r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13125
Expires: Tue, 06 Dec 2022 03:00:56 GMT
Date: Mon, 05 Dec 2022 23:22:11 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5406
Cache-Control: max-age=131954
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:11 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 12:01:25 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3499
Expires: Tue, 06 Dec 2022 00:20:30 GMT
Date: Mon, 05 Dec 2022 23:22:11 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 05 Dec 2022 23:18:31 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 220
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: YUKKShyt0qY+BY7IOoOmX9ZlDaYnEaGLKuBTXCQjs8nUzhs2GssXvujU/7IQnEv4tc5FWY/5aCQ=
x-amz-request-id: B33E1AVE380CV53N
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 22:48:41 GMT
age: 2010
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
bet365-fixed-matches.com/
162.213.253.11301 Moved Permanently 707 B URL HTTP/1.1 bet365-fixed-matches.com/
IP 162.213.253.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Mon, 05 Dec 2022 23:22:11 GMT
server: LiteSpeed
location: https://bet365-fixed-matches.com/
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 23:22:11 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 05 Dec 2022 23:11:19 GMT
cache-control: public,max-age=3600
age: 652
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5411
Cache-Control: max-age=126891
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:12 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 10:37:03 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash e731d52615f3a9cda813699e92e945e5
90877b38de78f98a6f924527e8bae3c335a868ae
6c7f70fe7b6ef5c8492a0a1b571afecfa5691017be51a1a254f30d43913bd4eb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 23:22:12 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 03 Dec 2022 18:09:00 GMT
Expires: Sat, 10 Dec 2022 18:08:59 GMT
Etag: "90877b38de78f98a6f924527e8bae3c335a868ae"
Cache-Control: max-age=412606,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775085c07decb4f9-OSL
push.services.mozilla.com/
52.89.114.252101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.114.252:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: H8VB55BPnYdDFMTuYhKUjw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: S1WYXYG1r9ojGtNOYtM335UtOPM=
bet365-fixed-matches.com/
162.213.253.11200 OK 23 kB URL HTTP/2 bet365-fixed-matches.com/
IP 162.213.253.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash d47416816c0b3d8ac7f04dc123acdac4
686e9ea801302cf50c89ca1ab004748cbcebe4f9
da648507c560ab0a0a56fd0416743e5808495e8f92a84702281270d257d62dec
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://bet365-fixed-matches.com/wp-json/>; rel="https://api.w.org/"
etag: "28609-1670244034;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 22919
date: Mon, 05 Dec 2022 23:22:12 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-content/themes/comicpress/style.css
162.213.253.11200 OK 7.8 kB URL HTTP/2 bet365-fixed-matches.com/wp-content/themes/comicpress/style.css
IP 162.213.253.11:0
File type assembler source, ASCII text, with very long lines (327)
Hash 2015600bf4181d9c17b536d1ce88ff08
0012e622e2406ab1b5c35595a8fdc642025b89c2
a224a204f2fd48ded4ee702e26653f6d29d4040fc87905000a5183f92299c342
GET /wp-content/themes/comicpress/style.css HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:12 GMT
content-type: text/css
last-modified: Mon, 17 Oct 2022 16:32:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7789
date: Mon, 05 Dec 2022 23:22:12 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
9ja-fixed.com/wp-content/uploads/9jabanner.gif
35.232.16.77200 OK 4.2 kB URL HTTP/2 9ja-fixed.com/wp-content/uploads/9jabanner.gif
IP 35.232.16.77:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0bb8b1403a00d1ed0ca01f3a90e4b920
f1a7bac06113d177e776b39d33da11b6450e6dc6
9a1cbeb3730f779c63be240218c5f552ab24e5cf82aea7026bcae4ecdc9eefbb
GET /wp-content/uploads/9jabanner.gif HTTP/1.1
Host: 9ja-fixed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 23:22:13 GMT
content-type: image/webp
content-length: 4228
last-modified: Wed, 10 Mar 2021 11:45:46 GMT
etag: "6048b16a-1084"
expires: Tue, 05 Dec 2023 23:22:13 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17366
Expires: Tue, 06 Dec 2022 04:11:39 GMT
Date: Mon, 05 Dec 2022 23:22:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17366
Expires: Tue, 06 Dec 2022 04:11:39 GMT
Date: Mon, 05 Dec 2022 23:22:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17366
Expires: Tue, 06 Dec 2022 04:11:39 GMT
Date: Mon, 05 Dec 2022 23:22:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8055d0db573ab34924db3b60ed788bb2
a4aae05e7a929fc7f652f56748d2a2da9c44ac45
f6a9555f112882d4ac284c6dc26ae0f02f6ccf8ee312615e01ebec8242bade1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d62ac4e-2ac8-4e49-a61b-a48cff80ffd2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 3d4d7dd0-2be0-46c1-a9c0-aa3cce2e8c81
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSvUHhJIAMFZYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c8-63a6960043564aa762caaabe;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XaKRGgDJdys5Ufgv2QasOrlxuXHRnb8dJWc_tHiXa72QvQ-egpRDsQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:25:37 GMT
