/js/cvi_text_lib.js	Phishing
2022-12-05	medium	bet365-fixed-matches.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1	Phishing
2022-12-05	medium	bet365-fixed-matches.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17	Phishing
2022-12-05	medium	bet365-fixed-matches.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	bet365-fixed-matches.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-05-07
Pretty URL bet365-fixed-matches.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 162.213.253.11 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-05-07 21:33:59 Times Seen31984 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	bet365-fixed-matches.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-05-07
Pretty URL bet365-fixed-matches.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 162.213.253.11 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-07 18:09:18 Times Seen38210 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	s10.histats.com/js15_as.js	11 kB	2023-03-07	2024-05-03
Pretty URL s10.histats.com/js15_as.js IP 46.105.201.240 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-03 06:50:30 Times Seen1983 Hash e959fbdd13def4b9a9d0a5fc9a7de4d4 1e39712307e3673b40c0bdb8c7d3e86a3e8b60a0 2defe59e357a7d0683c8283ac42841db404a0884cae2eaecebf4b676e559dede Loading...

	bet365-fixed-matches.com/wp-content/themes/comicpress/js/instant.js	25 kB	2023-03-07	2023-07-17
Pretty URL bet365-fixed-matches.com/wp-content/themes/comicpress/js/instant.js IP 162.213.253.11 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:43:32 Last Seen2023-07-17 00:32:22 Times Seen20 Hash 240ee36b12e1cf0b1a36cfea310c1dc8 e176cf8cd8015bed618b78eb1e7c22926c4a8745 1f4ad4138e9e480da8c0cde784e48b36a8b6a08a74b996a8ae8c6f117a0eca63 Loading...

	bet365-fixed-matches.com/wp-content/themes/comicpress/js/cvi_text_lib.js	31 kB	2023-03-07	2023-07-17
Pretty URL bet365-fixed-matches.com/wp-content/themes/comicpress/js/cvi_text_lib.js IP 162.213.253.11 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:43:32 Last Seen2023-07-17 00:32:22 Times Seen20 Hash 0acbd706f5dd9b357d32c001b7d1efcc 7989059c435948fb12a6514ba5929ad94466068a 715609a9a95da85a10569fe56c805d85b7cadd406b9fc9585a233fc4739d3035 Loading...

	bet365-fixed-matches.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17	158 kB	2023-03-08	2024-05-07
Pretty URL bet365-fixed-matches.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 IP 162.213.253.11 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:25 Last Seen2024-05-07 22:04:22 Times Seen10332 Hash e53ec3d6e21be78115810135f5e956fe 523892839b88351523e0498ba881c4431197b54e b15c3ea03d50c2430490e7416733a254feea4237bb60b54181bd3473ebe4149f Loading...

	bet365-fixed-matches.com/	149 B	2023-03-07	2024-05-07
Pretty URL bet365-fixed-matches.com/ IP 162.213.253.11 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:22 Last Seen2024-05-07 11:44:08 Times Seen2872 Hash 931deb2e7bef82d78d1c1b0a3fe4fe32 2a468d77a19124c4bcd1745b7f51eff01b269ade afb2b21f29cd5d7fc5b63a8ea02ece9649603b9e63a2afa55927c508345e1ee7 Loading...

	bet365-fixed-matches.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-05-07
Pretty URL bet365-fixed-matches.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 162.213.253.11 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-07 18:24:11 Times Seen69104 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	bet365-fixed-matches.com/wp-content/themes/comicpress/js/ddsmoothmenu.js?ver=6.1.1	8.5 kB	2023-03-07	2023-07-17
Pretty URL bet365-fixed-matches.com/wp-content/themes/comicpress/js/ddsmoothmenu.js?ver=6.1.1 IP 162.213.253.11 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:43:32 Last Seen2023-07-17 00:32:22 Times Seen23 Hash 9c36831cf922177dadfa1f470b4b9498 0f8b145a75f5170c35f7af3961fedac736bd77fd 978adf488d3a5c980a07bb3674ea818a30b4a244abcbc39a161c47c1c93ff7fd Loading...

	bet365-fixed-matches.com/wp-content/themes/comicpress/js/scroll.js	804 B	2023-03-07	2023-06-29
Pretty URL bet365-fixed-matches.com/wp-content/themes/comicpress/js/scroll.js IP 162.213.253.11 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:43:32 Last Seen2023-06-29 05:51:38 Times Seen15 Hash 97825ecc95908db974e7bc92c0567d69 85d1db9e2634bcb53134527f23c61e807f635e96 64cabe89a1a1123375022f7ba5530c8ca5cd2e5d056633b7a5e51302126bb9b3 Loading...

	bet365-fixed-matches.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1	906 B	2023-03-07	2024-05-06
Pretty URL bet365-fixed-matches.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1 IP 162.213.253.11 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:59 Last Seen2024-05-06 23:57:40 Times Seen3893 Hash 2c6d3b562a48e0df5474999dd47e58fb 945220e990eb176c14e53cc663fb01e04e31b59f 3e6131330963c472b950b8aaf544ba3829735b8ccb103d614ba7793e3a786550 Loading...

	s4.histats.com/stats/4392224.php?4392224&@f16&@g1&@h1&@i1&@j1670282535941&@k0&@l1&@mBet365%20Fixed%20Matches%2C%20Buy%20Rigged%20Fixed%20Games%20and%20Soccer%20Solo%20Predictions%2C%20Betting%20Tips%201X2%20-%20Sure%20Fixed%20Matches%2C%20Bet365%20Gamble%20Predictions%2C%20Sell%20Rigged%20Fixed%20Games%2C%20Soccer%20Betting%20Tips%2C%20Solo%20Predictions%201X2&@n0&@o1000&@q0&@r0&@s202&@ten-US&@u1280&@b1:61105382&@b3:1670282536&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fbet365-fixed-matches.com%2F&@w	103 B	2023-03-08	2023-03-08
Pretty URL s4.histats.com/stats/4392224.php?4392224&@f16&@g1&@h1&@i1&@j1670282535941&@k0&@l1&@mBet365%20Fixed%20Matches%2C%20Buy%20Rigged%20Fixed%20Games%20and%20Soccer%20Solo%20Predictions%2C%20Betting%20Tips%201X2%20-%20Sure%20Fixed%20Matches%2C%20Bet365%20Gamble%20Predictions%2C%20Sell%20Rigged%20Fixed%20Games%2C%20Soccer%20Betting%20Tips%2C%20Solo%20Predictions%201X2&@n0&@o1000&@q0&@r0&@s202&@ten-US&@u1280&@b1:61105382&@b3:1670282536&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fbet365-fixed-matches.com%2F&@w IP 149.56.240.127 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:53:58 Last Seen2023-03-08 19:53:58 Times Seen1 Hash 9135558d711e338c54650e4b82014449 3796a9056e69fdf1c5ef1ec20ecd673d69aaa912 712c08832f31cd8f752a7be8daf8c2e5794a63d5d4e9ad289db19bcd1bc05d44 Loading...

	bet365-fixed-matches.com/	2.2 kB	2023-03-08	2023-03-12
Pretty URL bet365-fixed-matches.com/ IP 162.213.253.11 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:53:58 Last Seen2023-03-12 18:34:12 Times Seen1 Hash ed17484465f8721d1a59e3293ba113bf a1e9c90b2f45b7f699236a93d3cf490d3d1cc361 bae2a3a7aa7f51edac685fed4144eee611d22cdfe816754f2bb7fa74f341cc72 Loading...

	bet365-fixed-matches.com/wp-content/themes/comicpress/js/menubar.js?ver=6.1.1	337 B	2023-03-07	2023-07-17
Pretty URL bet365-fixed-matches.com/wp-content/themes/comicpress/js/menubar.js?ver=6.1.1 IP 162.213.253.11 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:43:32 Last Seen2023-07-17 00:32:22 Times Seen23 Hash 699cd3673f28a6d2d62fd5bcfc8f648d 61e769d7ffa6f20a59f3958432de10442f79fd4d c3befe366b3cdcc5e3f3296838fb8d4922cf5e879b751d94fa2ca43633e5b422 Loading...

	bet365-fixed-matches.com/	429 B	2023-03-08	2023-03-12
Pretty URL bet365-fixed-matches.com/ IP 162.213.253.11 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:53:58 Last Seen2023-03-12 18:34:12 Times Seen1 Hash 764f6fb8dcef6109a0799f76135b77d0 1b5dad02488a44d069284a104fb47aec0021af81 770eace5e97f4daa363be93239fafc724a2ba185802907a4705a2f641a083626 Loading...

	bet365-fixed-matches.com/	2.4 kB	2023-03-07	2024-05-07
Pretty URL bet365-fixed-matches.com/ IP 162.213.253.11 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:59 Last Seen2024-05-07 22:04:21 Times Seen3819 Hash 49f89aeeb8e861051ed61fc00d636b9b 9077f9d9ebc3b661bb3a81161c6a4e2de2531231 4190f2c4f25f9a34cbbfdb92f91a25359570d773ef7cff97c924e224ad877759 Loading...

	bet365-fixed-matches.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17	6.5 kB	2023-03-07	2024-05-05
Pretty URL bet365-fixed-matches.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17 IP 162.213.253.11 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:29 Last Seen2024-05-05 16:26:24 Times Seen1358 Hash 170687433986a4a559fa4f16b1d7c70e 84349b5fb0fcb057ae1768667f480fd607a1da49 722a90d42ef2bd0ea38f0fdac6b4c0523aa4a027e9ffe889972100746e165582 Loading...

	bet365-fixed-matches.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1	1.2 kB	2023-03-07	2024-05-07
Pretty URL bet365-fixed-matches.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1 IP 162.213.253.11 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:59 Last Seen2024-05-07 22:04:22 Times Seen9308 Hash 51300497928562f8c86c7aaba99237cd e5826832b85c6afc6502b74cbb8ac5394b04c363 6d161e98e47ae150b51211443eef37040fb6269dcf85ad2048548066dca99e6f Loading...

HTTP Transactions (74)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13125
Expires: Tue, 06 Dec 2022 03:00:56 GMT
Date: Mon, 05 Dec 2022 23:22:11 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5406
Cache-Control: max-age=131954
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:11 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 12:01:25 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3499
Expires: Tue, 06 Dec 2022 00:20:30 GMT
Date: Mon, 05 Dec 2022 23:22:11 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 05 Dec 2022 23:18:31 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 220
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: YUKKShyt0qY+BY7IOoOmX9ZlDaYnEaGLKuBTXCQjs8nUzhs2GssXvujU/7IQnEv4tc5FWY/5aCQ=
x-amz-request-id: B33E1AVE380CV53N
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 22:48:41 GMT
age: 2010
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

bet365-fixed-matches.com/

162.213.253.11

301 Moved Permanently

707 B

URL HTTP/1.1
bet365-fixed-matches.com/
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Mon, 05 Dec 2022 23:22:11 GMT
server: LiteSpeed
location: https://bet365-fixed-matches.com/
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 23:22:11 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 05 Dec 2022 23:11:19 GMT
cache-control: public,max-age=3600
age: 652
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5411
Cache-Control: max-age=126891
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:12 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 10:37:03 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
e731d52615f3a9cda813699e92e945e5
90877b38de78f98a6f924527e8bae3c335a868ae
6c7f70fe7b6ef5c8492a0a1b571afecfa5691017be51a1a254f30d43913bd4eb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 23:22:12 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Dec 2022 18:09:00 GMT
Expires: Sat, 10 Dec 2022 18:08:59 GMT
Etag: "90877b38de78f98a6f924527e8bae3c335a868ae"
Cache-Control: max-age=412606,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775085c07decb4f9-OSL

push.services.mozilla.com/

52.89.114.252

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.89.114.252:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: H8VB55BPnYdDFMTuYhKUjw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: S1WYXYG1r9ojGtNOYtM335UtOPM=

bet365-fixed-matches.com/

162.213.253.11

200 OK

23 kB

URL HTTP/2
bet365-fixed-matches.com/
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
23 kB (22919 bytes)
Hash
d47416816c0b3d8ac7f04dc123acdac4
686e9ea801302cf50c89ca1ab004748cbcebe4f9
da648507c560ab0a0a56fd0416743e5808495e8f92a84702281270d257d62dec

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://bet365-fixed-matches.com/wp-json/>; rel="https://api.w.org/"
etag: "28609-1670244034;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 22919
date: Mon, 05 Dec 2022 23:22:12 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-content/themes/comicpress/style.css

162.213.253.11

200 OK

7.8 kB

URL HTTP/2
bet365-fixed-matches.com/wp-content/themes/comicpress/style.css
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
assembler source, ASCII text, with very long lines (327)
Size
7.8 kB (7789 bytes)
Hash
2015600bf4181d9c17b536d1ce88ff08
0012e622e2406ab1b5c35595a8fdc642025b89c2
a224a204f2fd48ded4ee702e26653f6d29d4040fc87905000a5183f92299c342

HTTP Headers

GET /wp-content/themes/comicpress/style.css HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:12 GMT
content-type: text/css
last-modified: Mon, 17 Oct 2022 16:32:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7789
date: Mon, 05 Dec 2022 23:22:12 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

9ja-fixed.com/wp-content/uploads/9jabanner.gif

35.232.16.77

200 OK

4.2 kB

URL HTTP/2
9ja-fixed.com/wp-content/uploads/9jabanner.gif
IP
35.232.16.77:0
ASN
#15169 GOOGLE

File type
RIFF (little-endian) data, Web/P image\012- data
Size
4.2 kB (4228 bytes)
Hash
0bb8b1403a00d1ed0ca01f3a90e4b920
f1a7bac06113d177e776b39d33da11b6450e6dc6
9a1cbeb3730f779c63be240218c5f552ab24e5cf82aea7026bcae4ecdc9eefbb