age: 3396
etag: "a4aae05e7a929fc7f652f56748d2a2da9c44ac45"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7f2c354a00ab51d4a41221b6bf191c10
01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4
7d3c8417e1db0db41ceb8b4bf3f506864392dd1ad29319a06a8a6055f6f2ed12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffaf0de04-19bf-4944-9ac5-5178afafb192.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11352
x-amzn-requestid: 7c3fc7bb-eb1f-46ec-8e92-b6ffc6261848
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwuF1ToAMFiIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64d1-7c53152a279f00595b9886bd;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:25 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aYf5d6wAJlPSXVwF5uQXUb1g_65z-v6tInk7IF64bBV-w31d3MKeIQ==
via: 1.1 b6d577696b14c86cbfeb5b3459f38c50.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:23 GMT
age: 3590
etag: "01ceb7233fe05ad8dff3a0a43eef879ea2b83ec4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f60a6490f38a772dcd50a1132e98e1b
ff254a1df087d2c157d88a6ef04e395dc49efe5e
653e40becd103cd76cc2f194a87e933e8c548d346f87520fefca3b16430fc4ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: c17eff92-da62-4f0f-9e75-2741012ec43a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_sqFSjoAMFQ6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-61d61d2f0bb01ecb21b809ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i6QasBBRK9APW19sH0DdOipvUJA3gWj0CAMTzt7ejRCOk_V2psz-Xw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:45:47 GMT
age: 5786
etag: "ff254a1df087d2c157d88a6ef04e395dc49efe5e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49c08cd33e41826af9dd4a8a912e0ddf
bde85bd98858e4b13484a9cc3263b4db7fb5d348
43471e7b4da8e4e58b842d05cb073ef150ff119eaa6890c86162f03a140459cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5273
x-amzn-requestid: 5ab71aaf-6757-46dc-86fc-0a866958d22f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSz2EqfIAMFqng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e5-15ae9d330e005f547161b4df;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xcEI729NEfORs3fT_fHi-BkyqA1sHl0dA6fAGd9hYkJNePUlM4vKQg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:05:52 GMT
age: 4581
etag: "bde85bd98858e4b13484a9cc3263b4db7fb5d348"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4193f05dfd1de8bf795f433d4387243
b76ea6ae9df756f131ec16b01cdc7ab19b2d01be
b56231f3c788519751528b849a442d5c7ed828ea4ce3321fd629ca27440ea6e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6920
x-amzn-requestid: 05ec2698-a5ee-4046-be77-0036755f2946
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwaEd-IAMF_-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64cf-783b236b79b1e9ba22098cb2;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:23 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GgMHlvU3WIDYMF9fmZAajw_Y3zmPm2zojn7FTqgqtBj7e4qeu8Uokg==
via: 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:05:53 GMT
age: 4580
etag: "b76ea6ae9df756f131ec16b01cdc7ab19b2d01be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3801236dc22938e1cc18947e90ea5326
5979d7dc3ba0eb61947282a4adeac8208b4148ae
3bd4eab29590ec3c316597abd2be65281cd9a6137add037ad57c093f1fca12e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5995
x-amzn-requestid: 25b34277-c486-4642-aea7-21e0598babc3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSzOGGjoAMF4kw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e1-6f43ab8e0c1a5260327bce11;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cO5j7BIPh3GSOUqKDYYY2qmG6__Hn2XB9lFhhYT_WpOXya-9TTGtgw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:22:24 GMT
age: 3589
etag: "5979d7dc3ba0eb61947282a4adeac8208b4148ae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
162.213.253.11200 OK 12 kB URL HTTP/2 bet365-fixed-matches.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 162.213.253.11:0
File type ASCII text, with very long lines (47826)
Hash c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:12 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 02:32:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11616
date: Mon, 05 Dec 2022 23:22:12 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-includes/css/classic-themes.min.css?ver=1
162.213.253.11200 OK 217 B URL HTTP/2 bet365-fixed-matches.com/wp-includes/css/classic-themes.min.css?ver=1
IP 162.213.253.11:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:12 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 22:08:18 GMT
accept-ranges: bytes
content-length: 217
date: Mon, 05 Dec 2022 23:22:12 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
162.213.253.11200 OK 30 kB URL HTTP/2 bet365-fixed-matches.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 162.213.253.11:0
File type ASCII text, with very long lines (65447)
Hash 3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:12 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:08:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 30324
date: Mon, 05 Dec 2022 23:22:12 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