HTTP Headers

GET /wp-content/uploads/9jabanner.gif HTTP/1.1
Host: 9ja-fixed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 23:22:13 GMT
content-type: image/webp
content-length: 4228
last-modified: Wed, 10 Mar 2021 11:45:46 GMT
etag: "6048b16a-1084"
expires: Tue, 05 Dec 2023 23:22:13 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17366
Expires: Tue, 06 Dec 2022 04:11:39 GMT
Date: Mon, 05 Dec 2022 23:22:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17366
Expires: Tue, 06 Dec 2022 04:11:39 GMT
Date: Mon, 05 Dec 2022 23:22:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17366
Expires: Tue, 06 Dec 2022 04:11:39 GMT
Date: Mon, 05 Dec 2022 23:22:13 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (9987 bytes)
Hash
8055d0db573ab34924db3b60ed788bb2
a4aae05e7a929fc7f652f56748d2a2da9c44ac45
f6a9555f112882d4ac284c6dc26ae0f02f6ccf8ee312615e01ebec8242bade1f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 3d4d7dd0-2be0-46c1-a9c0-aa3cce2e8c81
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSvUHhJIAMFZYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c8-63a6960043564aa762caaabe;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XaKRGgDJdys5Ufgv2QasOrlxuXHRnb8dJWc_tHiXa72QvQ-egpRDsQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:25:37 GMT
age: 3396
etag: "a4aae05e7a929fc7f652f56748d2a2da9c44ac45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11352 bytes)
Hash
7f2c354a00ab51d4a41221b6bf191c10
01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4
7d3c8417e1db0db41ceb8b4bf3f506864392dd1ad29319a06a8a6055f6f2ed12

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11352
x-amzn-requestid: 7c3fc7bb-eb1f-46ec-8e92-b6ffc6261848
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwuF1ToAMFiIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64d1-7c53152a279f00595b9886bd;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:25 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aYf5d6wAJlPSXVwF5uQXUb1g_65z-v6tInk7IF64bBV-w31d3MKeIQ==
via: 1.1 b6d577696b14c86cbfeb5b3459f38c50.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:23 GMT
age: 3590
etag: "01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8469 bytes)
Hash
2f60a6490f38a772dcd50a1132e98e1b
ff254a1df087d2c157d88a6ef04e395dc49efe5e
653e40becd103cd76cc2f194a87e933e8c548d346f87520fefca3b16430fc4ab

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: c17eff92-da62-4f0f-9e75-2741012ec43a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_sqFSjoAMFQ6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-61d61d2f0bb01ecb21b809ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i6QasBBRK9APW19sH0DdOipvUJA3gWj0CAMTzt7ejRCOk_V2psz-Xw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:45:47 GMT
age: 5786
etag: "ff254a1df087d2c157d88a6ef04e395dc49efe5e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.3 kB (5273 bytes)
Hash
49c08cd33e41826af9dd4a8a912e0ddf
bde85bd98858e4b13484a9cc3263b4db7fb5d348
43471e7b4da8e4e58b842d05cb073ef150ff119eaa6890c86162f03a140459cf

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5273
x-amzn-requestid: 5ab71aaf-6757-46dc-86fc-0a866958d22f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSz2EqfIAMFqng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e5-15ae9d330e005f547161b4df;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xcEI729NEfORs3fT_fHi-BkyqA1sHl0dA6fAGd9hYkJNePUlM4vKQg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:05:52 GMT
age: 4581
etag: "bde85bd98858e4b13484a9cc3263b4db7fb5d348"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6920 bytes)
Hash
f4193f05dfd1de8bf795f433d4387243
b76ea6ae9df756f131ec16b01cdc7ab19b2d01be
b56231f3c788519751528b849a442d5c7ed828ea4ce3321fd629ca27440ea6e3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6920
x-amzn-requestid: 05ec2698-a5ee-4046-be77-0036755f2946
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwaEd-IAMF_-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64cf-783b236b79b1e9ba22098cb2;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:23 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GgMHlvU3WIDYMF9fmZAajw_Y3zmPm2zojn7FTqgqtBj7e4qeu8Uokg==
via: 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:05:53 GMT
age: 4580
etag: "b76ea6ae9df756f131ec16b01cdc7ab19b2d01be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (5995 bytes)
Hash
3801236dc22938e1cc18947e90ea5326
5979d7dc3ba0eb61947282a4adeac8208b4148ae
3bd4eab29590ec3c316597abd2be65281cd9a6137add037ad57c093f1fca12e2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5995
x-amzn-requestid: 25b34277-c486-4642-aea7-21e0598babc3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSzOGGjoAMF4kw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e1-6f43ab8e0c1a5260327bce11;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cO5j7BIPh3GSOUqKDYYY2qmG6__Hn2XB9lFhhYT_WpOXya-9TTGtgw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:24 GMT
age: 3589
etag: "5979d7dc3ba0eb61947282a4adeac8208b4148ae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1

162.213.253.11

200 OK

12 kB

URL HTTP/2
bet365-fixed-matches.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (47826)
Size
12 kB (11616 bytes)
Hash
c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:12 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 02:32:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11616
date: Mon, 05 Dec 2022 23:22:12 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-includes/css/classic-themes.min.css?ver=1

162.213.253.11

200 OK

217 B

URL HTTP/2
bet365-fixed-matches.com/wp-includes/css/classic-themes.min.css?ver=1
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text
Size
217 B (217 bytes)
Hash
95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:12 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 22:08:18 GMT
accept-ranges: bytes
content-length: 217
date: Mon, 05 Dec 2022 23:22:12 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

162.213.253.11

200 OK

30 kB

URL HTTP/2
bet365-fixed-matches.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (65447)
Size
30 kB (30324 bytes)
Hash
3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:12 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:08:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 30324
date: Mon, 05 Dec 2022 23:22:12 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

162.213.253.11

200 OK

4.0 kB

URL HTTP/2
bet365-fixed-matches.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (11126)
Size
4.0 kB (3995 bytes)
Hash
7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:12 GMT
content-type: application/javascript
last-modified: Fri, 11 Dec 2020 10:30:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3995
date: Mon, 05 Dec 2022 23:22:12 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-content/themes/comicpress/js/ddsmoothmenu.js?ver=6.1.1

162.213.253.11

200 OK

2.7 kB

URL HTTP/2
bet365-fixed-matches.com/wp-content/themes/comicpress/js/ddsmoothmenu.js?ver=6.1.1
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with CRLF line terminators
Size
2.7 kB (2699 bytes)
Hash
4e3943051db5b0e580e2c789a3205a6d
0d1cda36cdbac930c7673304759a8c7b0d66d02e
d326b4da3e61fcb98fb6f0c7d0c5067655ee335e5b07ea2e79be52fe6c6e6c0b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/comicpress/js/ddsmoothmenu.js?ver=6.1.1 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:12 GMT
content-type: application/javascript
last-modified: Thu, 09 Apr 2020 15:58:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2699
date: Mon, 05 Dec 2022 23:22:12 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-content/themes/comicpress/js/menubar.js?ver=6.1.1

162.213.253.11

200 OK

214 B

URL HTTP/2
bet365-fixed-matches.com/wp-content/themes/comicpress/js/menubar.js?ver=6.1.1
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with CRLF line terminators
Size
214 B (214 bytes)
Hash
3ca155ba6d055b3f68418d1ae1587153
12608155679b6c306249652cdd600fd31ad64b84
ae4e31d5f49a5e7c8a28778ea143e403e1e1a8070257ec9fa8ea030c6258e602

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/comicpress/js/menubar.js?ver=6.1.1 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:12 GMT
content-type: application/javascript
last-modified: Thu, 09 Apr 2020 15:58:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 214
date: Mon, 05 Dec 2022 23:22:12 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

i.imgur.com/7PlBTtp.gif

151.101.244.193

200 OK

18 kB

URL HTTP/2
i.imgur.com/7PlBTtp.gif
IP
151.101.244.193:0
ASN
#54113 FASTLY

File type
GIF image data, version 89a, 400 x 150\012- data
Size
18 kB (17730 bytes)
Hash
807630f6c42a631c8b38bd807bfa3660
70d7b21f548067a44a70d430315e1e3ffe0faf6a
fabaa16ced72f3483b77e7ae3d8bb6b67143c656069857818189f9877f0979cf

HTTP Headers

GET /7PlBTtp.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Fri, 05 Oct 2018 16:35:47 GMT
etag: "807630f6c42a631c8b38bd807bfa3660"
content-type: image/gif
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 05 Dec 2022 23:22:15 GMT
age: 5333463
x-served-by: cache-iad-kiad7000104-IAD, cache-hel1410031-HEL
x-cache: HIT, HIT
x-cache-hits: 1778, 17
x-timer: S1670282536.804017,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 17730
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
efe030ed4c5cbf287e424f237e5f2a6b
7e2e5563c47ca8561ff431ac40b59ebe4d2c6eb8
cedc3ced2f477127a02c5d86cdf556cf79aa4703b9220e8f376c7eff8b287608

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=148111
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:15 GMT
Etag: "638e1cb6-117"
Expires: Wed, 07 Dec 2022 16:30:46 GMT
Last-Modified: Mon, 05 Dec 2022 16:30:46 GMT
Server: nginx
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
741e07448e603fef0c6b23148cb655cb
cac5495bc2eb6cdd42f3efb1e46da2db38fcb6cb
6d049637c3276cd46ff370908ea224a76ab89fe47f7223bed89c0a11cb91964e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=142015
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:15 GMT
Etag: "638e04e6-118"
Expires: Wed, 07 Dec 2022 14:49:10 GMT
Last-Modified: Mon, 05 Dec 2022 14:49:10 GMT
Server: nginx
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
07230661d31f6450f5336185246520d4
73dca1fc17fa70ddf0addf93a49339a4a97bbb7f
2dbedec96d08a6e145f528d4c26edaa31b90ed0370a6b2623ca5cf23bfc238cd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=171895
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:15 GMT
Etag: "638e799e-117"
Expires: Wed, 07 Dec 2022 23:07:10 GMT
Last-Modified: Mon, 05 Dec 2022 23:07:10 GMT
Server: nginx
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
c5a4e3f58b3c3314c7569669ad2e0768
89b013fc460057eae48bb0b17f7be1dff81b4fd2
8e56153cf09a349a3aac946baff48829fa9fc22ea5f79e9221c8bbf508d95b3e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=86564
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:15 GMT
Etag: "638d2c4b-118"
Expires: Tue, 06 Dec 2022 23:24:59 GMT
Last-Modified: Sun, 04 Dec 2022 23:24:59 GMT
Server: nginx
Content-Length: 280

winfixedbet.com/wp-content/uploads/2022/02/winfixedbet.gif

172.67.143.209

200 OK

12 kB

URL HTTP/2
winfixedbet.com/wp-content/uploads/2022/02/winfixedbet.gif
IP
172.67.143.209:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 400 x 150\012- data
Size
12 kB (11641 bytes)
Hash
d64c27a565c0ac10fc96297bd6c3527c
9b5ddd85c0dc535760339d1fae772ca487d56ed2
56091a6032ddc43a4c3473a063b70d34b87d1e9b1bc70e97323a6f52304baca8

HTTP Headers

GET /wp-content/uploads/2022/02/winfixedbet.gif HTTP/1.1
Host: winfixedbet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 05 Dec 2022 23:22:16 GMT
content-type: image/gif
content-length: 11641
last-modified: Sun, 06 Feb 2022 23:35:17 GMT
etag: "62005b35-2d79"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 55364
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wXhee3YNgA3hZObBQgMWRbYRQcvGXKPST59OTbbCCq335PTAxP9iV4Hq4tRBVZnoIvgT4lhzuizVS4jNjUmQgya8Jj2gthdZLsNEJBSg5NJi1qhGV9NnLZqvRTwts%2BaL0MA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775085da2a72b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

e1.o.lencr.org/

95.101.11.115

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
5ad229b010486343f90fccafa1517502
545e391a8ea5277a385e5b4043b8125cabd543ab
5f9ecdacf76c83c5775e2074b841f7df4dc2940924cf028ec50e94f533d54a1b

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "5F9ECDACF76C83C5775E2074B841F7DF4DC2940924CF028EC50E94F533D54A1B"
Last-Modified: Sun, 04 Dec 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13520
Expires: Tue, 06 Dec 2022 03:07:36 GMT
Date: Mon, 05 Dec 2022 23:22:16 GMT
Connection: keep-alive

solo-predictions.com/wp-content/uploads/2022/01/solo-predictions.gif

188.114.96.1

200 OK

6.3 kB

URL HTTP/2
solo-predictions.com/wp-content/uploads/2022/01/solo-predictions.gif
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 400 x 150\012- data
Size
6.3 kB (6256 bytes)
Hash
970a8f0b8d77119989fdad8f016d3d5e
a3744b40f8a91a46b811981e96879dc804e570d9
5f839c29ffeb3f8bf863dfc0d23ce06d66824a5240345e5eecf0bfa1d3def861

HTTP Headers

GET /wp-content/uploads/2022/01/solo-predictions.gif HTTP/1.1
Host: solo-predictions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 05 Dec 2022 23:22:16 GMT
content-type: image/gif
content-length: 6256
last-modified: Sun, 16 Jan 2022 23:05:36 GMT
etag: "61e4a4c0-1870"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=itqf5EWcv7a83Zn5JJtxDAnMbzMFN4qd3Lh0JLi7q72FnQ9Nm2zRV8fmd4QYiCRAVd0%2B2IjFRs8ma%2BDk1n2Kc2NPqf1lSF1Ch%2BAS5TZmG9pGsuB%2Fr75o0%2FYQrsr%2FTp6CQWEUyNmcGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775085d9fe88b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-content/uploads/2022/09/Assia-Best-Rigged-Solo-Soccer-Predictions-1X2.png