162.213.253.11200 OK 4.0 kB URL HTTP/2 bet365-fixed-matches.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 162.213.253.11:0
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:12 GMT
content-type: application/javascript
last-modified: Fri, 11 Dec 2020 10:30:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3995
date: Mon, 05 Dec 2022 23:22:12 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-content/themes/comicpress/js/ddsmoothmenu.js?ver=6.1.1
162.213.253.11200 OK 2.7 kB URL HTTP/2 bet365-fixed-matches.com/wp-content/themes/comicpress/js/ddsmoothmenu.js?ver=6.1.1
IP 162.213.253.11:0
File type ASCII text, with CRLF line terminators
Hash 4e3943051db5b0e580e2c789a3205a6d
0d1cda36cdbac930c7673304759a8c7b0d66d02e
d326b4da3e61fcb98fb6f0c7d0c5067655ee335e5b07ea2e79be52fe6c6e6c0b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/comicpress/js/ddsmoothmenu.js?ver=6.1.1 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:12 GMT
content-type: application/javascript
last-modified: Thu, 09 Apr 2020 15:58:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2699
date: Mon, 05 Dec 2022 23:22:12 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-content/themes/comicpress/js/menubar.js?ver=6.1.1
162.213.253.11200 OK 214 B URL HTTP/2 bet365-fixed-matches.com/wp-content/themes/comicpress/js/menubar.js?ver=6.1.1
IP 162.213.253.11:0
File type ASCII text, with CRLF line terminators
Hash 3ca155ba6d055b3f68418d1ae1587153
12608155679b6c306249652cdd600fd31ad64b84
ae4e31d5f49a5e7c8a28778ea143e403e1e1a8070257ec9fa8ea030c6258e602
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/comicpress/js/menubar.js?ver=6.1.1 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:12 GMT
content-type: application/javascript
last-modified: Thu, 09 Apr 2020 15:58:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 214
date: Mon, 05 Dec 2022 23:22:12 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
i.imgur.com/7PlBTtp.gif
151.101.244.193200 OK 18 kB IP 151.101.244.193:0
File type GIF image data, version 89a, 400 x 150\012- data
Hash 807630f6c42a631c8b38bd807bfa3660
70d7b21f548067a44a70d430315e1e3ffe0faf6a
fabaa16ced72f3483b77e7ae3d8bb6b67143c656069857818189f9877f0979cf
GET /7PlBTtp.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 05 Oct 2018 16:35:47 GMT
etag: "807630f6c42a631c8b38bd807bfa3660"
content-type: image/gif
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 05 Dec 2022 23:22:15 GMT
age: 5333463
x-served-by: cache-iad-kiad7000104-IAD, cache-hel1410031-HEL
x-cache: HIT, HIT
x-cache-hits: 1778, 17
x-timer: S1670282536.804017,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 17730
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash efe030ed4c5cbf287e424f237e5f2a6b
7e2e5563c47ca8561ff431ac40b59ebe4d2c6eb8
cedc3ced2f477127a02c5d86cdf556cf79aa4703b9220e8f376c7eff8b287608
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=148111
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:15 GMT
Etag: "638e1cb6-117"
Expires: Wed, 07 Dec 2022 16:30:46 GMT
Last-Modified: Mon, 05 Dec 2022 16:30:46 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 741e07448e603fef0c6b23148cb655cb
cac5495bc2eb6cdd42f3efb1e46da2db38fcb6cb
6d049637c3276cd46ff370908ea224a76ab89fe47f7223bed89c0a11cb91964e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=142015
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:15 GMT
Etag: "638e04e6-118"
Expires: Wed, 07 Dec 2022 14:49:10 GMT
Last-Modified: Mon, 05 Dec 2022 14:49:10 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 07230661d31f6450f5336185246520d4
73dca1fc17fa70ddf0addf93a49339a4a97bbb7f
2dbedec96d08a6e145f528d4c26edaa31b90ed0370a6b2623ca5cf23bfc238cd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=171895
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:15 GMT
Etag: "638e799e-117"
Expires: Wed, 07 Dec 2022 23:07:10 GMT
Last-Modified: Mon, 05 Dec 2022 23:07:10 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash c5a4e3f58b3c3314c7569669ad2e0768
89b013fc460057eae48bb0b17f7be1dff81b4fd2
8e56153cf09a349a3aac946baff48829fa9fc22ea5f79e9221c8bbf508d95b3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=86564
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:15 GMT
Etag: "638d2c4b-118"
Expires: Tue, 06 Dec 2022 23:24:59 GMT
Last-Modified: Sun, 04 Dec 2022 23:24:59 GMT
Server: nginx
Content-Length: 280
winfixedbet.com/wp-content/uploads/2022/02/winfixedbet.gif
172.67.143.209200 OK 12 kB URL HTTP/2 winfixedbet.com/wp-content/uploads/2022/02/winfixedbet.gif
IP 172.67.143.209:0
File type GIF image data, version 89a, 400 x 150\012- data
Hash d64c27a565c0ac10fc96297bd6c3527c
9b5ddd85c0dc535760339d1fae772ca487d56ed2
56091a6032ddc43a4c3473a063b70d34b87d1e9b1bc70e97323a6f52304baca8
GET /wp-content/uploads/2022/02/winfixedbet.gif HTTP/1.1
Host: winfixedbet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 23:22:16 GMT
content-type: image/gif
content-length: 11641
last-modified: Sun, 06 Feb 2022 23:35:17 GMT
etag: "62005b35-2d79"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 55364