162.213.253.11

200 OK

28 kB

URL HTTP/2
bet365-fixed-matches.com/wp-content/uploads/2022/09/Assia-Best-Rigged-Solo-Soccer-Predictions-1X2.png
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
PNG image data, 400 x 631, 8-bit/color RGB, non-interlaced\012- data
Size
28 kB (28386 bytes)
Hash
cb092493c6999c2e438365b88d6089bd
49a86eb3f2bfb52a7661e0adf97790065e9ef082
ada9222e03ed8a215d025003b700d6079edd38bd416c35bd5b2d574de30c96b7

HTTP Headers

GET /wp-content/uploads/2022/09/Assia-Best-Rigged-Solo-Soccer-Predictions-1X2.png HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:12 GMT
content-type: image/png
last-modified: Sun, 04 Sep 2022 11:31:50 GMT
accept-ranges: bytes
content-length: 28386
date: Mon, 05 Dec 2022 23:22:12 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

e1.o.lencr.org/

95.101.11.115

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
d7c5ca2efdf3ccc2357bd7bd64417143
a677fcef176639683a8d3a816adb333cbb305abe
e5ca23dc8fcb815bca9b250f2a040a3fd195933aa1a1d3f21fe6969dd98bf967

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "E5CA23DC8FCB815BCA9B250F2A040A3FD195933AA1A1D3F21FE6969DD98BF967"
Last-Modified: Sat, 03 Dec 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3760
Expires: Tue, 06 Dec 2022 00:24:56 GMT
Date: Mon, 05 Dec 2022 23:22:16 GMT
Connection: keep-alive

iqfixed.com/wp-content/uploads/2021/12/IQFIXED.gif

104.21.73.59

200 OK

18 kB

URL HTTP/2
iqfixed.com/wp-content/uploads/2021/12/IQFIXED.gif
IP
104.21.73.59:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 200 x 70\012- data
Size
18 kB (17605 bytes)
Hash
500522e317eb2b6bd6d974338b35c8c6
9ffdb9e4c7eba12aeeb3d3afd65dfac9f259e050
83886179475b9b5484d2dd92aada60f6827b13720d21324a376e347aa824b4e2

HTTP Headers

GET /wp-content/uploads/2021/12/IQFIXED.gif HTTP/1.1
Host: iqfixed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 05 Dec 2022 23:22:16 GMT
content-type: image/gif
content-length: 17605
last-modified: Thu, 02 Dec 2021 16:19:52 GMT
etag: "61a8f228-44c5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 705152
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rOOEuvuWfso%2BPZSCrgWJneOFql%2B%2BxUgO0g7U6HwieZI6ubddNz%2B0%2B1oqcoTo%2BH%2BlCf0Sij2n4fTtZxPhFkWbgoudnxudYLdZqpqpPNZ2C1q0Bwj2Q37mFTogAQ0RVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775085daa93eb4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

h2hfacts.com/wp-content/uploads/2021/08/logo.png

104.21.2.241

200 OK

27 kB

URL HTTP/2
h2hfacts.com/wp-content/uploads/2021/08/logo.png
IP
104.21.2.241:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 300 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
27 kB (27033 bytes)
Hash
ffbdc39c57ccce6d63bc85278b96236f
1dbe79e3f134c46c04bfec46b64d2ab4ba35c4c4
ec8c42dc34b58a62e84edd0376d247ea993b584fa41cf9889549e44773ded694

HTTP Headers

GET /wp-content/uploads/2021/08/logo.png HTTP/1.1
Host: h2hfacts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 05 Dec 2022 23:22:16 GMT
content-type: image/png
content-length: 27033
last-modified: Wed, 25 Aug 2021 13:45:35 GMT
etag: "6126497f-6999"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pQglhbkc%2F0x%2BHA8U0Rs9zknzAL5PN1UgdnTuAxeKXcIZEhMnTd5%2BgO6%2BY3msWATwS4pFlSRjhFqm1au0sfaBLky0eGPOPnZFVXPi%2BKGx9wXz4260uM4jrQ7nID%2Fngwg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775085d9fea9b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

propick1x2.com/wp-content/uploads/2016/10/betadvice.gif

188.114.96.1

200 OK

39 kB

URL HTTP/2
propick1x2.com/wp-content/uploads/2016/10/betadvice.gif
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 200 x 70\012- data
Size
39 kB (38924 bytes)
Hash
fabf820c0ea79938cad2cb3beb401a42
7f2cc4b338fbbd0a768d3b6fc86c6cbb93d6ca6c
05829114bd8ead7abe4ae56d08c3a19a25ce4de9d98b681c80e431783bb07019

HTTP Headers

GET /wp-content/uploads/2016/10/betadvice.gif HTTP/1.1
Host: propick1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 05 Dec 2022 23:22:16 GMT
content-type: image/gif
content-length: 38924
last-modified: Tue, 04 Jan 2022 18:21:59 GMT
etag: "61d49047-980c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fig4fLmZXpYD9lGviJ7OQ1jLdP%2B%2F3RxN%2B6WEHic2AobL%2BKLmRs6DAFxYSanm%2F%2BdIFpfu5qoSaHTvTGBnQamzFeIatMFRpd%2Bx%2FiYjALYb5YCu5P5WUXT4N638eTQ4cVnL8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775085da2eabb506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

e1.o.lencr.org/

95.101.11.115

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
d7c5ca2efdf3ccc2357bd7bd64417143
a677fcef176639683a8d3a816adb333cbb305abe
e5ca23dc8fcb815bca9b250f2a040a3fd195933aa1a1d3f21fe6969dd98bf967

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "E5CA23DC8FCB815BCA9B250F2A040A3FD195933AA1A1D3F21FE6969DD98BF967"
Last-Modified: Sat, 03 Dec 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3760
Expires: Tue, 06 Dec 2022 00:24:56 GMT
Date: Mon, 05 Dec 2022 23:22:16 GMT
Connection: keep-alive

fixedbet1x2.com/wp-content/uploads/2022/01/soccerfixed1x2.gif

104.21.92.35

200 OK

49 kB

URL HTTP/2
fixedbet1x2.com/wp-content/uploads/2022/01/soccerfixed1x2.gif
IP
104.21.92.35:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 400 x 150\012- data
Size
49 kB (48833 bytes)
Hash
a892a82ad7e9897265b79ed7e27b22a6
3967a7ee1137c190263a0b2abcc6a74f8b9ac87d
9da8813cdf0056ee59c3b5a0ed81e5c5569b4a3ab65bb159a2c31e55b75c8322

HTTP Headers

GET /wp-content/uploads/2022/01/soccerfixed1x2.gif HTTP/1.1
Host: fixedbet1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 05 Dec 2022 23:22:16 GMT
content-type: image/gif
content-length: 48833
last-modified: Mon, 31 Jan 2022 09:00:52 GMT
etag: "61f7a544-bec1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hM9cku%2FfCekYhf1Y09pHsAzjUMgn9ZtwJcfhhsMmD0Hs8d6owhMsFNh9wdeZSguyqamGW6BGzPxQc%2Fr%2BMJcbbKyEJVcnY%2FPfAf2YOkv0gfO7xnR8T%2FqxT%2FL%2BgETw9H%2FCo0Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775085da5c07b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

tipster1x2.com/wp-content/uploads/2021/02/output_maqW2v-1.gif

94.156.46.193

200 OK

51 kB

URL HTTP/2
tipster1x2.com/wp-content/uploads/2021/02/output_maqW2v-1.gif
IP
94.156.46.193:0
ASN
#47748 Daticum AD

File type
GIF image data, version 89a, 200 x 65\012- data
Size
51 kB (50678 bytes)
Hash
f865ae856994e0a8e5de70e6b8b61f05
3d96e057ac3a40f0645c26fa426fe09a5c62f1f5
b2892114fe40ce13b64f0e3d595f405b735322c1c0ec389ff43ed4b0ed9366b5

HTTP Headers

GET /wp-content/uploads/2021/02/output_maqW2v-1.gif HTTP/1.1
Host: tipster1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:16 GMT
content-type: image/gif
last-modified: Tue, 09 Feb 2021 16:06:21 GMT
accept-ranges: bytes
content-length: 50678
date: Mon, 05 Dec 2022 23:22:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
07230661d31f6450f5336185246520d4
73dca1fc17fa70ddf0addf93a49339a4a97bbb7f
2dbedec96d08a6e145f528d4c26edaa31b90ed0370a6b2623ca5cf23bfc238cd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=171894
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:16 GMT
Etag: "638e799e-117"
Expires: Wed, 07 Dec 2022 23:07:10 GMT
Last-Modified: Mon, 05 Dec 2022 23:07:10 GMT
Server: nginx
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
efe030ed4c5cbf287e424f237e5f2a6b
7e2e5563c47ca8561ff431ac40b59ebe4d2c6eb8
cedc3ced2f477127a02c5d86cdf556cf79aa4703b9220e8f376c7eff8b287608

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=148110
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:16 GMT
Etag: "638e1cb6-117"
Expires: Wed, 07 Dec 2022 16:30:46 GMT
Last-Modified: Mon, 05 Dec 2022 16:30:46 GMT
Server: nginx
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
741e07448e603fef0c6b23148cb655cb
cac5495bc2eb6cdd42f3efb1e46da2db38fcb6cb
6d049637c3276cd46ff370908ea224a76ab89fe47f7223bed89c0a11cb91964e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=142014
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:16 GMT
Etag: "638e04e6-118"
Expires: Wed, 07 Dec 2022 14:49:10 GMT
Last-Modified: Mon, 05 Dec 2022 14:49:10 GMT
Server: nginx
Content-Length: 280

e1.o.lencr.org/

95.101.11.115

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
5ad229b010486343f90fccafa1517502
545e391a8ea5277a385e5b4043b8125cabd543ab
5f9ecdacf76c83c5775e2074b841f7df4dc2940924cf028ec50e94f533d54a1b

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "5F9ECDACF76C83C5775E2074B841F7DF4DC2940924CF028EC50E94F533D54A1B"
Last-Modified: Sun, 04 Dec 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13520
Expires: Tue, 06 Dec 2022 03:07:36 GMT
Date: Mon, 05 Dec 2022 23:22:16 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
c5a4e3f58b3c3314c7569669ad2e0768
89b013fc460057eae48bb0b17f7be1dff81b4fd2
8e56153cf09a349a3aac946baff48829fa9fc22ea5f79e9221c8bbf508d95b3e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:16 GMT
Etag: "638bdacc-118"
Server: ECS (amb/6BBE)
Content-Length: 280

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
74233ad9c28f2c00fdaa6b35ae218a34
bc25df06f512251c97ccc1eb901ae703c806a01f
4e9afcf08515a8d3a29bc3a9e763bc0efa6fd1d6d5091a764b05e19f47383cfb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 23:22:16 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 03 Dec 2022 14:16:36 GMT
Expires: Sat, 10 Dec 2022 14:16:35 GMT
Etag: "bc25df06f512251c97ccc1eb901ae703c806a01f"
Cache-Control: max-age=398658,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775085db0ec5b4f9-OSL

pawabet-fixed.com/wp-content/uploads/pawabanner.gif

35.232.16.77

200 OK

4.8 kB

URL HTTP/2
pawabet-fixed.com/wp-content/uploads/pawabanner.gif
IP
35.232.16.77:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 500 x 220\012- data
Size
4.8 kB (4839 bytes)
Hash
b9aae93f6409baa739a0b7fe159987c9
83d922db379357b109c0672b5f118a9f42cdc917
3db358e979a901fe07eac3631b9b261d736afba7ebf9d309bd68c06fea264cde

HTTP Headers

GET /wp-content/uploads/pawabanner.gif HTTP/1.1
Host: pawabet-fixed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 23:22:16 GMT
content-type: image/gif
content-length: 4839
last-modified: Mon, 14 Dec 2020 14:40:26 GMT
etag: "5fd7795a-12e7"
expires: Tue, 05 Dec 2023 23:22:16 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
3458da5ccc6a362ff35985b85eb55f06
c4b850a26045a7e92eecc59709d0e8865eebbdb7
47976114084e7a14c61d6f74a694949e3453dd13d48eb83547ae991f21f14811

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 23:22:16 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 05:25:56 GMT
Expires: Sun, 11 Dec 2022 05:25:55 GMT
Etag: "c4b850a26045a7e92eecc59709d0e8865eebbdb7"
Cache-Control: max-age=453218,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775085dbb867b50b-OSL

ocsp.comodoca.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.comodoca.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
b4441065f13c0ea804e76439003516bd
210390b60db9235b4495cb5a2570d085c80113de
8b7b42101ac6401e19fa0ccc4a8f4819ea0f8d0befb471a42ba3148284c5eac8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 23:22:16 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 03:05:06 GMT
Expires: Mon, 12 Dec 2022 03:05:05 GMT
Etag: "210390b60db9235b4495cb5a2570d085c80113de"
Cache-Control: max-age=531168,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775085dc6ea9b521-OSL

bet365-fixed-matches.com/wp-content/themes/comicpress/js/instant.js

162.213.253.11

200 OK

5.3 kB

URL HTTP/2
bet365-fixed-matches.com/wp-content/themes/comicpress/js/instant.js
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (1100), with CRLF line terminators
Size
5.3 kB (5292 bytes)
Hash
22cc55193fa090c1b16720252186480c
fcac676e0a31c773e0eb58c86459b076f832739c
0a66b690bd6dd28001db7497ec1a14fa807eaf0a7cba64bdade39c9f268767d4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/comicpress/js/instant.js HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: application/javascript
last-modified: Thu, 09 Apr 2020 15:58:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5292
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17

162.213.253.11

200 OK

2.4 kB

URL HTTP/2
bet365-fixed-matches.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (11256), with no line terminators
Size
2.4 kB (2394 bytes)
Hash
ce94f62588d05264ac0148712111cb11
518bcd922f54169aeb199c0ccbc5877165ac218e
84ab658a69c39f424be0b27f61d612447d01606fce33beb962cbea53627d8c81

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: text/css
last-modified: Fri, 11 Dec 2020 10:30:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2394
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1