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wXhee3YNgA3hZObBQgMWRbYRQcvGXKPST59OTbbCCq335PTAxP9iV4Hq4tRBVZnoIvgT4lhzuizVS4jNjUmQgya8Jj2gthdZLsNEJBSg5NJi1qhGV9NnLZqvRTwts%2BaL0MA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775085da2a72b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 345 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5ad229b010486343f90fccafa1517502
545e391a8ea5277a385e5b4043b8125cabd543ab
5f9ecdacf76c83c5775e2074b841f7df4dc2940924cf028ec50e94f533d54a1b
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "5F9ECDACF76C83C5775E2074B841F7DF4DC2940924CF028EC50E94F533D54A1B"
Last-Modified: Sun, 04 Dec 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13520
Expires: Tue, 06 Dec 2022 03:07:36 GMT
Date: Mon, 05 Dec 2022 23:22:16 GMT
Connection: keep-alive
solo-predictions.com/wp-content/uploads/2022/01/solo-predictions.gif
188.114.96.1200 OK 6.3 kB URL HTTP/2 solo-predictions.com/wp-content/uploads/2022/01/solo-predictions.gif
IP 188.114.96.1:0
File type GIF image data, version 89a, 400 x 150\012- data
Hash 970a8f0b8d77119989fdad8f016d3d5e
a3744b40f8a91a46b811981e96879dc804e570d9
5f839c29ffeb3f8bf863dfc0d23ce06d66824a5240345e5eecf0bfa1d3def861
GET /wp-content/uploads/2022/01/solo-predictions.gif HTTP/1.1
Host: solo-predictions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 23:22:16 GMT
content-type: image/gif
content-length: 6256
last-modified: Sun, 16 Jan 2022 23:05:36 GMT
etag: "61e4a4c0-1870"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=itqf5EWcv7a83Zn5JJtxDAnMbzMFN4qd3Lh0JLi7q72FnQ9Nm2zRV8fmd4QYiCRAVd0%2B2IjFRs8ma%2BDk1n2Kc2NPqf1lSF1Ch%2BAS5TZmG9pGsuB%2Fr75o0%2FYQrsr%2FTp6CQWEUyNmcGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775085d9fe88b506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-content/uploads/2022/09/Assia-Best-Rigged-Solo-Soccer-Predictions-1X2.png
162.213.253.11200 OK 28 kB URL HTTP/2 bet365-fixed-matches.com/wp-content/uploads/2022/09/Assia-Best-Rigged-Solo-Soccer-Predictions-1X2.png
IP 162.213.253.11:0
File type PNG image data, 400 x 631, 8-bit/color RGB, non-interlaced\012- data
Hash cb092493c6999c2e438365b88d6089bd
49a86eb3f2bfb52a7661e0adf97790065e9ef082
ada9222e03ed8a215d025003b700d6079edd38bd416c35bd5b2d574de30c96b7
GET /wp-content/uploads/2022/09/Assia-Best-Rigged-Solo-Soccer-Predictions-1X2.png HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:12 GMT
content-type: image/png
last-modified: Sun, 04 Sep 2022 11:31:50 GMT
accept-ranges: bytes
content-length: 28386
date: Mon, 05 Dec 2022 23:22:12 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 345 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d7c5ca2efdf3ccc2357bd7bd64417143
a677fcef176639683a8d3a816adb333cbb305abe
e5ca23dc8fcb815bca9b250f2a040a3fd195933aa1a1d3f21fe6969dd98bf967
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "E5CA23DC8FCB815BCA9B250F2A040A3FD195933AA1A1D3F21FE6969DD98BF967"
Last-Modified: Sat, 03 Dec 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3760
Expires: Tue, 06 Dec 2022 00:24:56 GMT
Date: Mon, 05 Dec 2022 23:22:16 GMT
Connection: keep-alive
iqfixed.com/wp-content/uploads/2021/12/IQFIXED.gif
104.21.73.59200 OK 18 kB URL HTTP/2 iqfixed.com/wp-content/uploads/2021/12/IQFIXED.gif
IP 104.21.73.59:0
File type GIF image data, version 89a, 200 x 70\012- data
Hash 500522e317eb2b6bd6d974338b35c8c6
9ffdb9e4c7eba12aeeb3d3afd65dfac9f259e050
83886179475b9b5484d2dd92aada60f6827b13720d21324a376e347aa824b4e2
GET /wp-content/uploads/2021/12/IQFIXED.gif HTTP/1.1
Host: iqfixed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 23:22:16 GMT
content-type: image/gif
content-length: 17605
last-modified: Thu, 02 Dec 2021 16:19:52 GMT
etag: "61a8f228-44c5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 705152
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rOOEuvuWfso%2BPZSCrgWJneOFql%2B%2BxUgO0g7U6HwieZI6ubddNz%2B0%2B1oqcoTo%2BH%2BlCf0Sij2n4fTtZxPhFkWbgoudnxudYLdZqpqpPNZ2C1q0Bwj2Q37mFTogAQ0RVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775085daa93eb4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
h2hfacts.com/wp-content/uploads/2021/08/logo.png
104.21.2.241200 OK 27 kB URL HTTP/2 h2hfacts.com/wp-content/uploads/2021/08/logo.png
IP 104.21.2.241:0
File type PNG image data, 300 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash ffbdc39c57ccce6d63bc85278b96236f
1dbe79e3f134c46c04bfec46b64d2ab4ba35c4c4
ec8c42dc34b58a62e84edd0376d247ea993b584fa41cf9889549e44773ded694
GET /wp-content/uploads/2021/08/logo.png HTTP/1.1
Host: h2hfacts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 23:22:16 GMT
content-type: image/png
content-length: 27033
last-modified: Wed, 25 Aug 2021 13:45:35 GMT
etag: "6126497f-6999"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pQglhbkc%2F0x%2BHA8U0Rs9zknzAL5PN1UgdnTuAxeKXcIZEhMnTd5%2BgO6%2BY3msWATwS4pFlSRjhFqm1au0sfaBLky0eGPOPnZFVXPi%2BKGx9wXz4260uM4jrQ7nID%2Fngwg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775085d9fea9b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
propick1x2.com/wp-content/uploads/2016/10/betadvice.gif
188.114.96.1200 OK 39 kB URL HTTP/2 propick1x2.com/wp-content/uploads/2016/10/betadvice.gif
IP 188.114.96.1:0
File type GIF image data, version 89a, 200 x 70\012- data
Hash fabf820c0ea79938cad2cb3beb401a42
7f2cc4b338fbbd0a768d3b6fc86c6cbb93d6ca6c
05829114bd8ead7abe4ae56d08c3a19a25ce4de9d98b681c80e431783bb07019
GET /wp-content/uploads/2016/10/betadvice.gif HTTP/1.1
Host: propick1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 23:22:16 GMT
content-type: image/gif
content-length: 38924
last-modified: Tue, 04 Jan 2022 18:21:59 GMT
etag: "61d49047-980c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fig4fLmZXpYD9lGviJ7OQ1jLdP%2B%2F3RxN%2B6WEHic2AobL%2BKLmRs6DAFxYSanm%2F%2BdIFpfu5qoSaHTvTGBnQamzFeIatMFRpd%2Bx%2FiYjALYb5YCu5P5WUXT4N638eTQ4cVnL8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775085da2eabb506-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 345 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d7c5ca2efdf3ccc2357bd7bd64417143
a677fcef176639683a8d3a816adb333cbb305abe
e5ca23dc8fcb815bca9b250f2a040a3fd195933aa1a1d3f21fe6969dd98bf967
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "E5CA23DC8FCB815BCA9B250F2A040A3FD195933AA1A1D3F21FE6969DD98BF967"
Last-Modified: Sat, 03 Dec 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3760
Expires: Tue, 06 Dec 2022 00:24:56 GMT
Date: Mon, 05 Dec 2022 23:22:16 GMT
Connection: keep-alive
fixedbet1x2.com/wp-content/uploads/2022/01/soccerfixed1x2.gif
104.21.92.35200 OK 49 kB URL HTTP/2 fixedbet1x2.com/wp-content/uploads/2022/01/soccerfixed1x2.gif
IP 104.21.92.35:0
File type GIF image data, version 89a, 400 x 150\012- data
Hash a892a82ad7e9897265b79ed7e27b22a6
3967a7ee1137c190263a0b2abcc6a74f8b9ac87d
9da8813cdf0056ee59c3b5a0ed81e5c5569b4a3ab65bb159a2c31e55b75c8322
GET /wp-content/uploads/2022/01/soccerfixed1x2.gif HTTP/1.1
Host: fixedbet1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 23:22:16 GMT
content-type: image/gif
content-length: 48833
last-modified: Mon, 31 Jan 2022 09:00:52 GMT
etag: "61f7a544-bec1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hM9cku%2FfCekYhf1Y09pHsAzjUMgn9ZtwJcfhhsMmD0Hs8d6owhMsFNh9wdeZSguyqamGW6BGzPxQc%2Fr%2BMJcbbKyEJVcnY%2FPfAf2YOkv0gfO7xnR8T%2FqxT%2FL%2BgETw9H%2FCo0Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 775085da5c07b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tipster1x2.com/wp-content/uploads/2021/02/output_maqW2v-1.gif
94.156.46.193200 OK 51 kB URL HTTP/2 tipster1x2.com/wp-content/uploads/2021/02/output_maqW2v-1.gif
IP 94.156.46.193:0
File type GIF image data, version 89a, 200 x 65\012- data
Hash f865ae856994e0a8e5de70e6b8b61f05
3d96e057ac3a40f0645c26fa426fe09a5c62f1f5
b2892114fe40ce13b64f0e3d595f405b735322c1c0ec389ff43ed4b0ed9366b5
GET /wp-content/uploads/2021/02/output_maqW2v-1.gif HTTP/1.1
Host: tipster1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:16 GMT
content-type: image/gif
last-modified: Tue, 09 Feb 2021 16:06:21 GMT
accept-ranges: bytes
content-length: 50678
date: Mon, 05 Dec 2022 23:22:16 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 07230661d31f6450f5336185246520d4
73dca1fc17fa70ddf0addf93a49339a4a97bbb7f
2dbedec96d08a6e145f528d4c26edaa31b90ed0370a6b2623ca5cf23bfc238cd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=171894
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:16 GMT
Etag: "638e799e-117"
Expires: Wed, 07 Dec 2022 23:07:10 GMT
Last-Modified: Mon, 05 Dec 2022 23:07:10 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash efe030ed4c5cbf287e424f237e5f2a6b
7e2e5563c47ca8561ff431ac40b59ebe4d2c6eb8
cedc3ced2f477127a02c5d86cdf556cf79aa4703b9220e8f376c7eff8b287608
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=148110
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:16 GMT
Etag: "638e1cb6-117"
Expires: Wed, 07 Dec 2022 16:30:46 GMT
Last-Modified: Mon, 05 Dec 2022 16:30:46 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 741e07448e603fef0c6b23148cb655cb
cac5495bc2eb6cdd42f3efb1e46da2db38fcb6cb
6d049637c3276cd46ff370908ea224a76ab89fe47f7223bed89c0a11cb91964e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=142014
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:16 GMT
Etag: "638e04e6-118"
Expires: Wed, 07 Dec 2022 14:49:10 GMT
Last-Modified: Mon, 05 Dec 2022 14:49:10 GMT
Server: nginx
Content-Length: 280
e1.o.lencr.org/
95.101.11.115200 OK 345 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5ad229b010486343f90fccafa1517502
545e391a8ea5277a385e5b4043b8125cabd543ab
5f9ecdacf76c83c5775e2074b841f7df4dc2940924cf028ec50e94f533d54a1b
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "5F9ECDACF76C83C5775E2074B841F7DF4DC2940924CF028EC50E94F533D54A1B"
Last-Modified: Sun, 04 Dec 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13520
Expires: Tue, 06 Dec 2022 03:07:36 GMT
Date: Mon, 05 Dec 2022 23:22:16 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash c5a4e3f58b3c3314c7569669ad2e0768
89b013fc460057eae48bb0b17f7be1dff81b4fd2
8e56153cf09a349a3aac946baff48829fa9fc22ea5f79e9221c8bbf508d95b3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 23:22:16 GMT
Etag: "638bdacc-118"
Server: ECS (amb/6BBE)
Content-Length: 280
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 74233ad9c28f2c00fdaa6b35ae218a34
bc25df06f512251c97ccc1eb901ae703c806a01f
4e9afcf08515a8d3a29bc3a9e763bc0efa6fd1d6d5091a764b05e19f47383cfb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 23:22:16 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 03 Dec 2022 14:16:36 GMT
Expires: Sat, 10 Dec 2022 14:16:35 GMT
Etag: "bc25df06f512251c97ccc1eb901ae703c806a01f"
Cache-Control: max-age=398658,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775085db0ec5b4f9-OSL
pawabet-fixed.com/wp-content/uploads/pawabanner.gif
35.232.16.77200 OK 4.8 kB URL HTTP/2 pawabet-fixed.com/wp-content/uploads/pawabanner.gif
IP 35.232.16.77:0
File type GIF image data, version 89a, 500 x 220\012- data
Hash b9aae93f6409baa739a0b7fe159987c9
83d922db379357b109c0672b5f118a9f42cdc917
3db358e979a901fe07eac3631b9b261d736afba7ebf9d309bd68c06fea264cde
GET /wp-content/uploads/pawabanner.gif HTTP/1.1
Host: pawabet-fixed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 23:22:16 GMT
content-type: image/gif
content-length: 4839
last-modified: Mon, 14 Dec 2020 14:40:26 GMT
etag: "5fd7795a-12e7"
expires: Tue, 05 Dec 2023 23:22:16 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 3458da5ccc6a362ff35985b85eb55f06
c4b850a26045a7e92eecc59709d0e8865eebbdb7
47976114084e7a14c61d6f74a694949e3453dd13d48eb83547ae991f21f14811
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 23:22:16 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 05:25:56 GMT
Expires: Sun, 11 Dec 2022 05:25:55 GMT
Etag: "c4b850a26045a7e92eecc59709d0e8865eebbdb7"
Cache-Control: max-age=453218,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 775085dbb867b50b-OSL
ocsp.comodoca.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash b4441065f13c0ea804e76439003516bd
210390b60db9235b4495cb5a2570d085c80113de
8b7b42101ac6401e19fa0ccc4a8f4819ea0f8d0befb471a42ba3148284c5eac8
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 23:22:16 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 03:05:06 GMT
Expires: Mon, 12 Dec 2022 03:05:05 GMT
Etag: "210390b60db9235b4495cb5a2570d085c80113de"
Cache-Control: max-age=531168,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775085dc6ea9b521-OSL
bet365-fixed-matches.com/wp-content/themes/comicpress/js/instant.js
162.213.253.11200 OK 5.3 kB URL HTTP/2 bet365-fixed-matches.com/wp-content/themes/comicpress/js/instant.js
IP 162.213.253.11:0
File type ASCII text, with very long lines (1100), with CRLF line terminators
Hash 22cc55193fa090c1b16720252186480c
fcac676e0a31c773e0eb58c86459b076f832739c
0a66b690bd6dd28001db7497ec1a14fa807eaf0a7cba64bdade39c9f268767d4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/comicpress/js/instant.js HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: application/javascript
last-modified: Thu, 09 Apr 2020 15:58:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5292
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
162.213.253.11200 OK 2.4 kB URL HTTP/2 bet365-fixed-matches.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP 162.213.253.11:0
File type ASCII text, with very long lines (11256), with no line terminators
Hash ce94f62588d05264ac0148712111cb11
518bcd922f54169aeb199c0ccbc5877165ac218e
84ab658a69c39f424be0b27f61d612447d01606fce33beb962cbea53627d8c81
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: text/css
last-modified: Fri, 11 Dec 2020 10:30:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2394
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
162.213.253.11200 OK 982 B URL HTTP/2 bet365-fixed-matches.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
IP 162.213.253.11:0
File type ASCII text, with very long lines (4186), with no line terminators
Hash 24f4d7f425e792ab35adaab50816e54a
9e25bf79b674ddb7ba09ad7f118c50ec473c02c8
1c78bfb4d523785a4ebd37bb1f79f214f9bdb16673f7cc50805f7f1a26ad7f83
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: text/css
last-modified: Sat, 08 Jun 2019 00:45:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 982
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-content/themes/comicpress/js/scroll.js
162.213.253.11200 OK 278 B URL HTTP/2 bet365-fixed-matches.com/wp-content/themes/comicpress/js/scroll.js
IP 162.213.253.11:0
File type ASCII text, with CRLF line terminators
Hash 1fc66a4e44887c62b71df5cd2bb87d57
b57c8371db096a515143eb2d1cfeb41edfe10b91
1f719cbe4f2420e55302b8a8f20305c52c959f6ca589258fc24193d7372519de
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/comicpress/js/scroll.js HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: application/javascript
last-modified: Thu, 09 Apr 2020 15:58:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 278
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-content/themes/comicpress/js/cvi_text_lib.js
162.213.253.11200 OK 5.9 kB URL HTTP/2 bet365-fixed-matches.com/wp-content/themes/comicpress/js/cvi_text_lib.js
IP 162.213.253.11:0
File type Unicode text, UTF-8 text, with very long lines (398), with CRLF line terminators
Hash bd3c2c4e565eddf1ca8339db80bcb332
5a285ca38ca5073e904346a9fdea4e6cd647fb24
e18fc3e4634f4c1dbac972af4b6ec6a0bff34af3741427517beee9d9b5f5c29b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/comicpress/js/cvi_text_lib.js HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: application/javascript
last-modified: Thu, 09 Apr 2020 15:58:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5861
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
arsenal-1x2.com/wp-content/uploads/2019/12/output_pM3zPl-1.gif
162.213.253.11200 OK 5.9 kB URL HTTP/2 arsenal-1x2.com/wp-content/uploads/2019/12/output_pM3zPl-1.gif
IP 162.213.253.11:0
File type GIF image data, version 89a, 200 x 60\012- data
Hash 2fa4d4aac05880579a5e90324cecefcf
e0e76b2e31f2c1821594a69c05e91632aee09010
5354393bf7513cc968ca21cb58bdd3f1aabbd3974f4224dc1b2e5ffd6943a62f
GET /wp-content/uploads/2019/12/output_pM3zPl-1.gif HTTP/1.1
Host: arsenal-1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:16 GMT
content-type: image/gif
last-modified: Fri, 06 Dec 2019 13:40:42 GMT
accept-ranges: bytes
content-length: 5869
date: Mon, 05 Dec 2022 23:22:16 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
victor-prediction.com/wp-content/uploads/2020/10/victorpredictzbanner.gif
35.209.0.180200 OK 80 kB URL HTTP/2 victor-prediction.com/wp-content/uploads/2020/10/victorpredictzbanner.gif
IP 35.209.0.180:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1602d5521e56f2d53aae2a07e0948fa9
cf075f151de1f7119a711da911b47ab7a68e9393
34e1d4dbb7649cdc4461980ca67083175f267314d58ef599aab412504f88d296
GET /wp-content/uploads/2020/10/victorpredictzbanner.gif HTTP/1.1
Host: victor-prediction.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 23:22:16 GMT
content-type: image/webp
content-length: 79828
last-modified: Wed, 10 Mar 2021 10:58:38 GMT
etag: "6048a65e-137d4"
expires: Tue, 05 Dec 2023 23:22:16 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
www.best-bet.asia/images/front/logo.jpg
91.215.216.44200 OK 18 kB URL HTTP/2 www.best-bet.asia/images/front/logo.jpg
IP 91.215.216.44:0
ASN #49699 SuperHosting.BG Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 546x211, components 3\012- data
Hash cb03d5746b48b19236130bdf28a9d5f6
1ce80863307150d51c238c5daddc5fb858609cb9
ff109c9a1d27f5abe82d64a3f34d356db6f57cb24ff03c562258a3e7c01ad9e6
GET /images/front/logo.jpg HTTP/1.1
Host: www.best-bet.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 29 Jan 2015 21:55:23 GMT
etag: "12c104ad-4564-50dd18b7b68c0"
accept-ranges: bytes
content-length: 17764
content-type: image/jpeg
date: Mon, 05 Dec 2022 23:22:20 GMT
server: Apache
X-Firefox-Spdy: h2
haaland-1x2.com/wp-content/uploads/2022/09/Untitled-2.gif
162.213.253.11200 OK 18 kB URL HTTP/2 haaland-1x2.com/wp-content/uploads/2022/09/Untitled-2.gif
IP 162.213.253.11:0
File type GIF image data, version 89a, 250 x 80\012- data
Hash bd0999fb931390750d1fc6e68c041bd6
06631f4bbc7e8d38e423f4518a911eef50ae57a8
f3b6b071574e9afedf743f298f7ac31b118562298df0d5159ca7b238b8a69330
GET /wp-content/uploads/2022/09/Untitled-2.gif HTTP/1.1
Host: haaland-1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:16 GMT
content-type: image/gif
last-modified: Tue, 27 Sep 2022 15:31:32 GMT
accept-ranges: bytes
content-length: 17709
date: Mon, 05 Dec 2022 23:22:16 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
162.213.253.11200 OK 479 B URL HTTP/2 bet365-fixed-matches.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
IP 162.213.253.11:0
File type ASCII text, with very long lines (1191), with no line terminators
Hash 62b3593ce258f7488f936d31b1ab1b6e
34c14a9bf90463e4456add8d8d039453b8bb8b8e
be4b9efdf77f14940f6b8aa22e7287411cf0377f99009d49276b5cfa47c4f3ad
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 10:55:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 479
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
162.213.253.11200 OK 392 B URL HTTP/2 bet365-fixed-matches.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
IP 162.213.253.11:0
File type HTML document, ASCII text, with very long lines (906), with no line terminators
Hash 200d0ec78a54a35bb97450e75bddfe52
25a0c90e7c2a7f49b4d5abf3165eb2d03849c2cb
9555fae27002a4036ca476b62143a67552e3870a1ff46c5869611b5edbe1deac
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: application/javascript
last-modified: Thu, 04 Feb 2021 02:32:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 392
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17
162.213.253.11200 OK 2.1 kB URL HTTP/2 bet365-fixed-matches.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17
IP 162.213.253.11:0
File type ASCII text, with very long lines (6194)
Hash 81ab8688d9461f04792e86c9b8612dc8
27bd154ac89dc4a472c6f815189324202c1ccc45
34eb3b197e6cc1dadd018bb26e8e64c517e061f6fe50aa8337e6239961d4beac
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: application/javascript
last-modified: Fri, 11 Dec 2020 10:30:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2071
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
162.213.253.11200 OK 36 kB URL HTTP/2 bet365-fixed-matches.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
IP 162.213.253.11:0
File type ASCII text, with very long lines (65266)
Hash eabd3755fb73f0e4ef1ac6e474373dd8
cd92121ebac48f10a27821172202bb1d06267663
37f62084aa872e3b695e87f549c236fda5828bc68036875a771768cd90bf2436
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:08:18 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 36433
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
162.213.253.11200 OK 4.6 kB URL HTTP/2 bet365-fixed-matches.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 162.213.253.11:0
File type ASCII text, with very long lines (15660)
Hash 0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:13 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 10:55:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4619
date: Mon, 05 Dec 2022 23:22:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 408b9ba72dc83c47c6821c825897d586
39c533b3ecadd39dcc4be7e5d6b1a5fece62de8b
3b1904ae01a75c6c530b0d4e952f53b823b8ebc3bd4eaf62794dac74999d6b23
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3B1904AE01A75C6C530B0D4E952F53B823B8EBC3BD4EAF62794DAC74999D6B23"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2407
Expires: Tue, 06 Dec 2022 00:02:25 GMT
Date: Mon, 05 Dec 2022 23:22:18 GMT
Connection: keep-alive
s10.histats.com/js15_as.js
46.105.201.240200 OK 4.4 kB URL HTTP/2 s10.histats.com/js15_as.js
IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (11440), with no line terminators
Hash ed192092c129db6123a3397855f42619
067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e
998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 23:18:34 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 361071567
content-type: application/javascript; charset=UTF-8
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-content/themes/comicpress/images/pushpin-small.png
162.213.253.11200 OK 752 B URL HTTP/2 bet365-fixed-matches.com/wp-content/themes/comicpress/images/pushpin-small.png
IP 162.213.253.11:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 54991b0478ebd9cd8cff75022398f995
4f8bcb4ec7edf59c25325a9afd2557d0a9d114b2
1a2a2b01af3aca9e2a3f76b7a54eabaf2a6e595882e5127e912bedfbb71421a6
GET /wp-content/themes/comicpress/images/pushpin-small.png HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/wp-content/themes/comicpress/style.css
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:15 GMT
content-type: image/png
last-modified: Thu, 09 Apr 2020 15:58:41 GMT
accept-ranges: bytes
content-length: 752
date: Mon, 05 Dec 2022 23:22:15 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
s4.histats.com/stats/4392224.php?4392224&@f16&@g1&@h1&@i1&@j1670282535941&@k0&@l1&@mBet365%20Fixed%20Matches%2C%20Buy%20Rigged%20Fixed%20Games%20and%20Soccer%20Solo%20Predictions%2C%20Betting%20Tips%201X2%20-%20Sure%20Fixed%20Matches%2C%20Bet365%20Gamble%20Predictions%2C%20Sell%20Rigged%20Fixed%20Games%2C%20Soccer%20Betting%20Tips%2C%20Solo%20Predictions%201X2&@n0&@o1000&@q0&@r0&@s202&@ten-US&@u1280&@b1:61105382&@b3:1670282536&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fbet365-fixed-matches.com%2F&@w
149.56.240.127200 OK 103 B URL HTTP/1.1 s4.histats.com/stats/4392224.php?4392224&@f16&@g1&@h1&@i1&@j1670282535941&@k0&@l1&@mBet365%20Fixed%20Matches%2C%20Buy%20Rigged%20Fixed%20Games%20and%20Soccer%20Solo%20Predictions%2C%20Betting%20Tips%201X2%20-%20Sure%20Fixed%20Matches%2C%20Bet365%20Gamble%20Predictions%2C%20Sell%20Rigged%20Fixed%20Games%2C%20Soccer%20Betting%20Tips%2C%20Solo%20Predictions%201X2&@n0&@o1000&@q0&@r0&@s202&@ten-US&@u1280&@b1:61105382&@b3:1670282536&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fbet365-fixed-matches.com%2F&@w
IP 149.56.240.127:0
File type ASCII text, with no line terminators
Hash 9135558d711e338c54650e4b82014449
3796a9056e69fdf1c5ef1ec20ecd673d69aaa912
712c08832f31cd8f752a7be8daf8c2e5794a63d5d4e9ad289db19bcd1bc05d44
GET /stats/4392224.php?4392224&@f16&@g1&@h1&@i1&@j1670282535941&@k0&@l1&@mBet365%20Fixed%20Matches%2C%20Buy%20Rigged%20Fixed%20Games%20and%20Soccer%20Solo%20Predictions%2C%20Betting%20Tips%201X2%20-%20Sure%20Fixed%20Matches%2C%20Bet365%20Gamble%20Predictions%2C%20Sell%20Rigged%20Fixed%20Games%2C%20Soccer%20Betting%20Tips%2C%20Solo%20Predictions%201X2&@n0&@o1000&@q0&@r0&@s202&@ten-US&@u1280&@b1:61105382&@b3:1670282536&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fbet365-fixed-matches.com%2F&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 23:22:19 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 103
Connection: close
s10.histats.com/counters/cc_202.js
46.105.201.240200 OK 5.9 kB URL HTTP/2 s10.histats.com/counters/cc_202.js
IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (15245), with no line terminators
Hash aa3bbd5f4a5085559292a2bcbbce009b
c09328c61211b16957496e5f31c291c8072f0d36
27031676a2e92c23862107a2880050cf3f09e9b66b64a4c4625f950eca43d5be
GET /counters/cc_202.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bet365-fixed-matches.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 23:12:34 GMT
etag: "676121722"
last-modified: Thu, 16 Apr 2020 10:45:13 GMT
x-request-id: 394396025
content-type: text/javascript
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 5864
X-Firefox-Spdy: h2
bet365-fixed-matches.com/wp-content/uploads/2020/04/cropped-bet365-fixed-matches.png
162.213.253.11200 OK 0 B URL HTTP/2 bet365-fixed-matches.com/wp-content/uploads/2020/04/cropped-bet365-fixed-matches.png
IP 162.213.253.11:0
GET /wp-content/uploads/2020/04/cropped-bet365-fixed-matches.png HTTP/1.1
Host: bet365-fixed-matches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bet365-fixed-matches.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 23:22:15 GMT
content-type: image/png
last-modified: Thu, 09 Apr 2020 16:27:59 GMT
accept-ranges: bytes
content-length: 889474
date: Mon, 05 Dec 2022 23:22:15 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2