162.213.253.11

200 OK

982 B

URL HTTP/2
bet365-fixed-matches.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (4186), with no line terminators
Size
982 B (982 bytes)
Hash
24f4d7f425e792ab35adaab50816e54a
9e25bf79b674ddb7ba09ad7f118c50ec473c02c8
1c78bfb4d523785a4ebd37bb1f79f214f9bdb16673f7cc50805f7f1a26ad7f83

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: text/css
last-modified: Sat, 08 Jun 2019 00:45:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 982
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-content/themes/comicpress/js/scroll.js

162.213.253.11

200 OK

278 B

URL HTTP/2
bet365-fixed-matches.com/wp-content/themes/comicpress/js/scroll.js
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with CRLF line terminators
Size
278 B (278 bytes)
Hash
1fc66a4e44887c62b71df5cd2bb87d57
b57c8371db096a515143eb2d1cfeb41edfe10b91
1f719cbe4f2420e55302b8a8f20305c52c959f6ca589258fc24193d7372519de

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/comicpress/js/scroll.js HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: application/javascript
last-modified: Thu, 09 Apr 2020 15:58:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 278
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-content/themes/comicpress/js/cvi_text_lib.js

162.213.253.11

200 OK

5.9 kB

URL HTTP/2
bet365-fixed-matches.com/wp-content/themes/comicpress/js/cvi_text_lib.js
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
Unicode text, UTF-8 text, with very long lines (398), with CRLF line terminators
Size
5.9 kB (5861 bytes)
Hash
bd3c2c4e565eddf1ca8339db80bcb332
5a285ca38ca5073e904346a9fdea4e6cd647fb24
e18fc3e4634f4c1dbac972af4b6ec6a0bff34af3741427517beee9d9b5f5c29b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/comicpress/js/cvi_text_lib.js HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: application/javascript
last-modified: Thu, 09 Apr 2020 15:58:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5861
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

arsenal-1x2.com/wp-content/uploads/2019/12/output_pM3zPl-1.gif

162.213.253.11

200 OK

5.9 kB

URL HTTP/2
arsenal-1x2.com/wp-content/uploads/2019/12/output_pM3zPl-1.gif
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
GIF image data, version 89a, 200 x 60\012- data
Size
5.9 kB (5869 bytes)
Hash
2fa4d4aac05880579a5e90324cecefcf
e0e76b2e31f2c1821594a69c05e91632aee09010
5354393bf7513cc968ca21cb58bdd3f1aabbd3974f4224dc1b2e5ffd6943a62f

HTTP Headers

GET /wp-content/uploads/2019/12/output_pM3zPl-1.gif HTTP/1.1
Host: arsenal-1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:16 GMT
content-type: image/gif
last-modified: Fri, 06 Dec 2019 13:40:42 GMT
accept-ranges: bytes
content-length: 5869
date: Mon, 05 Dec 2022 23:22:16 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

victor-prediction.com/wp-content/uploads/2020/10/victorpredictzbanner.gif

35.209.0.180

200 OK

80 kB

URL HTTP/2
victor-prediction.com/wp-content/uploads/2020/10/victorpredictzbanner.gif
IP
35.209.0.180:0
ASN
#15169 GOOGLE

File type
RIFF (little-endian) data, Web/P image\012- data
Size
80 kB (79828 bytes)
Hash
1602d5521e56f2d53aae2a07e0948fa9
cf075f151de1f7119a711da911b47ab7a68e9393
34e1d4dbb7649cdc4461980ca67083175f267314d58ef599aab412504f88d296

HTTP Headers

GET /wp-content/uploads/2020/10/victorpredictzbanner.gif HTTP/1.1
Host: victor-prediction.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 23:22:16 GMT
content-type: image/webp
content-length: 79828
last-modified: Wed, 10 Mar 2021 10:58:38 GMT
etag: "6048a65e-137d4"
expires: Tue, 05 Dec 2023 23:22:16 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2

www.best-bet.asia/images/front/logo.jpg

91.215.216.44

200 OK

18 kB

URL HTTP/2
www.best-bet.asia/images/front/logo.jpg
IP
91.215.216.44:0
ASN
#49699 SuperHosting.BG Ltd.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 546x211, components 3\012- data
Size
18 kB (17764 bytes)
Hash
cb03d5746b48b19236130bdf28a9d5f6
1ce80863307150d51c238c5daddc5fb858609cb9
ff109c9a1d27f5abe82d64a3f34d356db6f57cb24ff03c562258a3e7c01ad9e6

HTTP Headers

GET /images/front/logo.jpg HTTP/1.1
Host: www.best-bet.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 29 Jan 2015 21:55:23 GMT
etag: "12c104ad-4564-50dd18b7b68c0"
accept-ranges: bytes
content-length: 17764
content-type: image/jpeg
date: Mon, 05 Dec 2022 23:22:20 GMT
server: Apache
X-Firefox-Spdy: h2

haaland-1x2.com/wp-content/uploads/2022/09/Untitled-2.gif

162.213.253.11

200 OK

18 kB

URL HTTP/2
haaland-1x2.com/wp-content/uploads/2022/09/Untitled-2.gif
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
GIF image data, version 89a, 250 x 80\012- data
Size
18 kB (17709 bytes)
Hash
bd0999fb931390750d1fc6e68c041bd6
06631f4bbc7e8d38e423f4518a911eef50ae57a8
f3b6b071574e9afedf743f298f7ac31b118562298df0d5159ca7b238b8a69330

HTTP Headers

GET /wp-content/uploads/2022/09/Untitled-2.gif HTTP/1.1
Host: haaland-1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:16 GMT
content-type: image/gif
last-modified: Tue, 27 Sep 2022 15:31:32 GMT
accept-ranges: bytes
content-length: 17709
date: Mon, 05 Dec 2022 23:22:16 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1

162.213.253.11

200 OK

479 B

URL HTTP/2
bet365-fixed-matches.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (1191), with no line terminators
Size
479 B (479 bytes)
Hash
62b3593ce258f7488f936d31b1ab1b6e
34c14a9bf90463e4456add8d8d039453b8bb8b8e
be4b9efdf77f14940f6b8aa22e7287411cf0377f99009d49276b5cfa47c4f3ad

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 10:55:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 479
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1

162.213.253.11

200 OK

392 B

URL HTTP/2
bet365-fixed-matches.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
HTML document, ASCII text, with very long lines (906), with no line terminators
Size
392 B (392 bytes)
Hash
200d0ec78a54a35bb97450e75bddfe52
25a0c90e7c2a7f49b4d5abf3165eb2d03849c2cb
9555fae27002a4036ca476b62143a67552e3870a1ff46c5869611b5edbe1deac

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: application/javascript
last-modified: Thu, 04 Feb 2021 02:32:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 392
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17

162.213.253.11

200 OK

2.1 kB

URL HTTP/2
bet365-fixed-matches.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (6194)
Size
2.1 kB (2071 bytes)
Hash
81ab8688d9461f04792e86c9b8612dc8
27bd154ac89dc4a472c6f815189324202c1ccc45
34eb3b197e6cc1dadd018bb26e8e64c517e061f6fe50aa8337e6239961d4beac

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: application/javascript
last-modified: Fri, 11 Dec 2020 10:30:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2071
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17

162.213.253.11

200 OK

36 kB

URL HTTP/2
bet365-fixed-matches.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (65266)
Size
36 kB (36433 bytes)
Hash
eabd3755fb73f0e4ef1ac6e474373dd8
cd92121ebac48f10a27821172202bb1d06267663
37f62084aa872e3b695e87f549c236fda5828bc68036875a771768cd90bf2436

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:08:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 36433
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1

162.213.253.11

200 OK

4.6 kB

URL HTTP/2
bet365-fixed-matches.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
ASCII text, with very long lines (15660)
Size
4.6 kB (4619 bytes)
Hash
0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 10:55:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4619
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
408b9ba72dc83c47c6821c825897d586
39c533b3ecadd39dcc4be7e5d6b1a5fece62de8b
3b1904ae01a75c6c530b0d4e952f53b823b8ebc3bd4eaf62794dac74999d6b23

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3B1904AE01A75C6C530B0D4E952F53B823B8EBC3BD4EAF62794DAC74999D6B23"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2407
Expires: Tue, 06 Dec 2022 00:02:25 GMT
Date: Mon, 05 Dec 2022 23:22:18 GMT
Connection: keep-alive

s10.histats.com/js15_as.js

46.105.201.240

200 OK

4.4 kB

URL HTTP/2
s10.histats.com/js15_as.js
IP
46.105.201.240:0
ASN
#16276 OVH SAS

File type
HTML document, ASCII text, with very long lines (11440), with no line terminators
Size
4.4 kB (4364 bytes)
Hash
ed192092c129db6123a3397855f42619
067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e
998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1

HTTP Headers

GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 05 Dec 2022 23:18:34 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 361071567
content-type: application/javascript; charset=UTF-8
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-content/themes/comicpress/images/pushpin-small.png

162.213.253.11

200 OK

752 B

URL HTTP/2
bet365-fixed-matches.com/wp-content/themes/comicpress/images/pushpin-small.png
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
752 B (752 bytes)
Hash
54991b0478ebd9cd8cff75022398f995
4f8bcb4ec7edf59c25325a9afd2557d0a9d114b2
1a2a2b01af3aca9e2a3f76b7a54eabaf2a6e595882e5127e912bedfbb71421a6

HTTP Headers

GET /wp-content/themes/comicpress/images/pushpin-small.png HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/wp-content/themes/comicpress/style.css
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:15 GMT
content-type: image/png
last-modified: Thu, 09 Apr 2020 15:58:41 GMT
accept-ranges: bytes
content-length: 752
date: Mon, 05 Dec 2022 23:22:15 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

s4.histats.com/stats/4392224.php?4392224&@f16&@g1&@h1&@i1&@j1670282535941&@k0&@l1&@mBet365%20Fixed%20Matches%2C%20Buy%20Rigged%20Fixed%20Games%20and%20Soccer%20Solo%20Predictions%2C%20Betting%20Tips%201X2%20-%20Sure%20Fixed%20Matches%2C%20Bet365%20Gamble%20Predictions%2C%20Sell%20Rigged%20Fixed%20Games%2C%20Soccer%20Betting%20Tips%2C%20Solo%20Predictions%201X2&@n0&@o1000&@q0&@r0&@s202&@ten-US&@u1280&@b1:61105382&@b3:1670282536&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fbet365-fixed-matches.com%2F&@w

149.56.240.127

200 OK

103 B

URL HTTP/1.1
s4.histats.com/stats/4392224.php?4392224&@f16&@g1&@h1&@i1&@j1670282535941&@k0&@l1&@mBet365%20Fixed%20Matches%2C%20Buy%20Rigged%20Fixed%20Games%20and%20Soccer%20Solo%20Predictions%2C%20Betting%20Tips%201X2%20-%20Sure%20Fixed%20Matches%2C%20Bet365%20Gamble%20Predictions%2C%20Sell%20Rigged%20Fixed%20Games%2C%20Soccer%20Betting%20Tips%2C%20Solo%20Predictions%201X2&@n0&@o1000&@q0&@r0&@s202&@ten-US&@u1280&@b1:61105382&@b3:1670282536&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fbet365-fixed-matches.com%2F&@w
IP
149.56.240.127:0
ASN
#16276 OVH SAS

File type
ASCII text, with no line terminators
Size
103 B (103 bytes)
Hash
9135558d711e338c54650e4b82014449
3796a9056e69fdf1c5ef1ec20ecd673d69aaa912
712c08832f31cd8f752a7be8daf8c2e5794a63d5d4e9ad289db19bcd1bc05d44

HTTP Headers

GET /stats/4392224.php?4392224&@f16&@g1&@h1&@i1&@j1670282535941&@k0&@l1&@mBet365%20Fixed%20Matches%2C%20Buy%20Rigged%20Fixed%20Games%20and%20Soccer%20Solo%20Predictions%2C%20Betting%20Tips%201X2%20-%20Sure%20Fixed%20Matches%2C%20Bet365%20Gamble%20Predictions%2C%20Sell%20Rigged%20Fixed%20Games%2C%20Soccer%20Betting%20Tips%2C%20Solo%20Predictions%201X2&@n0&@o1000&@q0&@r0&@s202&@ten-US&@u1280&@b1:61105382&@b3:1670282536&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fbet365-fixed-matches.com%2F&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 23:22:19 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 103
Connection: close

s10.histats.com/counters/cc_202.js

46.105.201.240

200 OK

5.9 kB

URL HTTP/2
s10.histats.com/counters/cc_202.js
IP
46.105.201.240:0
ASN
#16276 OVH SAS

File type
HTML document, ASCII text, with very long lines (15245), with no line terminators
Size
5.9 kB (5864 bytes)
Hash
aa3bbd5f4a5085559292a2bcbbce009b
c09328c61211b16957496e5f31c291c8072f0d36
27031676a2e92c23862107a2880050cf3f09e9b66b64a4c4625f950eca43d5be

HTTP Headers

GET /counters/cc_202.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 05 Dec 2022 23:12:34 GMT
etag: "676121722"
last-modified: Thu, 16 Apr 2020 10:45:13 GMT
x-request-id: 394396025
content-type: text/javascript
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 5864
X-Firefox-Spdy: h2

bet365-fixed-matches.com/wp-content/uploads/2020/04/cropped-bet365-fixed-matches.png

162.213.253.11

200 OK

0 B

URL HTTP/2
bet365-fixed-matches.com/wp-content/uploads/2020/04/cropped-bet365-fixed-matches.png
IP
162.213.253.11:0
ASN
#22612 NAMECHEAP-NET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2020/04/cropped-bet365-fixed-matches.png HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:15 GMT
content-type: image/png
last-modified: Thu, 09 Apr 2020 16:27:59 GMT
accept-ranges: bytes
content-length: 889474
date: Mon, 05 Dec 2022 23:22:15 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations