{"report_id":"e4944ad1-4653-424d-ab70-353a77fc3fb4","version":6,"status":"done","tags":[],"date":"2026-03-29T12:05:10Z","url":{"schema":"http","addr":"bet9190.com","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"title":"Bet365","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"bet9190.com","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-03T12:05:10Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":4}},"detection":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"s.9a9q.com","ip":{"addr":"174.35.85.160","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"2026-02-02","domain_rank":0,"first_seen":"2026-03-27T04:36:37.17126Z","last_seen":"2026-03-27T04:36:37.17126Z","alert_count":0,"request_count":14,"received_data":149608,"sent_data":6392,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}]},{"fqdn":"bet9190.com","ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-03-29T12:05:26.98495Z","last_seen":"2026-03-29T12:05:26.98495Z","alert_count":288,"request_count":72,"received_data":12018823,"sent_data":34418,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"tposs.qiddfc-dqiod52d.com","ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"2022-11-24","domain_rank":0,"first_seen":"2022-11-25T06:07:22Z","last_seen":"2026-03-29T01:47:43.175228Z","alert_count":0,"request_count":53,"received_data":3525162,"sent_data":24678,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]},{"fqdn":"look.livewithhy.com","ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"domain_registered":"2025-06-11","domain_rank":0,"first_seen":"2026-03-29T03:11:30.019789Z","last_seen":"2026-03-29T03:11:30.019789Z","alert_count":0,"request_count":29,"received_data":18432771,"sent_data":14662,"comment":"","tags":null,"fingerprints":null},{"fqdn":"lf1-cdn-tos.bytegoofy.com","ip":{"addr":"163.181.243.177","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"domain_registered":"2021-01-11","domain_rank":402951,"first_seen":"2021-08-07T17:49:18Z","last_seen":"2026-03-24T03:36:48.728492Z","alert_count":0,"request_count":1,"received_data":238746,"sent_data":478,"comment":"","tags":null,"fingerprints":[{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"f08b8eedaa6bd48df944b4df0429e73a","sha1":"130550723d80dddb04efc589ac6fa8e7033ad142","sha256":"8304b0bd118cb30d1d17ab014eb9e91502c13c71fc9791079b3a2e8a222f59bf","sha512":"581b27cba42fc79e392cb89431a0d03cd42a366aed030fc8b9013d3ce22850916fe5319309fc8c2ca58be2c2f4e23aa08930a9dfb656c67ed15f85c2f825b9e9","ssdeep":"","tlshash":"f8c08cc4b0c22e0016166414a0bf28e49038842bb9881b138cd4e8982e620b0a233ed8","size":144,"data":"","first_seen":"2026-03-29T01:48:00.282149Z","last_seen":"2026-04-08T20:55:08.9744Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/yidun-captcha.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7b000b02de7b102d639a4a2517fdb04c","sha1":"e4013200733675ad0afbf553f532c866ca3efe87","sha256":"05aa7fb82aa3a5d8e59c925af30c7b8cea0e4ee6edc2f5ed4eeb7a4a3fa12c80","sha512":"94ab54a1f10394efcb2c2fb09dcab29d70e8c59f6f99619b04fff6ee1863830894615f7e2b00ac0c665e2bba3a2ede048b1e5de6bc05c033c2f80c6cf9771a9b","ssdeep":"192:A6yPdWboBIB9jSAhp1xDBeMS9rcIIiQaQPBYKqH3T+HyaiQSrvSIDl0IQAgWLEnr:A6yYboBOS4AcIyuf+I9R2AeCdkvh","tlshash":"1d328319adf960675d1bb0bb94af9004f6788953080c9e117e8de340df909b85feafd8","size":10968,"data":"","first_seen":"2023-11-27T10:52:49Z","last_seen":"2026-06-05T10:13:38.009555Z","times_seen":203,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"e6d3e962516a71a5dfd71a82be0c690d","sha1":"86908949927e8821c59d075717fd46b833b053b0","sha256":"a454f39ec8ac4935f67d5a059a9d703a1e964c0d2c19b7761b5540e0467837fc","sha512":"2ce8924443a653845ff48a387d2f47966532e666108936ea27022dda3b5e350fe6bfb8212465fdcbda66966891556109da9bc53519138926eac452322e831685","ssdeep":"","tlshash":"8ac08cc4a0c2ad005a52642420afa9e890248026b0881b038d98dc982e234b09337ed8","size":155,"data":"","first_seen":"2025-03-09T01:48:23.102005Z","last_seen":"2026-05-04T13:28:29.52824Z","times_seen":24,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"43a3abc8b84eae845b75b760eb1b622d","sha1":"5bef60057f3ccb494bed46950ba0236512f9a008","sha256":"f0917c64dcab72d69172a0b1f2cacdda41636ff28fc6c2872dbbd04e8375b228","sha512":"2f72af078b568b4ffdad58361d9f6b567c1606fb812609c5e647dd01587453b862f7c2d6108a660cc34967ebe2fad30728559f6036fbaa638bdf75a0a6a20d87","ssdeep":"","tlshash":"74c08cc4b2da6e64162aa92054ef35e8a0288426b18c5b02ccd4e8483e230f19337fac","size":160,"data":"","first_seen":"2026-03-29T01:48:00.283824Z","last_seen":"2026-04-08T20:55:08.95645Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"3c3f9c2f3070036c20390b1f514dbcd4","sha1":"2913a9dedf6546f93ed0d57463449e9a39aaf295","sha256":"8d7c3e301c17e445d99d02bb283f535b993362547f5ce0ebded89737a9f7593d","sha512":"c91ea016e2c6a754d185ccf74b0efd91bfc663a4c7c65fc98b7eee66fa7194e8735848473a806963de77d37377ef31abcc6aa9ee5e4d8c2ec799507f2d48c061","ssdeep":"","tlshash":"acc08cc5a0c36d011606641014af24e490284426b0481b82cde4e8482e630b08233ed8","size":143,"data":"","first_seen":"2026-03-29T01:48:00.278532Z","last_seen":"2026-04-08T20:55:08.934897Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"83e976e31e62bce1de8d103ff3520c39","sha1":"ffb693b09796727615530605d26971d28cfebb1b","sha256":"58c7adaf906bbec0260b08e34d65b6ab30b068bfacd888250b37ad5ae82f0a85","sha512":"8ca95d1877dd855941a2c9af39f83ef4ec6be09a8185cdd4ac8e12832f59b53f70c309754842a2818596b9cc06125fef59a9f0b0b8126b5dc6d60b1ab3e4b202","ssdeep":"","tlshash":"e5c022c560d26f00090a1009966f29d48034c46378880f039c98d8a93ba60b16233f98","size":191,"data":"","first_seen":"2026-03-29T01:48:00.288266Z","last_seen":"2026-04-08T20:55:08.92453Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"3a8c0830057ca22171e5d838f1952a6a","sha1":"70ee5214f6b0cad3b599eea891b181d7b0c9beef","sha256":"f9a548e63c5db73741d7f84b78cba8e2dacddc101cee91aa2a3938dcbf82fa13","sha512":"d49219a927087c21aae9bf241112fbbb23919404a2d3274c8cf0ef8dd785b4b218a2c8b6601fbe4f76fd90fc9677e234c963c057dff52121f58b5216a95c7bfd","ssdeep":"","tlshash":"c6c08cc8b0c33e006602781014af24ec90248027704c2b12cd94e8482e220f48233ed8","size":148,"data":"","first_seen":"2026-03-29T03:11:45.669031Z","last_seen":"2026-04-08T20:55:08.936147Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"480d0a2ce5eece80fac046ff05c36d7b","sha1":"e842433346e807f1d82d2ff6c0831655e4a2c560","sha256":"31c70ce02a3d86bd88b10908b372c02f65e9184596c1f44f3a62b393b34a9174","sha512":"465c07ca82d569fcfab494fb32bdbc52cc411a5e738620980b887e6718ab6fb49f3be4b8020b2cb2c09110ce5bc10fc568a5991f1dd0a784f990514ff50c64ff","ssdeep":"","tlshash":"3cc08cc8a0c67d005602651564bf25e8a034546a70482b928ca4dd583e220b09237e9c","size":149,"data":"","first_seen":"2026-03-29T03:11:45.605622Z","last_seen":"2026-04-08T20:55:08.925545Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/RoulettePanelPop--VcxjCzC.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"9189ba5aeceda2461d1e54846e596018","sha1":"d072a30db8b0dfe1210bef114c927044b0759774","sha256":"7d44ed6d066b2c6f7df2408b54456db568f2a44ffb435b3eddaf9ab4b5f66915","sha512":"b761503ac405875e69b382e537f3e8ce07c79fd4cb7ab3bc7e228dae215c44d36a41336753f5bde2340f725d55e1c3cfad86960cd0679d3732f9d5ef5c1516ed","ssdeep":"","tlshash":"7941868c753685b584674fdcf41c04e1d408b3c86230b9d976e908693b519e2943ef6d","size":1916,"data":"","first_seen":"2026-03-29T01:48:00.109576Z","last_seen":"2026-03-29T12:11:25.938187Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"e83cd56a06c587f94d8b0d0abf9f3494","sha1":"887937f3f7468f670bd619fefd0391dc81cea333","sha256":"5ebab1b00ca4dc67acdf6cda20765e7a7feb7b7090828d4d7d5d345f8638d8e4","sha512":"50e757f16d8cbcb24b10a644d269431e508092f0dc28b55def5fc0670aefaf85641436a5c569d1e3b56f02406b67ba7a84355f1b447c7bacafc78c21aa385616","ssdeep":"","tlshash":"d2c08cc4a0c26e001a22692050bf24e49034446675489b038c94ed4d2e220f08237e98","size":146,"data":"","first_seen":"2023-12-02T09:04:32Z","last_seen":"2026-05-24T01:03:42.879665Z","times_seen":152,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"dadf40c415e66f3adb90f428a8dd7c5c","sha1":"46d052324cd173f10e03627897a14f8e0edde2ba","sha256":"a50a6541210b57b5080782544b3fea6f0eca9cf3b2d9048bd2e1e6bde51ccc97","sha512":"f7e10d2e3b239d93aa90ff60b6fd2d913d0f9272777353431b780bfeffbab1dc413d3d39378a67cc5830e6211155991f448ab48171a3f216cedc79f7aa5600ca","ssdeep":"","tlshash":"d0c012c5a0e27d14564a6961507f68d46024403675485a929c94dc592e164b06127e98","size":172,"data":"","first_seen":"2026-03-29T01:48:00.294506Z","last_seen":"2026-04-08T20:55:08.970135Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"d5e8f6eb07b275bb6910b3a5bc466269","sha1":"45a349f858095562279cc729a43491df8558e092","sha256":"60b02d1e5e083d19cb594a3021c86152cd916c7e298a6f189f7f23b1dbb956df","sha512":"ef7763fe8ba3ac05bdf9dbd584ef85e07530b6b70c70f678044a6e503ac5d36b49a8e1a6bb411f9f774e4e5f2459960038cf32fac1236fc9a694c66773f02794","ssdeep":"","tlshash":"7cc012caa1c679106a16642020bf25e4d0284026b09c5a238c94e8582e220b09223e9c","size":157,"data":"","first_seen":"2026-03-29T01:48:00.273618Z","last_seen":"2026-04-08T20:55:08.967122Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"16dbe1c995cee50ffad69007b34edb56","sha1":"6bd3c18d876007770b66ca5deb1ac9d4e52f7d75","sha256":"f2cf8e09230f5c268bb5ff81416a1dc459a2c41821371b4a87dcbd4fe9c45dd5","sha512":"dcc408c07f3d3f4d173aa268064c092ea658bd72458bfe6a5f8231f6b238b36f577cf4e6677473c933575ea0f4cde4df13317057caec6c2e63e0fb732435e0f9","ssdeep":"","tlshash":"08c08cc4a2c36d006612641012bf34f4a0248027704c2b02ac94d9883e620b09233e98","size":145,"data":"","first_seen":"2023-12-03T05:41:21Z","last_seen":"2026-05-24T01:03:42.990313Z","times_seen":28,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"83b7a889eea0259ab9320e8aa2d439a4","sha1":"5f7fa2464a65f124264aa507980d34b069393543","sha256":"018db08e4799b8d677a252e124440319e974e33c93aa80e01165522e2235d36e","sha512":"4ecf5b3e118fcf00942d1aa93c7b1fc5d7313155dce063a3766c502fc0204c7f48589aa071470c7a19c3477f50f3248dac40f4d75d223879bd9d4ff8b058c301","ssdeep":"","tlshash":"0dc08cc8b0c37d00160aa410a9bf25e8e0344427b0482b128ce8dc583e220b08233e9c","size":145,"data":"","first_seen":"2026-03-29T03:11:45.635269Z","last_seen":"2026-04-08T20:55:08.937078Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"7e40252cf92153ab0abb33c37c9be626","sha1":"7d13dc309776ab773adaa283e05c143062098dbf","sha256":"8e53978ebd7c0bb813053fbb5b57f1a2acc5054570cee9a2eb8300234ea47220","sha512":"d9a7ee52099f3adc8f0030b83280f2cfe3489f7985d7db7a8407ff862c743c89fe17e266e001d0ed08cbc73d1e67dc04e012d0727439133886ea6b2af1670baa","ssdeep":"","tlshash":"f8c08cc4a0c22d1016026c2418af24f890244426704c1b039c94e9493e230f08233ed8","size":149,"data":"","first_seen":"2026-03-29T03:11:45.663387Z","last_seen":"2026-04-08T20:55:08.968627Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"ecad91e47aad2990bd4ebcaded1cc27d","sha1":"adb3aa2140939728a1c492a17255a82952c7fa17","sha256":"dd8632d5c9193e49c72e222fc527bdae43ab306548e5b0d99678fbbccc81a01b","sha512":"2974a3a1af0f458cac1e27846db3c0eb820c3e0c0ab84cee79e2967337a1aaab7e391e67db25aa2bceda317d209306713a02e101e8337ec2d43206f1db32ba27","ssdeep":"","tlshash":"eac08cc8a0c33d045612656150af24e8a028402771882b029d96e8592e230b4a237f9c","size":153,"data":"","first_seen":"2026-03-29T01:48:00.289104Z","last_seen":"2026-04-08T20:55:08.946963Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"934e8ae5e0df43301ac636ab8b357e70","sha1":"74fcbdc78d7a7b3f074a5d1bad52df7b8064112b","sha256":"fbc318aad23ae003fa11275727f1dbbe31c4299191a55d976c6fc3820c8cbec6","sha512":"546d19947aafd8d11407b34aa59dc052ae939e790910f8178ca5371951a10b52a31e0af604f7ae3eff60c11b43268d86c83d85731aa4cf6e55b489c2eb153c38","ssdeep":"","tlshash":"8dc012c4b0d63954161a552155ef26e4d0344436b04857528c98dc5d2a521b59237de8","size":183,"data":"","first_seen":"2026-03-29T01:48:00.303948Z","last_seen":"2026-04-08T20:55:08.975092Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/jsencrypt.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"3fac4c5050ddf3affef9a83179884f1c","sha1":"4f3ff513d9a377f110c1ba350d9de22bcdddf2a3","sha256":"4361db6444d034e652083bc48d9b8635ec6cd5cc51145c9c09c22697bcef8933","sha512":"a468183df8d0942edf34a91ad1c094a422fac90746b82d9ad7f76e8918b7f9da60d3b47b2aac3ce1d7ad9d7366e6a95e92bc4b4100b09ef0cfc678fa8d82c8f5","ssdeep":"3072:tG9e3/feYEeNAY7bbwmO7H5bSaeG7qC6ZU8jPdYBSZsz0bqlMk96XA3EBK/9mzvm:tG9e33eteNwmO7ZurM4qlMDvO2wL","tlshash":"ea045f0a6ef71c21491770b84f5f6085a538940f2269d999bc4cf7e49f88a3407b9ffa","size":182390,"data":"","first_seen":"2026-02-24T07:43:44.841862Z","last_seen":"2026-04-08T20:55:08.852453Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lf1-cdn-tos.bytegoofy.com/obj/iconpark/icons_15107_188.0655b3de50b840e93c985eac1507fc40.es5.js","fqdn":"lf1-cdn-tos.bytegoofy.com","domain":"bytegoofy.com","tld":"com"},"ip":{"addr":"163.181.243.177","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"introduction_type":"scriptElement","is_inline":false,"md5":"5dba0af833fa015e329d6eb4310e7459","sha1":"11a409ebbc4676239563c05bbedfd4a420d43a4f","sha256":"72e6fc8be817e2b3aac9378f35b17114173704eba81fdc46a1ce4d57cc4cb8cd","sha512":"9425d5c7bdcd5874bdd3e6efd4d95b3f08c07d4adcf0193c1c07bab21206a1317f9e5991b2fad78fb6f09d306b11226454170d9e28b2eda3aba8b84976b48b87","ssdeep":"3072:Xv7GhAyLfr6ZpAVdUbGly8auCanDn+/kxbQ9fak13c8rLhDGrdco5g5DBuYb8ps:Xv71rig5NuYb86","tlshash":"4234fbe73360e06c368746759bfe7952221e739830c583b065bfc5f413635a8ea6bda0","size":237293,"data":"","first_seen":"2026-02-24T07:43:44.923887Z","last_seen":"2026-04-08T20:55:08.82443Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c318ea082404e2c9c48bda70fd8f97e4","sha1":"ba699ee84ffa6d63239a0badc0c61b8bdb1e3dd9","sha256":"970c93e9d93f3cc518933858d245a61e06f7b829285e9d34a475b05bd70165f3","sha512":"7410a3d69eb3d525eaa61cc0513ca8eb8b4fdbe045cd3b6b99944cd5b030345937d95085e6ae2bd781cb632350b3b24682404f5098ef69662355642cbbff6c02","ssdeep":"","tlshash":"8dc022c1b0e2b9006205a512047f39d48029502ab5086f828e90dc3c2b130b48633eb8","size":188,"data":"","first_seen":"2026-03-29T01:48:00.281245Z","last_seen":"2026-04-08T20:55:08.951125Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"6074cdc080eaf94bc4f4afafa99dc975","sha1":"e4e74d51defa6f6fb74daa0c9fdf575a122a6e39","sha256":"6a4ce697add90d0b92ba527742814dd2ac9f9e4af8edb83ebd0bdd349896a545","sha512":"9e9f203e2f04d43cd0c3cd6e4be22c6365253be2a0eff3a13106220e37cfb67fe85ad8a081a3384ccf29c1beb9000c1b57bd4a43f6956c253d3b1db0e5f45381","ssdeep":"","tlshash":"efc08cc5a0d23e102606642416af38e890284037b4482f438cd4d8892e220f08233e98","size":147,"data":"","first_seen":"2026-03-29T01:48:00.295498Z","last_seen":"2026-04-08T20:55:08.934303Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/index-DjzB0IZK.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"3fb54940a22ca5cc9886df2d5fa87e41","sha1":"60d4c8abdbb224efb4a33b8b99bd97cb3d565534","sha256":"3c0095fb3c695e1735f3678daf2d17558ffad54588542a875611bab48bb8ff90","sha512":"45284e0bf5517e59516256d195ca0208984cc575a896b75bfc2aa6ceabf49b8daf14afbe9c301307fe719202e2c7d3bbfeea612e45b4468b9681c62162e84d68","ssdeep":"12288:dZTJ0zYmS2gGMMyR9aFSaIHhqalitVEcqMx34eKzeNj7VOWv2vNGuzRzoYcfBi:dZTJ0znS2gJMyR9oSaIHhqalitV7qMxU","tlshash":"a1e47dd536a5942687e499cb94354512a3393e0f7808c0ecf97eadcf2e6ad05b03af74","size":716063,"data":"","first_seen":"2026-03-29T01:48:00.027762Z","last_seen":"2026-03-29T12:11:26.097197Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"ba96e12b111889f2eea524ce5f1c7cbb","sha1":"4beb4e99bbd8aef7980683502df942e645c8c548","sha256":"fdb5f5b19a9b491e74a1924f499bb3b71e9f7cab657a65846ebe07c33d435804","sha512":"acfc2840b634fee0bd4111f28239aa40f7b02baf2925e4cd5cf110336198be6e0790d687ce6c67fe2412a51286cca7328888999a0b9206892f996a47dc59ab0a","ssdeep":"","tlshash":"29c080d5a0c76d101555555514bf39ec9035d51ef44c1b13ade8dddc2e120f05337ee8","size":176,"data":"","first_seen":"2026-03-29T03:11:45.633335Z","last_seen":"2026-04-08T20:55:08.927272Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/search-D0CeyGv_.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"4e499dddf30c74c8c431532f3edeb59b","sha1":"3308de5e7d47ddb3278a4bf72b1cb36c3315b3cd","sha256":"eacd894d27ab709ab4eebea064db3cdb0b19602adfc6b0bb8a9c49c411c4ab6d","sha512":"c996a33d8fee530f57b3acc75214f7b4735a86b310b1d8778bc677a53595230d61107244332db460216f9ee1710ae6f1785465209b73de62c714f6ba5081eda8","ssdeep":"","tlshash":"0831c7240e40a949daff23eedb1d7700fe8b9f4e213c11e8986c02493aeb6281093161","size":1493,"data":"","first_seen":"2026-02-24T07:43:44.829435Z","last_seen":"2026-04-08T20:55:08.824927Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"0fffb922a5882bbebad940b348ec8120","sha1":"a72386bc4b4eac166d0a62da90a1b3d0e8badef2","sha256":"059c0464a8c4f98b40bf71f2034ce04c6cbe31c445508078fa82a17da4eb591d","sha512":"cc695960fc2adfe53e7b6564c9f4e5d4129c354946e22a5889a7a58adc8a1fab4aa596af8ab74c838c378785f32888921ea4dace5e01fdc0ebe0042b4d38d855","ssdeep":"","tlshash":"38c08cc8e0c33e005a56781854af39e4e0a8442ab4486b92cce8d8a82e220f19233f9c","size":163,"data":"","first_seen":"2026-03-29T01:48:00.29638Z","last_seen":"2026-04-08T20:55:08.943767Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"43c078dc8afad0a295764209c34a65af","sha1":"2ad612d1093952d314be752b10cd32d113a2e27c","sha256":"80b1c73c467ec21584188906dbd701c4e3bdb4282f0d2762cac5b3dd04fc3d41","sha512":"f566a6a35457b1212c21427d0260dc1bc6f8836e7a312a3325d8cde5b19ec1fb565b9d3894de620dc4797f5d7a282cbb793754a9a060686018c076a2eccd2ffa","ssdeep":"","tlshash":"09c022c6a0ca2a000a16780804af30e8e0e4041222480b82cce4d9993d134b0623bea8","size":188,"data":"","first_seen":"2026-03-29T03:11:45.642852Z","last_seen":"2026-04-08T20:55:08.948256Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/ArrowUpOutlined-YgrGczZw.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"af07d26acd816fe683fa98da5290dab6","sha1":"aa0bb1ff42b8323bb94f50fc959542c0818b57c8","sha256":"d7b366d01bc5da0666d2dc54c85bdc3cd1700ae57fb2044001133216c397640c","sha512":"6d3b7b522cfcd6a54ebb701b0e37fe1d10ea7b9319489eb230e62e5caea027376f169e1d59d8645a79e1ee32e6b64db9c9eee331d92d3a90dd1da3223a94b574","ssdeep":"","tlshash":"7411056e3184bff647828ae4483aa503f0196a2a145cf9609f51c9e5f5514c6b05ff4f","size":999,"data":"","first_seen":"2026-03-29T01:48:00.138712Z","last_seen":"2026-03-29T12:11:25.971394Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/d_logo-BfF9f3i8.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"bc1080d98fb3d6a758ce20794c8fef35","sha1":"c9855ae87acfa7f9035abbad28b98350a49c4eab","sha256":"ab824e7246c7cdbfd29f4fa10f684b92954d2424e2b9a7d9243018ed01349717","sha512":"2fbd62a62eb57f9657d688a9f724cf434d8eb1184e41bae40ebf168c0d21d47fa7aaea56bbeb37cc5c34dc038d00e4fdd633a709249c4760e549488b7100dc0d","ssdeep":"","tlshash":"1290026d140508b0119c64888763d575144142587279565590156909ae51491550a820","size":54,"data":"","first_seen":"2026-02-24T07:43:44.907329Z","last_seen":"2026-04-08T20:55:08.863515Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"0c620bf4f66d4dde07c595dddcd7dbeb","sha1":"51ded83f73c8408b4b114a861b567673181b07b4","sha256":"06b1f571091a82fd20ebc15af3c094a4854bf4c62f61c1ca03964e38bb423602","sha512":"80f2add15b4eb7d92aae9fca6df9e13293f91f89fefea9cf8bd8a66b42b1914919600ab2840cbcd513a4097dd634ee922f7cf7a91075b501e4653dc3d6d473af","ssdeep":"","tlshash":"66c08cc4a1c22d001652a45010bf24e8a028802a70481b02cc98e9492e220b49233e98","size":144,"data":"","first_seen":"2024-08-08T11:57:46Z","last_seen":"2026-06-01T16:04:35.568459Z","times_seen":34,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"51762aac0ded5bd7a9222992e8766628","sha1":"0c1102315f57cf8131a2c783bfc74ec24aee816a","sha256":"69048815a2409a05df0b5e3f8f7933acdc394c286d8b5ea60bf34f322897c733","sha512":"6c5a9698adcce999bd9abeedccd4658a80f6087c75dc5749b71ca704282e88860efd21c4a06f6b1861f4f6321da40d61c094ee857b6e5b34cb95a5a03ebf9fa7","ssdeep":"","tlshash":"a1c08ccaa0c26d04661764196def28e99038482ab54c2b028df4dc882e630f0823bedc","size":164,"data":"","first_seen":"2026-03-29T03:11:45.634277Z","last_seen":"2026-04-08T20:55:08.925046Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"f03f91ef788632b29c7aa94e331f066e","sha1":"8999411b9ff2518fac848fd0959506d9e3d0ccf8","sha256":"53165a4101b3608851d449619b7db74af6901556d523a9d7f407820a50006eff","sha512":"264edebdfd949fdc2cbe212ca4cb2df953c166fba5fa2fc7ff4e8ca94f3c8f1998371baad6c9c70504b523cc271f8e94f60f3b9ee845f054bf2eb082193df567","ssdeep":"","tlshash":"39c08cd8b0e77d101606692614ef25ecd028542a704c9b92cdecd85a2e226b48237ea8","size":157,"data":"","first_seen":"2026-03-29T01:48:00.290791Z","last_seen":"2026-04-08T20:55:08.943125Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"34a9c3ad8b5b6aa2700349cc53893d39","sha1":"949a966abc4262ee0620f7a597b6df920f51208c","sha256":"7ccfeae80fdbef13a2faad8127e098a1d9103d0a698655c52aa39b81297b0276","sha512":"9dc292c6e7bca6160ffbfea44bc5b8755b68e201c7dccf0f09dcc24dbb393ff5fc21ddf988b36de8a43343dd83610b971dbd85dc2d5d84b79bdff178fb6b7bf6","ssdeep":"","tlshash":"5fc08cc8e0c33e115a16652850af35e4d0f8406ab4886b02ccd8ec583e220f19233e9c","size":160,"data":"","first_seen":"2026-03-29T01:48:00.286526Z","last_seen":"2026-04-08T20:55:08.935451Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/HomeTimer-hKDYRuD-.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"03537916e72ef2b487308a253c46f6a6","sha1":"eb08f18eeb6c5d3b4616c2b297f95e8565592ad4","sha256":"e887f1360a337d25a159c4099a5d1fafe282a361bae33e371188e286713b0aeb","sha512":"06408ccd2091dddf8c5ebceaf0149fa869ccaae7c8ce931e1c67a68f82aecc7cbc07acea8bdc80677d6cdd1fd11908655424d05746d384a5f387bd2716047b2a","ssdeep":"96:x5SjsNqDo743cLJDPhc+OyDDtMdDkFP6oKpkzwPYqdeHFiG40b0Gw5Zu7aI9DG:CjsNq874sLJDPO+5DtODghKpawdd/G4N","tlshash":"f591daceb442f43a87f15858a41c0421610d7bab7060ecf4ea3fde9a2349e517327979","size":4268,"data":"","first_seen":"2026-03-29T01:48:00.220542Z","last_seen":"2026-03-29T12:11:26.096539Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"09795c36f598070a4877a8554cfca282","sha1":"7cbf71f9944d5cfa817855a20857ebb70dc9c7b2","sha256":"d54f185ac5a7d24a800cddccd6fa893d2d9468d64b2fe2edb4c2c4767931eed7","sha512":"35ba1e1cc5d686b838382f8593c76812f498cbd6dc156a2a863ce64f58dc167d94c1d37cf9a7e79150df6b6763a4bf47cd2d2bc0303b36bd18f19cc6115c199e","ssdeep":"","tlshash":"4cc080c570c67d0029066410117f34e89025503670481f43ccd4d8543f130b0d273e98","size":158,"data":"","first_seen":"2026-03-29T01:48:00.287404Z","last_seen":"2026-04-08T20:55:08.959791Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"515e6e45dac1f2ab717818a13b5b3102","sha1":"65228062fc993c99696d2df6c5e869814a9bef02","sha256":"4b637abe6e63473f0cd5275d5ed513763d860066a1e313ebaef94ccd07e307ee","sha512":"ef0bc005de70ffcc95a372615032308c8c7fd769117507cbd4aa9d95b53b929c675ed3a2954789bec31b2193c8e2b87fa31094325f3bf90ad2570374ef4ddfd8","ssdeep":"","tlshash":"95c08cc5b1c3ae101642781064bf68e8a028c93ab4885b42cde8d8893e734f0c33bedc","size":167,"data":"","first_seen":"2026-03-29T01:48:00.297147Z","last_seen":"2026-04-08T20:55:08.941435Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a89e612995249b6b7b1ba2e2608777d2","sha1":"dc7481319603324b454a3b1d12887f05d3047d08","sha256":"5f4b744ccab08f85b1648a682e7dd759bd4ce9bba926caed7380d63de674c185","sha512":"a519af88382c723ff6cbb9857deb7e9e958dc9d2553f7370bb6c6a93d89c40d4343bee0b3bb8424a37d1cc73a8cf4765373cd13f8bcaf79a15a4982d00d88990","ssdeep":"","tlshash":"c0c08cc4b0cbbd186706a550a5ef25e4d0a46027b0481b438c94d8483f620b4a233e98","size":155,"data":"","first_seen":"2026-03-29T01:48:00.277162Z","last_seen":"2026-04-08T20:55:08.938633Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"5715b0045fea50dc0bdc33d8cd5aff9f","sha1":"f098d3f72b411132dd570bca6643b02d9a1a12f4","sha256":"bf6c470fc3e35486034e60baeb46cfa1cbb2335b56264758ccab636d2cbc033e","sha512":"080f0c4c76f863da3df1f40d98983fae1e9df9ed9f6a2b03de6de2b744f6b1e738944b9b2d9a230b4dd7d9c7eb9bd0b2d15538f948a9c8ea63bcb8f365dd4d39","ssdeep":"","tlshash":"d9c08cc4b0c23d006616a42062af36e490248826704c1b02cc94dc592e230f8a237ee8","size":150,"data":"","first_seen":"2026-03-29T01:48:00.292454Z","last_seen":"2026-04-08T20:55:08.962222Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/index-Chl8vKZs.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"58473477b259742ef4fb4a3c59bc11e0","sha1":"d729be162b3de2b0d97b61cf4c40649b89eef357","sha256":"795ff42361b6d46f06148f579707f6663dc377995378c1112b216944a7d3d960","sha512":"e02535d676375b98a05be5548112baad5095d2c6f318a599596ba52c3cd29f56cc1268271a2abf013eacaf02728b37268bc9d48c7a025558683499a72d184c8c","ssdeep":"768:sZtE4fY8LwREUZY1EPNFbFvGenRlDyMdBm/hceUDyoQc9JXNMA6e66mC7itet6r4:sZVTCPF5dAKr9M8Iet6YZN","tlshash":"6c132a41b4279cbeabb7540460d45441f20c7fabe098c8e5b2fe5d1a67cbda0bb91b70","size":44653,"data":"","first_seen":"2026-03-29T01:48:00.184477Z","last_seen":"2026-03-29T12:11:26.008283Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"07162ed3a6eaf3e4a3c9247f175efc58","sha1":"f67b3dd4e7778d2e06c0845d475b0408c0f51213","sha256":"4f628020628a2dfb1b83b4422b7cd3aaf7beaf50c0c87d6be510f5b9abb4d450","sha512":"77e5fd9c8b685b5ae1d3ae6c03cd0cb6895b27b33212a3051dcf78c24185047777d2a69c4821ee5a8ca71607b6b0b2572561bf4c50117c18b8f9e10659adbea6","ssdeep":"","tlshash":"69c022c060c22e204522101040ef28d88024102f74480b02acc4cc482d224f08237ee8","size":179,"data":"","first_seen":"2026-03-29T01:48:00.267256Z","last_seen":"2026-04-08T20:55:08.976519Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"14f95e406a2ad7ba3d4bdf6bdd60b022","sha1":"f789d380bc4b1cae30751d8abc7c976c95346dd9","sha256":"2b77a8a5020189f679e14a3e5a195fd1859c45c3376e2d7ee4348ac637876af9","sha512":"1113f24780eba169b3b60ab953a7573bb2d3174671e4f2f96fc1d8af3589d62127211ed12a1bc0adbd705e5e80a776f7edf46824828261695ce4fd66d0bdc702","ssdeep":"","tlshash":"05c08cc4a1c76d001603645061bf24e8a0244027b04c2b02cc98d8882e224b0a233eac","size":144,"data":"","first_seen":"2026-03-29T03:11:45.643795Z","last_seen":"2026-04-08T20:55:08.964371Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/RoulettePanel-hrPcCIp6.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"8d98d04035ae12adf3de592db065923a","sha1":"4b4fe096b214b9bf9d8a14a4246516d556529acf","sha256":"6a9af2c9069fb7312a17456c0513b638b8d9e0de95ebd6e374fc37d82fcc230d","sha512":"ff575c81a3b30faf6b47a5d5d021d67ef950cf8280e64fffb3ea7102f1df8576060993e7c0d961f567de52380af3f833e486c1439d2fcd10fd6b6bf21c375b82","ssdeep":"192:kzQ7ToVAkPRTVQFUR4NXsby7yB3bexS96yG67:kzQ7sukPvQK4yTpe096yGm","tlshash":"7ce17e89f1418d3b44a336c525a51045ae0cbb2bc364dfd5a32ac5f017b3d3db2b666a","size":7030,"data":"","first_seen":"2026-03-29T01:48:00.053551Z","last_seen":"2026-03-29T12:11:26.108872Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"ba43b36694e0c7e6845073549849fa8d","sha1":"f798c2fd02bf1d9c9807f92de1e81d23da703cf9","sha256":"32a0ca2a6dbcbe39ec278c62ea383ad52f7f15267958d6b4606753a607bafba6","sha512":"14139e197559890ee9c24beb384266fe8cbf8d0a101dc835b0f425e3ac8d50e0657d873c71625ae76e1e7f08acbb0f52e1a20346ea3087d299a12192ec7ae153","ssdeep":"","tlshash":"f0c080c5a1c77e106e055411507f75e4d028c03eb04c1b539e99ec642d120b09133dfc","size":163,"data":"","first_seen":"2026-03-29T01:48:00.280265Z","last_seen":"2026-04-08T20:55:08.946397Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"014a4e2be9d09fbec2184067f44ad1b5","sha1":"0fdaead392606ba1cc654d95328fbf13b6f13773","sha256":"ef32d7e49764dddff002ca7f4ace8258874872e19b9f7890658c5db968522e12","sha512":"213699be9db776ddb31577e808cf6f186475783199185a6de3d11f9266ef89b6cfb289b5f674e4f45a9045682e0f2ac261453e2ee2a0e229141b1913e6623b46","ssdeep":"","tlshash":"afc08cc7b0c23d101616a42828bf36e89224402bb04c6b43cde4e89c3e620b08233ee8","size":157,"data":"","first_seen":"2026-03-29T01:48:00.289888Z","last_seen":"2026-05-17T07:15:33.372922Z","times_seen":18,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"0613846b8ded20dc32f9a63933c7f812","sha1":"e022c6e7e983e31791d143932cd5e4869da5fd02","sha256":"37d48c75943464be4352f8b209691fc3ee97e7212b81c19646f3f39aee72a0df","sha512":"61b67392d432ffd3ad4a2406f86a85e434047c228e55ad2b8d13018096fbc408c8934b657018359f7984b21fe74310d64d6c21eaace7397a79f9e310af755a7e","ssdeep":"","tlshash":"abc012c4b0d27a01960eab1615bf75e89029482774489f528de4dc582f1a0b09327ea8","size":186,"data":"","first_seen":"2026-03-29T01:48:00.270156Z","last_seen":"2026-04-08T20:55:08.942513Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"a5746966fc9c08bc07dc5651c3057d2c","sha1":"8f8521e4a6721076f18ec6067754e857a026cbdc","sha256":"e579a19de508d1b8d5c12448ff9f3a2ad330cec031c194833605dcd3df85b12f","sha512":"5a83935592dee952dcd24942727c6e288c0362a10a0e8bd19ab9613d95c962ebf016371918c68aaea961e6d93ca6e412e1b992e0f2ce686c866692dedadc6eae","ssdeep":"","tlshash":"11c08cc4a0c22e106612a41150af38e49024442674481b028c94d8482e620b09233e98","size":137,"data":"","first_seen":"2023-10-27T05:38:28Z","last_seen":"2026-06-12T07:37:24.906167Z","times_seen":320,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"5fbd07b50b3ffab4f1a8aef06139fd34","sha1":"0ff1d3dddf65702b19e14b0b8d8fbac08f4a7777","sha256":"0036225e66529b8838e16995e173f6e2b5c871a82cfc5cbf9054f6e184aa43c3","sha512":"210f571c6ede29577778a08b0983c149d118a150e0164cdaf5aa9a769ca6cda34aceb19be4e26a408e28be01016aebdbd3ef4670745046eef35fb599910e88b5","ssdeep":"","tlshash":"c8d0a7d4d0a73c0112056331f46f2ed0e02a0436618455169d99f4a829a70b0d33ff84","size":221,"data":"","first_seen":"2026-03-29T03:11:45.632393Z","last_seen":"2026-04-08T20:55:08.933733Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/index-Du9UH5vi.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"210711f47df0e1254702e3e42a10aaab","sha1":"19986bacab5eae7893fcb7d40d859fbb6d6e137d","sha256":"c4880f1f17b845b36413a07b2ae781f7486b41b811790587fa91612468bf44c2","sha512":"fdb009d1a6d275c8106617b88ca577576a6d6c009f5369b12d445f526d1b48729dcbbc61c0401a48178d0ff141e7d3957b4c6ccb01f225426c00bdabf28ade3b","ssdeep":"49152:7c+M90xMTRVYeWH0cdwb3QA/Jz+4htAuKAkAcE5uAH3bShZqILGh9rkhc+OBCqdW:0IAPJntAjAkAcE0A+x","tlshash":"0dd59e9a3186b06103731a55a07f3205b3be2e44b40cc8d4b679d9e739f6e09a17bf79","size":2924951,"data":"","first_seen":"2026-03-29T01:48:00.272749Z","last_seen":"2026-03-29T12:11:26.132517Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/empty-white-BjL230TF.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"3dea6937be1184ad628dd27202632b04","sha1":"8604f80ccf3d36dea78d62cabeec77af0b0028cd","sha256":"6c8cd179af0cc07eca46ab0d96db2630262db825648aace79a811ece018fba41","sha512":"3be0784c2b202905376a8ad10c61efad7965ef25c408fdcaadf8f1f0b00568ec997763931c749a7567fa774904f27853aa189ccb39a4cdb314f925ee7856b200","ssdeep":"","tlshash":"4ab01281a80088b0511cf8644121d65891089281f524c6af9030d249e51a4104a0bcb2","size":97,"data":"","first_seen":"2026-02-24T07:43:44.847491Z","last_seen":"2026-04-08T20:55:08.829069Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"ae2141caa5de8b932c966159221aa50e","sha1":"eac41ccef748c726f8348d6f38a1c19dbfccc9fb","sha256":"1002803c00103fcdc73a564cf566cbe9496416c2b92f24628f9ab180cfedb16f","sha512":"65df4e2147fa5680f3ef31769f2e529b3e5e7aa6a9a809b8122ff372364f2fd2014b5eef784ece54a92a95b97aea74eed27cf110d6ce78c537383a9d01c5e795","ssdeep":"","tlshash":"18c08cc9a0c22d105a02a85191bf34e49034802a74482b528c98ec482e220b0a237e98","size":146,"data":"","first_seen":"2026-03-29T01:48:00.279419Z","last_seen":"2026-04-08T20:55:08.929372Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"0005c3243622eef128f698d86ebf3db7","sha1":"651433c24a41a9d26972124e75ee24467538de8c","sha256":"c197d2a3e6a40252b5bbe4f753dfe9646e210304435a24083f68513e00a4fbbd","sha512":"4392d6d78a29a3146eba1e64de60f2e9f543d7961d94dacd30ccdeea6f57c3bf6ea44c5c67e972230f847610f12a40f52491ef200e3dce0afcd67f4cb005e305","ssdeep":"","tlshash":"86c08cc4a1c2ad106616651012bf39e89025942b748c2b12ac94d9982e621b0a233f98","size":152,"data":"","first_seen":"2026-03-29T01:48:00.298746Z","last_seen":"2026-04-08T20:55:08.960511Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"2ceecbb35acd5515d30e99833548891e","sha1":"07b108c2e31c958630a5ace11123233a962b7a49","sha256":"a5584abafa801a7a7206aa8cb06c46eab0ec9b57fcbf16292575664f482102a0","sha512":"127f205fbe8e0b4d9f5c997de06b4fbbe34c60cf3ccb9bdc97636551e4bd306468c727082ca9a307745e94deeb3a64b32154e2c385802c6201eacabc5258fe8c","ssdeep":"","tlshash":"d8c08cc4a0c22d002602681020bf25e49024402670482b028c94d8483e230b09233e98","size":138,"data":"","first_seen":"2026-03-29T01:48:00.300389Z","last_seen":"2026-04-08T20:55:08.975601Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"677508f4e82c991215dbeb56376304ed","sha1":"319946ee13487176baff643039b077f7c5dee21f","sha256":"e4afa49346646959ed4ef9797c2b00ee682f9571be1b16bc0e73c8a0c750187d","sha512":"8813f9117ad51cdb7e0c8e3469373f05b3e9f25d16d9ddd890188f7cd54434f172ff987319a7d2c20bd196ed216997adb44e719682071b61f1aab09c14e84751","ssdeep":"","tlshash":"46c08ccaa0c27d001612681010bf24e49028842670885f529c94d8492e260b5923bfdc","size":143,"data":"","first_seen":"2026-03-29T01:48:00.282949Z","last_seen":"2026-04-08T20:55:08.969428Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"20b1492b8412dfd689d2efef0e9eedc8","sha1":"d5b81b2b8e1d0d2d81948e15e18f67e47477362b","sha256":"f40f570d81d08dc4a2ad997162e70924c450544a2ab915cc141e0aaa66eebe7a","sha512":"31d0225aa3baa67e4233a91b3bb2bb1cd3a662b199cb03ad9ea97cdbeb1a75c5dee278daa721e562c5d7d8acb351596202c72cf7fdec6f3694ca3a92daf68cd7","ssdeep":"","tlshash":"99c08cc8b0c36e101602782018af24ec90244027744c2b02cd94e8482e220f4c233edc","size":148,"data":"","first_seen":"2026-03-29T03:11:45.668244Z","last_seen":"2026-04-08T20:55:08.977888Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"13d24a663e22b5ab715cc8bfd6d91073","sha1":"b98bbf81ec16ea089cbe2b7ba5ceaf1ca7c84902","sha256":"5a96999c30c227279bd456308e2cc283cd88c377887886be6b8a19b7db6dc1ec","sha512":"3677f6c83de0394ec14059015f93091909a3fd0805b3c708a33f7d0c64ca66f43cc4050fd2fe22ea42669880f0e4c1e637b65028319815cd49f99c69cb5701b5","ssdeep":"","tlshash":"dfc08cc4a0c22d001a22645450af24e49034542a71485b039c94d84c2e220f49237ed8","size":145,"data":"","first_seen":"2026-03-29T03:11:45.670788Z","last_seen":"2026-04-08T20:55:08.937983Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"3e7796d28de328930a765c8470f1cf3d","sha1":"5284004a8a4dde2db0ce65556b8a6eec2b0ef4bb","sha256":"46d03b30353980e9557e1aa16c2f2ab767bbc599faa662793914fada9bb9d468","sha512":"059d9f7cc7c222b3072019262abfdf32f97368aca7a266712141c3abadfa426af19f712ebc9a4959b1240ed8225c3e68a792b1d320ccec0f87a4b6977af24816","ssdeep":"","tlshash":"e731c28c9e9620927db3760d47af229424e3848b480dd0507a0da342afe191bc35edfd","size":1712,"data":"","first_seen":"2026-02-24T07:43:44.987485Z","last_seen":"2026-03-30T12:31:33.31193Z","times_seen":10,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c5a84a608dc01f5319bbb64bcdb330c9","sha1":"3df5956b9d3fab550d01aac4cb64988d04ecb21f","sha256":"50f2d4e2db17752ae0f88c8f8c723920666d43dfdccc0c7430fb5606eefddb5a","sha512":"67ecb987877863443adb5fe2fc89822b27148dd9ecec61b2fe870af0c79faa654c2128c67784cbcddb854e1b4b0368d9cc22cf5b5366975ed68e3fb41c34d39f","ssdeep":"","tlshash":"0dc080c461c36e105601651034bf38d490248436745c57129c98e8452d1b0f04137ddc","size":158,"data":"","first_seen":"2026-03-29T01:48:00.284745Z","last_seen":"2026-04-08T20:55:08.945755Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/timeZone-CiRCeigp.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"7b3d3ee29b11bac37a0727654083c922","sha1":"ce7b9c7cddb4385f2682594417c6656b2a1aa777","sha256":"e98200284369e3360c818436f14acdc441e7a7977feebec05c3b3e0dbd105142","sha512":"457fd0e056db1cd8918fc8a579026802bd1c84fe8bd9950f25c99873c158423f4cd144a8e88bef62078cf78d73e85ed31faeedb90ed653cb0abf8ee5bf72fbef","ssdeep":"","tlshash":"fa019c5a4860cab2b23505ecb1bdb6807e25f820f6564a58661898212f3308579bff4b","size":733,"data":"","first_seen":"2026-03-29T01:48:00.042122Z","last_seen":"2026-03-29T12:11:26.025721Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"6a8542fb4cd04732629ec4a333ec2b5c","sha1":"fc083256dd4efdae8388685f50559d0a1e64ef4f","sha256":"bc8cb348dfb4c4e67bb0ee9db29a20bf56b941778fd1e545812b1aeefbe6e904","sha512":"efb5ff39d26a217a6fdee914b8a8f45096ab8eb2783dde1311a19a0057f430bdcbb463555c815d500d45c64a0f756b055bc5fc8461127c55c1d3baf31717ebb9","ssdeep":"","tlshash":"f1c08cc4a0c26e005a02651011bf24e49034442670485b038c94e94d2e320b0a233e98","size":143,"data":"","first_seen":"2023-12-02T09:04:32Z","last_seen":"2026-05-24T01:03:42.881756Z","times_seen":76,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"82fda33ee3944778eee325fe5cb01ee4","sha1":"a611fd8e22171fbc0fb7282639b4d62cef4a872b","sha256":"80b6072e894b583c874c9d33673e4f31dda16fc30141a550f4602144f4d4d4a7","sha512":"4a86e8dad775f2dd1067d67d0260d541e646a91041919027024975fa7295a78a6a4913eaa91a31649de8608481c04d63d27c4b4da0f95349e4fedf4dc6a1cd74","ssdeep":"","tlshash":"42c08cd4a0d63d2016027950a4bf28e8a038482770485b039cd8d89c3e320f8e233ed8","size":158,"data":"","first_seen":"2026-03-29T01:48:00.275318Z","last_seen":"2026-04-08T20:55:08.956987Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"c524b7762990af5f87f122ced965df19","sha1":"1f1fb2bd7b3b28b8d85ac4b25c19893c4c4783db","sha256":"1696ff4c8f1f6bada86b80bd61858aa5f4bb08875673af1e72e7ecacaccaa56f","sha512":"731b701dd4d0d32094ca0b1c4e10584ff75d3cb5beabb7a834adc2ab8e629a9f53c80b8da17d0028b15b53015014b99645a45ef1cc157bba0ad4d5666930a18a","ssdeep":"","tlshash":"3fc08cc4a0c2ae10160aa45014af34e490244027b5481f028ce8e8482e220f0a233e98","size":147,"data":"","first_seen":"2026-03-29T03:11:45.637673Z","last_seen":"2026-04-08T20:55:08.955887Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"8efb2721c60ab16f63771a2c52e5b351","sha1":"19df3d22bd6f41ac2d8d66a9d7838c680eeb70f2","sha256":"e196ebcf39ed90ab2fd3ff59e665768e4a8cd73fd5e5b2f37b11aba5c07af347","sha512":"ed5d06bc43377b18d4d75d8173ab52912bc5348ef9013a8982e6c901492196ed6411ff18f034d2fa3c4f69cb3812001702c26453bbe8c0b9a5572ad6d2fa72f3","ssdeep":"","tlshash":"39c012d870862d14961ab55255af26d8e064442770885756cca4d95d2d521f48237da8","size":175,"data":"","first_seen":"2026-03-29T01:48:00.302094Z","last_seen":"2026-04-08T20:55:08.930959Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"9caba21a258782dc4b3c680ddc4cb8c5","sha1":"68a430db88e73148030ad70ffa200e272bcfb0f6","sha256":"3d4de4cf797a701dae74af3bfa8cdf3b3f9555f23b19adfa37cd8bce4cb895ec","sha512":"d5ecdbbd2d6be332721d950850f401ba31226b86354c923be445d1569016add0360518a736bb7ad0f4247a5c954f6a6deac6bd5620be1f5256660ead7474cc72","ssdeep":"","tlshash":"a3f0629466a8301d88a61f4d006d781603f0a41ffb818f603cd48ecc2b1e0707a279e8","size":626,"data":"","first_seen":"2026-03-29T01:48:00.271043Z","last_seen":"2026-04-08T20:55:08.931546Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"6c55bb094c310755abe7b77379f22e7b","sha1":"2bcde280af732905ae9afa9a6c330375b2c2c920","sha256":"2b97d249509626c8acf083f787509ed07e9c07dfd40a0877ce47c3c349151b7f","sha512":"4d471369379c847ce97557221ce347bba8f3ab5e2613b1d61c0518ce1fb7948e00b69c0ad3779b606851270433cbcf1860b5060a725ab3f2e540e97698e87208","ssdeep":"","tlshash":"3cc08cc5b0c26d401602651014af78e4a0345426744c1b028ca4e8482e220b08233eac","size":142,"data":"","first_seen":"2026-03-29T01:48:00.285536Z","last_seen":"2026-04-08T20:55:08.930414Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"84f96c32da169b40b5d16f94bc0edf60","sha1":"1d2752fdafef97b3ed4ebb3466cad97b50f098c2","sha256":"ac29404a7e4df1153e339382ba34f7cc413e4b8291393263bb8c5989d8040184","sha512":"854f8a4971d51589f437b4e9712cf2af053ad88ffd26ff6bff916adcee0cd16e2d9250fd934d9c14e085c8fc64d27f5c93231c0ac75fbeb1f84d85aa7641e95d","ssdeep":"","tlshash":"b2d0a7d8a0a77c0052055230b06f2be4a0260426608417159d99f4983d630b0c37ff48","size":217,"data":"","first_seen":"2026-03-29T03:11:45.68378Z","last_seen":"2026-04-08T20:55:08.948976Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/ber-finish-6xQoqTKO.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"importedModule","is_inline":false,"md5":"0f98b0616c69e7514f0b4c90c9d24667","sha1":"ff1ae970c70207426088b59362f7f3d7bbca7c62","sha256":"2249ce17b324b0cd28c4184e85d6565e059770b558be269d4c7e5e2d357733a5","sha512":"eed4b3c726ecd8a720a495ef0a48031ace59411640760e33b405803aa4dcdbd199b166844724dceffe71dd0b7a5f0992c31ab2d0eca2b7f4c373283ff3d07ec4","ssdeep":"","tlshash":"80615bb85a061e209bc34deeffa7b424fd185f27e3d2918002da5f242b1f5b69036021","size":3231,"data":"","first_seen":"2026-02-24T07:43:44.84853Z","last_seen":"2026-04-08T20:55:08.81672Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"79c4f2ab22add649edf14804a564c1a1","sha1":"f319bdf193ab9b1f772f354dc73f061637f56d54","sha256":"6946e361e2179bd6b35603f646f00cdad6b970bd42accb5855c7b10881866f23","sha512":"98ef9fd9a123cc11efc54f4316c9baa2b5aa5107626677fde8e26e57794f183a78cddaeef14037b66b4337795562ac8346de8c418911895242d418c4fc8e81e9","ssdeep":"","tlshash":"17c08cc8a1c22d001656a41020bf24f8a028842a70481b02cc99e9492e220b49233e98","size":144,"data":"","first_seen":"2026-03-29T01:48:00.303123Z","last_seen":"2026-04-08T20:55:08.958016Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"e61c15f487ab50ad1d7a951a2594b2ae","sha1":"94dc5ef137b2c080fe8f90c66a257336b24f38be","sha256":"6f0a5ccff563595e134c66efcffe3b16927cecb93d8127eb96aaa963125c5a48","sha512":"da191a7fde6bf44d33a43fe109b83b0bf7c347f6207cc6229163958dfcba4040b9be35ce9cf9a7b8b48f6d59bcdcb13a254e909096287ad6f0cc08181bd12e2b","ssdeep":"","tlshash":"a3c08ce4a0c26d10160aa41025bf24e890248027b04c2f028d98ec682e624b49233e9c","size":147,"data":"","first_seen":"2026-03-29T01:48:00.268595Z","last_seen":"2026-04-08T20:55:08.923453Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"17eff39af16aca9dff915fb79171c661","sha1":"335f7fc7ca17be11ffee6afc0e40a75a2a14a65b","sha256":"9ff74609194770f84c98be6648c5fb90b40ddc6b9370d3c2a73120879c5b589b","sha512":"c5a67b5982826bb016fe536c11676daa870f6369ce27db5b5e32558ab06f50ed627c09174c26ff2897b5846a2d09a6721a80351e18c49cc5a88ab2d1c7ee6116","ssdeep":"","tlshash":"e8c08cc4a0da2d101617a53128ef6ae89034402bb48c2b12dd94e8583e231f09637eac","size":164,"data":"","first_seen":"2026-03-29T01:48:00.301255Z","last_seen":"2026-04-08T20:55:08.959173Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"137e23690abe1435c06e9107b68be228","sha1":"f669357f8ee74232766527518ce993fd21d319f9","sha256":"54afe9cae26f33f06abf68e8a3ee1b4f463a545f62622870cb4a651a03d12141","sha512":"46265b6ea779d36865b54017f8b145c5e63b8407454ffbca81a4f73628e4af34b31b783ae1b7e32893e23291fdb0ed0d39f64301914feff2ac63de48eddda525","ssdeep":"","tlshash":"59c08cc4a0c22d802602a51914af24e89024402b78481b038da4d8582e220b09233e9c","size":142,"data":"","first_seen":"2026-03-29T01:48:00.291565Z","last_seen":"2026-04-08T20:55:08.955218Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"db8ea538cac15b87e58745d9fe8fd045","sha1":"f51e8bf833e0c0e7c0e4b1b1e80cae7e8ae095ad","sha256":"69cdea63730fb5d92df173e61cd0b8ac712a433f13cc7063cc0501f7787f7082","sha512":"8be85c14f6deec0b8b8c98f7b1ad6f345f8006c249b2408463a9bc75d538426a9b59f6d0b9b20fbcdf30f470b18d3d5f02ee1b1f6837ca8195b265932f72b397","ssdeep":"","tlshash":"5ec08cd4b0d37d01160ab62152ef34e4a034443ab0682b028dd8dd583e238b89233e98","size":156,"data":"","first_seen":"2026-03-29T01:48:00.293229Z","last_seen":"2026-04-08T20:55:08.923948Z","times_seen":16,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/home","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"Function","is_inline":false,"md5":"03260acfe0d715ccc67e7bbdca70504d","sha1":"d60e6adf3ab46f65e060e8519a04f5ba5bf26c2f","sha256":"8bb28e0107bc1ad1a9635261ba95feae0d2c2d762efeaf452de07f8abed411d3","sha512":"3704d537172e480d59700eae1dd190d30e4ec0eb768729bf86d7992803e77019cc9cca46d0411c0404831c6538f083653de1c82790d60441c2c202892cb196df","ssdeep":"","tlshash":"98c08cc9a1c23d002612642022bfa5fcb0289427b04c2f02acd4d8aa2e234f49237e98","size":154,"data":"","first_seen":"2026-03-29T03:11:45.669927Z","last_seen":"2026-04-08T20:55:08.973791Z","times_seen":13,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"s.9a9q.com/data/e8350810119c1f9a15c6b69c1c4fe19e.png","fqdn":"s.9a9q.com","domain":"9a9q.com","tld":"com"},"ip":{"addr":"174.35.85.160","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:48.200Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.9a9q.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 03:23:29 GMT","end":"Wed, 17 Jun 2026 03:23:28 GMT"},"fingerprint":{"sha1":"94:6C:01:A5:3F:8F:AA:47:1E:95:09:1A:B1:2A:F4:FE:3E:06:F7:AB","sha256":"69:19:C1:B7:C9:52:D7:AD:28:45:D8:83:64:05:A6:75:C4:5F:60:32:4A:78:BB:63:48:CA:9A:BB:48:8E:11:2A"}}},"request":{"raw":"GET /data/e8350810119c1f9a15c6b69c1c4fe19e.png HTTP/1.1\r\nHost: s.9a9q.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 29 Mar 2026 12:04:48 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 3717\r\nConnection: keep-alive\r\nx-amz-id-2: VxrkDrhtja0OSGweMAYxOcTMfKyJTtuQBA+saWrH5RAQdGl6eEcaakMQYhJjTKamvOXC8O6y7qj7Bbo0b10umuJOMcLYy8hb7M85WlrqrFE=\r\nx-amz-request-id: GKYBCAD2VAJ8JVXV\r\nLast-Modified: Wed, 30 Dec 2020 10:05:53 GMT\r\nETag: \"e8350810119c1f9a15c6b69c1c4fe19e\"\r\nx-amz-version-id: Y5ouH9xgbgv6_ZtHkamofULjd2N_8KpV\r\nAccept-Ranges: bytes\r\nServer: PWS/8.3.1.0.8\r\nAge: 6031\r\nx-ws-request-id: 69c91560_PS-CDG-04A5e173_31388-542\r\nCache-Control: max-age=2592000\r\nvia: 1.1 PS-CDG-04A5e173:3 (W)\r\nX-Px: ht PS-CDG-04A5e173CDG\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":3717,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit colormap, non-interlaced","md5":"e8350810119c1f9a15c6b69c1c4fe19e","sha1":"311cd08b46a523b8431da6c9e4d082b663592710","sha256":"cd744a2c0158d84a69cc090e9924cbefdb989ffdeda221b764fa80c2159f62d2","sha512":"754dae8788c52622d7b5b2e94386d2045868bdbf9af997c1ead1f9d1049f76f45440fdcaf957f8da835c47baf3f28c95f984cc3c7289b32592a6534271b27b49","ssdeep":"","tlshash":"64716db7c5d06167db70ddb29bf0422a85f92496227550ce59e725ed8c602ac2ba8381","first_seen":"2024-08-19T15:58:37.873882Z","last_seen":"2026-03-29T12:11:26.043073Z","times_seen":4,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":16,"dns":0,"connect":0,"send":0,"wait":28,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/qingliao/front/api/api/queryRoomMsg","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:58.759Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/qingliao/front/api/api/queryRoomMsg HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nTimestamp: 1774785899\r\nContent-Type: application/json\r\nContent-Length: 185\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":185,"data":"{\"params\":\"pdC9UM1p6NjRTiqoNX5quV9Fry9OeZ+B1RfXhhY0He6g0oY4Wa0B1hmVIjSohTL3q5zrE1/hrsCOqoYGu3gW/nB0C0C0LQBmfm1SIIJ0WjM2mfHtJxATnoYpAchVVPlVEVtKQgPTo2DEwBoZ2mFYnk8vkL7eHDNrt02HRQexHl4=\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:59 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-credentials: true, true\r\naccess-control-allow-origin: https://bet9190.com\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd7b3b310daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":62,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"4838b9dcc38b327aeeba8207062e36ae","sha1":"89b185c0239d7da10d90950c6b064eaf075e025b","sha256":"0814e897a92ec18e144b54eefcbbaa7c49341ecf0dfcb0b7c9f951a002d7e156","sha512":"2a4e30fc393651a1751b6107702c121e682bf8b78bc8aad1cc48bd26506386dea7d8d9f3c7330af63fa70ae61bcda3b9f327b33f972b069ddcadd0dd81465d24","ssdeep":"","tlshash":"82a00221ba0e9cf22c6264c94a0c474056e8304041a08a10cd8ca224c60a07a7441a34","first_seen":"2026-02-24T07:43:44.827147Z","last_seen":"2026-04-08T20:55:08.817839Z","times_seen":17,"resource_available":false,"data":null}},"time_used":273,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":273,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/index-B412kKvN.css","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.822Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/index-B412kKvN.css HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e49-ba7a\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\ncf-ray: 9e3ebd179a410daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":47738,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (47736)","md5":"ac357b8c56cadb8e1a954e3b7ad9fab4","sha1":"3f26b92bb4fe8379b7dc9835bc44a819868e9de8","sha256":"bc20b45979ea3ec449896e063065f4e7324525f0b5ddffecf8b95b051fe61cf2","sha512":"2934143f1755cd506ff28b048598134f1a4edf6714058354d2c0e4f3e875048c8ee7becc3a74a17becf662e1b1841fee745810d9f487daec0001c0fb277318b4","ssdeep":"384:RP3kZIU5vlc0bfxKefi3g+eH9VuA+B+Aema8NC0UiM7:RP3kZIU5vW0bfxKefi3QkzN5DY","tlshash":"60232e68cb83315bd2a7d73628f77af68c218763808f49bd63e370558b4954e02d3ca9","first_seen":"2026-02-24T07:43:44.892623Z","last_seen":"2026-04-08T20:55:08.902838Z","times_seen":19,"resource_available":false,"data":null}},"time_used":500,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":500,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/game-center/f/menu/getHomeMenu","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.799Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/game-center/f/menu/getHomeMenu HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nContent-Type: application/json\r\nContent-Length: 2\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2,"data":"{}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: application/json\r\ncontent-length: 10287\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, accept-encoding\r\naccess-control-allow-origin: https://bet9190.com\r\naccess-control-allow-credentials: true\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 9e3ebd1769c60daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":137348,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"1e5edd616a97b87d834c0f1a4d2a41e8","sha1":"31641c55b703c3dacdeed5ad9eb407f2feaac12c","sha256":"633155ac9976cb4c388b809f4299c27d14663e0da7312525223263992db86e51","sha512":"dd4d7afc02eefce2150a0eba6e92b937e23d0defb6f5988c18ff8f94a3412b17e5cf5fff54ac70ec173d547045dbc624023b80fadc78ec9de913b3d8a22ad391","ssdeep":"384:CDp152+0+7td1qYHIG0V4ZDBEhlejKO31e9bvaSM2EIs6MQu9uPKao/svlaLcecg:ehIOqVCTU+7/sW8HfUNNg7mX","tlshash":"32d39d9ac224cc185b2f12f665eb3594b5e92247cdc4ac7ae18e4f7bc5ec33ba301546","first_seen":"2026-03-29T12:05:39.298081Z","last_seen":"2026-03-29T12:11:25.931316Z","times_seen":3,"resource_available":false,"data":null}},"time_used":584,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":583,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/index-CTR2o8f9.css","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:40.096Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/index-CTR2o8f9.css HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:40 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e4a-2c3a4a\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 29 Mar 2026 15:04:40 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\ncf-ray: 9e3ebd068ab20daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2898506,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"3ccbe2376169241cf45b4d67fc830f39","sha1":"e021d458eba43786431e782b0a55e81503bb8f65","sha256":"bd08a7b80dc7f9906f69c6e5ce2199a7ef205805eb977342a15f5346eb6bc3a9","sha512":"6d26ebe05cab0933e9b8c6b7d84cc8bd58410aefee058ec701d55d40d22e70debec356c5706ad4371e87794feb0e7e8c7e3b4e51b2f072e85473a831052ed4ce","ssdeep":"6144:7AuBXlDSSlzxjU+dul+e8YS0dV3cBr44FO:5xjU+w4a","tlshash":"df259495f58d101fa1bbe3362494777e0a26bb13c54f49bdb267399c0f4b28273a2748","first_seen":"2026-03-29T01:48:00.128548Z","last_seen":"2026-03-29T12:11:25.981238Z","times_seen":6,"resource_available":false,"data":null}},"time_used":573,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":573,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/RoulettePanelPop-Cikna7Tz.css","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.442Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/RoulettePanelPop-Cikna7Tz.css HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:42 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e49-faa3\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 29 Mar 2026 15:04:42 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\ncf-ray: 9e3ebd1549dd0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":64163,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (64162)","md5":"08c71aebdfa6d69cf86d71fa5d54fb28","sha1":"0080539f1efbf1b7cafd7f592ed36b3083da0b3e","sha256":"24cecd4a1e578d315835c1d448b827717b04d94fe8d3a8adcdd7f9ad2d9f56c5","sha512":"f2ec7cbff6d1166efe03ac5d5817f1997c787ca1bb03f45f285445c7853b078f287b78d5efc50fd54113e0068fe22a24e7791a75a7504440c2eb282d9d481199","ssdeep":"1536:kWfaOXSErvAGBM0YIW3MwJZ+LtH+H/I9T:kWBT","tlshash":"da539748f19d091e55e7db269e66e73c0513f762854f1b2dbd933b888e8e2c3b1a160c","first_seen":"2026-03-29T01:48:00.244489Z","last_seen":"2026-04-08T20:55:08.85784Z","times_seen":17,"resource_available":false,"data":null}},"time_used":537,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":537,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/web/sport/left-V-GAME.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.964Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /web/sport/left-V-GAME.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 20645\r\nlast-modified: Thu, 10 Apr 2025 08:09:08 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: G.nxrsvsH4JPijgfgafGfvkqiVRuf8ig\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 10:19:38 GMT\r\netag: \"6fc3f616d9b1b8d24e4e751162cb5302\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: 0CvWR74PCc-dVbVhA0BUp7qZZmseecuH0EnNJA2ZF-8U1XE1c4-urQ==\r\nage: 6307\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":20645,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 104 x 104, 8-bit/color RGBA, non-interlaced","md5":"6fc3f616d9b1b8d24e4e751162cb5302","sha1":"52415130c4e9f1b8eddd654779a8ce7bf17d1606","sha256":"b2f951a8ed8d24357a8246f7be121f18dd0f63e1d4f7fccca17dc0e25f0cb6d5","sha512":"10c5b234f3f5665e5f223d5f82d411602c38592eb8dcb21beab9822b76d1874178817c54f941dff9cedffa9b3305328e684e919b7c33b2dee586ea626aa3668d","ssdeep":"384:NkqUXDSwNwD8h0xRH26mgUPbW2H7qWSrUaTBjPq0QBqqq6LxFYLAAv:W54s0xUDPbRbqhbFPqbqqqYYv","tlshash":"6892e04b7985f2dccb9cb53bc1b8914952e7384cd8f8a0846a2d51b7c1c5a1f4acdbe2","first_seen":"2026-02-24T07:43:44.942624Z","last_seen":"2026-04-08T20:55:08.920219Z","times_seen":19,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/Dota2.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.670Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/Dota2.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1508\r\nlast-modified: Thu, 30 Oct 2025 08:15:18 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 3g45dyF9PVqmPb1FHc5G05l5xm9cyUKu\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"57d24bda86f8ba054f780966d882cf2c\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: 3FxtgnGayqF9j5w_A4VvRkzBrsp5TynM1E_zSKcBtWkipxSPhDowRw==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1508,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"57d24bda86f8ba054f780966d882cf2c","sha1":"9f4d1b26acd487dc79f891cde03fca4b3aa80190","sha256":"2728e83666fd396d8940b78ef1456907e573685481b3a1989e5c9d2ae003bfed","sha512":"98e358f87ab45ef0cc2fd1d51bb85952a17ee0bd8f75762f9a9afc697bca800582629c178a38f3079680a1469e2ccf20b9ea27fb02fda6c2ed9ab58150ef7200","ssdeep":"","tlshash":"ff31f9f833f4a09b74b572b87170ace09e60950e2b257700da1d160f78205f0b753293","first_seen":"2026-02-24T07:43:44.901767Z","last_seen":"2026-04-08T20:55:08.903341Z","times_seen":18,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/web/sport/play-video/loading3.gif","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:47.963Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /web/sport/play-video/loading3.gif HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/gif\r\ncontent-length: 79141\r\nlast-modified: Thu, 21 Aug 2025 13:24:43 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 4qnY6jZmQAQjHtQoKhMc7AVA4IpBalsQ\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 12:04:47 GMT\r\netag: \"99eaf010b7e1f170a40bacd9b35c8654\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: LqD5qgrRbCyPZMgqG0SF-EEa5f9RzuJwau1ABU2XY1SfbwRlXx-8gA==\r\nage: 5512\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":79141,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 320 x 320","md5":"99eaf010b7e1f170a40bacd9b35c8654","sha1":"294e96d585510b4bad684bdd26e8f654c256851e","sha256":"abb3f800c4a04442f06602e33a174aa80a0b48abf3aa811699c733032b4bec4d","sha512":"fd10e6727f55b3ad1afc9a9e58422d1d94f34e21308ef49721cb661ae1331bb8308e096f684b9b6f6813f5d0f8a49adcaf15d24f5d45f21597f6c06bf2a918c6","ssdeep":"768:JYo1gzLyvixg0owg9yDgsRmgpmigBgO+g2gAEgMMgYMg4ggmoMgWNg8mgFpfgPNm:OPyvifmUt/ImvU+bNssB3l","tlshash":"3c735c4ea3359ec3fb42113532d823609c616dae9cf9f63b6540fb82477793c98e0662","first_seen":"2026-03-29T03:11:45.546537Z","last_seen":"2026-04-08T20:55:08.903877Z","times_seen":13,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":25,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/index-DJPDMDWt.css","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.843Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/index-DJPDMDWt.css HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:06 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\netag: W/\"69c74e4a-13b9\"\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd179a630daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5049,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (5040)","md5":"09d8281b7fb268ca866e7949bd060220","sha1":"6dc9b84abdb57c29326e33400f21bfb4b76b49fd","sha256":"228e9667b12853df56f546ffee67a64b443b7a600e52174a3e07ba3f6c5f3d3d","sha512":"c114e43e25a875e06b3069591ba40461e6070eac0c2cc171252f572d03d9410a558168c599bd2a56cfd8e627e78219213c5a176d1661faa9f88aa08347a8a965","ssdeep":"48:b3h2qPsz9I1Q6b4cwFtvaAr8rAUKHKTSt9DtgF6:bhEz9IvQLKTKvJ","tlshash":"5ca1211c35da654ac8aa8301ae93069ab9ebfd50a67d0584f3f3730047cdfa40ed998d","first_seen":"2026-02-24T07:43:44.863043Z","last_seen":"2026-04-08T20:55:08.838732Z","times_seen":19,"resource_available":false,"data":null}},"time_used":550,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":550,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/web/sport/left-S-GAME.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.946Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /web/sport/left-S-GAME.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 5311\r\nlast-modified: Tue, 08 Apr 2025 05:46:55 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: UrZvnTXPR7DGbgX5eBk0dlKUVkWIV9JH\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:50:01 GMT\r\netag: \"231d2afa8aa63903b85e60fddff0ebf4\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: cXxpsdMXJjrNQ_5vMYE6e9fGrvf5KuMzuIZoB1aumYlWwQeJHrxvbw==\r\nage: 884\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":5311,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 104 x 104, 8-bit colormap, non-interlaced","md5":"231d2afa8aa63903b85e60fddff0ebf4","sha1":"7e78705923c1fc09c067f1cd54cf2cfac370630c","sha256":"6b0fefea18926f9ad7d6c294a22e50621c1325053c045a956c1ac809cd610061","sha512":"39fcaf9929e6c4caf5dd5a94c8fa725d57b68b01d7698b58ea3b9bbaec664a2a557ed558f0088c89e3d8c9bc0337dbd209b709956cff46332ffeb9d2a838c31d","ssdeep":"96:gaVKXUaaXj3d4L9/2nCRmLAT2c+YVe+No4Z6bLoWeTWIYYE0:8XUaaT3d45eCkLAYqTNTEWY6","tlshash":"07b15ce9a713dddd8f0f3ae3d20f2852ea288ebafdc91860b01cc10e45548d3765a564","first_seen":"2026-02-24T07:43:44.899406Z","last_seen":"2026-04-08T20:55:08.837221Z","times_seen":19,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":63,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/Volleyball.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.641Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/Volleyball.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2440\r\nlast-modified: Thu, 30 Oct 2025 07:24:52 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: NQ03COibTQ0qMosFeFAIy3iWiRso9bko\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"a77a3d9581fdf850064633acad590dba\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: kovR4EicCdFRnZ3IBOFvqajqoF1y3n2LqZjCMTUZiflPWRpQRyLmyw==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2440,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"a77a3d9581fdf850064633acad590dba","sha1":"20e6f75c9fedd2c1896207e440abcb024db3cf48","sha256":"e1c98f88ca1f6277161ba2b652200135f0fa1e315c678ac60a93ded008df478e","sha512":"9c364c1e4ca58b1b6269d7cc172e08d1511185c3b50e761d00aeb70ddc7274efeea7249cecc2723ce173a3f28791c65d4de94ab3408e43114ae1d79756641a77","ssdeep":"","tlshash":"44513bb5cb7eb7c584f250f7c809185a5b537c6e7e031a1edd2119a7875c70c8e8ab11","first_seen":"2026-02-24T07:43:44.938592Z","last_seen":"2026-04-08T20:55:08.837701Z","times_seen":18,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/web/sport/play-video/screen-full.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:47.974Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /web/sport/play-video/screen-full.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 326\r\nlast-modified: Thu, 21 Aug 2025 06:30:08 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: AqyydGDhUt4pLfKo7oqRotKEstjG2p9K\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 10:32:56 GMT\r\netag: \"b99c3e16c9b34834cf73ece527901215\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: x_d7HY6VZKBf2_hTlZsJrGqXFfzHw6AnVHFPCejWdGwvWjZnztbe6w==\r\nage: 5512\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":326,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"b99c3e16c9b34834cf73ece527901215","sha1":"66e712cbfb71dae71ba37f94f0c21bb9afbfc5c8","sha256":"55eb588f64c56ca8e2740a873a2088e9ead2bd9e1b8c1ce82f2fab415f93ad6f","sha512":"59b68db8d3ce899b65d5c452b8878566d05e1bfcc94527478352f996d6f465fb726373e6ffd814c5cb1f4e829653bb357965091372b16d9529bffd904c3f9801","ssdeep":"","tlshash":"38e02697fa00c5e9812d41bd9d634981fe1933eb05172c0dbe71251825015ec9b6e681","first_seen":"2026-03-29T03:11:45.44963Z","last_seen":"2026-04-08T20:55:08.856547Z","times_seen":13,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s.9a9q.com/data/6a8a96dfae77f92525fb67afa082da14.png","fqdn":"s.9a9q.com","domain":"9a9q.com","tld":"com"},"ip":{"addr":"174.35.85.160","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:48.211Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.9a9q.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 03:23:29 GMT","end":"Wed, 17 Jun 2026 03:23:28 GMT"},"fingerprint":{"sha1":"94:6C:01:A5:3F:8F:AA:47:1E:95:09:1A:B1:2A:F4:FE:3E:06:F7:AB","sha256":"69:19:C1:B7:C9:52:D7:AD:28:45:D8:83:64:05:A6:75:C4:5F:60:32:4A:78:BB:63:48:CA:9A:BB:48:8E:11:2A"}}},"request":{"raw":"GET /data/6a8a96dfae77f92525fb67afa082da14.png HTTP/1.1\r\nHost: s.9a9q.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 29 Mar 2026 12:04:48 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 16413\r\nConnection: keep-alive\r\nx-amz-id-2: MtLomWNIciT2RIHjImBtJZJVkNtnFN+oBgC8aS2vdirLpfY/eJlffqJogbXnTD595oE8aloo9ddPAju2cOXCw6qBUNjMzvOM\r\nx-amz-request-id: DRDR3DW5XV0SW7BM\r\nx-amz-replication-status: FAILED\r\nLast-Modified: Wed, 30 Dec 2020 05:27:58 GMT\r\nETag: \"6a8a96dfae77f92525fb67afa082da14\"\r\nx-amz-version-id: xEhuMSdEM94NyB88wESDxPH1cJTtIycZ\r\nAccept-Ranges: bytes\r\nServer: PWS/8.3.1.0.8\r\nAge: 1093\r\nx-ws-request-id: 69c91560_PS-CDG-04A5e173_31388-548\r\nCache-Control: max-age=2592000\r\nvia: 1.1 PS-CDG-04A5e173:3 (W)\r\nX-Px: ht PS-CDG-04A5e173CDG\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":16413,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"6a8a96dfae77f92525fb67afa082da14","sha1":"02a23ff013063cce3979953182bd31497720e74b","sha256":"cc9374e0871fbb505e4d6d4864e66c3c854e14bdfe8423f38f6b7ba07f134d3b","sha512":"0891427f9e2c53b157fe50e7290a2ee535da37c1919886a0407aa6a403c3ad1ef8c282e61eee95da65044002c2809013f69f425920662c072110d0968dad13d7","ssdeep":"384:lUzl5si7brZIBy88pyCSpLeA7CXa2LQaklN0FZBbDk7Iu4T:8siPGBgpytx7CX1LJe+Z5AX+","tlshash":"b072c0c50da326e93b560480fc29ea18f8ba514fcddefeecde2163b13658f0c1600665","first_seen":"2025-09-28T13:15:53.760967Z","last_seen":"2026-03-29T12:11:26.091272Z","times_seen":4,"resource_available":false,"data":null}},"time_used":93,"timings":{"blocked":63,"dns":0,"connect":0,"send":0,"wait":29,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/game-center/f/game/getGameSupplier","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.811Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/game-center/f/game/getGameSupplier HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nContent-Type: application/json\r\nContent-Length: 2\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2,"data":"{}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://bet9190.com\r\naccess-control-allow-credentials: true\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd1779f10daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4199,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"55d236f839bf17fe5bce4a4bb6c9a648","sha1":"002b6bad313ad49e7ef517d2073c25aed612bc34","sha256":"8279b6260daca5aca5752a0ff328da677077d45ec2531d59fd6df69dbdc97d5d","sha512":"77e9ce3bd7b2f6ebe685e85e97dc2d9216f43f6ee91029f48aae867e338558c762ee5af0f77deb4b8b965aed692ecb9b502aa4086c0692e05ef9141231e1e928","ssdeep":"96:oaGzWoIGbCsf/GzwEwookaPq6xfj22ZWL9wvCuITs:U+zwEwookaPvfjdZWL9wvCuITs","tlshash":"57816e4de3049c5e22f2297379ea24a428e8323bec811db8d65d1def99fc74c9431e15","first_seen":"2026-03-29T01:48:00.129677Z","last_seen":"2026-03-29T12:11:26.065778Z","times_seen":6,"resource_available":false,"data":null}},"time_used":564,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":564,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/match-bg-_gNniLmI.png","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:47.170Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/match-bg-_gNniLmI.png HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/assets/index-DEQCjo-d.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:47 GMT\r\ncontent-type: image/png\r\ncontent-length: 16484\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:06 GMT\r\netag: \"69c74e4a-4064\"\r\naccept-ranges: bytes\r\nexpires: Sun, 29 Mar 2026 15:04:47 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\ncf-ray: 9e3ebd32d9340daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":16484,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 369 x 114, 8-bit/color RGBA, non-interlaced","md5":"655724e50b9763abfe70ce8f3f1f1271","sha1":"f3f8fc8d139c714743752178215c14111d44ecc6","sha256":"4f7123795c0956d70ea037fdafcca8124d2073b029dcce560c24baa0a61a8b0f","sha512":"544334e171404a612c0b00795a987c308779cc0b8dfbcbbb606caef6efe0bc4923fd34e625b4e69b492c62f83212316eff42adef3cb2f364fdf319b48273cdde","ssdeep":"384:GvrB6VCW7e0FGrQKSh3o24tZ5EzYs/ptHVeBcWLZHcZ7KG:E8je+GrQjhUHizhVmcMM73","tlshash":"7772d145c91a90e48fa8651601e74d326a1bd4ac2252182ff4f39dcbbff6b4caa12107","first_seen":"2026-02-24T07:43:44.87387Z","last_seen":"2026-04-08T20:55:08.830584Z","times_seen":17,"resource_available":false,"data":null}},"time_used":56,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":55,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/web/sport/play-video/muted-false.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:47.973Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /web/sport/play-video/muted-false.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 790\r\nlast-modified: Thu, 21 Aug 2025 06:33:42 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: GC3F3L2ES3nSViN1HhrJkbyxRJaY3mhG\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 10:32:56 GMT\r\netag: \"3ab897b9977ae66cb86a1f0f782271a1\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: cLMaPmU-ajkpVHFRSUHPWrkFzI0a246tjx_Jh8whOyMHXdPhPun1QQ==\r\nage: 5513\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":790,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"3ab897b9977ae66cb86a1f0f782271a1","sha1":"899a84a6f59a540ec9f340021ae1115063b3d7aa","sha256":"fec79a725777ddc06519f102865feb093ce2f3d2cc85bc1cf7e26777d36ae14f","sha512":"0b0bbb311380dfbba0d97b3c4fb34640bea21597ed129a314049d27b00b9e7f451a0451f521fa56f322ca3de52a85740019c5ea9bf7458b7ca91b3982b1b5a30","ssdeep":"","tlshash":"ad01cac35b3cfce56c4b4319446506ed3b2b52171540540466b1da146e09e49a64ca83","first_seen":"2026-03-29T03:11:45.573298Z","last_seen":"2026-04-08T20:55:08.871798Z","times_seen":13,"resource_available":false,"data":null}},"time_used":75,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":73,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47.m3u8?txSecret=835e895543efc14dd6238f2e4935c20f\u0026txTime=69C95AB8","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:53.034Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47.m3u8?txSecret=835e895543efc14dd6238f2e4935c20f\u0026txTime=69C95AB8 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:53 GMT\r\nContent-Type: application/vnd.apple.mpegurl\r\nContent-Length: 338\r\nConnection: keep-alive\r\nCache-Control: no-cache\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:53 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 220B216511C7022A\r\nX-NWS-LOG-UUID: ca3498b3-be82-40b9-8291-fc1fe8c43115\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":338,"size_decoded":0,"mime_type":"application/vnd.apple.mpegurl","magic":"M3U playlist, ASCII text","md5":"c5eefb96d9c11817789354ba4a65d8d0","sha1":"84f0884a00aa38ef012d25bab5e5e63cf3838416","sha256":"69f5e1514c99f8dc57ac243ec0076fe02ac328c1eeca15372ef1a27f3ede8ce3","sha512":"480b0e21deefd25ab9ad9b16026c06fbf8bd4eb6ade5d70da1d88c577704fd0198c8007f14f6d473b92068e67f37c6f9605d48534465b48ff4afe561871334c8","ssdeep":"","tlshash":"70e086b3235fb1c682ac84d1c06644aa2bed1ce68edde6531cb0b703399bd1d77c0990","first_seen":"2026-03-29T12:05:39.309123Z","last_seen":"2026-03-29T12:05:39.309123Z","times_seen":1,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/index-DEQCjo-d.css","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.840Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/index-DEQCjo-d.css HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e4a-1f686f\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\ncf-ray: 9e3ebd179a620daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2058351,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"6b4ce48416711ca407cda8cac4f8352d","sha1":"456c3dbdf0513321633ffd731d89a65800f61497","sha256":"ce7a3117fdf4bd4ce5aef542df378c90c54ca486a9fe40ccd7c99e7e7c72760a","sha512":"d33f2bd88738f9086194b3f1bfd6e572ef5e8c3d98c8d988f87fea034c3e94381163f5de74bb577223f1d47c6eb25ff40486fb8402704dc4ee6330ab4d4de9a5","ssdeep":"1536:/r7m5xACXXmBDlFR6JlI4j20qEIwLa6SUL7pE7reJZYKfPOhjtFBCRtAQ7WUSsYg:n6SUL7p0aekrxfIwr5utTnQwzD4bEm","tlshash":"a0257184f59d011e64b7e77124a4b77d0a23b752c94f1e7aa2673a8c0f476cb73a2708","first_seen":"2026-03-29T01:48:00.064303Z","last_seen":"2026-04-08T20:55:08.858507Z","times_seen":17,"resource_available":false,"data":null}},"time_used":311,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":311,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/template/sport/vi/WAP/icon/ssty.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.316Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /template/sport/vi/WAP/icon/ssty.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2394\r\nlast-modified: Mon, 09 Mar 2026 13:13:40 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: RR2odtn8laarvaRKVKZjg4UcPhF2U6Eh\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 12:04:46 GMT\r\netag: \"1eed6cc114d9e1494a90e23757b5277a\"\r\nvary: Accept-Encoding\r\nx-cache: RefreshHit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: kDP8YoQfP-SuKSVmFIf68Tp8xJ3A_nxnhuUlbMr3x7SzFa2HYf6L_Q==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2394,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 144 x 70, 8-bit/color RGBA, non-interlaced","md5":"1eed6cc114d9e1494a90e23757b5277a","sha1":"5a0003fb9c1c8d88d7642c8c6bc63aa59a7d651f","sha256":"7f4cdbbf6ed69e10b8f3863d22f75ae82e1e75e637f7dac37e01fd364d87dc32","sha512":"3a6842d397aa065954592b23788857baec3a09684cb255ff1221e54b6d83660453de63f565d1f008eddb08dd7d7519f485581b2e01559c690ad3bbee59d2d253","ssdeep":"","tlshash":"61411a72568065ef800edddc8c02cb0931f39e91ca035279fd72384a40d196e4b7bb2d","first_seen":"2026-03-29T01:48:00.231135Z","last_seen":"2026-04-08T20:55:08.92286Z","times_seen":17,"resource_available":false,"data":null}},"time_used":760,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":760,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/Basketball.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.636Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/Basketball.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2169\r\nlast-modified: Thu, 30 Oct 2025 07:24:53 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 9mUX66gBVyZOMG56oToc_Lq.6DtBWJbd\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"3bc84cd40d11e4d27c5583b092f1037c\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: 7hypGGIE7jUlG2PnSv0sqE000ESCWXNAZLWf5e9quVCKjQ73qlloCA==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2169,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"3bc84cd40d11e4d27c5583b092f1037c","sha1":"b0e0b259bb8cbeba80319f0c702dba9b2d553c97","sha256":"095089e4049906dff6af9115d83bebb3cd8bec2619c94e0a18ad770ca14b21d2","sha512":"4843f563c164694435bb9b5265773671c60cd1b7b54b807e092d209d60b4b283d4d14a2f3ce08c483f88022e28209c334bc5a8975298cba4fc1238409980ff9d","ssdeep":"","tlshash":"fc41f9df6bebbdd921d787d0a51b7476a41a15a687b96e1f6d0f1940804408a0a0a262","first_seen":"2026-02-24T07:43:44.864025Z","last_seen":"2026-04-08T20:55:08.885876Z","times_seen":18,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/LOL.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.677Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/LOL.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1718\r\nlast-modified: Thu, 30 Oct 2025 07:24:48 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: tvqHxG_LCOq7tbtOFq.kA_VYyI4IboPR\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 10:59:01 GMT\r\netag: \"93148afde191a51602b328146f40e0b6\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: 9w7CjB9VH-3NK70jyJKhs3pI4799wk-j2dzBegGO6PzYa6atyPY6gw==\r\nage: 3945\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1718,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"93148afde191a51602b328146f40e0b6","sha1":"01b465065622c10103f34c4eff848ec8e45ddce1","sha256":"63a77979637446fecc2b8e38aa87557242d4a7afc85f84b4c1afce0687bb0530","sha512":"20b579659b31d329953a2e5973f499463696cd6e15e4b803a53c38357a5757de1a86906dad3155147ffa02860b4b7a00480c9654aa4fe04bef71f1f2488921b9","ssdeep":"","tlshash":"ab314da426e012a099f8493e019e1024ee156f010edc31991fc0ab7d5e0047212ec8a3","first_seen":"2026-02-24T07:43:44.902915Z","last_seen":"2026-04-08T20:55:08.914399Z","times_seen":18,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47.m3u8?txSecret=835e895543efc14dd6238f2e4935c20f\u0026txTime=69C95AB8","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:56.188Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47.m3u8?txSecret=835e895543efc14dd6238f2e4935c20f\u0026txTime=69C95AB8 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:56 GMT\r\nContent-Type: application/vnd.apple.mpegurl\r\nContent-Length: 338\r\nConnection: keep-alive\r\nCache-Control: no-cache\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:56 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 220B216511C70233\r\nX-NWS-LOG-UUID: 380eb136-6692-47ba-b3d1-15599dd3f34e\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":338,"size_decoded":0,"mime_type":"application/vnd.apple.mpegurl","magic":"M3U playlist, ASCII text","md5":"530f9ecdddda5de26b1b510de1e2f19e","sha1":"9a3a773a1abe113f6c48bbb8d3be6d29658a737b","sha256":"f4683f5f1c59d31dc2198e2ce3ab45d6225f6f3ebff4b0b8f7ac0adc3463087f","sha512":"bea023237292ce6edfb30ff57d0ea7981140837d44a4a641e7a0712c9dfcf5814d90b742661d00e919787e28c3e227faca240522f8d65db8cdb1858aaecef70b","ssdeep":"","tlshash":"7de080b3235fb1c5426c84d1c05544a63bed18d68edda1571c70b753799bd0d7780d50","first_seen":"2026-03-29T12:05:39.312581Z","last_seen":"2026-03-29T12:05:39.312581Z","times_seen":1,"resource_available":false,"data":null}},"time_used":203,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":203,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785637.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:56.264Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785637.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:56 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 1037008\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:56 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 0F0B21652E87491A\r\nX-NWS-LOG-UUID: 3692ec1e-ed0e-4bd0-be2d-f2f124700f7d\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1037008,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"138c12df4545f36e4c5f93d7bc1d9e04","sha1":"43df70a21b4ae5825f3f992698e5fc036ffef069","sha256":"9e565178e50a20e063484b680b4059f71afb11ca4585ec8faffd26cf2d29120c","sha512":"b03d23c80346d1e95b25b7afae4e3a14dd1040c67f653e6e1b70922b070b2c3d6fe198fd3e3d7b0ddd3c3298a147c0899b5e7abc06235fcb76bcf9fc1bc4bd39","ssdeep":"12288:f6BsYQPz4OYTqG4BMJem5zsuwfBSKU4M4RJlYKPHILGpVqEtfD07idLLGhU8yDTn:fmEzRp9OJegU3JlBvILGpVbfwkYcbWe","tlshash":"6b25238e4720beb35d158d5682cb8bb2d73b0dd96e449f9b58247b88f4f8c86c45063b","first_seen":"2026-03-29T12:05:39.31406Z","last_seen":"2026-03-29T12:05:39.31406Z","times_seen":1,"resource_available":false,"data":null}},"time_used":289,"timings":{"blocked":54,"dns":3,"connect":19,"send":0,"wait":78,"receive":102,"ssl":29},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/yidun-captcha.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:40.101Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /yidun-captcha.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:40 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:07 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e4b-2adc\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 29 Mar 2026 15:04:40 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\ncf-ray: 9e3ebd069ab80daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10972,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (545)","md5":"7b000b02de7b102d639a4a2517fdb04c","sha1":"e4013200733675ad0afbf553f532c866ca3efe87","sha256":"05aa7fb82aa3a5d8e59c925af30c7b8cea0e4ee6edc2f5ed4eeb7a4a3fa12c80","sha512":"94ab54a1f10394efcb2c2fb09dcab29d70e8c59f6f99619b04fff6ee1863830894615f7e2b00ac0c665e2bba3a2ede048b1e5de6bc05c033c2f80c6cf9771a9b","ssdeep":"192:A6yPdWboBIB9jSAhp1xDBeMS9rcIIiQaQPBYKqH3T+HyaiQSrvSIDl0IQAgWLEnr:A6yYboBOS4AcIyuf+I9R2AeCdkvh","tlshash":"1d328319adf960675d1bb0bb94af9004f6788953080c9e117e8de340df909b85feafd8","first_seen":"2023-11-27T10:52:49Z","last_seen":"2026-06-05T10:13:38.009555Z","times_seen":203,"resource_available":true,"data":null}},"time_used":70,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":70,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/Boxing.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.662Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/Boxing.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 992\r\nlast-modified: Thu, 30 Oct 2025 08:15:18 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: HwBnc2KK6C7tlHUhCS8O0eyqqr.beFnA\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"48b9ed5fb268742146bad1765584d174\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: Hnm_E49IppNCNHI7gP9fPfg-utIhxTVYKbuwjLMnBwJVTWzQn7fh0A==\r\nage: 2761\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":992,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"48b9ed5fb268742146bad1765584d174","sha1":"05248d07aabd59b9f6aee9387761db9e5aaf3fb0","sha256":"2682707839ccfc1cbbfcf9040c3ce673eb6b9891fdab4903eae5d3dcf745c448","sha512":"0d1136be4c799d16606fe4ea73a596a5692326d91fd9a35e2b9f395aed8d9ec98640306a386a8b75a61b349b2004fc1c7bca56b54b1c50f7fee39000747619f0","ssdeep":"","tlshash":"b211a5dcb383bca0be5d98348626318cfd3b268eb060884678043c805e14e3124c1f68","first_seen":"2026-02-24T07:43:44.826149Z","last_seen":"2026-04-08T20:55:08.898046Z","times_seen":18,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785639.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:57.908Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785639.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:57 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 764220\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:57 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 220B2165202A9F19\r\nX-NWS-LOG-UUID: 475e4581-c31c-4791-a5b4-bed936b5637d\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":764220,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"9ea93186d401fac1f8ef4e49f7dd90dc","sha1":"d0d4896e15c663b5181f4930711e533e1e4fad2a","sha256":"59f675ecb5b0b5a6f8f6575acd5fdfe6d552c3575b8411e767d66c80093b292c","sha512":"b6429b593605ec92a56dddfd0dcf656987e299754727fff30fff0a29c52aa91d968c63764fb1eda091af247755747136880b3fada9a76f6af84f7431a665a4ce","ssdeep":"12288:uEO1gGtVficsE4UFKuSRmKp5M0Te9BDboIH0s+YxsokpkLDzjQ2wkOREuM:uXqGttQBvp5M0e9Bb0s3sokpkvQ22REj","tlshash":"69f42389a7521f3b8818fe92c9924bb2c6354e5f6e45ff2f08343785fbf8255c918426","first_seen":"2026-03-29T12:05:39.316752Z","last_seen":"2026-03-29T12:05:39.316752Z","times_seen":1,"resource_available":false,"data":null}},"time_used":82,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":22,"receive":60,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/RoulettePanel-BoKSUyos.css","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.441Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/RoulettePanel-BoKSUyos.css HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:42 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e49-10621\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 29 Mar 2026 15:04:42 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\ncf-ray: 9e3ebd1549d70daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":67105,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"770d1196d3a5dfa4ee80418b944033c0","sha1":"ecb5f4cbc0227272ee8d1dd2baa1206b9d96ea31","sha256":"1dfce4eda68f5da4d1f219f21512f15590fc07fb78e23de7ba6e26be8022d7f6","sha512":"2ee72c16bb7768bbc3a980b291575861432dadb56e9d43778cb6894c6d24d301c749f72ddf1eb6a7a45a7c91826b08d269597689c86353ef09560ed6dd7c284f","ssdeep":"1536:opcvnidd8Wv3G1PRNt2lJQYDawmYU8PGlYq:op4lYq","tlshash":"3e63d884f19d783fd5bbd3252c94b62e0512b762e50fdd29b9a2f9ca0b4638362f1704","first_seen":"2026-03-29T01:48:00.059596Z","last_seen":"2026-04-08T20:55:08.899624Z","times_seen":17,"resource_available":false,"data":null}},"time_used":276,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":276,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/site-intqf/siteNotice/202603/068c9949b8fe4baa9bb412dac75f474c.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.693Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /site-intqf/siteNotice/202603/068c9949b8fe4baa9bb412dac75f474c.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 153099\r\nlast-modified: Mon, 23 Mar 2026 13:02:04 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 4JbKWcSGFWeBJBSdOgFHbPVQQI2SQUWX\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"ff591c940dd141818e6c9b7e445d19a2\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: y7Wj-JsrH51vJosRoxvok4kGKf7BBbO4KRGHF_Gq0EZXGuU9sVTlmQ==\r\nage: 2760\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":153099,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1920 x 500, 8-bit colormap, non-interlaced","md5":"ff591c940dd141818e6c9b7e445d19a2","sha1":"89d50306c43a040c7e372875673649c9bd336aac","sha256":"66ee5a0ae3b940ed9787b200bad06c1fda7a1b301b034108b0cdf0323ed29e59","sha512":"62a24079c0b6f13fe234346dba4090e18d72cc7afaa422b8bd6181c9d26a7fc728956b343c2a1a660e24d688307427f93e199ccea4d860397cef46290891e477","ssdeep":"3072:kcDJhGyoVuVWX722e41H7mi1Z0/cVY5nbr19RSd19yy8XM0DfZum:pLG/VIiCXqbocVQ5BpZtum","tlshash":"90e312d2642ef9bf0fd0d8a2bd6794c5c275d4c9fd97829a6240b931c6b8211c10bbe9","first_seen":"2026-03-29T01:48:00.260476Z","last_seen":"2026-04-08T20:55:08.91678Z","times_seen":17,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":24,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/site-intqf/siteNotice/202603/be7a18b8c42e40c9a64be40dbebe2d47.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.697Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /site-intqf/siteNotice/202603/be7a18b8c42e40c9a64be40dbebe2d47.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 151103\r\nlast-modified: Mon, 23 Mar 2026 10:43:59 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 2iNJbs7hUox.sd49WVgYnmNgCZc7gVzI\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\netag: \"6c28d4f9a926c40cb0e456a647a60721\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: 5MUuNbojhsF5da_a-ZRrBDvp7ONFnBzdWWKQyYUGy74ULqf4dhxtfg==\r\nage: 2761\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":151103,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1920 x 500, 8-bit colormap, non-interlaced","md5":"6c28d4f9a926c40cb0e456a647a60721","sha1":"c19e4a59abca2b125fbcd03ad06c1da32698832d","sha256":"62a06130a0cf2385a267487fbc01296e498dd5e4eade608ac343ed33ed3909e1","sha512":"9e209ee8ecda5cea7c9dbd0eed53ba3ad9b213e0940b9005acbd83f85efbd5090639e2b2810d524f524dbb10d597d9c57a004510e85b9ba738fc2971f87bd71b","ssdeep":"3072:HPW4rpjhm1RwXaFqRtUji9+t99iJuM6y4y/CVsr:drpeRwX8XB/9u6VM","tlshash":"09e3128d516288387ae0353c0727535de316c2fa4421d6d2f601afa4f8cb75ef299dae","first_seen":"2026-03-29T01:48:00.034738Z","last_seen":"2026-04-08T20:55:08.882014Z","times_seen":17,"resource_available":false,"data":null}},"time_used":32,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":27,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/club_1-3MFTSt52.png","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.901Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/club_1-3MFTSt52.png HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 5542\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\netag: \"69c74e49-15a6\"\r\naccept-ranges: bytes\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\ncf-ray: 9e3ebd2498760daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5542,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced","md5":"5b06818fb5ff1ce9bf1a5ddd9632ff91","sha1":"4e1ee2ff89d2a8b771e343a8b1b8a1d506b1c887","sha256":"d8f6dff4efb83fa793ead3973dad288e3536b20faa1f9edb80c59d7cf86e9ff2","sha512":"645eea31532259db1ca1c1ec4c37d72c2c30eb11af7d5b6bd5c8812cb60a5d022e8d7f2dbfb28bf7099c90ee41d9b27fd9b361fb1c1decfc97b4b77ed958ea1b","ssdeep":"96:2OtEiK4eIwi6zV7mkYpdPHa9980dvSjjeHXfzVlPl7OqhMysbtwNjyWwRKV:2tdqymkYpdPaoISjjEXfzTPNbuNtwNq8","tlshash":"62b17db3773aee2edb82630b933d5121d0b935101bf567b493bc8a61f5c281336a5b10","first_seen":"2026-02-24T07:43:44.947266Z","last_seen":"2026-04-08T20:55:08.895677Z","times_seen":19,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":57,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/Snooker.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.650Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/Snooker.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2381\r\nlast-modified: Thu, 30 Oct 2025 07:24:46 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: UZdpMBo9d7PjTEffJcyF8k0KsfpjrTj3\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"4c973d32652437201f645caea42c2738\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: TXUm_7AifvQbbGYg-54b2FpVjnbgs1kN9DOtfDaZE4GOxgT-ILFxFw==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2381,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"4c973d32652437201f645caea42c2738","sha1":"a36e3f8516cfd2bce0fd63677b52b28c143bccb2","sha256":"5e3ae385ef985d2348d48edd3c04896b3f8cd1213c385e61c81fe9215b6d713c","sha512":"2bb778708f431af25f52d12163e9197ab783d2f1e833511e033b504921eaa707bfb2b769221cc9a5fe2923ba6d8e8991c9313be3a20e775176be7349cc1c2125","ssdeep":"","tlshash":"3d411aff5de43830f994c7eed19b31a02a1a612635d95c02d0219d7fb04431310aad98","first_seen":"2026-02-24T07:43:44.819016Z","last_seen":"2026-04-08T20:55:08.853562Z","times_seen":18,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/EFootball.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.723Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/EFootball.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 3024\r\nlast-modified: Thu, 30 Oct 2025 07:24:47 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: ca2SMBU.Lfck8L2iK87WO4Q_vVEu3_es\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"5da985096a9443a36b629e7259b47640\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: 5Co6HR1w36pGmzpT3zqrLXSYI197pKIhjbB0h-cPf8fT0yTbswGZfA==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":3024,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"5da985096a9443a36b629e7259b47640","sha1":"a8bf75ad01ec1986a6d935bba2e895db1ce83686","sha256":"320fee3c95fe8621f5e278de0c5a0edcbc3d8389fb87798bb3016c505598a98f","sha512":"1971c993ef387d85375a7d64e3c6cd899a858b11dd8b6701287ebb17156cbb2988b0d27adabf29330373c5a30e777f3398db6b034530838b33cdcd44fa766d3e","ssdeep":"","tlshash":"b6515d949b659df18bbe59fd74438db2f000eb0827b9a26e21b546780e13c65e03b0f4","first_seen":"2026-02-24T07:43:44.879159Z","last_seen":"2026-04-08T20:55:08.851274Z","times_seen":18,"resource_available":false,"data":null}},"time_used":63,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":63,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lf1-cdn-tos.bytegoofy.com/obj/iconpark/icons_15107_188.0655b3de50b840e93c985eac1507fc40.es5.js","fqdn":"lf1-cdn-tos.bytegoofy.com","domain":"bytegoofy.com","tld":"com"},"ip":{"addr":"163.181.243.177","port":443,"asn":0,"as":"","country":"United Kingdom","country_code":"GB"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:40.103Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.bytegoofy.com","organization":""},"issuer":{"commonName":"RapidSSL TLS RSA CA G1","organization":"DigiCert Inc"},"validity":{"start":"Mon, 19 Jan 2026 00:00:00 GMT","end":"Mon, 18 Jan 2027 23:59:59 GMT"},"fingerprint":{"sha1":"3E:44:54:E8:1E:67:87:C9:9C:01:D8:41:12:36:DD:65:49:E7:95:E9","sha256":"34:DC:66:D5:B6:92:CF:76:AC:9A:4B:47:FD:E1:99:C7:79:5D:45:7D:91:42:D1:22:91:D8:99:02:A1:92:DB:1F"}}},"request":{"raw":"GET /obj/iconpark/icons_15107_188.0655b3de50b840e93c985eac1507fc40.es5.js HTTP/1.1\r\nHost: lf1-cdn-tos.bytegoofy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: Tengine\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 64277\r\ndate: Sun, 08 Mar 2026 13:10:30 GMT\r\nvary: Accept-Encoding\r\ncache-control: max-age=2592000\r\ncontent-md5: XboK+DP6AV4ynW60MQ50WQ==\r\netag: W/\"5dba0af833fa015e329d6eb4310e7459\"\r\nlast-modified: Mon, 27 May 2024 22:41:23 GMT\r\nx-tos-hash-crc64ecma: 10278901992462213962\r\nx-tos-request-id: fc4b7ead7545839b69ad7545-fdbdgdc02g28gc30gg12\r\nx-tos-response-time: Sun, 08 Mar 2026 13:10:30 GMT\r\nx-tos-storage-class: STANDARD\r\nserver-timing: cdn-cache;desc=HIT,edge;dur=2\r\nx-tt-trace-host: 01403f40cc3614c9b7396647d07ca428cfa93cb821d7d8d112eba16e43089879b83ed1afea73b69257f2702fd991336eee57bb7000b76057e3927df229dd1e54968c6373337f5e2feae7b0866f25cec4f12e725fd3419ceffac5f81e1e7c499378\r\nx-tt-trace-tag: id=03;cdn-cache=hit;type=static\r\nx-tt-trace-id: 00-26030821102902F2054BEF98ED729C6D-0681AF9A51A94892-00\r\nx-tt-logid: 2026030821102902F2054BEF98ED729C6D\r\ncontent-encoding: br\r\nvia: ens-cache24.l2de4[0,6,200-0,H], ens-cache11.l2de4[7,0], ens-cache7.gb9[0,0,200-0,H], ens-cache20.gb9[2,0]\r\nage: 1810450\r\nali-swift-global-savetime: 1772975430\r\nx-cache: HIT TCP_HIT dirn:11:743464515\r\nx-swift-savetime: Thu, 12 Mar 2026 16:50:31 GMT\r\nx-swift-cachetime: 2233199\r\nx-response-cache: edge_hit\r\naccess-control-allow-origin: *\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\ntiming-allow-origin: *\r\neagleid: a3b5f3a817747858807393983e\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Tengine","description":"Tengine is a web server which is based on the Nginx HTTP server.","website":"https://tengine.taobao.org","common_platform_enumeration":"","icon":"Tengine.png","categories":["Web servers"]}],"data":{"size":237293,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"5dba0af833fa015e329d6eb4310e7459","sha1":"11a409ebbc4676239563c05bbedfd4a420d43a4f","sha256":"72e6fc8be817e2b3aac9378f35b17114173704eba81fdc46a1ce4d57cc4cb8cd","sha512":"9425d5c7bdcd5874bdd3e6efd4d95b3f08c07d4adcf0193c1c07bab21206a1317f9e5991b2fad78fb6f09d306b11226454170d9e28b2eda3aba8b84976b48b87","ssdeep":"3072:Xv7GhAyLfr6ZpAVdUbGly8auCanDn+/kxbQ9fak13c8rLhDGrdco5g5DBuYb8ps:Xv71rig5NuYb86","tlshash":"4234fbe73360e06c368746759bfe7952221e739830c583b065bfc5f413635a8ea6bda0","first_seen":"2026-02-24T07:43:44.923887Z","last_seen":"2026-04-08T20:55:08.82443Z","times_seen":19,"resource_available":true,"data":null}},"time_used":1391,"timings":{"blocked":652,"dns":489,"connect":23,"send":0,"wait":27,"receive":49,"ssl":148},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/RoulettePanelPop--VcxjCzC.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.447Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/RoulettePanelPop--VcxjCzC.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bet9190.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:42 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\nexpires: Sun, 29 Mar 2026 15:04:42 GMT\r\netag: W/\"69c74e49-77c\"\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd154a090daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1916,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"Java source, ASCII text, with very long lines (1915)","md5":"9189ba5aeceda2461d1e54846e596018","sha1":"d072a30db8b0dfe1210bef114c927044b0759774","sha256":"7d44ed6d066b2c6f7df2408b54456db568f2a44ffb435b3eddaf9ab4b5f66915","sha512":"b761503ac405875e69b382e537f3e8ce07c79fd4cb7ab3bc7e228dae215c44d36a41336753f5bde2340f725d55e1c3cfad86960cd0679d3732f9d5ef5c1516ed","ssdeep":"","tlshash":"7941868c753685b584674fdcf41c04e1d408b3c86230b9d976e908693b519e2943ef6d","first_seen":"2026-03-29T01:48:00.109576Z","last_seen":"2026-03-29T12:11:25.938187Z","times_seen":6,"resource_available":true,"data":null}},"time_used":550,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":550,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/ber-finish-6xQoqTKO.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.853Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/ber-finish-6xQoqTKO.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bet9190.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\netag: W/\"69c74e49-c9f\"\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd17bac60daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3231,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (3230)","md5":"0f98b0616c69e7514f0b4c90c9d24667","sha1":"ff1ae970c70207426088b59362f7f3d7bbca7c62","sha256":"2249ce17b324b0cd28c4184e85d6565e059770b558be269d4c7e5e2d357733a5","sha512":"eed4b3c726ecd8a720a495ef0a48031ace59411640760e33b405803aa4dcdbd199b166844724dceffe71dd0b7a5f0992c31ab2d0eca2b7f4c373283ff3d07ec4","ssdeep":"","tlshash":"80615bb85a061e209bc34deeffa7b424fd185f27e3d2918002da5f242b1f5b69036021","first_seen":"2026-02-24T07:43:44.84853Z","last_seen":"2026-04-08T20:55:08.81672Z","times_seen":19,"resource_available":true,"data":null}},"time_used":530,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":530,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/RoulettePanel-hrPcCIp6.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:43.004Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/RoulettePanel-hrPcCIp6.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/assets/RoulettePanelPop--VcxjCzC.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e49-1b76\"\r\ncontent-encoding: gzip\r\nage: 0\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\ncf-ray: 9e3ebd18ce240daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7030,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"Java source, ASCII text, with very long lines (7029)","md5":"8d98d04035ae12adf3de592db065923a","sha1":"4b4fe096b214b9bf9d8a14a4246516d556529acf","sha256":"6a9af2c9069fb7312a17456c0513b638b8d9e0de95ebd6e374fc37d82fcc230d","sha512":"ff575c81a3b30faf6b47a5d5d021d67ef950cf8280e64fffb3ea7102f1df8576060993e7c0d961f567de52380af3f833e486c1439d2fcd10fd6b6bf21c375b82","ssdeep":"192:kzQ7ToVAkPRTVQFUR4NXsby7yB3bexS96yG67:kzQ7sukPvQK4yTpe096yGm","tlshash":"7ce17e89f1418d3b44a336c525a51045ae0cbb2bc364dfd5a32ac5f017b3d3db2b666a","first_seen":"2026-03-29T01:48:00.053551Z","last_seen":"2026-03-29T12:11:26.108872Z","times_seen":6,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/club_2-BAQ3YscC.png","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.902Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/club_2-BAQ3YscC.png HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 4936\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\netag: \"69c74e49-1348\"\r\naccept-ranges: bytes\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\ncf-ray: 9e3ebd24987d0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4936,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced","md5":"283b390cdcc80bc9784834928b78191c","sha1":"54b73c3fceadc210b552d1c5ab32e9aec2b1d035","sha256":"79e62a9305a0d0969d6ae3fc3971213a443491e9253c258c5fe3e336d2349e72","sha512":"9fec8250d9fa1275654e4fd60910a7d87a3fb05256961fa3517a6576e7d29cbd8ceca74ac1559c3098ce5555e9436b7933527519feffb7b99254eeaf2843f586","ssdeep":"96:K579Z/3zu3KXfM+qtWjlvYS0FVsIHvb7egdU7LJojv1oudQFsUk:K579Z/5fM+qOvL0TsCeH7UvDdQFW","tlshash":"57a17c895f7f3544f399af2d931f628721a487a9a18018e001e50eee19082d2b4c92e2","first_seen":"2026-02-24T07:43:44.878079Z","last_seen":"2026-04-08T20:55:08.9044Z","times_seen":19,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":57,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/web/sport/left-C-GAME.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.978Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /web/sport/left-C-GAME.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 5059\r\nlast-modified: Thu, 10 Apr 2025 09:34:30 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: EmTyxbHYFgmUKadCVfWobId89WYQ6atb\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:11:14 GMT\r\netag: \"61af82fc7d21f895643363b0e55fd3f7\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: jcZb2GRsEOHKTEuPu9ldIBy_l2cQkHs6WR9zQopa6RgTdE84c2TRIw==\r\nage: 3211\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":5059,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 104 x 104, 8-bit colormap, non-interlaced","md5":"61af82fc7d21f895643363b0e55fd3f7","sha1":"d027c8b97723533ca9cd9775325286792fba57bb","sha256":"6eb7feb4719fc770fc282aab78728e75cb4712908a8460004557a7a61b47b4f7","sha512":"d985b9505ea3cfe4864481a5a4184f8256be1200b70351381c72f4dc06b8e20c6d0816963ed64263f8777acf37a9e2ee721536e6643cfa5a09337af687595213","ssdeep":"96:+tsRIkQ9S1ki6QuR0ET8FxtpsSgglvcNAMhy/vLozR8YwVAlJLtze23xncOJaIu:awIkjKidueET8FxnsAmViozfwVAPq230","tlshash":"55a17d952dc03690c6241eb1a732ad11be9a21a79d49c74bb8cf8d10ead0ae6d414e37","first_seen":"2026-02-24T07:43:44.895331Z","last_seen":"2026-04-08T20:55:08.867037Z","times_seen":19,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/IceHockey.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.653Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/IceHockey.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1735\r\nlast-modified: Thu, 30 Oct 2025 07:24:52 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: tn_b0TAXhgi_I7Y_vg3Vp3K7zf71AG.i\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"4af857ab9602b1aacddba5fa1adceadd\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: tFlqQHjGnP2r7DvMFfrm520uvkIy0jMCPtD0eVFlVnv9c-YHwQOiMg==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1735,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"4af857ab9602b1aacddba5fa1adceadd","sha1":"ced2668f28122dfa5229dffc949cdbe4bc4b1506","sha256":"84c41c109b900d9ba98cf19f3209d56b676712e4a13789a27fc9732e1d69ae91","sha512":"1653367dca815b4fb2b530fcd8c8e1656897a1043b01f365a439095382d79ed62e214643c6b6e70f31e2f256b1a74d7eaf3c8212c56f9a0c436729ac49ff538e","ssdeep":"","tlshash":"6b3118d22933fcac884e627ba3733484e97a2337ac440c4994c3689a0a1e9c0dd77b42","first_seen":"2026-02-24T07:43:44.825183Z","last_seen":"2026-04-08T20:55:08.911758Z","times_seen":18,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/index-DjzB0IZK.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.332Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/index-DjzB0IZK.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/assets/index-Du9UH5vi.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e4a-aed1f\"\r\ncontent-encoding: gzip\r\nage: 0\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\ncf-ray: 9e3ebd211a950daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":716063,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"Unicode text, UTF-8 text, with very long lines (65514), with no line terminators","md5":"3fb54940a22ca5cc9886df2d5fa87e41","sha1":"60d4c8abdbb224efb4a33b8b99bd97cb3d565534","sha256":"3c0095fb3c695e1735f3678daf2d17558ffad54588542a875611bab48bb8ff90","sha512":"45284e0bf5517e59516256d195ca0208984cc575a896b75bfc2aa6ceabf49b8daf14afbe9c301307fe719202e2c7d3bbfeea612e45b4468b9681c62162e84d68","ssdeep":"12288:dZTJ0zYmS2gGMMyR9aFSaIHhqalitVEcqMx34eKzeNj7VOWv2vNGuzRzoYcfBi:dZTJ0znS2gJMyR9oSaIHhqalitV7qMxU","tlshash":"a1e47dd536a5942687e499cb94354512a3393e0f7808c0ecf97eadcf2e6ad05b03af74","first_seen":"2026-03-29T01:48:00.027762Z","last_seen":"2026-03-29T12:11:26.097197Z","times_seen":6,"resource_available":true,"data":null}},"time_used":4,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/template/sport/vi/WAP/icon/bbin.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.313Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /template/sport/vi/WAP/icon/bbin.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2723\r\nlast-modified: Thu, 15 Jan 2026 02:54:45 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: zx1wn13UI7poLRioqz7wCSCxD.H9.ZT1\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 12:04:46 GMT\r\netag: \"41d98b54fedc2996e2001f4b4af659f4\"\r\nvary: Accept-Encoding\r\nx-cache: RefreshHit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: VrElScNtllC6MOSDNB7-q0yk6Swdn18xzrI69uMguk7momPTKG1c6A==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2723,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 103 x 60, 8-bit/color RGBA, non-interlaced","md5":"41d98b54fedc2996e2001f4b4af659f4","sha1":"243d3a6ecef6d388f0ee0b077e9a54ae368981e1","sha256":"eb6d21d20daa0cd7764c6d8142b2863df9ba3832d025e9716eeeef9cbb245d1d","sha512":"eda3c94942534ae89ff122d5e1c07e8cc72d5fc270017619b7c601960eab5eb6c50dd7302b10d1fdc848e6a33f7ad678c65ea114e7b0d35352933c6f35238b2e","ssdeep":"","tlshash":"a0514bc2490a3f759807f2121b96047b6f432837721e54449653da3f7ba18e44fda206","first_seen":"2026-02-24T07:43:44.830418Z","last_seen":"2026-04-08T20:55:08.832352Z","times_seen":19,"resource_available":false,"data":null}},"time_used":836,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":836,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/template/sport/vi/WAP/icon/crown.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.322Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /template/sport/vi/WAP/icon/crown.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 19618\r\nlast-modified: Tue, 10 Mar 2026 01:58:27 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: NKe9_EtG3om8Qd8Zfc.n8tEaqgACEwXK\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 12:04:46 GMT\r\netag: \"0b2043705bf9d1b82d0fcc822bb1f751\"\r\nvary: Accept-Encoding\r\nx-cache: RefreshHit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: _eK5JvpV95BKSlHBWa0GBsNTCgRSINpdcbUAjK2w4mG8bdWuaSnoAw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":19618,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 230 x 135, 8-bit/color RGBA, non-interlaced","md5":"0b2043705bf9d1b82d0fcc822bb1f751","sha1":"12db6b34329021a6920d1d33ec0dac405a071839","sha256":"fbf78e99b67d59e93de3fe7dadfdbb1639fb15a5f2e70e8cee75721f2bfd85cc","sha512":"74148a3a75b6ed02816de4902ec1a9a813c62511758a586b3e4ebe3de583637a43d2acf95408356e10f7848a9ca9af1c892381f4e7c737e3896611a1a7b66514","ssdeep":"384:cVpPt1tmkvqK2yeOIP/wl9ejiR5gq0tCn1U5AZkC4ZF:up1bvBiP3wqs5gZA+5AKZF","tlshash":"b692e1cbb31b3385b97441a58043356db8b3ea79603d4ddf84e6c0e6073b9259c89bb5","first_seen":"2026-03-29T01:48:00.210278Z","last_seen":"2026-04-08T20:55:08.845447Z","times_seen":17,"resource_available":false,"data":null}},"time_used":825,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":824,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/game-center/f/sport/queryMatchPage","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.944Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/game-center/f/sport/queryMatchPage HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nTimestamp: 1774785886\r\nContent-Type: application/json\r\nContent-Length: 357\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":357,"data":"{\"params\":\"CcDbq2ML6IybsJ7ymXIdq8qms0rwU4lsL7wgOjdkT8Tj7/QsfEqA0O9u0LTQ+bapYD3bEtTuphZhcc1iJzidLJNHOmSIcNGClIW25Gpar7jCK+NpmMfkKCGZ9nh/8yizG4KYvpCmhGFchmSOc7/kAJK1Qvx+zlqjLhkJ7ZvOZITT91w/iqLga9gpwqDQxvt69DagjsM8SipfO08KwIf5p6Nh1LGGWGUbUFdqavs/Kz60skBQxQqiJu9CcSSV6fl2nfJeVhnqtb6TjJQESHWKF5wZbt6OJX+nEt4fQtJQCI413HfBa+iDrrWM1pGxpEHfwRxNpULHRTmERmbiGAIzZQ==\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:46 GMT\r\ncontent-type: application/json\r\ncontent-length: 11259\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, accept-encoding\r\naccess-control-allow-origin: https://bet9190.com\r\naccess-control-allow-credentials: true\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 9e3ebd2a5c650daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":98584,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (64230), with no line terminators","md5":"05f06d47f05b8cec9e3f8d106b3efd08","sha1":"71e05113d0ee4939001eb51b7de02a8b3ecd0d6d","sha256":"72e68a5bf0f3e6883c5c1e4be3fd3a6705e29d559ec6bcc92b7b8ac507d724f8","sha512":"75f0d8efba9f48e2445b72da94d2e23329e68ec0b1713b40ba92232db8150e050a3d2dca87a3e520e42d523de8dc94cfc75978116d9f61168e1e86c0e45fe18d","ssdeep":"1536:M7MbTD0ih26oH9DUbmGa/wZ8QFN5A7s29DRbi5DsIT:MtsV","tlshash":"d8a3445b11189cbd9f463e82e4ef3ca558f4320f99ca5d508eca8f1c9f1e7836627126","first_seen":"2026-03-29T12:05:39.332274Z","last_seen":"2026-03-29T12:05:39.332274Z","times_seen":1,"resource_available":false,"data":null}},"time_used":331,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":331,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s.9a9q.com/data/a45d6bdfef7b5e6e13cbb083ddf3e253.png","fqdn":"s.9a9q.com","domain":"9a9q.com","tld":"com"},"ip":{"addr":"174.35.85.160","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:48.198Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.9a9q.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 03:23:29 GMT","end":"Wed, 17 Jun 2026 03:23:28 GMT"},"fingerprint":{"sha1":"94:6C:01:A5:3F:8F:AA:47:1E:95:09:1A:B1:2A:F4:FE:3E:06:F7:AB","sha256":"69:19:C1:B7:C9:52:D7:AD:28:45:D8:83:64:05:A6:75:C4:5F:60:32:4A:78:BB:63:48:CA:9A:BB:48:8E:11:2A"}}},"request":{"raw":"GET /data/a45d6bdfef7b5e6e13cbb083ddf3e253.png HTTP/1.1\r\nHost: s.9a9q.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 29 Mar 2026 12:04:48 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 4997\r\nConnection: keep-alive\r\nx-amz-id-2: op++lb/+84Hn/iGasuWG2y8PMqccnE6knXi13kP8wJUue9U+p/tKceZr5Jb/6zCrT+yLsqonH5pyimTRsv6bbgk9zncnkDGR\r\nx-amz-request-id: VXZ63W8CAG2HWSGT\r\nx-amz-replication-status: FAILED\r\nLast-Modified: Thu, 22 Sep 2022 18:24:40 GMT\r\nETag: \"a45d6bdfef7b5e6e13cbb083ddf3e253\"\r\nx-amz-version-id: rbfGeKVD8YtMKrLMRyB.CdRJdFsXjvWL\r\nAccept-Ranges: bytes\r\nServer: PWS/8.3.1.0.8\r\nAge: 7754\r\nx-ws-request-id: 69c91560_PS-CDG-04A5e173_40658-16698\r\nCache-Control: max-age=2592000\r\nvia: 1.1 PS-CDG-04A5e173:34 (W)\r\nX-Px: ht PS-CDG-04A5e173CDG\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4997,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit colormap, non-interlaced","md5":"a45d6bdfef7b5e6e13cbb083ddf3e253","sha1":"cd6a118efc4b2a7445440c007bb5071cb57b5b02","sha256":"f8ccaa67d678eaebe567de7323887f714480f20ceb6ffeaa5ddd0cf3465af9fc","sha512":"b52b0edfee494d4fa46ffd34961bc3f082fda32227cdeb2de2c850bad388b4850f6ec5a67165353b45ffdc814b21780a2b409ff3438ba6014fcd0e876db8c993","ssdeep":"96:G2hU0Hs+BnOMtam7L1xlq6fTJ3f5kKayToxu0a/enIepBl0Vgw4cTCVp:G2W0HsODtb/E6fHToxuDenVXligwu","tlshash":"f4a17de63301dc37c1aea9b6859409e003502f785eb7d0329b4bb9399df9a27c666802","first_seen":"2024-08-19T16:04:15.229743Z","last_seen":"2026-03-29T12:11:26.020555Z","times_seen":6,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":31,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s.9a9q.com/data/594472234aee124f2f45d3123d80d47.png","fqdn":"s.9a9q.com","domain":"9a9q.com","tld":"com"},"ip":{"addr":"174.35.85.160","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:48.205Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.9a9q.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 03:23:29 GMT","end":"Wed, 17 Jun 2026 03:23:28 GMT"},"fingerprint":{"sha1":"94:6C:01:A5:3F:8F:AA:47:1E:95:09:1A:B1:2A:F4:FE:3E:06:F7:AB","sha256":"69:19:C1:B7:C9:52:D7:AD:28:45:D8:83:64:05:A6:75:C4:5F:60:32:4A:78:BB:63:48:CA:9A:BB:48:8E:11:2A"}}},"request":{"raw":"GET /data/594472234aee124f2f45d3123d80d47.png HTTP/1.1\r\nHost: s.9a9q.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 29 Mar 2026 12:04:48 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 9354\r\nConnection: keep-alive\r\nx-amz-id-2: 1cqEQOKw0y6QxsKimEWvP9C8LU439T7f4U/6RWoheEQtdn+OFMFONsJDsOljyqqgdn7SmLxncWk=\r\nx-amz-request-id: 5GEBZ6BTZQYBD70F\r\nx-amz-replication-status: COMPLETED\r\nLast-Modified: Sun, 29 Mar 2026 08:59:46 GMT\r\nETag: \"0594472234aee124f2f45d3123d80d47\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: e72mPm7TWPEmNo6MaHQOaHPAd1A7vi5w\r\nAccept-Ranges: bytes\r\nServer: PWS/8.3.1.0.8\r\nAge: 1092\r\nx-ws-request-id: 69c91560_PS-CDG-04A5e173_35633-12605\r\nCache-Control: max-age=2592000\r\nvia: 1.1 PS-CDG-04A5e173:18 (W)\r\nX-Px: ht PS-CDG-04A5e173CDG\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":9354,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"0594472234aee124f2f45d3123d80d47","sha1":"c8ec56c68da01dc7ebb708791d515d7c6b666b29","sha256":"a70e9166688e7b4b05bf67cefc47d8601814cdc48d1a70f471f77f59375f0ae8","sha512":"e138cb8e5453fd96d670c2e2af10afa85a6a0477cd38e7b2a02ce1e5bf3f6c40700697cb33ddc1e39fff4ebc34638e1731bf7b760e0cd007cfe2bee58c79bed0","ssdeep":"192:35MAlHYnr3kmY5HiavnqKOnQrOOPlYjRcCDZqWI6K:32Y0YXCavnqKOQyOdYjaCu","tlshash":"9612bf4012224ce7bb18a07741b254ce913aaed56be51407c8a0b416e3fd80f6b7debf","first_seen":"2026-03-29T12:05:39.334239Z","last_seen":"2026-03-29T12:11:25.944519Z","times_seen":3,"resource_available":false,"data":null}},"time_used":155,"timings":{"blocked":57,"dns":1,"connect":27,"send":0,"wait":28,"receive":0,"ssl":39},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s.9a9q.com/data/c5bf25e0a7925ae67498e5c650292de6.png","fqdn":"s.9a9q.com","domain":"9a9q.com","tld":"com"},"ip":{"addr":"174.35.85.160","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:48.207Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.9a9q.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 03:23:29 GMT","end":"Wed, 17 Jun 2026 03:23:28 GMT"},"fingerprint":{"sha1":"94:6C:01:A5:3F:8F:AA:47:1E:95:09:1A:B1:2A:F4:FE:3E:06:F7:AB","sha256":"69:19:C1:B7:C9:52:D7:AD:28:45:D8:83:64:05:A6:75:C4:5F:60:32:4A:78:BB:63:48:CA:9A:BB:48:8E:11:2A"}}},"request":{"raw":"GET /data/c5bf25e0a7925ae67498e5c650292de6.png HTTP/1.1\r\nHost: s.9a9q.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 29 Mar 2026 12:04:48 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 7090\r\nConnection: keep-alive\r\nx-amz-id-2: w5LgA/BkCwFCGN9F55oB1AOSiNlg4GDpcCpUqfqm0gW3q+rvZrcfC4kNdoTolKOXSW8tMajzMVmrqXOMcCXKQvLvVAcyQO3f\r\nx-amz-request-id: DRDXTHR6292F9TJZ\r\nx-amz-replication-status: FAILED\r\nLast-Modified: Fri, 11 Jun 2021 11:21:49 GMT\r\nETag: \"c5bf25e0a7925ae67498e5c650292de6\"\r\nx-amz-version-id: sqcxOyt1dIFdYufGSaAsxQ6Ak494AufN\r\nAccept-Ranges: bytes\r\nServer: PWS/8.3.1.0.8\r\nAge: 1093\r\nx-ws-request-id: 69c91560_PS-CDG-04A5e173_41205-49003\r\nCache-Control: max-age=2592000\r\nvia: 1.1 PS-CDG-04A5e173:35 (W)\r\nX-Px: ht PS-CDG-04A5e173CDG\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":7090,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 150 x 150, 8-bit colormap, non-interlaced","md5":"c5bf25e0a7925ae67498e5c650292de6","sha1":"040adc47225a11884e4426c72cc74b84bd62f85d","sha256":"4e1a1451c93a8482b461bba14924360bdaf285869c92da4b10948e35317cc47b","sha512":"7193ba2cd6e20bbf36e4903b87ad090bf1dfba5846e926b7149ed7328f9fd90e1749ec4478ab042525b7f67f821b37d9a829db927a1b04a586da0e753ab561ca","ssdeep":"96:KsSIsBvXu7ekbMMqswbCWaSFNc/0a8JFmPcasZR8+8gP0kqgL95D6Qr:KsS76MMtsTFe/pDcaYikjL95DX","tlshash":"c6e1afb5cbccd9d61c9a0eae2fe1440c80632193592625e5de1fc92c0ca5a5d7c372f7","first_seen":"2026-03-29T12:05:39.335422Z","last_seen":"2026-03-29T12:11:26.047296Z","times_seen":3,"resource_available":false,"data":null}},"time_used":162,"timings":{"blocked":59,"dns":1,"connect":31,"send":0,"wait":30,"receive":0,"ssl":39},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/game-center/f/game/gameNameDict","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.784Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/game-center/f/game/gameNameDict HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nContent-Type: application/json\r\nContent-Length: 2\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2,"data":"{}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: application/json\r\ncontent-length: 24226\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, accept-encoding\r\naccess-control-allow-origin: https://bet9190.com\r\naccess-control-allow-credentials: true\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 9e3ebd1769a50daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":91978,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (64820), with no line terminators","md5":"85cdacc89f6f73e0edb2bf7aee95e084","sha1":"fad0173da201dc93909c394bccc8fd33b78368a7","sha256":"796b321e9dacb063d1915a6dfdd810f0232ebc185f4c51b735da9363a61c769c","sha512":"aed786cf56442ceccc2683e819730358c1786fb1ef9060b72a30a9dd6ca1a73b37028db10552bf6e983cd3e9d81230a7fc8c93bb716c92656c2ab773a3f4f23e","ssdeep":"768:yxboab2mb7osZuRRRqUn+16/KxTrTWASv1tzM5bww0xMiG0M1D1clXFGi5KEjPVa:yxsKPbZQx+oQTWtc1MVZvpN6sm","tlshash":"a3937ddeca0e2cfe4ab82eb6169b39fd74f5341bb1dc4d00b485997629d435c103a6b8","first_seen":"2026-03-29T12:05:39.336213Z","last_seen":"2026-03-29T12:11:26.109431Z","times_seen":3,"resource_available":false,"data":null}},"time_used":543,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":286,"receive":257,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/site/f/sitePageConfig/queryList","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.814Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/site/f/sitePageConfig/queryList HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nContent-Type: application/json\r\nContent-Length: 2\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2,"data":"{}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: application/json\r\ncontent-length: 82977\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, accept-encoding\r\naccess-control-allow-origin: https://bet9190.com\r\naccess-control-allow-credentials: true\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 9e3ebd178a050daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":640778,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"27a2fa1b811af24ea1ecb656c6268e94","sha1":"1775cc863b6b530546e8a27ba6546a2e5409bfbf","sha256":"d32bb27c84ce6a60379c773b898a2e4626b52310df2670184e53edf12a23b306","sha512":"55920cb9149f0efd99895ab269802b65d5514a6e12009d09c74d75f2b928042b09d06a57af5be808927690b93fe119c3e8443837ee41c0abf7d068a57e138dd8","ssdeep":"12288:+r4rtAxi7fWtvYcPteSSVfnIHqZVx9BdEXW8ssJYbKFF:6otAxi7fWtvYcPteSSVfnIKZVx9BdEXP","tlshash":"a6e4420193c4a3114e2d84dcd0bf3b642ec64418fb936fadebfc56785a4d4a936226de","first_seen":"2026-03-29T12:05:39.337225Z","last_seen":"2026-03-29T12:05:39.337225Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1101,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":586,"receive":515,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/site-intqf/siteConfig/202603/8e06bed1ec5f42da9b813dc36e0e48e9.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.204Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /site-intqf/siteConfig/202603/8e06bed1ec5f42da9b813dc36e0e48e9.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 43602\r\nlast-modified: Mon, 16 Mar 2026 13:25:05 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: _YptDyWaw5vDE8WdKpNSXOgpFYMKnC_E\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 10:17:25 GMT\r\netag: \"c081f4426cb4edefe9b6cfb1b38479cf\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: bgulFj_bkzQWm93OQrGzDavKGd6pbemAlzA6oCwylYUlC6WbkR7Xrg==\r\nage: 6440\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":43602,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced","md5":"c081f4426cb4edefe9b6cfb1b38479cf","sha1":"485cb55733599d878b515569f2f40f3c05bed82d","sha256":"9034e437b66adaa67b29b51b6f4210e7cc6627f6bcfe0ca855d7144211b2854e","sha512":"cfe5c4fcd495f88c8a9eb99eef7394d10a05b09f0b60168b1f426ecdf1cf463c365b3b1144ad06c638ca3a5938acab5ca3edb335aaf4a03be74b74623a3b2316","ssdeep":"768:6SBKi47BEJM+NNtxepvfyMssYd00captRRIWegOnJRbC3eXCVKthiAbSUlka:6SBKiSBEJMo7xe5fyjsYdqadILgSdpC6","tlshash":"f913e14662004562e48a89b51a03cf9793622974cbbb6757f66af0f1b4c2dc0eb8fdc0","first_seen":"2026-03-29T01:48:00.255992Z","last_seen":"2026-04-08T20:55:08.872329Z","times_seen":17,"resource_available":false,"data":null}},"time_used":363,"timings":{"blocked":0,"dns":84,"connect":1,"send":0,"wait":24,"receive":2,"ssl":252},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/bus-pay-3-DuOqe38C.png","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.875Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/bus-pay-3-DuOqe38C.png HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 8578\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\netag: \"69c74e49-2182\"\r\naccept-ranges: bytes\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\ncf-ray: 9e3ebd246fde0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8578,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 330 x 332, 8-bit colormap, non-interlaced","md5":"1d1c8726889ca01a9d72f23b9f861f1b","sha1":"29cdd121f4ee4a58e76ad9055a3bb9c75c8b7060","sha256":"7f023a883a6a3f5ad57dc8cc5042f4a29f02b9531e963ee990de8082543f6fcb","sha512":"cb41708878e22c666a8c6ac100df9647062e5e027e4186000d844a7961f6f65bd7805d2cf80a18619b477a30f3101340f04db6fd38610cfe36af94f19a39c733","ssdeep":"96:VUnFgBjRP7eZqqwhaEJaPUDoxdcWSsbRLXRQ4w5YXtr1HdERpM1T67NPXD7U/mzX:VbjOIzDoxvN7R3hERh7NPXfU/myeUu","tlshash":"9202a0841ae5fa1e80498784bebeec9349159b9dfeb6d35c8f045354a8189c88d3193f","first_seen":"2026-03-29T01:48:00.074938Z","last_seen":"2026-04-08T20:55:08.878315Z","times_seen":17,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s.9a9q.com/data/e4fd098562169773064e5b8a44a3326a.png","fqdn":"s.9a9q.com","domain":"9a9q.com","tld":"com"},"ip":{"addr":"174.35.85.160","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:48.203Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.9a9q.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 03:23:29 GMT","end":"Wed, 17 Jun 2026 03:23:28 GMT"},"fingerprint":{"sha1":"94:6C:01:A5:3F:8F:AA:47:1E:95:09:1A:B1:2A:F4:FE:3E:06:F7:AB","sha256":"69:19:C1:B7:C9:52:D7:AD:28:45:D8:83:64:05:A6:75:C4:5F:60:32:4A:78:BB:63:48:CA:9A:BB:48:8E:11:2A"}}},"request":{"raw":"GET /data/e4fd098562169773064e5b8a44a3326a.png HTTP/1.1\r\nHost: s.9a9q.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 29 Mar 2026 12:04:48 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 16046\r\nConnection: keep-alive\r\nx-amz-id-2: 7DyGn5R5+xM7st8wsV2z8izHEYTlmB9hXB8MxezYskYhMzOxtm0/vvOgbgI/d+OmoX99J65aXZU=\r\nx-amz-request-id: B8Q7G3XW6DW2PH2W\r\nLast-Modified: Sat, 03 Apr 2021 12:20:46 GMT\r\nETag: \"e4fd098562169773064e5b8a44a3326a\"\r\nx-amz-version-id: UhroHubp0euDYe467Ed62qchjurbbP79\r\nAccept-Ranges: bytes\r\nServer: PWS/8.3.1.0.8\r\nAge: 1778\r\nx-ws-request-id: 69c91560_PS-CDG-04A5e173_40658-16700\r\nCache-Control: max-age=2592000\r\nvia: 1.1 PS-CDG-04A5e173:34 (W)\r\nX-Px: ht PS-CDG-04A5e173CDG\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":16046,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced","md5":"e4fd098562169773064e5b8a44a3326a","sha1":"5ea1ed705463a3f50d04fa4002a15013599eb945","sha256":"1f2b562b650b867fe2b2e3cd18b127dc8f1b7a592b428976b3c2c9039626a747","sha512":"deb9d1af6b3befd2f874f0f15eae23da24784f67b57547f2f61a81122bd2de6b0f3efa00ce040327e0536e930266a70e595f8b7a510af79281ac3324e8a93fd4","ssdeep":"384:v6/SIDp5IZiRKCoqQmw7JvW9k3khQVN3jqYmVgmeK:yPp5EiMz7I9bGJGYLvK","tlshash":"c272d0b20e480e54f1eb80ad8c7a4f326e207f3d416945c52512bbee5f46b85d69e1cd","first_seen":"2024-07-20T20:19:18Z","last_seen":"2026-05-25T13:19:58.877132Z","times_seen":6,"resource_available":false,"data":null}},"time_used":50,"timings":{"blocked":17,"dns":0,"connect":0,"send":0,"wait":32,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s.9a9q.com/data/7f712423773486f99aa5ef01ea18fb9c.png","fqdn":"s.9a9q.com","domain":"9a9q.com","tld":"com"},"ip":{"addr":"174.35.85.160","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:48.212Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.9a9q.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 03:23:29 GMT","end":"Wed, 17 Jun 2026 03:23:28 GMT"},"fingerprint":{"sha1":"94:6C:01:A5:3F:8F:AA:47:1E:95:09:1A:B1:2A:F4:FE:3E:06:F7:AB","sha256":"69:19:C1:B7:C9:52:D7:AD:28:45:D8:83:64:05:A6:75:C4:5F:60:32:4A:78:BB:63:48:CA:9A:BB:48:8E:11:2A"}}},"request":{"raw":"GET /data/7f712423773486f99aa5ef01ea18fb9c.png HTTP/1.1\r\nHost: s.9a9q.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 29 Mar 2026 12:04:48 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 12724\r\nConnection: keep-alive\r\nx-amz-id-2: tHLFpKt+Whs/8PbXqe0Z2/TzwtNHVc2DJqTqYWjWNCZ3VkY4rjNTxsqP3VYVqN1zD6M+Hw3Yx1pUSYbxO5ZQiNImhf/lXg9I\r\nx-amz-request-id: DRDRRMHXCG94H4NP\r\nx-amz-replication-status: COMPLETED\r\nLast-Modified: Wed, 13 Aug 2025 00:07:40 GMT\r\nETag: \"7f712423773486f99aa5ef01ea18fb9c\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: B6afDEKWHTcLueMdGDHyHqQ5wbgdl02W\r\nAccept-Ranges: bytes\r\nServer: PWS/8.3.1.0.8\r\nAge: 1093\r\nx-ws-request-id: 69c91560_PS-CDG-04A5e173_40658-16704\r\nCache-Control: max-age=2592000\r\nvia: 1.1 PS-CDG-04A5e173:34 (W)\r\nX-Px: ht PS-CDG-04A5e173CDG\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":12724,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"7f712423773486f99aa5ef01ea18fb9c","sha1":"3debf71bae9d3e33bf0624a174f20a2ed225a56c","sha256":"f08a97723fa13af95504a8761405b8bf1d865667473adeebe2f6530a4b355319","sha512":"821a91e52125e919d7e5b4a23fb4035b2296950e8ffa8b92e4a94420940ce78e97df8c4c0f9a70a8be1acc1d5a6223a7825267b7f475b193564118620e5561c0","ssdeep":"192:rHheEIEH9uSSz7VdCEW+w5jju7nKYLkyxuKxDmFx5L0GiVjyHIeK8JgKp6Ba3NB:rHdH9u/H3CEOVOnKzJqKFjOjd8XgBSNB","tlshash":"0842ae60358984345996769f07c3ff81937ff129a4358e0a8d895111afe1b1e3988e14","first_seen":"2026-03-29T12:05:39.341225Z","last_seen":"2026-03-29T12:11:25.950801Z","times_seen":3,"resource_available":false,"data":null}},"time_used":103,"timings":{"blocked":72,"dns":0,"connect":0,"send":0,"wait":30,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/qingliao/front/api/api/queryRoomMsg","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:49.577Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/qingliao/front/api/api/queryRoomMsg HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nTimestamp: 1774785890\r\nContent-Type: application/json\r\nContent-Length: 185\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":185,"data":"{\"params\":\"Q7qy9curSSYQEA6jqex2MrJef32fb7fIZOp9fOajpS2EG+x5IiHTkbKDiBKCZeTU+hfv41Lsy4NgWZbbAu4qxrGaZwPBoYpUjCJ0BwCrXniHuy7QaU58oCpLLSETJg/yKHZHgGYrKNtyjZA6tHvBGPtwlExEL8mDLSBr3azOPpQ=\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:49 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-credentials: true, true\r\naccess-control-allow-origin: https://bet9190.com\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd41db3b0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":62,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"4838b9dcc38b327aeeba8207062e36ae","sha1":"89b185c0239d7da10d90950c6b064eaf075e025b","sha256":"0814e897a92ec18e144b54eefcbbaa7c49341ecf0dfcb0b7c9f951a002d7e156","sha512":"2a4e30fc393651a1751b6107702c121e682bf8b78bc8aad1cc48bd26506386dea7d8d9f3c7330af63fa70ae61bcda3b9f327b33f972b069ddcadd0dd81465d24","ssdeep":"","tlshash":"82a00221ba0e9cf22c6264c94a0c474056e8304041a08a10cd8ca224c60a07a7441a34","first_seen":"2026-02-24T07:43:44.827147Z","last_seen":"2026-04-08T20:55:08.817839Z","times_seen":17,"resource_available":false,"data":null}},"time_used":273,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":273,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/index-DjzB0IZK.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.845Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/index-DjzB0IZK.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bet9190.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e4a-aed1f\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\ncf-ray: 9e3ebd17aa7f0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":716063,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"Unicode text, UTF-8 text, with very long lines (65514), with no line terminators","md5":"3fb54940a22ca5cc9886df2d5fa87e41","sha1":"60d4c8abdbb224efb4a33b8b99bd97cb3d565534","sha256":"3c0095fb3c695e1735f3678daf2d17558ffad54588542a875611bab48bb8ff90","sha512":"45284e0bf5517e59516256d195ca0208984cc575a896b75bfc2aa6ceabf49b8daf14afbe9c301307fe719202e2c7d3bbfeea612e45b4468b9681c62162e84d68","ssdeep":"12288:dZTJ0zYmS2gGMMyR9aFSaIHhqalitVEcqMx34eKzeNj7VOWv2vNGuzRzoYcfBi:dZTJ0znS2gJMyR9oSaIHhqalitV7qMxU","tlshash":"a1e47dd536a5942687e499cb94354512a3393e0f7808c0ecf97eadcf2e6ad05b03af74","first_seen":"2026-03-29T01:48:00.027762Z","last_seen":"2026-03-29T12:11:26.097197Z","times_seen":6,"resource_available":true,"data":null}},"time_used":540,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":540,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/index-Chl8vKZs.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.847Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/index-Chl8vKZs.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bet9190.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e4a-ae6d\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\ncf-ray: 9e3ebd17aa8c0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":44653,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"Unicode text, UTF-8 text, with very long lines (44642)","md5":"58473477b259742ef4fb4a3c59bc11e0","sha1":"d729be162b3de2b0d97b61cf4c40649b89eef357","sha256":"795ff42361b6d46f06148f579707f6663dc377995378c1112b216944a7d3d960","sha512":"e02535d676375b98a05be5548112baad5095d2c6f318a599596ba52c3cd29f56cc1268271a2abf013eacaf02728b37268bc9d48c7a025558683499a72d184c8c","ssdeep":"768:sZtE4fY8LwREUZY1EPNFbFvGenRlDyMdBm/hceUDyoQc9JXNMA6e66mC7itet6r4:sZVTCPF5dAKr9M8Iet6YZN","tlshash":"6c132a41b4279cbeabb7540460d45441f20c7fabe098c8e5b2fe5d1a67cbda0bb91b70","first_seen":"2026-03-29T01:48:00.184477Z","last_seen":"2026-03-29T12:11:26.008283Z","times_seen":6,"resource_available":true,"data":null}},"time_used":539,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":539,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/empty-white-BjL230TF.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.624Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/empty-white-BjL230TF.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/assets/index-DjzB0IZK.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\nage: 1\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\netag: W/\"69c74e49-61\"\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd22da400daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":97,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text","md5":"3dea6937be1184ad628dd27202632b04","sha1":"8604f80ccf3d36dea78d62cabeec77af0b0028cd","sha256":"6c8cd179af0cc07eca46ab0d96db2630262db825648aace79a811ece018fba41","sha512":"3be0784c2b202905376a8ad10c61efad7965ef25c408fdcaadf8f1f0b00568ec997763931c749a7567fa774904f27853aa189ccb39a4cdb314f925ee7856b200","ssdeep":"","tlshash":"4ab01281a80088b0511cf8644121d65891089281f524c6af9030d249e51a4104a0bcb2","first_seen":"2026-02-24T07:43:44.847491Z","last_seen":"2026-04-08T20:55:08.829069Z","times_seen":19,"resource_available":true,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/ber-finish-6xQoqTKO.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.626Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/ber-finish-6xQoqTKO.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/assets/index-DjzB0IZK.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\nage: 1\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\netag: W/\"69c74e49-c9f\"\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd22da480daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3231,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (3230)","md5":"0f98b0616c69e7514f0b4c90c9d24667","sha1":"ff1ae970c70207426088b59362f7f3d7bbca7c62","sha256":"2249ce17b324b0cd28c4184e85d6565e059770b558be269d4c7e5e2d357733a5","sha512":"eed4b3c726ecd8a720a495ef0a48031ace59411640760e33b405803aa4dcdbd199b166844724dceffe71dd0b7a5f0992c31ab2d0eca2b7f4c373283ff3d07ec4","ssdeep":"","tlshash":"80615bb85a061e209bc34deeffa7b424fd185f27e3d2918002da5f242b1f5b69036021","first_seen":"2026-02-24T07:43:44.84853Z","last_seen":"2026-04-08T20:55:08.81672Z","times_seen":19,"resource_available":true,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/template/common/service/telegram.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.858Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /template/common/service/telegram.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2708\r\nlast-modified: Thu, 02 Mar 2023 11:02:06 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 3VB4LE8I9bwZVilP2Bua9h_DLa_et5Bi\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"f4dd1894d9727722ddf4411e990f83e4\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: uExTFjCtPGX7IL1MvcgYxW4Lnhmdko3Bvwcb_32djhPvCjxhq6KkUw==\r\nage: 2760\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2708,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"f4dd1894d9727722ddf4411e990f83e4","sha1":"f4e844f1c4b9fff6664074dfe4d046a735f8e740","sha256":"5eeeb4fb7b1e909d6d870302ea218dd6e290820a9a0c40ba0ee58f25ce5c0bf1","sha512":"a9997a6fd6e9e573853d26748676174b7efb6644d00485aed14401b95499f608d41edee17d4e90aa8fe7e212e4bb14e2e6b014a0ddf918c70bb96ac3219de91d","ssdeep":"","tlshash":"a4512baff6371d6da0c661b7e12761f87e1d9ef57ca666454e0ab03e10644c24e11381","first_seen":"2026-03-29T01:48:00.124534Z","last_seen":"2026-04-08T20:55:08.825473Z","times_seen":17,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/bus-limit-3-XP-q7HvR.png","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.882Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/bus-limit-3-XP-q7HvR.png HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 13466\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\netag: \"69c74e49-349a\"\r\naccept-ranges: bytes\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\ncf-ray: 9e3ebd2478020daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":13466,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 206 x 68, 8-bit/color RGBA, non-interlaced","md5":"d17e79a8e8551e7b5ac042c26f1bb6d0","sha1":"e8d54af0990aa77852909d122f97dfab8f92a0d9","sha256":"9e74b60919864872cec9baa2531d9fd21772d5d50d7006598557fd93307d3d65","sha512":"fdf3f26e65accaef5b981749ce95f793e9fa8cefe65dfac1da167c375c47ccc5ff3d6305cb8544bdb206ad5323476f58ce4947f163b96f6730249519e5cd506a","ssdeep":"384:fTmLCiFuyBWRpM63PA6WP0W05XSF6g3aM:fCLhcR6yWMW0UF3V","tlshash":"ab52d0e584791f1910d280265f66fcd0164668dea51ad4dba032baf90632f2f528b7f3","first_seen":"2026-02-24T07:43:44.898354Z","last_seen":"2026-04-08T20:55:08.826359Z","times_seen":19,"resource_available":false,"data":null}},"time_used":67,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":43,"receive":24,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/CSGO.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.682Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/CSGO.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1523\r\nlast-modified: Thu, 30 Oct 2025 07:24:47 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: j4h914jXkH3tIjkdQsK9O0Xu8YocE8YV\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"8fe9502f7f11a22a695fcf1f878b7366\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: cp4u7ikWKX0mPCq1J_3zMQ_pz01MjLDB2d47KpQu6sfY9XMmet75Og==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1523,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"8fe9502f7f11a22a695fcf1f878b7366","sha1":"207e5ab9d66ecdb4ddf03866ba6cee32082ed231","sha256":"bf6c1ae8c6f35e6078da280570f6da96f205a62be1d86fb6e37e003f2ea1f6f0","sha512":"f617ea26f014aff0e910d1722e2b20ada68afcd1cc00feabd5137c2ef5d95b78dedc6d2c741a5f3ce1ec4dfd895c621a16c28d2a604937803b47a2006ff51817","ssdeep":"","tlshash":"8c31f9d8bf09fc5145d2927610726a7174ccd9c8a9528a45e9f566c5e112915088c72f","first_seen":"2026-02-24T07:43:44.900623Z","last_seen":"2026-04-08T20:55:08.917755Z","times_seen":18,"resource_available":false,"data":null}},"time_used":64,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":64,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/game-center/f/sport/queryCompetes","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.938Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/game-center/f/sport/queryCompetes HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nTimestamp: 1774785886\r\nContent-Type: application/json\r\nContent-Length: 185\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":185,"data":"{\"params\":\"FtnB1g4aVTJAeeQ56KMU0PKVjgcyJWIlhjEbBqbeKNZ6IEHP/GwFqK+ctgz4sBlS6Vu5409iG5bO2gqgUquSsVXC0kVygjGR2FD4PUcRE/mZK3CpTi9gbzBd/UkYO4QeL15Vp9vLeyn4quOHMdY93SMZTnz6OGMUqhmnYjvgrUo=\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:46 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://bet9190.com\r\naccess-control-allow-credentials: true\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd2a4c3d0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2595,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"c730ae1d13ecd54bf16447dffbf7d4f8","sha1":"e430d831674a3ba855ea7c726e7634c4c93823cf","sha256":"56b44b33b620918dd0d0e38269116dd14ce0c4f6e8cf45ad2d93d272f5102191","sha512":"32fe80995151210ced4f1c3bc6494783eb12403287bb5f05077c75a169a3e985f1013b54fe7b64287833661eadc24d552a55dda2c759f3ff15e4d52fa19778b4","ssdeep":"","tlshash":"2951e8bd8a88bc7c779b7b9b87c30b0d8685345b63c0191088564d1b6cf8f64183697e","first_seen":"2026-03-29T12:05:39.348951Z","last_seen":"2026-03-29T12:06:57.790051Z","times_seen":2,"resource_available":false,"data":null}},"time_used":270,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":270,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s.9a9q.com/data/8b51e216fb9051bdd8c2a48bdc2d3db4.png","fqdn":"s.9a9q.com","domain":"9a9q.com","tld":"com"},"ip":{"addr":"174.35.85.160","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:48.202Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.9a9q.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 03:23:29 GMT","end":"Wed, 17 Jun 2026 03:23:28 GMT"},"fingerprint":{"sha1":"94:6C:01:A5:3F:8F:AA:47:1E:95:09:1A:B1:2A:F4:FE:3E:06:F7:AB","sha256":"69:19:C1:B7:C9:52:D7:AD:28:45:D8:83:64:05:A6:75:C4:5F:60:32:4A:78:BB:63:48:CA:9A:BB:48:8E:11:2A"}}},"request":{"raw":"GET /data/8b51e216fb9051bdd8c2a48bdc2d3db4.png HTTP/1.1\r\nHost: s.9a9q.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 29 Mar 2026 12:04:48 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 15284\r\nConnection: keep-alive\r\nx-amz-id-2: hDfMfECgHyZnAAQYHPBKJGNEi5tDciltsGO0NgjE0Ujyi5K8/wgJs/8Gw96CDx09HzQlWH/Rv5CazKierZ7XH8em/p2qW9Us\r\nx-amz-request-id: SJX3JXWDKS2Q87YE\r\nx-amz-replication-status: COMPLETED\r\nLast-Modified: Wed, 21 Jan 2026 21:13:28 GMT\r\nETag: \"8b51e216fb9051bdd8c2a48bdc2d3db4\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: gcssslrKPnwe.wDL6y.Wu9fGgeNII.iF\r\nAccept-Ranges: bytes\r\nServer: PWS/8.3.1.0.8\r\nAge: 6031\r\nx-ws-request-id: 69c91560_PS-CDG-04A5e173_37280-30568\r\nCache-Control: max-age=2592000\r\nvia: 1.1 PS-CDG-04A5e173:24 (W)\r\nX-Px: ht PS-CDG-04A5e173CDG\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":15284,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"8b51e216fb9051bdd8c2a48bdc2d3db4","sha1":"bf4ff79373b7f05933b0cf3a5ff68a20f86ccb98","sha256":"db0c54adebe8ac80eac978e0cabffed9ddb436cb30931f5b77e9fe8c799de822","sha512":"f625ca77acd766bbff6c7b96ef1c4a8900eb303a76fc3bcd37f29362215ffa0771fe7f92483b86c613075ac03430af2e1d0f8f63050f0fe542c96f31801c6973","ssdeep":"384:mA85nTmRuDBGKcctZ/LaFiED3p6JpIxLJLjnwptif1wke:mJ5n6oGsthLaFdDcTENLjat2e","tlshash":"4562c0dd37ef28f9526ce8235a87fd9f12bc688d03264ce6a815281023f5fd4642742d","first_seen":"2026-03-29T12:05:39.350396Z","last_seen":"2026-03-29T12:11:26.021342Z","times_seen":3,"resource_available":false,"data":null}},"time_used":144,"timings":{"blocked":48,"dns":1,"connect":26,"send":0,"wait":34,"receive":1,"ssl":31},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47.m3u8?txSecret=835e895543efc14dd6238f2e4935c20f\u0026txTime=69C95AB8","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:54.293Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47.m3u8?txSecret=835e895543efc14dd6238f2e4935c20f\u0026txTime=69C95AB8 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:54 GMT\r\nContent-Type: application/vnd.apple.mpegurl\r\nContent-Length: 338\r\nConnection: keep-alive\r\nCache-Control: no-cache\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:54 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 220B216511C7022F\r\nX-NWS-LOG-UUID: d3009c22-649d-4a98-9a56-c2d4110162dd\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":338,"size_decoded":0,"mime_type":"application/vnd.apple.mpegurl","magic":"M3U playlist, ASCII text","md5":"1956dc798463b58661ce6a8b170cb712","sha1":"119b92696b9a8a497530295afcc724968f5dbcaa","sha256":"eb4344e18247c778c3460d9639c1dac5fa48c7db49140b05d13574394a1c9a1b","sha512":"b1330d609a4132b4e4f4105b41025f29ff5001e77c231d5f50d7d717fe4f3d3b7b881417ec3627a486ab05e8112077aaf27d424c46d6ade1d54cffc96b16d225","ssdeep":"","tlshash":"89e086b3235fb1c682ac84d1c06645aa2bed18ea9edda2531c70b713399bd0d77c0d90","first_seen":"2026-03-29T12:05:39.352454Z","last_seen":"2026-03-29T12:05:39.352454Z","times_seen":1,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":25,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785638.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:54.570Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785638.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:55 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 906160\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:55 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 220B2165202A9F0D\r\nX-NWS-LOG-UUID: 365fd3f3-007f-4c4b-8562-ae8934a38fc3\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":906160,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"132bd696f4b50483bebcc2b7a00b012a","sha1":"e80139aa28d794d5f618737492bb35396274e044","sha256":"4784260cac9d5d23ee9878ab78baba11e2614e4987ff4392141c62efed9fd812","sha512":"c581f06e23a818d2e3711169f55fd605ae852e60a6b13203e33e7452d302473b4650d26cf84b29b4f521c98075fb6b376438614d09b2f2334b676afcfc4d520f","ssdeep":"12288:dUTvUdPh4Ela6yvvHZq/bA0O9APuDLoHnVA9mds2NsgFqyBlBdGOiaj9f:cuHFI/10DPuDLgW0dvNsWqyBliORx","tlshash":"6915129f93523e3f44121c62d59abb33c33a0dc82a656e9e4838b385f6b5da9cd05437","first_seen":"2026-03-29T12:05:39.35355Z","last_seen":"2026-03-29T12:05:39.35355Z","times_seen":1,"resource_available":false,"data":null}},"time_used":641,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":564,"receive":77,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785638.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:55.535Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785638.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:55 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 906160\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:55 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 220B2165202A9F10\r\nX-NWS-LOG-UUID: be8240a4-704b-4d35-afae-085721b9b6f5\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":906160,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"132bd696f4b50483bebcc2b7a00b012a","sha1":"e80139aa28d794d5f618737492bb35396274e044","sha256":"4784260cac9d5d23ee9878ab78baba11e2614e4987ff4392141c62efed9fd812","sha512":"c581f06e23a818d2e3711169f55fd605ae852e60a6b13203e33e7452d302473b4650d26cf84b29b4f521c98075fb6b376438614d09b2f2334b676afcfc4d520f","ssdeep":"12288:dUTvUdPh4Ela6yvvHZq/bA0O9APuDLoHnVA9mds2NsgFqyBlBdGOiaj9f:cuHFI/10DPuDLgW0dvNsWqyBliORx","tlshash":"6915129f93523e3f44121c62d59abb33c33a0dc82a656e9e4838b385f6b5da9cd05437","first_seen":"2026-03-29T12:05:39.35355Z","last_seen":"2026-03-29T12:05:39.35355Z","times_seen":1,"resource_available":false,"data":null}},"time_used":86,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":21,"receive":65,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/web/sport/left-G-GAME.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.962Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /web/sport/left-G-GAME.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 4742\r\nlast-modified: Tue, 08 Apr 2025 05:46:55 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: RaX7f.rOLFhJPYVyJYb4FUvbz5hwijow\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:50:01 GMT\r\netag: \"66faa715ebbe9290f7eec32ab2504603\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: pEiopkWGqhGFg_hsKrwVNXbSXIti_aRKY3crXDYPxJLPL9ezJmEG4w==\r\nage: 884\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":4742,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 104 x 104, 8-bit colormap, non-interlaced","md5":"66faa715ebbe9290f7eec32ab2504603","sha1":"d7e1e255c1b1080e8db5321d1074976d225f5b6c","sha256":"65dca6c93a7f43aef97668e3c06188dc6d9c428109c12bbaf9c2f95bdaf78125","sha512":"d26bc77b5e74408634324e63d05af3ee4f93576f95904767ccebbd9ef6ac8d0eeaa62022435da28ebe23189fbe5e671378ae47dbe6fa42e71d322520d89aac64","ssdeep":"96:UUdbMYMg/843y2STR0OOBfbCkBWf/NxS0UHw6ZFYWt0sUwKXqGTQGGf5I+0:nlt8c7qCXBOkBWHSJQ68WK4GGf5I9","tlshash":"61a17dbc67db016067d5cf9313bb201559468c3ddfda6bec1faa347a850e86ea4e0148","first_seen":"2026-02-24T07:43:44.856553Z","last_seen":"2026-04-08T20:55:08.880741Z","times_seen":19,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":22,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/template/sport/vi/WAP/icon/fb.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.321Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /template/sport/vi/WAP/icon/fb.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1641\r\nlast-modified: Mon, 16 Mar 2026 02:44:37 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: cIUOPW8CsoZVTTsN9KppjcNlTTPZE8nQ\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 12:04:46 GMT\r\netag: \"d21486344aaadbd9da1efba80f3913f4\"\r\nvary: Accept-Encoding\r\nx-cache: RefreshHit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: -DtxizqJTfP2DpCP0p8jFmW2uJEXMx8OFpX4XTPYfB-PH7GZKHHpaA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1641,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"d21486344aaadbd9da1efba80f3913f4","sha1":"0e9dea7225fa3a71bcdfe072d78dc65c506cbf21","sha256":"9a4d2afcbd3ae2b57b34974292fcd622b788f3f61751fe97d75c3b451e420ffe","sha512":"beabc8fc3e241b037ed14ca94d7d6714d731401b9566b6b2eac6b5e59a81492f8334677607dbf5496630ca0baa4384abb887208c059bd651df75032040a5c422","ssdeep":"","tlshash":"f831c696f736e895872c9aa973d08721b712909932103189e18b9d5d78e83c5c8ce8a7","first_seen":"2026-03-29T01:48:00.216508Z","last_seen":"2026-04-08T20:55:08.8712Z","times_seen":16,"resource_available":false,"data":null}},"time_used":713,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":713,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785636.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:52.204Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785636.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:53 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 841112\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:53 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 220B2165202A9F08\r\nX-NWS-LOG-UUID: c808422b-2d4b-4668-86e9-a8ceadbb8065\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":841112,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"7e771ae6c519766b384dbe2500b3c398","sha1":"72c7157570eee55268b98722ce0f06048e22b05a","sha256":"3e4d1af9a7259fe33601dbb06f3881e2ef7d7630018c27d0f76ceeae006feb39","sha512":"ef44b3770979e38f689050de8b89c3206f6c4e57cc66b53bd4a414b5305f5567b67aad1f17f4d4be792cbd5eed452ea1bb03002ebe4c2695f4b68aa90c218adc","ssdeep":"24576:Jw3Q4X0/ja2YJmgCfe4uNf+z2xc0j9gkZHFcLxa8XKbm:aQ3/229puNGSVJm","tlshash":"f805235eabb06e3b5d409920a652ab7263680c5d1e54deafcc34f74efab8905cc21137","first_seen":"2026-03-29T12:05:39.356342Z","last_seen":"2026-03-29T12:05:39.356342Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1287,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1188,"receive":99,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/qingliao/front/api/api/queryRoomMsg","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:52.541Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/qingliao/front/api/api/queryRoomMsg HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nTimestamp: 1774785893\r\nContent-Type: application/json\r\nContent-Length: 185\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":185,"data":"{\"params\":\"YiklTTpPqrcrXYoFHNGdo5L+sq/tMz1fIBRCe+5e+5oNHu72+TiwC8E7xggIKPWu4KD+hjpzljalL/eCXWQ/35N4L6329A3AE/Paj2knV1yctzC/zQMRrOfjNUM3f85q99Fjd67XJombluIYYcFS2zn4WVMRb4f8YOG30Ch55QE=\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:52 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-credentials: true, true\r\naccess-control-allow-origin: https://bet9190.com\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd54595a0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":62,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"4838b9dcc38b327aeeba8207062e36ae","sha1":"89b185c0239d7da10d90950c6b064eaf075e025b","sha256":"0814e897a92ec18e144b54eefcbbaa7c49341ecf0dfcb0b7c9f951a002d7e156","sha512":"2a4e30fc393651a1751b6107702c121e682bf8b78bc8aad1cc48bd26506386dea7d8d9f3c7330af63fa70ae61bcda3b9f327b33f972b069ddcadd0dd81465d24","ssdeep":"","tlshash":"82a00221ba0e9cf22c6264c94a0c474056e8304041a08a10cd8ca224c60a07a7441a34","first_seen":"2026-02-24T07:43:44.827147Z","last_seen":"2026-04-08T20:55:08.817839Z","times_seen":17,"resource_available":false,"data":null}},"time_used":279,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":279,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785637.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:55.353Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785637.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:55 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 1037008\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:55 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 220B2165202A9F0F\r\nX-NWS-LOG-UUID: a4209661-a1f6-4414-8fd2-2534d0c89993\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1037008,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"138c12df4545f36e4c5f93d7bc1d9e04","sha1":"43df70a21b4ae5825f3f992698e5fc036ffef069","sha256":"9e565178e50a20e063484b680b4059f71afb11ca4585ec8faffd26cf2d29120c","sha512":"b03d23c80346d1e95b25b7afae4e3a14dd1040c67f653e6e1b70922b070b2c3d6fe198fd3e3d7b0ddd3c3298a147c0899b5e7abc06235fcb76bcf9fc1bc4bd39","ssdeep":"12288:f6BsYQPz4OYTqG4BMJem5zsuwfBSKU4M4RJlYKPHILGpVqEtfD07idLLGhU8yDTn:fmEzRp9OJegU3JlBvILGpVbfwkYcbWe","tlshash":"6b25238e4720beb35d158d5682cb8bb2d73b0dd96e449f9b58247b88f4f8c86c45063b","first_seen":"2026-03-29T12:05:39.31406Z","last_seen":"2026-03-29T12:05:39.31406Z","times_seen":1,"resource_available":false,"data":null}},"time_used":112,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":88,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785638.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:57.746Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785638.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:57 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 906160\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:57 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 0F0B21652E874921\r\nX-NWS-LOG-UUID: eb27756f-fc1d-4da6-b186-43500d5b9690\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":906160,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"132bd696f4b50483bebcc2b7a00b012a","sha1":"e80139aa28d794d5f618737492bb35396274e044","sha256":"4784260cac9d5d23ee9878ab78baba11e2614e4987ff4392141c62efed9fd812","sha512":"c581f06e23a818d2e3711169f55fd605ae852e60a6b13203e33e7452d302473b4650d26cf84b29b4f521c98075fb6b376438614d09b2f2334b676afcfc4d520f","ssdeep":"12288:dUTvUdPh4Ela6yvvHZq/bA0O9APuDLoHnVA9mds2NsgFqyBlBdGOiaj9f:cuHFI/10DPuDLgW0dvNsWqyBliORx","tlshash":"6915129f93523e3f44121c62d59abb33c33a0dc82a656e9e4838b385f6b5da9cd05437","first_seen":"2026-03-29T12:05:39.35355Z","last_seen":"2026-03-29T12:05:39.35355Z","times_seen":1,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":21,"receive":67,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/game-center/f/sport/queryMatchPage","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:58.036Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/game-center/f/sport/queryMatchPage HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nTimestamp: 1774785898\r\nContent-Type: application/json\r\nContent-Length: 357\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":357,"data":"{\"params\":\"D5Vl4FrHHD3JX5wkvqoUrjRetRULamlZXBzp55mUlucI/88r8NinVyqq+ks7xv00Npx0IjWNk7b8uPqKZ4oU9phyzOdwIG4ARIG0K/XjIYjFjm/G5k0klJZYrgCsaWgwFmZ8MKNWnSFvsHdjmpcNGhjgBvKMzoYsgvDFy7VXrgV7oEkgGA8RPcH6iYFE3uGWa+sStgY1VMswqfUGAIifnkGxKXQCrz7J4TH0qcNbYbFUS5UQUVBH/O3DpawcMGDPSQHnDEvHZ60MdS1Tfux+DR9dnLftPGrY/9lGdesdFbm7Aatl6TypH3iR3NTENWtCfA5H86j0ySZDAlwGKOIWXA==\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:58 GMT\r\ncontent-type: application/json\r\ncontent-length: 11206\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, accept-encoding\r\naccess-control-allow-origin: https://bet9190.com\r\naccess-control-allow-credentials: true\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 9e3ebd76be770daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":97511,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (64262), with no line terminators","md5":"07e54883a12bc38e9224c6a1023b13fb","sha1":"ed9d331c3ab0cf81e10fe99a88a009b942d93df8","sha256":"f2c604e0bdc20d633166e30d349e97a6d10d6a079ea3fa8bf8af3e46529f6a2e","sha512":"d269219d33b0ef7d05dfa5368ca776f351417a73be28978d88396eba3fd71cdecc859a339c44d6409e90711e55131b06b79ba21bdeeaf6260cb8b99792f872c3","ssdeep":"1536:qVo7wO3JWiz26oH9DUbmPa/wZ8QFNGX6t9DRbi5DsIA:FGH","tlshash":"ef93455b11189cbd9f463e82e4ef3ca558f4320f99c95d508eca8f1c9f1e783662712a","first_seen":"2026-03-29T12:05:39.357157Z","last_seen":"2026-03-29T12:05:39.357157Z","times_seen":1,"resource_available":false,"data":null}},"time_used":339,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":338,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/HomeTimer-BOYKdl1g.css","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.831Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/HomeTimer-BOYKdl1g.css HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:04 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e48-fc12\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\ncf-ray: 9e3ebd179a5b0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":64530,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (64529)","md5":"c965eee071727bcc69362ebb6c2ace1b","sha1":"6164129db24ca35d9254ed3aee6442033e8e90c3","sha256":"0eacbf1b01380a40dac39effadef66bafc19ea8e0d17249eef0a2982172274d8","sha512":"0281ceede21d064e9bcfa033351c656458a465f6ac9441831b468e8c81f1cd9482f58a08f5ab35ac7db4a6cc4f1eb6b381fe16b731881b07a668510824f8c092","ssdeep":"1536:/lpIPPagh9EX5TrbknPeC94mUEaa5jvMfO:YvMfO","tlshash":"fb53cb94b5dd001e5eb7eb351c54f6790912faa28e0f1d29f1f23ba84a87b8761b1f04","first_seen":"2026-03-29T01:48:00.130746Z","last_seen":"2026-04-08T20:55:08.838252Z","times_seen":17,"resource_available":false,"data":null}},"time_used":300,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":300,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/search-D0CeyGv_.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.628Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/search-D0CeyGv_.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/assets/index-DjzB0IZK.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:07 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\nage: 1\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\netag: W/\"69c74e4b-5d5\"\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd22da540daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1493,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (1492)","md5":"4e499dddf30c74c8c431532f3edeb59b","sha1":"3308de5e7d47ddb3278a4bf72b1cb36c3315b3cd","sha256":"eacd894d27ab709ab4eebea064db3cdb0b19602adfc6b0bb8a9c49c411c4ab6d","sha512":"c996a33d8fee530f57b3acc75214f7b4735a86b310b1d8778bc677a53595230d61107244332db460216f9ee1710ae6f1785465209b73de62c714f6ba5081eda8","ssdeep":"","tlshash":"0831c7240e40a949daff23eedb1d7700fe8b9f4e213c11e8986c02493aeb6281093161","first_seen":"2026-02-24T07:43:44.829435Z","last_seen":"2026-04-08T20:55:08.824927Z","times_seen":19,"resource_available":true,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":4,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/club_3-BFOPCfem.png","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.903Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/club_3-BFOPCfem.png HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 4741\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\netag: \"69c74e49-1285\"\r\naccept-ranges: bytes\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\ncf-ray: 9e3ebd2498820daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4741,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced","md5":"074c5de616365e2857fe77738d03add9","sha1":"0c2532076ffc77ceb6c9016886f2cae2a4c5817f","sha256":"057b7acebe505da86a73108cf405b51ff6559a1deeba2a6513c61fa80f76eda3","sha512":"1ed7a5bc386b1797f5b7805d4cf8488ea1f99767157e9faa7fbfcf2903aa1a0215914584ee902213f1d60a73dcc97524fd8df962e559b2db9d79359abfd84865","ssdeep":"96:zKr6ZlcPZeo70O4EtKmpfMr0qTOViNU65O6RtCcFesrsF5To2d/FPOpk:GrWsD7/XMgqTOecyMcEAg5ToQ/uk","tlshash":"2ba18ee78b957f084e9d16f63c4aba5be936066c04ab0c6ff1042f58613845e026fc4c","first_seen":"2026-02-24T07:43:44.941079Z","last_seen":"2026-04-08T20:55:08.849257Z","times_seen":19,"resource_available":false,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/site-intqf/siteConfig/202603/54cfd834f67d481ea060ecd90805e78c.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:47.976Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /site-intqf/siteConfig/202603/54cfd834f67d481ea060ecd90805e78c.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 43602\r\nlast-modified: Mon, 16 Mar 2026 13:25:01 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: Un6Sc4GcZoiOreeH7byDZIwP17KHqpVU\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 12:04:47 GMT\r\netag: \"c081f4426cb4edefe9b6cfb1b38479cf\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: 7yegDzp1lh9bgpm60Nxt-IgUOBuxjpAQmSzLA-wjbm7k0hhZCot0rg==\r\nage: 7122\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":43602,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced","md5":"c081f4426cb4edefe9b6cfb1b38479cf","sha1":"485cb55733599d878b515569f2f40f3c05bed82d","sha256":"9034e437b66adaa67b29b51b6f4210e7cc6627f6bcfe0ca855d7144211b2854e","sha512":"cfe5c4fcd495f88c8a9eb99eef7394d10a05b09f0b60168b1f426ecdf1cf463c365b3b1144ad06c638ca3a5938acab5ca3edb335aaf4a03be74b74623a3b2316","ssdeep":"768:6SBKi47BEJM+NNtxepvfyMssYd00captRRIWegOnJRbC3eXCVKthiAbSUlka:6SBKiSBEJMo7xe5fyjsYdqadILgSdpC6","tlshash":"f913e14662004562e48a89b51a03cf9793622974cbbb6757f66af0f1b4c2dc0eb8fdc0","first_seen":"2026-03-29T01:48:00.255992Z","last_seen":"2026-04-08T20:55:08.872329Z","times_seen":17,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785638.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:56.779Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785638.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:56 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 906160\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:56 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 0F0B21652E87491D\r\nX-NWS-LOG-UUID: 8580dd03-d2ab-4b77-901f-ef3203f877e0\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":906160,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"132bd696f4b50483bebcc2b7a00b012a","sha1":"e80139aa28d794d5f618737492bb35396274e044","sha256":"4784260cac9d5d23ee9878ab78baba11e2614e4987ff4392141c62efed9fd812","sha512":"c581f06e23a818d2e3711169f55fd605ae852e60a6b13203e33e7452d302473b4650d26cf84b29b4f521c98075fb6b376438614d09b2f2334b676afcfc4d520f","ssdeep":"12288:dUTvUdPh4Ela6yvvHZq/bA0O9APuDLoHnVA9mds2NsgFqyBlBdGOiaj9f:cuHFI/10DPuDLgW0dvNsWqyBliORx","tlshash":"6915129f93523e3f44121c62d59abb33c33a0dc82a656e9e4838b385f6b5da9cd05437","first_seen":"2026-03-29T12:05:39.35355Z","last_seen":"2026-03-29T12:05:39.35355Z","times_seen":1,"resource_available":false,"data":null}},"time_used":140,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":69,"receive":71,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/jsencrypt.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:40.100Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /jsencrypt.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:40 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:07 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e4b-2c876\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 29 Mar 2026 15:04:40 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\ncf-ray: 9e3ebd068ab40daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":182390,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (828)","md5":"3fac4c5050ddf3affef9a83179884f1c","sha1":"4f3ff513d9a377f110c1ba350d9de22bcdddf2a3","sha256":"4361db6444d034e652083bc48d9b8635ec6cd5cc51145c9c09c22697bcef8933","sha512":"a468183df8d0942edf34a91ad1c094a422fac90746b82d9ad7f76e8918b7f9da60d3b47b2aac3ce1d7ad9d7366e6a95e92bc4b4100b09ef0cfc678fa8d82c8f5","ssdeep":"3072:tG9e3/feYEeNAY7bbwmO7H5bSaeG7qC6ZU8jPdYBSZsz0bqlMk96XA3EBK/9mzvm:tG9e33eteNwmO7ZurM4qlMDvO2wL","tlshash":"ea045f0a6ef71c21491770b84f5f6085a538940f2269d999bc4cf7e49f88a3407b9ffa","first_seen":"2026-02-24T07:43:44.841862Z","last_seen":"2026-04-08T20:55:08.852453Z","times_seen":19,"resource_available":true,"data":null}},"time_used":44,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":44,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/ArrowUpOutlined-YgrGczZw.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.852Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/ArrowUpOutlined-YgrGczZw.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bet9190.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:04 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\netag: W/\"69c74e48-3e7\"\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd17ba9b0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":999,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (998)","md5":"af07d26acd816fe683fa98da5290dab6","sha1":"aa0bb1ff42b8323bb94f50fc959542c0818b57c8","sha256":"d7b366d01bc5da0666d2dc54c85bdc3cd1700ae57fb2044001133216c397640c","sha512":"6d3b7b522cfcd6a54ebb701b0e37fe1d10ea7b9319489eb230e62e5caea027376f169e1d59d8645a79e1ee32e6b64db9c9eee331d92d3a90dd1da3223a94b574","ssdeep":"","tlshash":"7411056e3184bff647828ae4483aa503f0196a2a145cf9609f51c9e5f5514c6b05ff4f","first_seen":"2026-03-29T01:48:00.138712Z","last_seen":"2026-03-29T12:11:25.971394Z","times_seen":6,"resource_available":true,"data":null}},"time_used":512,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":512,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47.m3u8?txSecret=835e895543efc14dd6238f2e4935c20f\u0026txTime=69C95AB8","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:58.040Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47.m3u8?txSecret=835e895543efc14dd6238f2e4935c20f\u0026txTime=69C95AB8 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:58 GMT\r\nContent-Type: application/vnd.apple.mpegurl\r\nContent-Length: 338\r\nConnection: keep-alive\r\nCache-Control: no-cache\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:58 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 0F0B21651E930E0B\r\nX-NWS-LOG-UUID: d9cb0dda-18ab-4fa2-ab8c-b5f8396448bf\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":338,"size_decoded":0,"mime_type":"application/vnd.apple.mpegurl","magic":"M3U playlist, ASCII text","md5":"b9faa025b9072f1af35a7cf6a509227b","sha1":"55e0ede3fdf1f7861f2d7872ed205ffe07e42081","sha256":"b462e2546d89bbc33da0292ce88073e3ead91cce6b208be55cb63690b0abd3ee","sha512":"be292442fcbc0cfe6e5c798a7d0942516cd8dfcea62f6af11b3a781fa2714b81d491cf1a4deeb2fa2a56a5f545e5a258f4e2625686b3b54a4a075147bf1d1d32","ssdeep":"","tlshash":"a8e08073235eb1c2427c84d1c46540b62bed18d6dddda1571871b747399fd0d7780950","first_seen":"2026-03-29T12:05:39.363122Z","last_seen":"2026-03-29T12:05:39.363122Z","times_seen":1,"resource_available":false,"data":null}},"time_used":276,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":275,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/bus-limit-2-DQidePQr.png","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.881Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/bus-limit-2-DQidePQr.png HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 9153\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\netag: \"69c74e49-23c1\"\r\naccept-ranges: bytes\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\ncf-ray: 9e3ebd247ffd0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9153,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 108 x 60, 8-bit/color RGBA, non-interlaced","md5":"c6fe8a89c6246f127f783e8f01620c82","sha1":"fd1e2010577d773b320f9ec537fa83c182526a2b","sha256":"c93c82806858d9c4016d2e98e32cdf838c8ee2d39b1bce2600d9caa34f50096e","sha512":"58311d1997281efdefd8bd45d0a397d967b5cb9d3a7c9aa6455e5a9388af3aa7a42675af53f463d9408cf554f995d7f0cc0f8d298ea1bc8d30a475140fbb99f6","ssdeep":"192:FCOGCe3xwSWpV18o7J2h5A/opWDTi9UZVfZz90tZ71s57YCSfou:jNRSeXKeopQTUKB50bps57vSfH","tlshash":"3512c0268531c6b117420de5f005c9291bf601a9d67d03eb8d7e20bccbf64b95ab35d1","first_seen":"2026-02-24T07:43:44.928068Z","last_seen":"2026-04-08T20:55:08.885155Z","times_seen":19,"resource_available":false,"data":null}},"time_used":70,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":70,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s.9a9q.com/724d42f1fdc3332a300f1d85d195975b.png","fqdn":"s.9a9q.com","domain":"9a9q.com","tld":"com"},"ip":{"addr":"174.35.85.160","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:48.206Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.9a9q.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 03:23:29 GMT","end":"Wed, 17 Jun 2026 03:23:28 GMT"},"fingerprint":{"sha1":"94:6C:01:A5:3F:8F:AA:47:1E:95:09:1A:B1:2A:F4:FE:3E:06:F7:AB","sha256":"69:19:C1:B7:C9:52:D7:AD:28:45:D8:83:64:05:A6:75:C4:5F:60:32:4A:78:BB:63:48:CA:9A:BB:48:8E:11:2A"}}},"request":{"raw":"GET /724d42f1fdc3332a300f1d85d195975b.png HTTP/1.1\r\nHost: s.9a9q.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 29 Mar 2026 12:04:48 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 5803\r\nConnection: keep-alive\r\nx-amz-id-2: q79DZxtZ77+wfTmdEQzGN9c4fgRpWlWqO8bZR7EGiSO7VBrEVxguKGAL5OwPFJ2XC0ES9amDW4B+JaGHTJhOMyp5yf+hdDC/\r\nx-amz-request-id: DRDM14VCPA1CSBG4\r\nx-amz-replication-status: FAILED\r\nLast-Modified: Fri, 30 Oct 2020 18:13:54 GMT\r\nETag: \"8d4db0c1d5ff867de77ad8027298c349\"\r\nx-amz-version-id: ZJn5_MNo7HRZc7czslsdG8dclu_CVL.R\r\nAccept-Ranges: bytes\r\nServer: PWS/8.3.1.0.8\r\nAge: 1093\r\nx-ws-request-id: 69c91560_PS-CDG-04A5e173_37280-30570\r\nCache-Control: max-age=2592000\r\nvia: 1.1 PS-CDG-04A5e173:24 (W)\r\nX-Px: ht PS-CDG-04A5e173CDG\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":5803,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced","md5":"8d4db0c1d5ff867de77ad8027298c349","sha1":"aea92453509e2b4bb33d9bd1b76545819c89dceb","sha256":"68c424d302a6bd0da4c7422e07d56eb4e570a39835513e0c6b256923dbabc5cc","sha512":"7a637ea236ab2843ca1f508e34be2e9abe4df31858b9367c8d387fc34bc984e6392b580186fb29e5a9b3177da49bfc5adda52eba7101b98dd13cac729c4a80f9","ssdeep":"96:AG/qNWpg9xQGPwfNkWqS18TDhryskb4lvoGxvZ7HubMbjZSfvg4R4fYNQM:AG/q8kxQGYfRx189ysDoGxxLuGjZcvzn","tlshash":"29c19e25a3d0a093a34fe790ee84f14a548b5bcb013054d38c263595c76209c46eaadf","first_seen":"2026-03-29T12:05:39.365346Z","last_seen":"2026-03-29T12:11:26.101766Z","times_seen":3,"resource_available":false,"data":null}},"time_used":162,"timings":{"blocked":59,"dns":1,"connect":30,"send":0,"wait":30,"receive":0,"ssl":40},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s.9a9q.com/data/62ef7c3e03e59e0114e597bc12d7fc08.png","fqdn":"s.9a9q.com","domain":"9a9q.com","tld":"com"},"ip":{"addr":"174.35.85.160","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:48.209Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.9a9q.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 03:23:29 GMT","end":"Wed, 17 Jun 2026 03:23:28 GMT"},"fingerprint":{"sha1":"94:6C:01:A5:3F:8F:AA:47:1E:95:09:1A:B1:2A:F4:FE:3E:06:F7:AB","sha256":"69:19:C1:B7:C9:52:D7:AD:28:45:D8:83:64:05:A6:75:C4:5F:60:32:4A:78:BB:63:48:CA:9A:BB:48:8E:11:2A"}}},"request":{"raw":"GET /data/62ef7c3e03e59e0114e597bc12d7fc08.png HTTP/1.1\r\nHost: s.9a9q.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 29 Mar 2026 12:04:48 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 13191\r\nConnection: keep-alive\r\nx-amz-id-2: 8982RH+Lff685uck8ZgCMTnrEo8yLjL12ZHLbzeAMzX7sy2LQZVWWH/Hu8pGeLVJYE9AJMFxPD1OiFEUtFSeQfowfAVMMDsx\r\nx-amz-request-id: DRDMC4TYTFCWHKG6\r\nx-amz-replication-status: FAILED\r\nLast-Modified: Sat, 24 Jul 2021 10:12:33 GMT\r\nETag: \"62ef7c3e03e59e0114e597bc12d7fc08\"\r\nx-amz-version-id: dA9ZHPVCCreEHMlVQWkVJTjpPc9.OQwd\r\nAccept-Ranges: bytes\r\nServer: PWS/8.3.1.0.8\r\nAge: 1093\r\nx-ws-request-id: 69c91560_PS-CDG-04A5e173_40658-16701\r\nCache-Control: max-age=2592000\r\nvia: 1.1 PS-CDG-04A5e173:34 (W)\r\nX-Px: ht PS-CDG-04A5e173CDG\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":13191,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"62ef7c3e03e59e0114e597bc12d7fc08","sha1":"1311d0b86e3160ef1ae0c01df1d07686e8b6fa34","sha256":"79ac35eecd2c620a63b2294a0b5d4b82764a4c5a7eeadf8710e3dc36730de962","sha512":"c96949300ad458270a089b36eedd1fb8f028cae60e2f1e8afdb7d7c3ac487c4d83365b673044890d4471c72b48925ecfe4f0b49adbfa1bf68a90e19beb4bdf4a","ssdeep":"384:8QaWIfCIYs942mDY0SgN4/YY1EE6YquWbNc:NIf6suVNmYY1/fWbe","tlshash":"9042b00447550f91c22943b542a7221d7cd57f7ec5384bf23f598b2638ea729e93e8b0","first_seen":"2025-09-28T13:15:53.689816Z","last_seen":"2026-05-16T13:13:54.451773Z","times_seen":5,"resource_available":false,"data":null}},"time_used":75,"timings":{"blocked":44,"dns":0,"connect":0,"send":0,"wait":30,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785638.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:56.565Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785638.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:56 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 906160\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:56 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 220B2165202A9F13\r\nX-NWS-LOG-UUID: f11d0421-a05c-4f46-90f1-c707342a8fd5\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":906160,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"132bd696f4b50483bebcc2b7a00b012a","sha1":"e80139aa28d794d5f618737492bb35396274e044","sha256":"4784260cac9d5d23ee9878ab78baba11e2614e4987ff4392141c62efed9fd812","sha512":"c581f06e23a818d2e3711169f55fd605ae852e60a6b13203e33e7452d302473b4650d26cf84b29b4f521c98075fb6b376438614d09b2f2334b676afcfc4d520f","ssdeep":"12288:dUTvUdPh4Ela6yvvHZq/bA0O9APuDLoHnVA9mds2NsgFqyBlBdGOiaj9f:cuHFI/10DPuDLgW0dvNsWqyBliORx","tlshash":"6915129f93523e3f44121c62d59abb33c33a0dc82a656e9e4838b385f6b5da9cd05437","first_seen":"2026-03-29T12:05:39.35355Z","last_seen":"2026-03-29T12:05:39.35355Z","times_seen":1,"resource_available":false,"data":null}},"time_used":86,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":24,"receive":62,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/site/f/siteConfig/query","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.461Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/site/f/siteConfig/query HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nTimestamp: 1774785882\r\nContent-Type: application/json\r\nContent-Length: 185\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":185,"data":"{\"params\":\"c/ZC3Ica1WFLL2yqKOjgElAtJTk5qpn9EvE8f9bDtpok/3pldf9IcqNGy7HjijDLr7Ao7mOgNqnWc+T1mCjIVnKIxgq5gU2HIIsTuhkY3w6fPNXkbMRCe42p5Pqlp32GhoV+Hi8RHOxGdhpaE3rAIw/aWLft49agLh4pnFbRJ5o=\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:42 GMT\r\ncontent-type: application/json\r\ncontent-length: 7568\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, accept-encoding\r\naccess-control-allow-origin: https://bet9190.com\r\naccess-control-allow-credentials: true\r\ndefaultlang: vi\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 9e3ebd156a510daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":27515,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (23991), with no line terminators","md5":"dcc81d74123bc96b1634c69de4fe03a3","sha1":"8125d12c11ef2e9e088dda93679107bf03bbe1d0","sha256":"5830082d74e04f0d113c3aa9689158d497168bd30eaafc7fb570a3e1b2ced8af","sha512":"e9cd3718dae39db1ed9425607459ab2e56735de55ceeeb2a02f77067c71c1ea62823b7bba613df86979cf377b7e990694763a0bb2f73a646355dff34bb69c93c","ssdeep":"768:YzFBSUPrpvF84VtrXBeFeme+ene5edeDRXeXeNe4eceOeiQeLejeBevebe2me8ez:YzFBSUPrpvF84VtrReFeme+ene5edeDP","tlshash":"05c2640343c49425c62d85dcd0bfb71d1ac5202efbc09fe96bf85678698e4663b2229a","first_seen":"2026-03-29T12:05:39.367359Z","last_seen":"2026-03-29T12:05:39.367359Z","times_seen":1,"resource_available":false,"data":null}},"time_used":286,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":285,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/index-B4cP37dQ.css","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.829Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/index-B4cP37dQ.css HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e49-7c26\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\ncf-ray: 9e3ebd179a540daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":31782,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (31781)","md5":"77154cb742807a3cfa7624aa86ad386e","sha1":"63b5046f9c973d6314417f74c910ab538e41e680","sha256":"475c7b6bc2952b44669c9df00866e661c0650f2e536ff37dfca560602083db33","sha512":"c976152245e674caa464edaaee8989472c2aac314c3cdd85cd1f828632f1ebf8ff7b64c96369016b9263aa5994b6e9e274241c68c8cedfd7aaaac03a5d96233a","ssdeep":"384:sySScMCYXK4Hso4X6KJpjp0RIkHjuvCGaTH59pQyMVVQS:sySSGYXK4Hsos2BGkg","tlshash":"42e2bb1c9ac710dbd9bee37535a0db96bb936c80c28f8677a371311c470e9ee25e1609","first_seen":"2026-02-24T07:43:44.837396Z","last_seen":"2026-04-08T20:55:08.869682Z","times_seen":19,"resource_available":false,"data":null}},"time_used":275,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":275,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/index-Chl8vKZs.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.618Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/index-Chl8vKZs.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/assets/index-DjzB0IZK.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e4a-ae6d\"\r\ncontent-encoding: gzip\r\nage: 1\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\ncf-ray: 9e3ebd22da1b0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":44653,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"Unicode text, UTF-8 text, with very long lines (44642)","md5":"58473477b259742ef4fb4a3c59bc11e0","sha1":"d729be162b3de2b0d97b61cf4c40649b89eef357","sha256":"795ff42361b6d46f06148f579707f6663dc377995378c1112b216944a7d3d960","sha512":"e02535d676375b98a05be5548112baad5095d2c6f318a599596ba52c3cd29f56cc1268271a2abf013eacaf02728b37268bc9d48c7a025558683499a72d184c8c","ssdeep":"768:sZtE4fY8LwREUZY1EPNFbFvGenRlDyMdBm/hceUDyoQc9JXNMA6e66mC7itet6r4:sZVTCPF5dAKr9M8Iet6YZN","tlshash":"6c132a41b4279cbeabb7540460d45441f20c7fabe098c8e5b2fe5d1a67cbda0bb91b70","first_seen":"2026-03-29T01:48:00.184477Z","last_seen":"2026-03-29T12:11:26.008283Z","times_seen":6,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/template/sport/vi/WAP/icon/ae.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.296Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /template/sport/vi/WAP/icon/ae.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2838\r\nlast-modified: Mon, 09 Mar 2026 13:13:39 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 1iI5jZW.H2OMBVtbCUlSKbaMSMKHCDVn\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 12:04:46 GMT\r\netag: \"2eb1004deb88db90379e41de15e62bce\"\r\nvary: Accept-Encoding\r\nx-cache: RefreshHit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: wP1Qtd-_o4aBk1XD_IAZ6Jy5jbAgKY-7BulxHY2WHayV_4MRwL_5wQ==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2838,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 144 x 70, 8-bit/color RGBA, non-interlaced","md5":"2eb1004deb88db90379e41de15e62bce","sha1":"7ecf5668f9e3490803e8cfee773d1d526de42442","sha256":"fe569173f7f5d448ba69915ebd55fd435fa8e7b3b4c2f61cec6e31014163530c","sha512":"6fae60afb8ff565678ac8ad429a382214450f47d95dafe96f14286618eec797b9a8a6c534be22e1b0f0d4c4b83215163b57b81285471e1d7e0e6a1a4f94d628c","ssdeep":"","tlshash":"63510ac41341afa4a5890e5fce8fdeebdeb195d93ba0b0680a2c104a431cd4884c55d5","first_seen":"2026-03-29T01:48:00.140614Z","last_seen":"2026-04-08T20:55:08.89651Z","times_seen":17,"resource_available":false,"data":null}},"time_used":733,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":733,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/template/sport/vi/WAP/icon/ag.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.304Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /template/sport/vi/WAP/icon/ag.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 3314\r\nlast-modified: Thu, 15 Jan 2026 02:54:44 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: BzYYMv2u6hlb3pReG4WPtRIFQ59WpC0b\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 12:04:46 GMT\r\netag: \"3f3cb903b5184849ad7186eae690d96d\"\r\nvary: Accept-Encoding\r\nx-cache: RefreshHit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: 39bkIylkcgF4SzUkvCDDjTfuiM3n8WN9yBI2rLEAE9T8z07Y_UhOHA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":3314,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 166 x 80, 8-bit/color RGBA, non-interlaced","md5":"3f3cb903b5184849ad7186eae690d96d","sha1":"d2216c18652a15432564c84ab40a099325cc4182","sha256":"e4d398f0be5d2d2ad2d5c181da22691a7b5604374585bca4475149a45aa9c457","sha512":"6a798d379b01256a1eaa6b91005d80e0742286f1e2266dd6080cb4f130b3f0d2eb989cfd8d34414f177489f954961174fece12bc23a7a370b1ba881382231004","ssdeep":"","tlshash":"0d613bc874c024aee6e3265423a8a0819d736b50ec3e130e5cd7942df1d8ea45bb238b","first_seen":"2026-02-24T07:43:44.93511Z","last_seen":"2026-04-08T20:55:08.844861Z","times_seen":19,"resource_available":false,"data":null}},"time_used":721,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":721,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/Soccer.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.632Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/Soccer.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2303\r\nlast-modified: Thu, 30 Oct 2025 07:24:53 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: X_7wwdoQJWgv01jVhbyfFC9wypJH6Wco\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"e188a4c283e05f4d89d5b9e19d9c47c5\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: vwTpU840Phyi-UwVOi8VesAPVArrqOYAaSVxkNchO6jexmH4nQbZ5Q==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2303,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"e188a4c283e05f4d89d5b9e19d9c47c5","sha1":"434004c2384c101a46080d187bae158b2c10d99f","sha256":"ea94118bc0de594a12ae3df53be0ec960ffbb23b208364cd097efb2791a0fa93","sha512":"dca6ae319bfc7649bdf1dd237b91a3c851a8a840b00afe5e7c55b057f55111cef90dd2ef84343fc2de8c34fb52260cda3dae4c401aba8f1c06e5e7f52ab5c1bf","ssdeep":"","tlshash":"6a41396374dcc94493aec854e8071275fcf3598cb949361fd76829ca704fca98a32a16","first_seen":"2026-02-24T07:43:44.858716Z","last_seen":"2026-04-08T20:55:08.813924Z","times_seen":18,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785637.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"43.174.27.229","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:51.263Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785637.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:51 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 1037008\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:51 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 6169AE2B070F1B8D\r\nX-NWS-LOG-UUID: 1bcef0f9-ed6f-49c4-a546-eec681e81bec\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1037008,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"138c12df4545f36e4c5f93d7bc1d9e04","sha1":"43df70a21b4ae5825f3f992698e5fc036ffef069","sha256":"9e565178e50a20e063484b680b4059f71afb11ca4585ec8faffd26cf2d29120c","sha512":"b03d23c80346d1e95b25b7afae4e3a14dd1040c67f653e6e1b70922b070b2c3d6fe198fd3e3d7b0ddd3c3298a147c0899b5e7abc06235fcb76bcf9fc1bc4bd39","ssdeep":"12288:f6BsYQPz4OYTqG4BMJem5zsuwfBSKU4M4RJlYKPHILGpVqEtfD07idLLGhU8yDTn:fmEzRp9OJegU3JlBvILGpVbfwkYcbWe","tlshash":"6b25238e4720beb35d158d5682cb8bb2d73b0dd96e449f9b58247b88f4f8c86c45063b","first_seen":"2026-03-29T12:05:39.31406Z","last_seen":"2026-03-29T12:05:39.31406Z","times_seen":1,"resource_available":false,"data":null}},"time_used":393,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":323,"receive":70,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785637.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:55.757Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785637.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:55 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 1037008\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:55 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 220B2165202A9F11\r\nX-NWS-LOG-UUID: 85e24815-7f19-4eff-ac13-5c96908a985c\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1037008,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"138c12df4545f36e4c5f93d7bc1d9e04","sha1":"43df70a21b4ae5825f3f992698e5fc036ffef069","sha256":"9e565178e50a20e063484b680b4059f71afb11ca4585ec8faffd26cf2d29120c","sha512":"b03d23c80346d1e95b25b7afae4e3a14dd1040c67f653e6e1b70922b070b2c3d6fe198fd3e3d7b0ddd3c3298a147c0899b5e7abc06235fcb76bcf9fc1bc4bd39","ssdeep":"12288:f6BsYQPz4OYTqG4BMJem5zsuwfBSKU4M4RJlYKPHILGpVqEtfD07idLLGhU8yDTn:fmEzRp9OJegU3JlBvILGpVbfwkYcbWe","tlshash":"6b25238e4720beb35d158d5682cb8bb2d73b0dd96e449f9b58247b88f4f8c86c45063b","first_seen":"2026-03-29T12:05:39.31406Z","last_seen":"2026-03-29T12:05:39.31406Z","times_seen":1,"resource_available":false,"data":null}},"time_used":120,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":23,"receive":97,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/index-CAaPVfO3.css","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.844Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/index-CAaPVfO3.css HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e4a-73bc\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\ncf-ray: 9e3ebd179a650daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":29628,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (29627)","md5":"f1e8992295128c6b6af7161cbc99f884","sha1":"05b12f22453cf2404bab2c3d444063f2335a12c4","sha256":"2c0f7f0d597df970a011a85f24b05c532cfbf3e6cc28f0401014fbafd12957bb","sha512":"5e5fc8c38bf67264d0d703102b98abccc9592b5298a93d6e10322c51e690274ffbac253a4c1869f2440915bb596441e8470f69f5c159888ad9a0674fe554984e","ssdeep":"192:JfuIV6urYallQu94ktdpn4UkiZ86bmYuRE6lNkHYDyD9DvQNilll7/jutcfXyzWH:xuIVdN5lq9MCQ","tlshash":"4cd212c47cc6043daee1e3761999dd9987796f309b8e1d2963b6737aec0578a32e1300","first_seen":"2026-02-24T07:43:44.932883Z","last_seen":"2026-04-08T20:55:08.918901Z","times_seen":19,"resource_available":false,"data":null}},"time_used":536,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":536,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/timeZone-CiRCeigp.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.850Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/timeZone-CiRCeigp.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bet9190.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:07 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\netag: W/\"69c74e4b-2dd\"\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd17aa910daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":733,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"Java source, ASCII text, with very long lines (732)","md5":"7b3d3ee29b11bac37a0727654083c922","sha1":"ce7b9c7cddb4385f2682594417c6656b2a1aa777","sha256":"e98200284369e3360c818436f14acdc441e7a7977feebec05c3b3e0dbd105142","sha512":"457fd0e056db1cd8918fc8a579026802bd1c84fe8bd9950f25c99873c158423f4cd144a8e88bef62078cf78d73e85ed31faeedb90ed653cb0abf8ee5bf72fbef","ssdeep":"","tlshash":"fa019c5a4860cab2b23505ecb1bdb6807e25f820f6564a58661898212f3308579bff4b","first_seen":"2026-03-29T01:48:00.042122Z","last_seen":"2026-03-29T12:11:26.025721Z","times_seen":6,"resource_available":true,"data":null}},"time_used":306,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":306,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/d_logo-BfF9f3i8.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.854Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/d_logo-BfF9f3i8.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bet9190.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\netag: W/\"69c74e49-36\"\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd17bac90daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":54,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text","md5":"bc1080d98fb3d6a758ce20794c8fef35","sha1":"c9855ae87acfa7f9035abbad28b98350a49c4eab","sha256":"ab824e7246c7cdbfd29f4fa10f684b92954d2424e2b9a7d9243018ed01349717","sha512":"2fbd62a62eb57f9657d688a9f724cf434d8eb1184e41bae40ebf168c0d21d47fa7aaea56bbeb37cc5c34dc038d00e4fdd633a709249c4760e549488b7100dc0d","ssdeep":"","tlshash":"1290026d140508b0119c64888763d575144142587279565590156909ae51491550a820","first_seen":"2026-02-24T07:43:44.907329Z","last_seen":"2026-04-08T20:55:08.863515Z","times_seen":19,"resource_available":true,"data":null}},"time_used":515,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":515,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/d_logo-BfF9f3i8.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.627Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/d_logo-BfF9f3i8.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/assets/index-DjzB0IZK.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\nage: 1\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\netag: W/\"69c74e49-36\"\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd22da4e0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":54,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text","md5":"bc1080d98fb3d6a758ce20794c8fef35","sha1":"c9855ae87acfa7f9035abbad28b98350a49c4eab","sha256":"ab824e7246c7cdbfd29f4fa10f684b92954d2424e2b9a7d9243018ed01349717","sha512":"2fbd62a62eb57f9657d688a9f724cf434d8eb1184e41bae40ebf168c0d21d47fa7aaea56bbeb37cc5c34dc038d00e4fdd633a709249c4760e549488b7100dc0d","ssdeep":"","tlshash":"1290026d140508b0119c64888763d575144142587279565590156909ae51491550a820","first_seen":"2026-02-24T07:43:44.907329Z","last_seen":"2026-04-08T20:55:08.863515Z","times_seen":19,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/site-intqf/siteNotice/202603/a1018941be414cf0a487cdbe54e91dc6.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.699Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /site-intqf/siteNotice/202603/a1018941be414cf0a487cdbe54e91dc6.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 139295\r\nlast-modified: Mon, 23 Mar 2026 13:01:18 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: Pbqh4KOdcBX8D8PmaDYcezCQJkYvTiA0\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"2e1e25c2e6539542cc13db6340ade5b4\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: BCnUy3J3HU1yP0nGIh2wn3fLxiZKghicN6NDSUA8WihK8EvO4TNgKw==\r\nage: 2760\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":139295,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1920 x 500, 8-bit colormap, non-interlaced","md5":"2e1e25c2e6539542cc13db6340ade5b4","sha1":"cbf6316a62de45886f552d81692f37110a725c24","sha256":"afead483c08437e16722125906d4b0a935f314ee7066c8f152da4c87e2351622","sha512":"3038129609a8471f24302f758229c195c27e910793d7382461279e83ad7253c321b33b2427f1457821a102c022286fefe3ad2d677c93a32a96cdcb1f2fbb98fa","ssdeep":"1536:7miHRolVn/FsHQ8RA5qj9bxDJVHKKUa3Iqqs1n7/cnPQ+eqlV2KGWw2F0TebCj/r:SiUiw8TFhGeqmqIbqB7fbCbK/dj9O/5","tlshash":"dcd312634e698bf48478661b96d5719e00ae720c29a88d5bfb742f454bccfc1b7e3720","first_seen":"2026-03-29T01:48:00.178436Z","last_seen":"2026-04-08T20:55:08.879481Z","times_seen":17,"resource_available":false,"data":null}},"time_used":39,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":25,"receive":14,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/bus-limit-1-DjCpZCHi.png","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.879Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/bus-limit-1-DjCpZCHi.png HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 11812\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\netag: \"69c74e49-2e24\"\r\naccept-ranges: bytes\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\ncf-ray: 9e3ebd247ff40daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11812,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 168 x 56, 8-bit/color RGBA, non-interlaced","md5":"63aedfdade53a6a7970d44ef5be1ba9b","sha1":"f2f0fe191d0e69839ffcae37c9b17de23321d886","sha256":"b031a8d2f407362ad282db09e9fe29f34ba5aa61e2e111883890d128087f7538","sha512":"add642e049815c35087d05a3dfd6ecb0d4266821872ee39d6ddfe72efdd1722806bac611ca516fdc2ebeae5978e6e306ad329c6318b8ff0bf00790e97f784796","ssdeep":"192:BRQm/5RFbDk1lP32ldof8dV8J5J1EOugjKLWRyOCp9pvP5iUjJQvmnDW2iNxJHvZ:BRQm/57Sd200zmP1FukUqCrFrdwmDWFx","tlshash":"fa32bf1a43682ff2e8647ee221d81fc509ae303c0965726e2572a74a9b24df9152cb29","first_seen":"2026-02-24T07:43:44.869441Z","last_seen":"2026-04-08T20:55:08.919574Z","times_seen":19,"resource_available":false,"data":null}},"time_used":83,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":82,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/site-intqf/siteConfig/202601/176d7c3dab264be4b0ea997a4224286e.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.889Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /site-intqf/siteConfig/202601/176d7c3dab264be4b0ea997a4224286e.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 21322\r\nlast-modified: Mon, 26 Jan 2026 04:49:28 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 8RMLdHKHM99Qk1NPmrZl19jrfNvZQfLY\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\netag: \"fd43cba637436f0ff41272148a952a5e\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: tYqYXAipGUMQM7Sjc3MtHXx2UlofUWdsRZ6SN749_JCOe61dpmSpfw==\r\nage: 2761\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":21322,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 368 x 100, 8-bit/color RGBA, non-interlaced","md5":"fd43cba637436f0ff41272148a952a5e","sha1":"0998ae892c19d573c094a1f4c022a87afa8d0c0f","sha256":"09dfc6b2d54a842fcef6f9456b94d9b88d3bfa54a6353071b3eb32d297123cc9","sha512":"c8196a56814ab34df47495876051a96c29beb5d24257427c4d142897a197925f74b6eeb2664161d3e6ef7e1c6e6715925056bceb97d1a7a8f659960528a2d192","ssdeep":"384:awVuWMK8I/0eisfqUdlDBHDF2lc/n+0x39pVIwUsKAqsDbWwzmpER3:TuWMKNEXUXh4c/n+0x39pVQsLnzmK3","tlshash":"49a2e161bf5cd7d4a93b30dc0a238260d7e7d326d61e22dad3412b41aa54b73127cb99","first_seen":"2026-02-24T07:43:44.885844Z","last_seen":"2026-06-03T10:10:15.231055Z","times_seen":25,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/web/sport/left-F-GAME.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.976Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /web/sport/left-F-GAME.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 4029\r\nlast-modified: Tue, 08 Apr 2025 05:46:55 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: Vt4XYT0mt5n0Bwvv7jhYjtRMpslOypRs\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:50:01 GMT\r\netag: \"ba8a7311fddb0eb6d8748b3dd0fe80d7\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: VH-SUFk0N7_eBKYpycR3H_tdhjRyt_-mKHeU4gtBc4sS9oFKhhjN8A==\r\nage: 884\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":4029,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 104 x 104, 8-bit colormap, non-interlaced","md5":"ba8a7311fddb0eb6d8748b3dd0fe80d7","sha1":"151cf232a847df158c456549e038bace1230f194","sha256":"14111b619e4b30ffdfbb762bf17365de1e1fc4b2f11d326429a8fd0b0a24e7e5","sha512":"3c838333bec4f96180d00dc31e7672cc1b68a1c515723998cb207bf268f08c02fde5a349f44a1a0b153fbec79e893ab4a1a555ee540e1d5723310d5596339128","ssdeep":"","tlshash":"23816de7035921ad947303b942e790119f3fa7857aeb921b902aeb07e0cc017a09b6f5","first_seen":"2026-02-24T07:43:44.937461Z","last_seen":"2026-04-08T20:55:08.92082Z","times_seen":19,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/search-D0CeyGv_.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.848Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/search-D0CeyGv_.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bet9190.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:07 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\netag: W/\"69c74e4b-5d5\"\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd17aa8d0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1493,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (1492)","md5":"4e499dddf30c74c8c431532f3edeb59b","sha1":"3308de5e7d47ddb3278a4bf72b1cb36c3315b3cd","sha256":"eacd894d27ab709ab4eebea064db3cdb0b19602adfc6b0bb8a9c49c411c4ab6d","sha512":"c996a33d8fee530f57b3acc75214f7b4735a86b310b1d8778bc677a53595230d61107244332db460216f9ee1710ae6f1785465209b73de62c714f6ba5081eda8","ssdeep":"","tlshash":"0831c7240e40a949daff23eedb1d7700fe8b9f4e213c11e8986c02493aeb6281093161","first_seen":"2026-02-24T07:43:44.829435Z","last_seen":"2026-04-08T20:55:08.824927Z","times_seen":19,"resource_available":true,"data":null}},"time_used":321,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":321,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/Tennis.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.637Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/Tennis.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2083\r\nlast-modified: Thu, 30 Oct 2025 07:24:52 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: dwUU8OiksVzZFv9ZfBYUARpXZEnxkR4X\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"b9e17e4561a97839fc248eca93ab34e1\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: CKk0v6cUv7XJE0ENH9FXtCnmBGVyhdzXB519tUzBeJw5kl-HhUWyOQ==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2083,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"b9e17e4561a97839fc248eca93ab34e1","sha1":"ff79c7d6977ae39f3503b196a46eb83e59af4fb5","sha256":"1d9b7d7ca0925767fcecc4e2cd20660f0734f20b3e3293f2c64ef7abf6169b01","sha512":"a11d17517dbf33bdc89cc526ba2a213b1229fb2910186282449a4d373ff43d53664fe64da5a77e3b5f0b2f5cb53e1d72503103d83dbd5853df0085385fbaf154","ssdeep":"","tlshash":"23414e90bfd25df1347d01614bfc10d2b97536b48a08f3713885e017ec01192778d056","first_seen":"2026-02-24T07:43:44.912168Z","last_seen":"2026-04-08T20:55:08.849895Z","times_seen":18,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/Cricket.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.660Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/Cricket.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1900\r\nlast-modified: Thu, 30 Oct 2025 07:24:51 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: VjFcKIL3IJw139HXCZFgDH1dUzDCaGfa\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"05c5b0ac9856c43b0b9d48da1c6f4989\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: 6z_PTv25S2s15kUSEfIZY3sVZZkwuShwT_hVo-AwVvEZqWbDlde9yw==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1900,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"05c5b0ac9856c43b0b9d48da1c6f4989","sha1":"5a5a859363eee944c9c6cd557f2cca01580b7fa4","sha256":"cd306601d7cf5d62373c8265560ee5425ca6dcb8aa6f6ddcba1bc496f3dc649c","sha512":"2c95d1a03ce17a9923a0429560b61b13a1ff76d648ab5ba79d1e2404e08b3eff8fe9e7ab141abae75e7a992f38bd1f5c2e7d18195afdd77b7ceb82ff90f4b858","ssdeep":"","tlshash":"98413b55d184ef92f23aeb281ab9d52c58214be933ece9587c00046c62727b824a32d6","first_seen":"2026-02-24T07:43:44.913282Z","last_seen":"2026-04-08T20:55:08.886407Z","times_seen":18,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/game-center/f/world/sport/match/getMatchDetail/pc","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:47.376Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/game-center/f/world/sport/match/getMatchDetail/pc HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nTimestamp: 1774785887\r\nContent-Type: application/json\r\nContent-Length: 185\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":185,"data":"{\"params\":\"e3SzXUxjzZJP+Vip59MvOhbP1ISfBD4g+0ECuhlDxXW/tOEeOZ5ipbq3uvIycLBsYp6SAcemJrqzBU56Xt2Cd5YvUWZuzpCtDodxwFFDMJ4oG53h+qjRMgTKpIKBPyZLkIgJX43oiU/8JMaNaA4Z76f2Lu51pkY+AiUYq5rXXQE=\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:47 GMT\r\ncontent-type: application/json\r\ncontent-length: 2265\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, accept-encoding\r\naccess-control-allow-origin: https://bet9190.com\r\naccess-control-allow-credentials: true\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 9e3ebd341d9b0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9619,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"e649d351e9db8b00a4c55734a7dddc73","sha1":"d36b7d3f14b186411cf68abb098c13894ab473e3","sha256":"b9e439f738183cf9625131fa500d7d8d9ac2202bf984c7fa70e56b1b2fe1ef16","sha512":"ca8e3338cf3d2b81281cdadf325112282d8e64bcfb6a2ee2dad51327ebabd402762cf06bdb71741a98564f5a40f12efa41a3677ce827c142d1f1b1f06007aed9","ssdeep":"192:JEwVrE/EIwd5l8h2l9YpXji124CwiPKDp7JM3RRDSIKQp1iGUPipf99op+iiZJkZ:4fji124CwiPMCRDSIJiGUP+XBiiJkh3","tlshash":"f612339a627dc8ae5bc13b42d8cf7446b9f43f07d9ca5c8149caae1c561e343721b21b","first_seen":"2026-03-29T12:05:39.379973Z","last_seen":"2026-03-29T12:05:39.379973Z","times_seen":1,"resource_available":false,"data":null}},"time_used":322,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":322,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/qingliao/front/api/api/queryRoomMsg","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:48.067Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/qingliao/front/api/api/queryRoomMsg HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nTimestamp: 1774785888\r\nContent-Type: application/json\r\nContent-Length: 185\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":185,"data":"{\"params\":\"lFl4bNM7Zd0LXya8dxjExNUe5Xl3P5jAwRlU92qaT1ZJvvg0qXTmst4CaJSCTs4jz7OTxX9TmnJLZJiMUpcljjWni4PF+8nmtBSvl0+z+ywlpSWV9k6OHNlHivP/XvbU/ZIsCS81um2MDbmBWvxyH7QSdUClFX3eO39tS5/NHxQ=\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:48 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-credentials: true, true\r\naccess-control-allow-origin: https://bet9190.com\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd386b310daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":62,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"4838b9dcc38b327aeeba8207062e36ae","sha1":"89b185c0239d7da10d90950c6b064eaf075e025b","sha256":"0814e897a92ec18e144b54eefcbbaa7c49341ecf0dfcb0b7c9f951a002d7e156","sha512":"2a4e30fc393651a1751b6107702c121e682bf8b78bc8aad1cc48bd26506386dea7d8d9f3c7330af63fa70ae61bcda3b9f327b33f972b069ddcadd0dd81465d24","ssdeep":"","tlshash":"82a00221ba0e9cf22c6264c94a0c474056e8304041a08a10cd8ca224c60a07a7441a34","first_seen":"2026-02-24T07:43:44.827147Z","last_seen":"2026-04-08T20:55:08.817839Z","times_seen":17,"resource_available":false,"data":null}},"time_used":273,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":273,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/game-center/f/world/sport/match/getMatchDetail/pc","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:55.542Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/game-center/f/world/sport/match/getMatchDetail/pc HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nTimestamp: 1774785896\r\nContent-Type: application/json\r\nContent-Length: 185\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":185,"data":"{\"params\":\"icS/7AdKQT+LgxFvit8pji0booHDf0uYPH6zauBcHTou5ZcqjUX09kWgmPEmUdo1DvxsAi60DIP5IwTtEhg5opfQ/FJv+1dFXqlOU7EZcKN0dP4pLEibJm49jvb925WibThbT2dJ45AHIhKGF01cfiAASY98LiJDB89VEjPfstI=\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:55 GMT\r\ncontent-type: application/json\r\ncontent-length: 2266\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, accept-encoding\r\naccess-control-allow-origin: https://bet9190.com\r\naccess-control-allow-credentials: true\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 9e3ebd672a0f0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9619,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"015627bc7685f1c2ce121031c9071ba9","sha1":"3dcc599c9ba21936dce532f6778c2af21b7a5d25","sha256":"34292300249bbd26fccc992b02af8fef5cfc210bbb88f18b8a4aa8cd0b4c1cdd","sha512":"8c87fdd131ed7e1200e0007c5b3c0fd372f9143df7814a15a2217f7be32c55a3650766205ce7f4ebb04de21667a5ad26aa1e808f83a2301b9c6549300891b26e","ssdeep":"192:JEwVrE/Eswx9l8h2lBxrpXji124CwiPKDp7JM3RJSIKQp1iGUPipf99op+iiZJkt:0apji124CwiPMCJSIJiGUP+XBiiJkhr","tlshash":"0612429a627cc8ad5bd13f43d8ce3485b9f43e17d9c91c8149c6be2d5a1e283721b21b","first_seen":"2026-03-29T12:05:39.380772Z","last_seen":"2026-03-29T12:05:39.380772Z","times_seen":1,"resource_available":false,"data":null}},"time_used":336,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":336,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785636.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"43.174.27.229","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:50.011Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785636.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:51 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 841112\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:51 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 6169AE2B070F1B87\r\nX-NWS-LOG-UUID: 2d8176be-a4ff-443b-8ef5-f7faa824156f\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":841112,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"7e771ae6c519766b384dbe2500b3c398","sha1":"72c7157570eee55268b98722ce0f06048e22b05a","sha256":"3e4d1af9a7259fe33601dbb06f3881e2ef7d7630018c27d0f76ceeae006feb39","sha512":"ef44b3770979e38f689050de8b89c3206f6c4e57cc66b53bd4a414b5305f5567b67aad1f17f4d4be792cbd5eed452ea1bb03002ebe4c2695f4b68aa90c218adc","ssdeep":"24576:Jw3Q4X0/ja2YJmgCfe4uNf+z2xc0j9gkZHFcLxa8XKbm:aQ3/229puNGSVJm","tlshash":"f805235eabb06e3b5d409920a652ab7263680c5d1e54deafcc34f74efab8905cc21137","first_seen":"2026-03-29T12:05:39.356342Z","last_seen":"2026-03-29T12:05:39.356342Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1154,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1065,"receive":89,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/empty-white-BjL230TF.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.849Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/empty-white-BjL230TF.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bet9190.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\netag: W/\"69c74e49-61\"\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd17aa900daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":97,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text","md5":"3dea6937be1184ad628dd27202632b04","sha1":"8604f80ccf3d36dea78d62cabeec77af0b0028cd","sha256":"6c8cd179af0cc07eca46ab0d96db2630262db825648aace79a811ece018fba41","sha512":"3be0784c2b202905376a8ad10c61efad7965ef25c408fdcaadf8f1f0b00568ec997763931c749a7567fa774904f27853aa189ccb39a4cdb314f925ee7856b200","ssdeep":"","tlshash":"4ab01281a80088b0511cf8644121d65891089281f524c6af9030d249e51a4104a0bcb2","first_seen":"2026-02-24T07:43:44.847491Z","last_seen":"2026-04-08T20:55:08.829069Z","times_seen":19,"resource_available":true,"data":null}},"time_used":540,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":540,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/sponsor-DJBtmVqB.png","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.055Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/sponsor-DJBtmVqB.png HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/assets/index-CTR2o8f9.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:45 GMT\r\ncontent-type: image/png\r\ncontent-length: 42900\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:07 GMT\r\netag: \"69c74e4b-a794\"\r\naccept-ranges: bytes\r\nexpires: Sun, 29 Mar 2026 15:04:45 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\ncf-ray: 9e3ebd259ba60daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":42900,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 940 x 140, 8-bit/color RGBA, non-interlaced","md5":"c3b154658c2ad8d3bc5dec6294a86c36","sha1":"85097a92a7234c4bbd83e7d6d4576d5e566492cc","sha256":"000f01845aee5a632b4d801252959c1dbb974f2ad355c16f27f69400b699107e","sha512":"3132eac15672eac23c1cd6e340aaf96f83fd98904b6635e17a1a6b030979c218ff81c768594e21de64e063eb1b810eee6a756e7bc18d04f0f60d20ba4886c486","ssdeep":"768:WhLJdyS1n/B3yMqQ5AC3Rt7HV7+j02PUSg4SrLL+MWXSgYhvhTo6D00qLVsqFuMu:UJcS3nNRt7RV2PsrPL+XSjbToT0+slw2","tlshash":"7c13e24fc09989a5e50e2387ff47160bc709285a563a22783b4b4aa977e70ccccb5477","first_seen":"2026-02-24T07:43:44.850498Z","last_seen":"2026-04-08T20:55:08.830107Z","times_seen":19,"resource_available":false,"data":null}},"time_used":66,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":64,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/MixedMartialArts.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.661Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/MixedMartialArts.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1262\r\nlast-modified: Thu, 30 Oct 2025 07:24:51 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: M5rUBxw5T7xpiovSZ8xdjmAeV2BPMuOQ\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"b2b1907b6d63fdc6f3e4e313f546cea7\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: tGdGmum1tDmfmjpAmRz8mHRaPci2ljGMlNIpqWE07dI6oIVsB0oUWg==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1262,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"b2b1907b6d63fdc6f3e4e313f546cea7","sha1":"e15a82d90a4818f4c1981e8d53e0d38578a660aa","sha256":"60c5c4755a0a3fb41cab50823cf0e8eb0f096efc7d211ea35ab2f77d60e022b9","sha512":"811bc65960b6e3a3ce6c5bcd67c12325549f3b656757f9a27ad10f7812e538e0bbeccdf3f5ca3ec62f7e3941b7f42899059240b9178d599ac6d9dc643b780797","ssdeep":"","tlshash":"e1211a6bfcc8355917adfc2089d3ac80942c09953d41ca561e013906591cb607f512ab","first_seen":"2026-02-24T07:43:44.831581Z","last_seen":"2026-04-08T20:55:08.819574Z","times_seen":18,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s.9a9q.com/data/e6fcea5b294cb214bb78bb6c524b1774.png","fqdn":"s.9a9q.com","domain":"9a9q.com","tld":"com"},"ip":{"addr":"174.35.85.160","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:46.527Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.9a9q.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 03:23:29 GMT","end":"Wed, 17 Jun 2026 03:23:28 GMT"},"fingerprint":{"sha1":"94:6C:01:A5:3F:8F:AA:47:1E:95:09:1A:B1:2A:F4:FE:3E:06:F7:AB","sha256":"69:19:C1:B7:C9:52:D7:AD:28:45:D8:83:64:05:A6:75:C4:5F:60:32:4A:78:BB:63:48:CA:9A:BB:48:8E:11:2A"}}},"request":{"raw":"GET /data/e6fcea5b294cb214bb78bb6c524b1774.png HTTP/1.1\r\nHost: s.9a9q.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 29 Mar 2026 12:04:46 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 6712\r\nConnection: keep-alive\r\nx-amz-id-2: jTHeSlsmxTVjwKGJ6I/To4iGvc36FoO8hhJw7N5fpdHQsGpLiHU/U5X5v57dL9heRgl6EqazsDbrWfD2AZHDsCxtIZV0Lw3K\r\nx-amz-request-id: 6XWBGG4BQ97QD9P0\r\nx-amz-replication-status: COMPLETED\r\nLast-Modified: Thu, 06 Oct 2022 05:30:11 GMT\r\nETag: \"e6fcea5b294cb214bb78bb6c524b1774\"\r\nx-amz-version-id: aJ1kYd6sQixmB6.67i08r1AQh2OAPvE6\r\nAccept-Ranges: bytes\r\nServer: PWS/8.3.1.0.8\r\nAge: 677705\r\nx-ws-request-id: 69c9155e_PS-CDG-04A5e173_31388-487\r\nCache-Control: max-age=2592000\r\nvia: 1.1 PS-CDG-04A5e173:3 (W)\r\nX-Px: ht PS-CDG-04A5e173CDG\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":6712,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"e6fcea5b294cb214bb78bb6c524b1774","sha1":"7d70583a4526b4cd7608feb6a9f397f7f7a57d7c","sha256":"d3f1fd61fe6a5ee3cd34760d2dfab4d1fd132a02ecd1f2d0abfb5b00417b0cda","sha512":"a6f3568bddbb9b04d836d7d81dada80fa4a430fa696971e6365b11a93416e0b30e660cba62c6f80c8e3cb3961358d07f726b374428215cc5eafee78ea9bf3708","ssdeep":"192:tT6UCLSavpt76jdEt7N8WcjHhJR1hQc/T92N:tT0LbvptrZx4BJDhQc/8N","tlshash":"ddd19ea743a1a805aaac9df7c238141f5f2f5351b4f21e2bf52ed25a548901287e0b0f","first_seen":"2026-02-01T15:20:15.584233Z","last_seen":"2026-03-29T12:11:26.000474Z","times_seen":4,"resource_available":false,"data":null}},"time_used":357,"timings":{"blocked":163,"dns":102,"connect":27,"send":0,"wait":30,"receive":0,"ssl":32},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/game-center/f/world/sport/match/getMatchDetail/pc","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:52.538Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/game-center/f/world/sport/match/getMatchDetail/pc HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nTimestamp: 1774785893\r\nContent-Type: application/json\r\nContent-Length: 185\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":185,"data":"{\"params\":\"ie61zCQhJOF/LhA5xrrSmWdkPieKSS+xWq2FVkUl2Jvhsw9+l2ESjF7alAG3R5AinvcUVzilPfJ+CetzbDEbffKBDHOG1h1I0PzIEq+vCGcsl6uFbiRt49YaISemrrQM4Tch2QI+VtaOmKWsUqet0DYqJRCKEbqNY+j+RgqS+Eg=\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:52 GMT\r\ncontent-type: application/json\r\ncontent-length: 2267\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, accept-encoding\r\naccess-control-allow-origin: https://bet9190.com\r\naccess-control-allow-credentials: true\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 9e3ebd5459510daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9619,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"26f9dd3dde9b22ae3fe9a9eff84b1f91","sha1":"02087ebe4a147caa0c06796c72ca47b3e20a82d0","sha256":"361b8635feadac9f3220164eb9055e3ff2ce2b743b27d34b066196b0c5f6d23b","sha512":"d42dd1dbb5e8e8d075e517a942acc86f7acc43e4898f155107c9c4bc1dc58d7a06c9226565ade118d98129802a15516feb75ba27c8a370f3d94cdddda57f0449","ssdeep":"192:JEwVrE/Eswx9l8h2lBxipXji124CwiPKDp7JM3RJSIKQp1iGUPipf99op+iiZJkt:0aSji124CwiPMCJSIJiGUP+XBiiJkhr","tlshash":"a012429a627cc8ad5bd13f43d8ce3485b9f43e17d9c91c8149c6be2d5a1e283721b21b","first_seen":"2026-03-29T12:05:39.383785Z","last_seen":"2026-03-29T12:05:39.383785Z","times_seen":1,"resource_available":false,"data":null}},"time_used":312,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":312,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/qingliao/front/api/api/queryRoomMsg","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:55.545Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/qingliao/front/api/api/queryRoomMsg HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nTimestamp: 1774785896\r\nContent-Type: application/json\r\nContent-Length: 185\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":185,"data":"{\"params\":\"UoBT4T7i+ofdVmCkSBi/2ne8unf9Ocv0ElSDRw052bB8KIVQWeTNRuEosrDdH0zCjKtSu8NnY4hKjpyTqXLTyPRoKoWJvf4mxB0F8rY5oVJM/Aveoz+V5Hg3KHPcxEqTvf7h27ULCmm7jT3zC5kW9hYy7P9UsigjusZdOokX1yw=\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:55 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-credentials: true, true\r\naccess-control-allow-origin: https://bet9190.com\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd672a160daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":62,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"4838b9dcc38b327aeeba8207062e36ae","sha1":"89b185c0239d7da10d90950c6b064eaf075e025b","sha256":"0814e897a92ec18e144b54eefcbbaa7c49341ecf0dfcb0b7c9f951a002d7e156","sha512":"2a4e30fc393651a1751b6107702c121e682bf8b78bc8aad1cc48bd26506386dea7d8d9f3c7330af63fa70ae61bcda3b9f327b33f972b069ddcadd0dd81465d24","ssdeep":"","tlshash":"82a00221ba0e9cf22c6264c94a0c474056e8304041a08a10cd8ca224c60a07a7441a34","first_seen":"2026-02-24T07:43:44.827147Z","last_seen":"2026-04-08T20:55:08.817839Z","times_seen":17,"resource_available":false,"data":null}},"time_used":271,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":271,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785638.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:56.029Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785638.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:56 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 906160\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:56 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 220B2165202A9F12\r\nX-NWS-LOG-UUID: 7cb81811-688f-40a5-8160-629f0d276a33\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":906160,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"132bd696f4b50483bebcc2b7a00b012a","sha1":"e80139aa28d794d5f618737492bb35396274e044","sha256":"4784260cac9d5d23ee9878ab78baba11e2614e4987ff4392141c62efed9fd812","sha512":"c581f06e23a818d2e3711169f55fd605ae852e60a6b13203e33e7452d302473b4650d26cf84b29b4f521c98075fb6b376438614d09b2f2334b676afcfc4d520f","ssdeep":"12288:dUTvUdPh4Ela6yvvHZq/bA0O9APuDLoHnVA9mds2NsgFqyBlBdGOiaj9f:cuHFI/10DPuDLgW0dvNsWqyBliORx","tlshash":"6915129f93523e3f44121c62d59abb33c33a0dc82a656e9e4838b385f6b5da9cd05437","first_seen":"2026-03-29T12:05:39.35355Z","last_seen":"2026-03-29T12:05:39.35355Z","times_seen":1,"resource_available":false,"data":null}},"time_used":88,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":21,"receive":67,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785638.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:58.111Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785638.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:58 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 906160\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:58 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 220B2165202A9F1A\r\nX-NWS-LOG-UUID: 3d609b32-2f8d-4778-9a7a-68f78914d425\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":906160,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"132bd696f4b50483bebcc2b7a00b012a","sha1":"e80139aa28d794d5f618737492bb35396274e044","sha256":"4784260cac9d5d23ee9878ab78baba11e2614e4987ff4392141c62efed9fd812","sha512":"c581f06e23a818d2e3711169f55fd605ae852e60a6b13203e33e7452d302473b4650d26cf84b29b4f521c98075fb6b376438614d09b2f2334b676afcfc4d520f","ssdeep":"12288:dUTvUdPh4Ela6yvvHZq/bA0O9APuDLoHnVA9mds2NsgFqyBlBdGOiaj9f:cuHFI/10DPuDLgW0dvNsWqyBliORx","tlshash":"6915129f93523e3f44121c62d59abb33c33a0dc82a656e9e4838b385f6b5da9cd05437","first_seen":"2026-03-29T12:05:39.35355Z","last_seen":"2026-03-29T12:05:39.35355Z","times_seen":1,"resource_available":false,"data":null}},"time_used":108,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":25,"receive":83,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/timeZone-CiRCeigp.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.620Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/timeZone-CiRCeigp.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/assets/index-DjzB0IZK.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:07 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\nage: 1\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\netag: W/\"69c74e4b-2dd\"\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd22da280daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":733,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"Java source, ASCII text, with very long lines (732)","md5":"7b3d3ee29b11bac37a0727654083c922","sha1":"ce7b9c7cddb4385f2682594417c6656b2a1aa777","sha256":"e98200284369e3360c818436f14acdc441e7a7977feebec05c3b3e0dbd105142","sha512":"457fd0e056db1cd8918fc8a579026802bd1c84fe8bd9950f25c99873c158423f4cd144a8e88bef62078cf78d73e85ed31faeedb90ed653cb0abf8ee5bf72fbef","ssdeep":"","tlshash":"fa019c5a4860cab2b23505ecb1bdb6807e25f820f6564a58661898212f3308579bff4b","first_seen":"2026-03-29T01:48:00.042122Z","last_seen":"2026-03-29T12:11:26.025721Z","times_seen":6,"resource_available":true,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47.m3u8?txSecret=835e895543efc14dd6238f2e4935c20f\u0026txTime=69C95AB8","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:54.035Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47.m3u8?txSecret=835e895543efc14dd6238f2e4935c20f\u0026txTime=69C95AB8 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T11:33:38.501145Z","times_seen":16385373,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785639.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:56.993Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785639.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:57 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 764220\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:57 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 220B2165202A9F15\r\nX-NWS-LOG-UUID: 0b8c501a-46f4-4e1d-8bb9-9979536d29e0\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":764220,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"9ea93186d401fac1f8ef4e49f7dd90dc","sha1":"d0d4896e15c663b5181f4930711e533e1e4fad2a","sha256":"59f675ecb5b0b5a6f8f6575acd5fdfe6d552c3575b8411e767d66c80093b292c","sha512":"b6429b593605ec92a56dddfd0dcf656987e299754727fff30fff0a29c52aa91d968c63764fb1eda091af247755747136880b3fada9a76f6af84f7431a665a4ce","ssdeep":"12288:uEO1gGtVficsE4UFKuSRmKp5M0Te9BDboIH0s+YxsokpkLDzjQ2wkOREuM:uXqGttQBvp5M0e9Bb0s3sokpkvQ22REj","tlshash":"69f42389a7521f3b8818fe92c9924bb2c6354e5f6e45ff2f08343785fbf8255c918426","first_seen":"2026-03-29T12:05:39.316752Z","last_seen":"2026-03-29T12:05:39.316752Z","times_seen":1,"resource_available":false,"data":null}},"time_used":609,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":551,"receive":58,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/index-M52D-hQv.css","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.821Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/index-M52D-hQv.css HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e4a-1e9b\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\ncf-ray: 9e3ebd179a3d0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7835,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (7834)","md5":"2a9db268872d0b53fed859a1e02c4895","sha1":"9400f39e85c28d093a1d34588df964ab82a7ddea","sha256":"6207b63d2c064903d3a927c95bffccb953bf3948853af3a295abbc6474f64f94","sha512":"d01e1450cb322c6ead2bde852b095bf39b31039be17140eb15aed177e8360e68d09d342027c6be68d9582149c4d989f801fd24b988836d4c754fef557747c96b","ssdeep":"96:WOJ3Wp7WKPdNnHQN2Ol9VYUYenBKH1TAjKABbn:LJ3Wp7WKPXlOl9VYUBBKxAjKABbn","tlshash":"1df1342d9509212fe2ebc79c69f96fa899164ef1d01f065fb1b5f0b2020a1ad11dbf07","first_seen":"2026-02-24T07:43:44.853738Z","last_seen":"2026-04-08T20:55:08.902139Z","times_seen":19,"resource_available":false,"data":null}},"time_used":549,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":549,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-29T12:04:39.311Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:39 GMT\r\ncontent-type: text/html; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:07 GMT\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd021d100daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4999,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (390)","md5":"a0e2234cb4236c39be2dbe5921ebe0dc","sha1":"eb6ed4e44657ebd009f8f6ed991301d13f0caa1e","sha256":"22bd49c9c888d88e1b34f01a66524da34b549f7bcb41043e8863023febc63cf7","sha512":"c7a7d29ad2f864d43da3519244204ebef3268c6ef73337978733d615a228fbceb322541ceddfb1eb0d47b973825707e01965279362d17254a9299058d8ea8627","ssdeep":"96:rsuPWpSeLSeLBEeLurtDOL5ngSZRFrUy01:ZrtDOLbZjrUyi","tlshash":"7fa185565be0a0196665412d42eaf00c1fd6d08fd214dca476cc62ecaf91ba0ca77bdc","first_seen":"2026-03-29T01:48:00.183542Z","last_seen":"2026-03-29T12:11:26.007781Z","times_seen":6,"resource_available":false,"data":null}},"time_used":654,"timings":{"blocked":60,"dns":43,"connect":1,"send":0,"wait":534,"receive":0,"ssl":13},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/RoulettePanelPop--VcxjCzC.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.991Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/RoulettePanelPop--VcxjCzC.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/assets/index-Du9UH5vi.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:42 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\nage: 0\r\nexpires: Sun, 29 Mar 2026 15:04:42 GMT\r\netag: W/\"69c74e49-77c\"\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd18bddc0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1916,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"Java source, ASCII text, with very long lines (1915)","md5":"9189ba5aeceda2461d1e54846e596018","sha1":"d072a30db8b0dfe1210bef114c927044b0759774","sha256":"7d44ed6d066b2c6f7df2408b54456db568f2a44ffb435b3eddaf9ab4b5f66915","sha512":"b761503ac405875e69b382e537f3e8ce07c79fd4cb7ab3bc7e228dae215c44d36a41336753f5bde2340f725d55e1c3cfad86960cd0679d3732f9d5ef5c1516ed","ssdeep":"","tlshash":"7941868c753685b584674fdcf41c04e1d408b3c86230b9d976e908693b519e2943ef6d","first_seen":"2026-03-29T01:48:00.109576Z","last_seen":"2026-03-29T12:11:25.938187Z","times_seen":6,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/web/sport/left-E-GAME.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.947Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /web/sport/left-E-GAME.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 4176\r\nlast-modified: Tue, 08 Apr 2025 05:46:55 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: bcqAOJxQF9EwlwZc9lhQStrHq4V7Ln0Q\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:50:01 GMT\r\netag: \"7b0a6e052a66b218ae2129e04323d261\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: PQw2Okg97Fl3KkMRpto8lmAa5u6kt67jNHqhwQ4IPfHll9_urfpZxg==\r\nage: 884\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":4176,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 104 x 104, 8-bit colormap, non-interlaced","md5":"7b0a6e052a66b218ae2129e04323d261","sha1":"0eb5316ecc3349e06a2cbf2480361382af0150ea","sha256":"2dee4f3abc2727872859f55bb8eca8f4e1176b39d72bf283f69b1f283b899312","sha512":"b44693287c04107072d32c327b5e202ab202423c9db807cfcf6e764cef43a46a977db166160be25565b641a769df2e26afdca1d2d799e11421203be170976e1e","ssdeep":"96:bHGv23zcXU7lOWNLXlpN9pC0llv4ylidDN1LJ:bo23vROqLVBpblvr+jJ","tlshash":"6e817db0057d9ffd38dbf261386b417bf8909a0b9a06839271f08122b80a2a4429ec08","first_seen":"2026-02-24T07:43:44.855304Z","last_seen":"2026-04-08T20:55:08.855524Z","times_seen":19,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/site-intqf/siteConfig/202601/67c02980a0004bf1a0c5f2bff049df66.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:47.979Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /site-intqf/siteConfig/202601/67c02980a0004bf1a0c5f2bff049df66.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 21322\r\nlast-modified: Mon, 26 Jan 2026 04:47:14 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: klyeq1YUR4UyvAiy1_1B.7GLXkPKFCn9\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:50:03 GMT\r\netag: \"fd43cba637436f0ff41272148a952a5e\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: l0JLgg_ptL4Ak-1pn39BXINq-PWgcNfqbAyeX1qgk0WVSnkdU9rJNA==\r\nage: 885\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":21322,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 368 x 100, 8-bit/color RGBA, non-interlaced","md5":"fd43cba637436f0ff41272148a952a5e","sha1":"0998ae892c19d573c094a1f4c022a87afa8d0c0f","sha256":"09dfc6b2d54a842fcef6f9456b94d9b88d3bfa54a6353071b3eb32d297123cc9","sha512":"c8196a56814ab34df47495876051a96c29beb5d24257427c4d142897a197925f74b6eeb2664161d3e6ef7e1c6e6715925056bceb97d1a7a8f659960528a2d192","ssdeep":"384:awVuWMK8I/0eisfqUdlDBHDF2lc/n+0x39pVIwUsKAqsDbWwzmpER3:TuWMKNEXUXh4c/n+0x39pVQsLnzmK3","tlshash":"49a2e161bf5cd7d4a93b30dc0a238260d7e7d326d61e22dad3412b41aa54b73127cb99","first_seen":"2026-02-24T07:43:44.885844Z","last_seen":"2026-06-03T10:10:15.231055Z","times_seen":25,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785637.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:54.326Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785637.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:54 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 1037008\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:54 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 220B2165202A9F0B\r\nX-NWS-LOG-UUID: 06ab3a63-8aa1-466f-ac66-0896228c42f2\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1037008,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"138c12df4545f36e4c5f93d7bc1d9e04","sha1":"43df70a21b4ae5825f3f992698e5fc036ffef069","sha256":"9e565178e50a20e063484b680b4059f71afb11ca4585ec8faffd26cf2d29120c","sha512":"b03d23c80346d1e95b25b7afae4e3a14dd1040c67f653e6e1b70922b070b2c3d6fe198fd3e3d7b0ddd3c3298a147c0899b5e7abc06235fcb76bcf9fc1bc4bd39","ssdeep":"12288:f6BsYQPz4OYTqG4BMJem5zsuwfBSKU4M4RJlYKPHILGpVqEtfD07idLLGhU8yDTn:fmEzRp9OJegU3JlBvILGpVbfwkYcbWe","tlshash":"6b25238e4720beb35d158d5682cb8bb2d73b0dd96e449f9b58247b88f4f8c86c45063b","first_seen":"2026-03-29T12:05:39.31406Z","last_seen":"2026-03-29T12:05:39.31406Z","times_seen":1,"resource_available":false,"data":null}},"time_used":117,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":23,"receive":94,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/game-center/f/world/sport/match/getMatchDetail/pc","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:58.756Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/game-center/f/world/sport/match/getMatchDetail/pc HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nTimestamp: 1774785899\r\nContent-Type: application/json\r\nContent-Length: 185\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":185,"data":"{\"params\":\"gkYgS5N+FvLODa8x7o6IlkPXMkFLBl9St9vVp0j8AJfkD6/pr7KyIJMLiI7SOgDq+DC1+dp4TwNRqsFfZq3ZQ86XW5k2LNyO6DrduZ/6cNRlYNaecyi/Zuyz2p/GEI3j7JakLXRA2VPeCA+WOdoGFj4a9Wq828BRfT1SyfDKOIQ=\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:59 GMT\r\ncontent-type: application/json\r\ncontent-length: 2264\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, accept-encoding\r\naccess-control-allow-origin: https://bet9190.com\r\naccess-control-allow-credentials: true\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 9e3ebd7b3b2b0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9616,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"77a1eda8fecf46d26d2cb1c0a44f5bdb","sha1":"c7a0afab313903c2ef980b32135869f3c7f4aad1","sha256":"d7bc4ff90ddcbaf444a0d7808f3205e9827d8bcd945de0240689ac1edca67714","sha512":"ce05d9ecc0f1aaa1e38cd215fe3e025e6663eee3463c41097f127d2157c66386b4b624cf2059dbda6c46e13d416a1f0c676435c7b34ff293a9cae82d9a240f27","ssdeep":"192:JEwVrE/EoAwIlUN7l8h2lGPtdpXji1n/Cw3yKDp73yNRKQp1iGU1ipfkSop+giZw:a2Cqb1vji1n/Cw3yM3yNRJiGU1+5Bgiw","tlshash":"fa1244aa667ccced57c13b42d8cf3496aaf43a17d9ca1c4148c6bf1c5a1e243721b21b","first_seen":"2026-03-29T12:05:39.387502Z","last_seen":"2026-03-29T12:05:39.387502Z","times_seen":1,"resource_available":false,"data":null}},"time_used":321,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":320,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/index-DJVWsiRK.css","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.820Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/index-DJVWsiRK.css HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e4a-81247\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\ncf-ray: 9e3ebd179a330daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":528967,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"67e582b3b33d57342ce9a9f6e244cf65","sha1":"442c2162ba6334e07fd7ec9a7d2feb865c326839","sha256":"55d7291691ab7e227de844dc1093cb3ea74ab4d726e60c3127b874b80120e3bb","sha512":"c6bce37ca6eecf1cd1586f423adc1e01f99a17953fc3d703014d01e5240ade34836e3787aa9f0b27a8609dc491a8a519207183885c251f694eee0da24f6fce68","ssdeep":"3072:E4MCKHNIC/0JuDoyKaV3DE3j0KYaGKMiNMC4rVCihO1gg/0JuDoDq0JuDot+Cw2X:Ilwa481125bH0G5Kl/","tlshash":"67b47255b58d202f54bbe33914a4b37d0a16bb12c90f5e7df5ab3a980b87387f290b44","first_seen":"2026-03-29T01:48:00.133704Z","last_seen":"2026-04-08T20:55:08.910704Z","times_seen":17,"resource_available":false,"data":null}},"time_used":531,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":531,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/Badminton.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.644Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/Badminton.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2104\r\nlast-modified: Thu, 30 Oct 2025 07:24:52 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: CyCxLQ.JhKmZwWHTNDILsbLgBBXyUtIu\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 10:59:01 GMT\r\netag: \"cb7e128e61220a05aaac9082173ba823\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: cX7vgq0h9058dZgwZfwaL0RX1lH-R0wrAc_WyzUzs-fEnSrQwZQzBA==\r\nage: 3945\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2104,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"cb7e128e61220a05aaac9082173ba823","sha1":"4b8a4f6a970c284f2767f3391b0e24cbf9de03ea","sha256":"c74909bb1cd9ae1624ec448c8b32c79879080aa33b6f97a8cb0ad22c8e0dbaa4","sha512":"51282099895b8c12d3b6345424c8a6fbe81dd436c61de8e9bcadfa4a5796b88f3e01576de262ebaacf8fd74993b912496b13b85b81b3f191b668858879fad949","ssdeep":"","tlshash":"92414e23ebc0cf24565c5013ad71d94a2fb1300f02d5e5af770e844450799ae1ddb3ac","first_seen":"2026-02-24T07:43:44.883017Z","last_seen":"2026-04-08T20:55:08.839654Z","times_seen":18,"resource_available":false,"data":null}},"time_used":64,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":64,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/web/sport/play-video/muted.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:48.065Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /web/sport/play-video/muted.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1081\r\nlast-modified: Thu, 21 Aug 2025 06:30:09 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: nJh7OpjwxroNwVtIRBcFWBk2UvT4rY2E\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 10:32:56 GMT\r\netag: \"3ed52187904dbf495e6e5534afaa71b6\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: DLxfcZe540FOR0rsWgyfI9JRoPE3jbf-05YmAP9ap3c3ZhYDzft5og==\r\nage: 5513\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":1081,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"3ed52187904dbf495e6e5534afaa71b6","sha1":"86afc46d9c0a8445697f9f3a915ee343bd8bf7cf","sha256":"65ddf6b16dfb6291f93c6bb1e59d7ef0f5c8f7cf0ec559befa774162b2b872f2","sha512":"06cdffe149e5ab2ac1cb8880c324cc6ecc8547811b6fba1ce7a47696ecf962a9e005314ac4000fe10a7b7b926489d6845c7217b89f4646e2e80ec1090232c82d","ssdeep":"","tlshash":"7911b9ddd3ce439c90c4519fb9c9a4e67375044d1c78362746b18c543d43c6b1e95653","first_seen":"2026-03-29T03:11:45.453713Z","last_seen":"2026-04-08T20:55:08.9016Z","times_seen":13,"resource_available":false,"data":null}},"time_used":24,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47.m3u8?txSecret=835e895543efc14dd6238f2e4935c20f\u0026txTime=69C95AB8","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:52.052Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47.m3u8?txSecret=835e895543efc14dd6238f2e4935c20f\u0026txTime=69C95AB8 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T11:33:38.501145Z","times_seen":16385373,"resource_available":true,"data":null}},"time_used":4,"timings":{"blocked":4,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/index-Du9UH5vi.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:40.094Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/index-Du9UH5vi.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:40 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e4a-2ca197\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 29 Mar 2026 15:04:40 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\ncf-ray: 9e3ebd068aaf0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2924951,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (39821)","md5":"ef40986a6aedf6df64933eaa1650df32","sha1":"9dc4be662856bfd411907e762f0a57382519b904","sha256":"0f1ff31d8da92c7c2607404f8e55e777112aaf799266ae75af65b34ff4759720","sha512":"d2dfc246abf634341e1a7298bb1515c6f58f7c83679090496d4dcc9734fb8745fc70bcc1a5c6a9509dfda78ebf2b41c56872dac53256369a215ec78257330768","ssdeep":"24576:7c+M90xMTRVYeWH0StdMFmkbostGAnY4T:7c+M90xMTRVYeWH0cdwb3QA/T","tlshash":"ee25179cb286b06253776861803f010bf33f2a49684dc890e27ae5d53e69e4dd167f7e","first_seen":"2026-03-29T01:48:00.25422Z","last_seen":"2026-03-29T12:11:26.114902Z","times_seen":6,"resource_available":false,"data":null}},"time_used":544,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":544,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/RoulettePanel-hrPcCIp6.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.448Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/RoulettePanel-hrPcCIp6.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bet9190.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:42 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e49-1b76\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 29 Mar 2026 15:04:42 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\ncf-ray: 9e3ebd154a0c0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7030,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"Java source, ASCII text, with very long lines (7029)","md5":"8d98d04035ae12adf3de592db065923a","sha1":"4b4fe096b214b9bf9d8a14a4246516d556529acf","sha256":"6a9af2c9069fb7312a17456c0513b638b8d9e0de95ebd6e374fc37d82fcc230d","sha512":"ff575c81a3b30faf6b47a5d5d021d67ef950cf8280e64fffb3ea7102f1df8576060993e7c0d961f567de52380af3f833e486c1439d2fcd10fd6b6bf21c375b82","ssdeep":"192:kzQ7ToVAkPRTVQFUR4NXsby7yB3bexS96yG67:kzQ7sukPvQK4yTpe096yGm","tlshash":"7ce17e89f1418d3b44a336c525a51045ae0cbb2bc364dfd5a32ac5f017b3d3db2b666a","first_seen":"2026-03-29T01:48:00.053551Z","last_seen":"2026-03-29T12:11:26.108872Z","times_seen":6,"resource_available":true,"data":null}},"time_used":310,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":310,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/index-DBMhbs2U.css","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.828Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/index-DBMhbs2U.css HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e4a-2af6\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\ncf-ray: 9e3ebd179a500daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10998,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (10997)","md5":"87a5c7f146bb421b3c712480191e6a05","sha1":"4a4442a8ffc21fa868a664c7e5445b44bb40b4bd","sha256":"bffc14675d60cd893ee760945d3c8797ed3e48e7b77703e675b05a645b8e4d95","sha512":"3b9c3a8e9e6dd7627de7c6fd9ae5b06a1981aec2a6f2c823f7e68d8da1980ca43489eee67cb5ea99bb0ea624a0855372028b5fedeba7bd21edb558e2e3c32f3b","ssdeep":"192:DyeaiMZF0QYBrgcXP+TLd5TnBu5BC/Eqg3Fg35/meEbTISG5IlsNaBEMZig1t5e+:p4Fo","tlshash":"2732db84d8c9015882d6b32448ecda2a4e672570b7aed838517731afbff1297158ef7c","first_seen":"2026-02-24T07:43:44.908492Z","last_seen":"2026-04-08T20:55:08.848766Z","times_seen":19,"resource_available":false,"data":null}},"time_used":533,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":533,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/HomeTimer-hKDYRuD-.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.851Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/HomeTimer-hKDYRuD-.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://bet9190.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:04 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\netag: W/\"69c74e48-10ac\"\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd17ba970daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4268,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (4239)","md5":"03537916e72ef2b487308a253c46f6a6","sha1":"eb08f18eeb6c5d3b4616c2b297f95e8565592ad4","sha256":"e887f1360a337d25a159c4099a5d1fafe282a361bae33e371188e286713b0aeb","sha512":"06408ccd2091dddf8c5ebceaf0149fa869ccaae7c8ce931e1c67a68f82aecc7cbc07acea8bdc80677d6cdd1fd11908655424d05746d384a5f387bd2716047b2a","ssdeep":"96:x5SjsNqDo743cLJDPhc+OyDDtMdDkFP6oKpkzwPYqdeHFiG40b0Gw5Zu7aI9DG:CjsNq874sLJDPO+5DtODghKpawdd/G4N","tlshash":"f591daceb442f43a87f15858a41c0421610d7bab7060ecf4ea3fde9a2349e517327979","first_seen":"2026-03-29T01:48:00.220542Z","last_seen":"2026-03-29T12:11:26.096539Z","times_seen":6,"resource_available":true,"data":null}},"time_used":305,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":305,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/bus-pay-4-CFb9VGxa.png","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.877Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/bus-pay-4-CFb9VGxa.png HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 34937\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\netag: \"69c74e49-8879\"\r\naccept-ranges: bytes\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\ncf-ray: 9e3ebd247fe70daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":34937,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 319 x 319, 8-bit colormap, non-interlaced","md5":"5513de343fc97e96006e14fae1132c4d","sha1":"f4c74535227dd3117c3090e36fe83a12f00d3558","sha256":"c9ab35a0baf8b76abb62fe7e6cb03dba87addbe07617a8bdd9f914975d78007e","sha512":"cf7003ddbdd7d5b230124d00e5204ba43d51af44b707bc3c52a438ea96351072b20f0c68b635eafc36b3f8dee2f066a2b7919a49e6c8e3302a03a878182b09e6","ssdeep":"768:Fz+/9/27guwQiyuc22jOy2F8ZRyQEACM3kihDr:8/NduwQiEljZ2yIJ0FH","tlshash":"cdf202d7eb7f014f079b0544c9ac6b21d1ecdd08a67fd3a9839b9aa21f0f3614109674","first_seen":"2026-03-29T01:48:00.223969Z","last_seen":"2026-04-08T20:55:08.917275Z","times_seen":17,"resource_available":false,"data":null}},"time_used":87,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":86,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/bus-pay-5-BiECjimF.png","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.878Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/bus-pay-5-BiECjimF.png HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 65501\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\netag: \"69c74e49-ffdd\"\r\naccept-ranges: bytes\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\ncf-ray: 9e3ebd247fe90daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":65501,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 365 x 365, 8-bit colormap, non-interlaced","md5":"7c25e9edb1ebecff1e756ab545563088","sha1":"7eb0b198e0016c076a657de94ffa974c612b05a3","sha256":"13315be4ad0e1515756557a3ed56b8d7ac289448ec1cfd507aff38adf67bfee3","sha512":"251325211a4a2ece648706b49fefac5aa516c12c80401571f87e9fc384bc79f4672311c892431ba0638cd7b93e085844ed790eb745437abbc558c13a781ed774","ssdeep":"1536:diOyHA0mg1Tr/Cc4Yte3jpQ/W8BhM0qjHZn5R3G:1IAJG3/CStFjsBZ5R2","tlshash":"23530112bf04696b62ee8b20c602e52363ab1f4831f5db5d7800942f235dedda95c0fe","first_seen":"2026-03-29T01:48:00.240347Z","last_seen":"2026-04-08T20:55:08.911271Z","times_seen":17,"resource_available":false,"data":null}},"time_used":83,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":74,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/template/sport/vi/WAP/icon/allbet.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.307Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /template/sport/vi/WAP/icon/allbet.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2684807\r\nlast-modified: Sat, 28 Mar 2026 05:34:23 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: lQDnZOV12WbO4HPVOQweJde0D5Z1T2if\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 12:04:46 GMT\r\netag: \"bd61e4a8a447c68b07850ae238fe06b8\"\r\nvary: Accept-Encoding\r\nx-cache: RefreshHit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: N1ZVQczEB6OZeeOdIIUFUQwWr3E2QpX7g-2MRGsAv_f7SwH-YnjkLw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2684807,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 3450 x 2314, 8-bit/color RGBA, non-interlaced","md5":"41f2e37ce79969149f0c942b6c1736bc","sha1":"beadbe4e428afcaa2b2b2ede4841f40a4adcd72d","sha256":"a661364dd3b808744adcc72c72cc31ef68f786219bf50c6a7790aa1ba154a6e4","sha512":"388feb11c69318f3af7dcaeb11fc50f76690307a475b604e4a358f1d96162a1efa3ee61daeedc1240eeb3fe7df9b6b4ad7edff5c8dec44f181555c00f6d33cf8","ssdeep":"24576:KwKJ6FCU7MbqEw+5e4U6te/QQ73cWKwNJYNfSRzo0gU/dSI4Bv:NK0FCU7SdK6k/QQ7MWKwN2Yzo0rwfBv","tlshash":"7b2523cca0ecfe99c85db7b051ddef9068e3611929ef6770a32fe96990062c5113b483","first_seen":"2026-03-29T01:48:00.233641Z","last_seen":"2026-04-08T20:55:08.882568Z","times_seen":17,"resource_available":false,"data":null}},"time_used":841,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":730,"receive":111,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/template/sport/vi/WAP/icon/im.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.320Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /template/sport/vi/WAP/icon/im.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2477\r\nlast-modified: Thu, 15 Jan 2026 02:54:47 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: oW4c61XIG0bTWJme4pecwTg5Yyis8S8T\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 12:04:46 GMT\r\netag: \"627ed57294425a4f625d62a5aa791c93\"\r\nvary: Accept-Encoding\r\nx-cache: RefreshHit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: D2NJhvThtUVmejHR_yZ34qSaSqv5wev4Hdy0_5wqNh0gXcOlA2Icdw==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2477,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 84 x 60, 8-bit/color RGBA, non-interlaced","md5":"627ed57294425a4f625d62a5aa791c93","sha1":"305cc934ac0305b1ff3f845dff19388a6a696c56","sha256":"510023d446a7e4490e0c8ed72d5ace45b66d6a337bd97f14f1bab2da5b3084a0","sha512":"9123cc671ed3de04eeb954c8473ff4f4c3f725d6384c3ecbb81e6d49532586809c0d40c63018644bff25c3289443d8413398c964d6637ebae8cc8d9897a6fa4a","ssdeep":"","tlshash":"e4514d9dca7030d802122b5002297c0ae17c5b0d03e46a99fd4c0965bb09ec17c93f93","first_seen":"2026-03-29T01:48:00.246163Z","last_seen":"2026-04-08T20:55:08.86761Z","times_seen":17,"resource_available":false,"data":null}},"time_used":743,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":743,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/web/sport/left-L-GAME.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.975Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /web/sport/left-L-GAME.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 4274\r\nlast-modified: Tue, 08 Apr 2025 05:46:55 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: fswwXeny4Y98YPBR7xFRyEZuINtFc3kj\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:50:01 GMT\r\netag: \"2784479c5890f4c00ade7f2ccbf54d27\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: BE7C1kahViOXzpViBfpDFpQsECcvkC4l7cQZgCFAeqKslkcrd9tF_A==\r\nage: 884\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4274,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 104 x 104, 8-bit colormap, non-interlaced","md5":"2784479c5890f4c00ade7f2ccbf54d27","sha1":"c6cac1a43c4fab6faee82bdf2eb3a342b272b281","sha256":"638add8de947282e84c5a988ae02def3116472eda7773512329b52723deb9fa3","sha512":"efb738980e536979e6b90ae15889377813eef4615df9705f38734dd6ca0f764782648326ba30b34708e287e3023bae6266ddd92ebf85e17684bdef1731e285c0","ssdeep":"96:zhy3IQi07B0sj0izOjI7aiuR+LpbDW2aWJcQWfRe:zhGjjl0sOfR4bSCJcfRe","tlshash":"cc919e9d679cfc0960603082270aede288d70da7d23027d176de44dcf882461c7c269d","first_seen":"2026-02-24T07:43:44.911031Z","last_seen":"2026-04-08T20:55:08.864228Z","times_seen":19,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/Darts.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.664Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/Darts.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1265\r\nlast-modified: Thu, 30 Oct 2025 07:24:50 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 2JamHWzfxvQ2VjOk_nurnQQzhjtNVP45\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"e67c83f4d4f86ab5f9afeb24274b0ab0\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: cqK3vlP88Told_5Sby_C48ZtmvAQYQimVFIVNFesVJlvpNpDZbejwA==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1265,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"e67c83f4d4f86ab5f9afeb24274b0ab0","sha1":"9f158e6f8c56512896d9bf55b63f9537bdf6c438","sha256":"26433d241282fe1e308d1515bcf981c04b17630e75164e4b9a33b21c256c5cd4","sha512":"ddb840ef09c1b41fea138b1bc267438c31f5e4277b723c4db3eae56cae1569ae00a5efecfc4686b46a16fce1dbbce3067021c5b62fc8ab4ee9dd31b1bd45e590","ssdeep":"","tlshash":"7d211dde31f2943d81997b4bda987c3cc050746c1c4d3e02771b6c3e514d245ac71571","first_seen":"2026-02-24T07:43:44.859828Z","last_seen":"2026-04-08T20:55:08.817263Z","times_seen":18,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/web/sport/play-video/refresh.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:47.970Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /web/sport/play-video/refresh.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1184\r\nlast-modified: Thu, 21 Aug 2025 06:30:09 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: UzKUy.NjqrdX17rS0EwFCgy3ZdtlscDc\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:46 GMT\r\netag: \"4d1eef6a206447cd39b96b1d0fd48b3f\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: Dr_mMrIcn0oe7yarWhzjJQqmFzKXI-dwHAnzj_KA_F9VhlEJAQ8T7g==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1184,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"4d1eef6a206447cd39b96b1d0fd48b3f","sha1":"5965f0ebd1cc625f541a1510c1be3ae4587937f6","sha256":"01017f8b522114bf88341b10f904fb997e065933d05018ada27f20719c906922","sha512":"78c5e8cfe9c71e6b0f6fe61d65f00e6c69937e8e02b1e3eb40cc922c6b5ad575a4f9b8405ff259f4725c06c9ed6176f1553c916a1d1ceb64fd56c28d7beaf198","ssdeep":"","tlshash":"49210ab0d515f6548d8b01f7d48b01d5f498099a317d712a644378d0cab5cd1a7323c3","first_seen":"2026-03-29T03:11:45.562849Z","last_seen":"2026-04-08T20:55:08.820091Z","times_seen":13,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785637.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"43.174.27.229","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:51.978Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785637.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:51 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 1037008\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:51 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 6169AE2B070F1B92\r\nX-NWS-LOG-UUID: aafade13-e10c-413c-9253-161a56f38669\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1037008,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"138c12df4545f36e4c5f93d7bc1d9e04","sha1":"43df70a21b4ae5825f3f992698e5fc036ffef069","sha256":"9e565178e50a20e063484b680b4059f71afb11ca4585ec8faffd26cf2d29120c","sha512":"b03d23c80346d1e95b25b7afae4e3a14dd1040c67f653e6e1b70922b070b2c3d6fe198fd3e3d7b0ddd3c3298a147c0899b5e7abc06235fcb76bcf9fc1bc4bd39","ssdeep":"12288:f6BsYQPz4OYTqG4BMJem5zsuwfBSKU4M4RJlYKPHILGpVqEtfD07idLLGhU8yDTn:fmEzRp9OJegU3JlBvILGpVbfwkYcbWe","tlshash":"6b25238e4720beb35d158d5682cb8bb2d73b0dd96e449f9b58247b88f4f8c86c45063b","first_seen":"2026-03-29T12:05:39.31406Z","last_seen":"2026-03-29T12:05:39.31406Z","times_seen":1,"resource_available":false,"data":null}},"time_used":78,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":18,"receive":60,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/TableTennis.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.647Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/TableTennis.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1603\r\nlast-modified: Thu, 30 Oct 2025 07:24:52 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: _sZrJDAe6ohyL4CCH1QWcXwXvuHXoQN8\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"970972c74579ed8dc8a8157a4e8ac454\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: CF951U7Jde-tKTydomGeIk8uXDswYkX5yrsdHDsQpK_DBFpvaikuaw==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1603,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"970972c74579ed8dc8a8157a4e8ac454","sha1":"9de047d977ef3492520b991a0dcb70bc731be043","sha256":"e674bd3f4b64cd100cdb15edf2405031cdbdeb4bd016341aea868c2523396889","sha512":"0241db212dc8a81177e9f3d49875ce67ade53ee7bbdab3db32430e288f0ec1527a27311a12d7d95b6ae41374177ded39eb42cd549fb9a9041c9b1f3b59e19adc","ssdeep":"","tlshash":"ee310cf720987e1115dbc8471d5b3594400517d9b1657f6ff5459c32ea80d3809fcf89","first_seen":"2026-02-24T07:43:44.896274Z","last_seen":"2026-04-08T20:55:08.856101Z","times_seen":18,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/KOG.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.686Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/KOG.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2175\r\nlast-modified: Thu, 30 Oct 2025 08:15:19 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: lAnE5Ez6bszDKAPXr7091yT7nRwnlfrJ\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"c6cf94200b9bf24ebdbe3f49515690c2\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: r5BwA9KInAiHf9IVBDekb9x6CX47q0yblzmlP6YN8qgH0pTPUB00Dw==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]}],"data":{"size":2175,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"c6cf94200b9bf24ebdbe3f49515690c2","sha1":"00fc48c498cd9b055168ace7d19c424c2963d61e","sha256":"eb1ffa6d579b0885037c38d7540fc1ca0cdf9d800657a6aa72dcb6413bd5ce15","sha512":"fd0a5099bda6a23f06a5138755150524ec541cfc8a5f70eaf21a8431f37991649bac9c518bcb453b7f0674881efca43cc4dfce29127b9dfd26f50dfff861de2f","ssdeep":"","tlshash":"e9413ad9f681fca8a1efc9b4754e9f366476144685c8860dbe7a1b387c2c903b3d0010","first_seen":"2026-02-24T07:43:44.870649Z","last_seen":"2026-04-08T20:55:08.906608Z","times_seen":18,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":25,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47.m3u8?txSecret=835e895543efc14dd6238f2e4935c20f\u0026txTime=69C95AB8","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:52.126Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47.m3u8?txSecret=835e895543efc14dd6238f2e4935c20f\u0026txTime=69C95AB8 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:52 GMT\r\nContent-Type: application/vnd.apple.mpegurl\r\nContent-Length: 338\r\nConnection: keep-alive\r\nCache-Control: no-cache\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:52 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 220B216511C70225\r\nX-NWS-LOG-UUID: bd8ea0c9-fcb6-4d6a-ad20-5d315a9ad944\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":338,"size_decoded":0,"mime_type":"application/vnd.apple.mpegurl","magic":"M3U playlist, ASCII text","md5":"c5eefb96d9c11817789354ba4a65d8d0","sha1":"84f0884a00aa38ef012d25bab5e5e63cf3838416","sha256":"69f5e1514c99f8dc57ac243ec0076fe02ac328c1eeca15372ef1a27f3ede8ce3","sha512":"480b0e21deefd25ab9ad9b16026c06fbf8bd4eb6ade5d70da1d88c577704fd0198c8007f14f6d473b92068e67f37c6f9605d48534465b48ff4afe561871334c8","ssdeep":"","tlshash":"70e086b3235fb1c682ac84d1c06644aa2bed1ce68edde6531cb0b703399bd1d77c0990","first_seen":"2026-03-29T12:05:39.309123Z","last_seen":"2026-03-29T12:05:39.309123Z","times_seen":1,"resource_available":false,"data":null}},"time_used":633,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":633,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785637.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:53.563Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785637.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:54 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 1037008\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:54 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 220B2165202A9F0A\r\nX-NWS-LOG-UUID: f1dea754-2ffd-4ba6-9926-881e90c12b5d\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1037008,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"138c12df4545f36e4c5f93d7bc1d9e04","sha1":"43df70a21b4ae5825f3f992698e5fc036ffef069","sha256":"9e565178e50a20e063484b680b4059f71afb11ca4585ec8faffd26cf2d29120c","sha512":"b03d23c80346d1e95b25b7afae4e3a14dd1040c67f653e6e1b70922b070b2c3d6fe198fd3e3d7b0ddd3c3298a147c0899b5e7abc06235fcb76bcf9fc1bc4bd39","ssdeep":"12288:f6BsYQPz4OYTqG4BMJem5zsuwfBSKU4M4RJlYKPHILGpVqEtfD07idLLGhU8yDTn:fmEzRp9OJegU3JlBvILGpVbfwkYcbWe","tlshash":"6b25238e4720beb35d158d5682cb8bb2d73b0dd96e449f9b58247b88f4f8c86c45063b","first_seen":"2026-03-29T12:05:39.31406Z","last_seen":"2026-03-29T12:05:39.31406Z","times_seen":1,"resource_available":false,"data":null}},"time_used":658,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":570,"receive":88,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47.m3u8?txSecret=835e895543efc14dd6238f2e4935c20f\u0026txTime=69C95AB8","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:56.035Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47.m3u8?txSecret=835e895543efc14dd6238f2e4935c20f\u0026txTime=69C95AB8 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-13T11:33:38.501145Z","times_seen":16385373,"resource_available":true,"data":null}},"time_used":115,"timings":{"blocked":58,"dns":2,"connect":19,"send":0,"wait":0,"receive":0,"ssl":32},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/index-C_hTBnIk.css","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.824Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/index-C_hTBnIk.css HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:06 GMT\r\nvary: Accept-Encoding\r\netag: W/\"69c74e4a-1cad\"\r\ncontent-encoding: gzip\r\nexpires: Sun, 29 Mar 2026 15:04:43 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: MISS\r\ncf-ray: 9e3ebd179a480daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7341,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (7339)","md5":"93eebd7f1bb77540a7d1f4a003a8e68b","sha1":"b6d6615d7319b9e4812cad255fc8ac77e5734eac","sha256":"f2ca2cd14146104899fbc4f60d4eedd4a25a4ca2df7b532525a7f33c176b667c","sha512":"bd48f391a03198c175f50a055ca9ba67c9a59db8f5776d0bed90f5ec6a4deae2881238104b00f551027ba7cdb5e641a7448bf08b5a56888fe980d77e504655e7","ssdeep":"96:ogW7mnBZf9zA6dpyjJAiPuhOA21B5VPvpvLPsQ5sJPsjsrsh1sVsXhsys1EsmsEu:+E3f9EmsAhw1kirpk","tlshash":"bae1cba9666f236df652c32d648fda95fb2025e0412b07efb1d331b847ee91c06c7609","first_seen":"2026-02-24T07:43:44.931715Z","last_seen":"2026-04-08T20:55:08.861337Z","times_seen":19,"resource_available":false,"data":null}},"time_used":551,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":551,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/HomeTimer-hKDYRuD-.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.621Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/HomeTimer-hKDYRuD-.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/assets/index-DjzB0IZK.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:04 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\nage: 1\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\netag: W/\"69c74e48-10ac\"\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd22da310daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4268,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (4239)","md5":"03537916e72ef2b487308a253c46f6a6","sha1":"eb08f18eeb6c5d3b4616c2b297f95e8565592ad4","sha256":"e887f1360a337d25a159c4099a5d1fafe282a361bae33e371188e286713b0aeb","sha512":"06408ccd2091dddf8c5ebceaf0149fa869ccaae7c8ce931e1c67a68f82aecc7cbc07acea8bdc80677d6cdd1fd11908655424d05746d384a5f387bd2716047b2a","ssdeep":"96:x5SjsNqDo743cLJDPhc+OyDDtMdDkFP6oKpkzwPYqdeHFiG40b0Gw5Zu7aI9DG:CjsNq874sLJDPO+5DtODghKpawdd/G4N","tlshash":"f591daceb442f43a87f15858a41c0421610d7bab7060ecf4ea3fde9a2349e517327979","first_seen":"2026-03-29T01:48:00.220542Z","last_seen":"2026-03-29T12:11:26.096539Z","times_seen":6,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/template/common/service/zalo.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.867Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /template/common/service/zalo.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2465\r\nlast-modified: Thu, 02 Mar 2023 11:02:08 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: hP1d783piQfK6jXdaapMI5Kzd3_NjIHZ\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:45 GMT\r\netag: \"f9c3990b52fe594a57d9964af647e66b\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: JbmQMWhE3oHaNLpGCJZioCM1T8M3Uo1AIyYQIGV3yFag36gtUnZOGw==\r\nage: 2760\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2465,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"f9c3990b52fe594a57d9964af647e66b","sha1":"39c5179d50b770380ced58e48cb339ba1ac496dc","sha256":"c78f24a54251052bbbddaa7f95d2086f108f7a2aae6eaf7df9c8af2f278f1257","sha512":"a76516a429b809bd4cd6114bc640a027b1982fa9e9c1760d300f5f790e63c26f6e8ded29111046973931cdf1ad9ddc059558e286db192143439396ba5a00fcaf","ssdeep":"","tlshash":"52515acbc6080d4d027e384b602adea5ec3e31c37d626c8e904d5a1197d02c6ecc23a8","first_seen":"2026-03-29T01:48:00.134644Z","last_seen":"2026-04-08T20:55:08.839186Z","times_seen":17,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/template/sport/vi/WAP/icon/saba.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.319Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /template/sport/vi/WAP/icon/saba.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2668\r\nlast-modified: Mon, 09 Mar 2026 13:13:39 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: XftQ0YEyAtlDKSWmWpU8nuLS.a7Vgp9X\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 12:04:46 GMT\r\netag: \"3d3db6121678ecf718b9bb3492db0a49\"\r\nvary: Accept-Encoding\r\nx-cache: RefreshHit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: 3AiWoYeXrf_Gz8DHRXP3Uo2AB-jDs9JlGkL3j4cWCN0o6dicwoHpqA==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2668,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 144 x 70, 8-bit/color RGBA, non-interlaced","md5":"3d3db6121678ecf718b9bb3492db0a49","sha1":"8083ee01c5a1e56d0c965bb4b99a019040b7e511","sha256":"fab247566e1220598c86c2c6f53f728e1fe548a47f3b69fbc2591db63ea0ff6d","sha512":"34613da37bef910bfaecf5ee0a714cb633dd371727b86d4e4e23cc2ee48c0a2fd9d5f869c5d7092af990d334c0c92966cb6d6f20b31e1a1622dd08fa7a0e851c","ssdeep":"","tlshash":"c4512bc9fa7347e5cb1bae5222070a4eb881269f31cc86ba3df1736952248d081d4f88","first_seen":"2026-03-29T01:48:00.256781Z","last_seen":"2026-04-08T20:55:08.878863Z","times_seen":17,"resource_available":false,"data":null}},"time_used":745,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":745,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/AmericanFootball.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.656Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/AmericanFootball.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1929\r\nlast-modified: Thu, 30 Oct 2025 07:24:45 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: llsOi5j.c2kYkRtgrfV1RLiFgEgta_.c\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"e309b9799120296cdfeac91d481540ff\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: YKj32PqVLwRR_o91xeE8u9RHX1hAXqnGQwI8tIzQzOpzdOKJnIbi7g==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1929,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"e309b9799120296cdfeac91d481540ff","sha1":"0da0b56354cd41b83221e972a0b52adc9ac8d138","sha256":"b6a0a58ba065b2797cc562097e0db7db0a4fa73e123d5012cdc4de317a3624b8","sha512":"815adbfe98dd45b4b09f3e1202455426d053900091c69eb3b15ede1f52fd42724f4db0e94e8f7f7ac731c27da0a9957453fdd53290a0ccf6ee3b5baa9e70dd74","ssdeep":"","tlshash":"75410cd6574157fe7b0fb936f09960dc7c6983085da1352f39b01fad6e056824850683","first_seen":"2026-02-24T07:43:44.943837Z","last_seen":"2026-04-08T20:55:08.912257Z","times_seen":18,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/game-center/f/world/sport/match/getMatchDetail/pc","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:49.575Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/game-center/f/world/sport/match/getMatchDetail/pc HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nTimestamp: 1774785890\r\nContent-Type: application/json\r\nContent-Length: 185\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":185,"data":"{\"params\":\"hoA1uUiT8EGNAW8R+oYSJeqhSfhr+czs3JFeBwjlgXrLtVSt04S7T1S8u853lXiooPCLnx8iVA4gQtmyV/V2ILCodVJAMkU1DpxBMTCfDrV0OR7BYVlrphkQIEQW7MWxorUbY8FpJCsimEpPQDGUqNasV1OKNjT+4cj3tn62qDM=\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:49 GMT\r\ncontent-type: application/json\r\ncontent-length: 2266\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, accept-encoding\r\naccess-control-allow-origin: https://bet9190.com\r\naccess-control-allow-credentials: true\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 9e3ebd41db270daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9619,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"a2928d209beaaf96ef0b2c2c1fefabd1","sha1":"81e3b59bdd53a6f81bd460aae2afc63c3d3ab64e","sha256":"5caeea31567a8596ce6cd6bdd98811ede75dbca6640ecd9d4c9a618878da9d1e","sha512":"b5857b7b5fbe6134d3b7d21c6adae3b7c0452049cc4f97859291f81fb68c3ae81d46ba45642f6027602ec6b046ccd15d6c298f204f8a84020697876921a50968","ssdeep":"192:JEwVrE/Eswx9l8h2lBxppXji124CwiPKDp7JM3RJSIKQp1iGUPipf99op+iiZJkt:0aDji124CwiPMCJSIJiGUP+XBiiJkhr","tlshash":"7512429a627cc8ad5bd13f43d8ce3485b9f43e17d9c91c8149c6be2d5a1e283721b21b","first_seen":"2026-03-29T12:05:39.405045Z","last_seen":"2026-03-29T12:05:39.405045Z","times_seen":1,"resource_available":false,"data":null}},"time_used":313,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":312,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/game-center/f/sport/queryMatchPage","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:52.261Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/game-center/f/sport/queryMatchPage HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nTimestamp: 1774785892\r\nContent-Type: application/json\r\nContent-Length: 357\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":357,"data":"{\"params\":\"FVczRbiNm4zSZ49XyWUFyeQ5zPlZMOpAFvQ1vtYhc0mjt3J61+N0ZW8++1vnfFz4qH+53ePapZyBKxa3J9GvHmlJkgZs8HVeKdaUpk3SZEQwpHJFMh/f5RZQqI3b0NlhWT94M3ok/JiwT3WcMKMJ9CHNJAmhtGKo6UAvxs7MH+4rxjqh0VT39II3bBbIpE3r0BuvJyvmiJi/epRUcqxNibc+ag1v4Wvkb8YvCVM9Tr9A3PktQWxEDuMhxYZD1HlRmXWw32hIErCaAT7zHHSMzAZm1eVKwvtZABga4FMlm64eBOOHc0vmSxpCpKuDWo+tF23CzXMU09neIza8zF74Vw==\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:52 GMT\r\ncontent-type: application/json\r\ncontent-length: 11176\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, accept-encoding\r\naccess-control-allow-origin: https://bet9190.com\r\naccess-control-allow-credentials: true\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 9e3ebd52ab4e0daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":97512,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (64262), with no line terminators","md5":"35871cc0f1da5b351ef730450e1ddcaa","sha1":"f4881c6ddd24b33463a6d6a428609c585b655403","sha256":"dd3f6a053535474a5893365e9cd7391b19f690aa3d64d08922448133cdc8a2a2","sha512":"44d03e83ddf7acece48e483387af1a2e0361f9284bf10068be5fabe20d1ea56a15cb3386f3643599730f3e896e624d2df2a5b479dac0661a48f04c07f76eafa0","ssdeep":"1536:J7IMnngiE26oH9DUbmva/wZ8QFNodKo9DRbi5DsId:JDd","tlshash":"ce93455b11189cbd9f463e82e4ef3ca558f4320f99c95d508eca8f1c9f1e783662712a","first_seen":"2026-03-29T12:05:39.405869Z","last_seen":"2026-03-29T12:05:39.405869Z","times_seen":1,"resource_available":false,"data":null}},"time_used":332,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":331,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47.m3u8?txSecret=835e895543efc14dd6238f2e4935c20f\u0026txTime=69C95AB8","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"43.174.27.229","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:48.063Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47.m3u8?txSecret=835e895543efc14dd6238f2e4935c20f\u0026txTime=69C95AB8 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:49 GMT\r\nContent-Type: application/vnd.apple.mpegurl\r\nContent-Length: 338\r\nConnection: keep-alive\r\nCache-Control: no-cache\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:49 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 6169AE2B17096A20\r\nX-NWS-LOG-UUID: f43a395c-6764-469e-be40-d204df1be1db\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":338,"size_decoded":0,"mime_type":"application/vnd.apple.mpegurl","magic":"M3U playlist, ASCII text","md5":"c5eefb96d9c11817789354ba4a65d8d0","sha1":"84f0884a00aa38ef012d25bab5e5e63cf3838416","sha256":"69f5e1514c99f8dc57ac243ec0076fe02ac328c1eeca15372ef1a27f3ede8ce3","sha512":"480b0e21deefd25ab9ad9b16026c06fbf8bd4eb6ade5d70da1d88c577704fd0198c8007f14f6d473b92068e67f37c6f9605d48534465b48ff4afe561871334c8","ssdeep":"","tlshash":"70e086b3235fb1c682ac84d1c06644aa2bed1ce68edde6531cb0b703399bd1d77c0990","first_seen":"2026-03-29T12:05:39.309123Z","last_seen":"2026-03-29T12:05:39.309123Z","times_seen":1,"resource_available":false,"data":null}},"time_used":3223,"timings":{"blocked":1308,"dns":1270,"connect":15,"send":0,"wait":603,"receive":0,"ssl":24},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s.9a9q.com/data/df49774bc33db29fbb13f051ee2d3952.png","fqdn":"s.9a9q.com","domain":"9a9q.com","tld":"com"},"ip":{"addr":"174.35.85.160","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:48.194Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.9a9q.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 03:23:29 GMT","end":"Wed, 17 Jun 2026 03:23:28 GMT"},"fingerprint":{"sha1":"94:6C:01:A5:3F:8F:AA:47:1E:95:09:1A:B1:2A:F4:FE:3E:06:F7:AB","sha256":"69:19:C1:B7:C9:52:D7:AD:28:45:D8:83:64:05:A6:75:C4:5F:60:32:4A:78:BB:63:48:CA:9A:BB:48:8E:11:2A"}}},"request":{"raw":"GET /data/df49774bc33db29fbb13f051ee2d3952.png HTTP/1.1\r\nHost: s.9a9q.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 29 Mar 2026 12:04:48 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 9186\r\nConnection: keep-alive\r\nx-amz-id-2: 14EMA6iTKIbXXeNeri9lSk0WkXixfXkx4wBS1TmBXBPWaD5cEDeo4ELV+8af/GlrjqKUmn9FRgqilOi4DBd06Om428WIyA4D\r\nx-amz-request-id: GKY0N61A93Q39GZ8\r\nx-amz-replication-status: COMPLETED\r\nLast-Modified: Wed, 11 Dec 2024 23:57:54 GMT\r\nETag: \"df49774bc33db29fbb13f051ee2d3952\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: V6Q79c61q6zUOza3fS3Hl9p7Zs5nTLuC\r\nAccept-Ranges: bytes\r\nServer: PWS/8.3.1.0.8\r\nAge: 6031\r\nx-ws-request-id: 69c91560_PS-CDG-04A5e173_31388-540\r\nCache-Control: max-age=2592000\r\nvia: 1.1 PS-CDG-04A5e173:3 (W)\r\nX-Px: ht PS-CDG-04A5e173CDG\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":9186,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"df49774bc33db29fbb13f051ee2d3952","sha1":"c9e091d5edc53e7ae9bddd2ff06ad09284ad0482","sha256":"6dbd9dd3e5b51a60209841c1b355de1d117d872960a90fcb2b23f59779c2cf2c","sha512":"c8fafb7bda5afb16d08dc0a61c490e52932d06f9cb893ff75011ebfeb0eef73ade7a93dbf0f55cdd9c9737e451ed7deec3d69a3d586e79fc887776eebc0220f5","ssdeep":"192:7i6jWPaaQZqwPHvAzY8FBB/cxaFo+avw9+jmaeEP4hU:7imWPAZqwPHv6hFn/4aa+avwrafg6","tlshash":"a912aeadf0e665838001dc3b69a950bfe3f447f04bebc29e3e889aef480c459a545761","first_seen":"2025-08-09T02:41:39.667906Z","last_seen":"2026-03-29T12:11:26.045323Z","times_seen":6,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"s.9a9q.com/data/16c6d789f9b82a45b05c88d4febbd918.png","fqdn":"s.9a9q.com","domain":"9a9q.com","tld":"com"},"ip":{"addr":"174.35.85.160","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:48.208Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.9a9q.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 03:23:29 GMT","end":"Wed, 17 Jun 2026 03:23:28 GMT"},"fingerprint":{"sha1":"94:6C:01:A5:3F:8F:AA:47:1E:95:09:1A:B1:2A:F4:FE:3E:06:F7:AB","sha256":"69:19:C1:B7:C9:52:D7:AD:28:45:D8:83:64:05:A6:75:C4:5F:60:32:4A:78:BB:63:48:CA:9A:BB:48:8E:11:2A"}}},"request":{"raw":"GET /data/16c6d789f9b82a45b05c88d4febbd918.png HTTP/1.1\r\nHost: s.9a9q.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 29 Mar 2026 12:04:48 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 15098\r\nConnection: keep-alive\r\nx-amz-id-2: 7Axs4wDMUaf/n3KcEWI17cYIoNUkU0AKdGSr9EPPkZmUWoy4zRR/nJky8tDtPvCjtfTX6JvM7EiNH5qlYd9Cs2XlSAwvRw+Q\r\nx-amz-request-id: DRDN2Z2EWV8J3N40\r\nx-amz-replication-status: FAILED\r\nLast-Modified: Wed, 30 Dec 2020 06:48:33 GMT\r\nETag: \"16c6d789f9b82a45b05c88d4febbd918\"\r\nx-amz-version-id: Krafz9x6jkEnfRhspn_0mSYEQyTs4HxT\r\nAccept-Ranges: bytes\r\nServer: PWS/8.3.1.0.8\r\nAge: 1093\r\nx-ws-request-id: 69c91560_PS-CDG-04A5e173_31388-544\r\nCache-Control: max-age=2592000\r\nvia: 1.1 PS-CDG-04A5e173:3 (W)\r\nX-Px: ht PS-CDG-04A5e173CDG\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":15098,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced","md5":"16c6d789f9b82a45b05c88d4febbd918","sha1":"670e89040109d3fa3a4f1c3c45bf2ea480d6176d","sha256":"5f9a6ffe7b6da7b1e16c8832880a345f6191ca4381791b6c06367c68b405c1c9","sha512":"6b5c51032f72286796969ca8bdde5a653ba04d921301067e94dca2eee26a0823e18a0da948563b90aef7c6c4f903aa795bced2b27b4fe30bffeb29a6af4d1526","ssdeep":"384:NPHfIruOZx27nXfUQe/4jKhlB/VzJj3RY6s4+:N3QHP2bfUye/VzY6g","tlshash":"b662c1d6ae513639ff87083b14ed754580490d1154ee1a3c8bd27185ee72bd4d4f4ce5","first_seen":"2026-03-29T12:05:39.407972Z","last_seen":"2026-05-16T13:13:54.390779Z","times_seen":4,"resource_available":false,"data":null}},"time_used":66,"timings":{"blocked":36,"dns":0,"connect":0,"send":0,"wait":29,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785639.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"101.33.11.60","port":443,"asn":139341,"as":"ACE","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:58.293Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785639.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:58 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 764220\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:58 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 220B2165202A9F1B\r\nX-NWS-LOG-UUID: 6f80f6f2-25bd-4a9c-bec3-f125a06ff1f6\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":764220,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"9ea93186d401fac1f8ef4e49f7dd90dc","sha1":"d0d4896e15c663b5181f4930711e533e1e4fad2a","sha256":"59f675ecb5b0b5a6f8f6575acd5fdfe6d552c3575b8411e767d66c80093b292c","sha512":"b6429b593605ec92a56dddfd0dcf656987e299754727fff30fff0a29c52aa91d968c63764fb1eda091af247755747136880b3fada9a76f6af84f7431a665a4ce","ssdeep":"12288:uEO1gGtVficsE4UFKuSRmKp5M0Te9BDboIH0s+YxsokpkLDzjQ2wkOREuM:uXqGttQBvp5M0e9Bb0s3sokpkvQ22REj","tlshash":"69f42389a7521f3b8818fe92c9924bb2c6354e5f6e45ff2f08343785fbf8255c918426","first_seen":"2026-03-29T12:05:39.316752Z","last_seen":"2026-03-29T12:05:39.316752Z","times_seen":1,"resource_available":false,"data":null}},"time_used":110,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":24,"receive":86,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/site/f/siteNotice/queryList","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:42.794Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/site/f/siteNotice/queryList HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nContent-Type: application/json\r\nContent-Length: 2\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2,"data":"{}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:43 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\naccess-control-allow-origin: https://bet9190.com\r\naccess-control-allow-credentials: true\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd1769c10daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1955,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"ddd23c04bdde6bb2c1c23cd0ad5701fa","sha1":"7e996fc50ee5ef7b692718a0ece18677cac708e3","sha256":"b26159a820ff71e453488a2d9b1e84984116274270a32f817c522e2b0002339a","sha512":"1442fbc8d9f990b18a67bc53235efef9ca89ad7ed2324f2b52f52f401558d7e47bd7e7a66d2791a46baec4b09f89d510e6a1324865a4b93f7f3965b61a0fd777","ssdeep":"","tlshash":"2341330b8bf4ea9e9d9103c662f3fee142c13446c0d1ca4c31ac3d5da48b93b070a217","first_seen":"2026-03-29T01:48:00.23023Z","last_seen":"2026-04-08T20:55:08.922364Z","times_seen":17,"resource_available":false,"data":null}},"time_used":528,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":528,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/EBasketball.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.726Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/EBasketball.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2985\r\nlast-modified: Thu, 30 Oct 2025 07:24:47 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 5OMUsV.lFVOgbnbd_gA4o6FhBRVuHGJK\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"384c9f6602e84f48d1cc8be8b27a5ed5\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: DBaIhLufWzOz8-GqdptdQyGv0B_85E60dRbwdzTEMJ28EmCwx7hFkw==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":2985,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"384c9f6602e84f48d1cc8be8b27a5ed5","sha1":"2b37692c6a0031c2fff6b73cd7cb92ff1197e4cb","sha256":"03654deb553c344d467b7021342e0f840dc9539bf7bf9ddebbbb96044321186f","sha512":"9890195e2c70042dd7bac59cbe157e31820bbf288ccbc3b29bd634ef71e4e79d1329827e663b59539b59c79a197fa6ce90ad0aebeacc95b16bb984221db9fd8f","ssdeep":"","tlshash":"db512cc4abbdb64de69d2594323543f068571ac5bb4f000e3d8896219f3bd63bea9503","first_seen":"2026-02-24T07:43:44.921439Z","last_seen":"2026-04-08T20:55:08.850682Z","times_seen":18,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":23,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/Baseball.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.657Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/Baseball.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 2271\r\nlast-modified: Thu, 30 Oct 2025 07:24:51 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: v8w9aQtmoVnhyh7xDYIKI4NyIosgKUA3\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"8f85b74338f14b80dbc9387c4462bfd2\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: X35W6bbXDFakjLap4gAyGFhfXucxX1CBDSK2sfUloOOjDFZu1Sdajg==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":2271,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"8f85b74338f14b80dbc9387c4462bfd2","sha1":"f9f1826c03e953291537dde3a3bd6c18bedb8de3","sha256":"9e85b091849b6fc86a2f3fac18b4bf53235c697ef7081747e047379c7b471937","sha512":"2b7bd484bfb8ef42f42527dbc4a345caa4a68fa9f092706444445880eb68b65debf11027d775a8699e118b443ed3d98be9deebc4cdd23a9126d91dedb69cc735","ssdeep":"","tlshash":"e4412be5f6a357d6b9ed089bbf8c12b0f4bf7cc422001d4a947af35d028a0acd1b1521","first_seen":"2026-02-24T07:43:44.914345Z","last_seen":"2026-04-08T20:55:08.897393Z","times_seen":18,"resource_available":false,"data":null}},"time_used":26,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":26,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/ArrowUpOutlined-YgrGczZw.js","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.623Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/ArrowUpOutlined-YgrGczZw.js HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/assets/index-DjzB0IZK.js\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:04 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\nage: 1\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\netag: W/\"69c74e48-3e7\"\r\ncontent-encoding: gzip\r\ncf-ray: 9e3ebd22da380daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":999,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (998)","md5":"af07d26acd816fe683fa98da5290dab6","sha1":"aa0bb1ff42b8323bb94f50fc959542c0818b57c8","sha256":"d7b366d01bc5da0666d2dc54c85bdc3cd1700ae57fb2044001133216c397640c","sha512":"6d3b7b522cfcd6a54ebb701b0e37fe1d10ea7b9319489eb230e62e5caea027376f169e1d59d8645a79e1ee32e6b64db9c9eee331d92d3a90dd1da3223a94b574","ssdeep":"","tlshash":"7411056e3184bff647828ae4483aa503f0196a2a145cf9609f51c9e5f5514c6b05ff4f","first_seen":"2026-03-29T01:48:00.138712Z","last_seen":"2026-03-29T12:11:25.971394Z","times_seen":6,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/assets/bus-pay-2-iI-AEjAD.png","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.871Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"GET /assets/bus-pay-2-iI-AEjAD.png HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:44 GMT\r\ncontent-type: image/png\r\ncontent-length: 6351\r\nserver: cloudflare\r\nlast-modified: Sat, 28 Mar 2026 03:43:05 GMT\r\netag: \"69c74e49-18cf\"\r\naccept-ranges: bytes\r\nexpires: Sun, 29 Mar 2026 15:04:44 GMT\r\ncache-control: public, max-age=10800\r\ncf-cache-status: HIT\r\ncf-ray: 9e3ebd246fc80daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6351,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 304 x 302, 8-bit colormap, non-interlaced","md5":"91b1ae988e96acbd835845b22ff128b8","sha1":"7f12f9a86d4e8c56f8dade9d5e3601ede233c82c","sha256":"d21571514ad045d568ae19bfa1ee6816f0bf07afeb1f2b1226c8d50268443f35","sha512":"b4dc53212bf76c5aaf1aa51652c1d07ff7d9a188217d6ced21355640e9673e3438a2c966310ec02374e38bbc2bf4479681a717323c9ec0f3ca1e5d7a0daa9f46","ssdeep":"192:F2/Hwfr9ukTccIT4RwQlCztJyNkTmTW6kuAN2NFZ:UHwD9ukT4T2wQlDNkGWm7","tlshash":"a1d17def9147346dd2799a3fda2eae4fcb59090022a130d45bbde45c7c067b8598e207","first_seen":"2026-03-29T01:48:00.213632Z","last_seen":"2026-04-08T20:55:08.877662Z","times_seen":17,"resource_available":false,"data":null}},"time_used":77,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":77,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/Handball.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.659Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/Handball.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1556\r\nlast-modified: Thu, 30 Oct 2025 07:24:51 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: P261yyoKLtXnIXLGYzAPmOCFddLPootd\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"bb520b177a006688b93c8c2b74fb49c4\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: ZBV4iNWj5k4UoL-qFaDYJUFrEhGmS0dTewNYtXAmB26kzqHz7AuREw==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":1556,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"bb520b177a006688b93c8c2b74fb49c4","sha1":"2c47d9216c21503747492459f83f463474ec15d6","sha256":"d4d5b0b756a16a7b922e7fe0ef6d0e7c6dfc4c1e599252714ba0c248d1b57f1b","sha512":"ac7e0ab7aa1d47a304c7e8bba2f80f50d52a99629acbc7e653ca7e4be4cc528e8ca78eb6fe77fc974194da908136eb5ff2f222cf9f5ff12b2727bf90377d0af3","ssdeep":"","tlshash":"4c31dab10c0ba5a162f7e477855161139e389bb60a051d2afc876d54643a4040eaf397","first_seen":"2026-02-24T07:43:44.820262Z","last_seen":"2026-04-08T20:55:08.827176Z","times_seen":18,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/pc/black/sport/Valorant.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.679Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /pc/black/sport/Valorant.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 1029\r\nlast-modified: Thu, 30 Oct 2025 07:24:48 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: o.beE_codZwrhWBOu5C9mX3YPgvGtPtx\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"16b11d5b2809d0901fa12ef009f597f0\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: vKia8R5_z0D85bPg4t-jYiuP08pm81DiL_S8vyTUtOggO7-XFof0ow==\r\nage: 2762\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":1029,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced","md5":"16b11d5b2809d0901fa12ef009f597f0","sha1":"230c347a264a8397f6c649b3ebf4e9aba6a0b3fa","sha256":"e12c97fb6eeca38f60f1f74cd40e440462accea2cd87f24e4bfa72f0cb02c22a","sha512":"c2aec453144d5cf9d42f12f4aa49e0588543d4a2980530be323f2aa98941a44eca6dcf7b7189099426800f0481ea852c4671b176428b9ba3b68921c7ec0250bd","ssdeep":"","tlshash":"a111a8ece3d9ae3ae4c94f726cea55c91646011b6643ae1cff8068311c14d399722857","first_seen":"2026-02-24T07:43:44.915403Z","last_seen":"2026-04-08T20:55:08.845966Z","times_seen":18,"resource_available":false,"data":null}},"time_used":25,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":24,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"look.livewithhy.com/live/sd-6MuTcBvRxwQiAWoX47-1774785636.ts?txspiseq=108757683830914774633","fqdn":"look.livewithhy.com","domain":"livewithhy.com","tld":"com"},"ip":{"addr":"43.174.27.229","port":443,"asn":139341,"as":"ACE","country":"Singapore","country_code":"SG"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:51.815Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"look.livewithhy.com","organization":""},"issuer":{"commonName":"R13","organization":"Let's Encrypt"},"validity":{"start":"Mon, 02 Mar 2026 07:26:41 GMT","end":"Sun, 31 May 2026 07:26:40 GMT"},"fingerprint":{"sha1":"3E:C4:8A:69:05:1A:A1:20:93:DC:AA:D9:E6:78:39:12:8C:58:FF:BD","sha256":"11:D2:58:D7:41:66:9C:F1:3C:03:77:43:85:E0:2F:0D:79:5C:9C:01:74:36:C6:5F:2D:9A:E7:2B:63:43:31:05"}}},"request":{"raw":"GET /live/sd-6MuTcBvRxwQiAWoX47-1774785636.ts?txspiseq=108757683830914774633 HTTP/1.1\r\nHost: look.livewithhy.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nServer: MC_VCLOUD_LIVE\r\nDate: Sun, 29 Mar 2026 12:04:51 GMT\r\nContent-Type: video/MP2T\r\nContent-Length: 841112\r\nConnection: keep-alive\r\nCache-Control: max-age=15\r\nAccept-Ranges: none\r\nLast-Modified: Sun, 29 Mar 2026 20:04:51 CST\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://bet9190.com\r\nX-Tlive-SpanId: 6169AE2B070F1B8F\r\nX-NWS-LOG-UUID: b9e0080f-6300-48a3-8984-643c246f397d\r\nX-SSL-PROTOCOL: TLSv1.3\r\nAccess-Control-Max-Age: 600\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":841112,"size_decoded":0,"mime_type":"video/mp2t","magic":"MPEG transport stream data","md5":"7e771ae6c519766b384dbe2500b3c398","sha1":"72c7157570eee55268b98722ce0f06048e22b05a","sha256":"3e4d1af9a7259fe33601dbb06f3881e2ef7d7630018c27d0f76ceeae006feb39","sha512":"ef44b3770979e38f689050de8b89c3206f6c4e57cc66b53bd4a414b5305f5567b67aad1f17f4d4be792cbd5eed452ea1bb03002ebe4c2695f4b68aa90c218adc","ssdeep":"24576:Jw3Q4X0/ja2YJmgCfe4uNf+z2xc0j9gkZHFcLxa8XKbm:aQ3/229puNGSVJm","tlshash":"f805235eabb06e3b5d409920a652ab7263680c5d1e54deafcc34f74efab8905cc21137","first_seen":"2026-03-29T12:05:39.356342Z","last_seen":"2026-03-29T12:05:39.356342Z","times_seen":1,"resource_available":false,"data":null}},"time_used":71,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":16,"receive":55,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"tposs.qiddfc-dqiod52d.com/site-intqf/siteConfig/202601/36987a28f75d4f9daecec6860888fa77.png","fqdn":"tposs.qiddfc-dqiod52d.com","domain":"qiddfc-dqiod52d.com","tld":"com"},"ip":{"addr":"3.167.2.129","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:44.900Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"tposs.qiddfc-dqiod52d.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M04","organization":"Amazon"},"validity":{"start":"Wed, 27 Aug 2025 00:00:00 GMT","end":"Fri, 25 Sep 2026 23:59:59 GMT"},"fingerprint":{"sha1":"D0:96:57:8B:56:09:2E:8A:4D:C1:87:CA:FD:41:09:B6:57:2C:4F:1D","sha256":"48:66:5F:5D:67:07:2E:C0:CB:EF:91:62:93:36:C2:EF:FB:B7:0E:4A:9A:93:C5:0D:10:9E:B6:05:6B:45:AC:AF"}}},"request":{"raw":"GET /site-intqf/siteConfig/202601/36987a28f75d4f9daecec6860888fa77.png HTTP/1.1\r\nHost: tposs.qiddfc-dqiod52d.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: image/png\r\ncontent-length: 21322\r\nlast-modified: Mon, 26 Jan 2026 04:42:40 GMT\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 4VC5L422hUof5JRGa5O.l9eOEfXadjT_\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 29 Mar 2026 11:18:44 GMT\r\netag: \"fd43cba637436f0ff41272148a952a5e\"\r\nvary: Accept-Encoding\r\nx-cache: Hit from cloudfront\r\nvia: 1.1 4e0a1f367f79652e0e7d03fa585de7b2.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P2\r\nx-amz-cf-id: d-O4BUXq1VwyumIusGGzfzk9mk6E_G1ybARc8qVpeA5d-TafttX8eg==\r\nage: 2761\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":21322,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 368 x 100, 8-bit/color RGBA, non-interlaced","md5":"fd43cba637436f0ff41272148a952a5e","sha1":"0998ae892c19d573c094a1f4c022a87afa8d0c0f","sha256":"09dfc6b2d54a842fcef6f9456b94d9b88d3bfa54a6353071b3eb32d297123cc9","sha512":"c8196a56814ab34df47495876051a96c29beb5d24257427c4d142897a197925f74b6eeb2664161d3e6ef7e1c6e6715925056bceb97d1a7a8f659960528a2d192","ssdeep":"384:awVuWMK8I/0eisfqUdlDBHDF2lc/n+0x39pVIwUsKAqsDbWwzmpER3:TuWMKNEXUXh4c/n+0x39pVQsLnzmK3","tlshash":"49a2e161bf5cd7d4a93b30dc0a238260d7e7d326d61e22dad3412b41aa54b73127cb99","first_seen":"2026-02-24T07:43:44.885844Z","last_seen":"2026-06-03T10:10:15.231055Z","times_seen":25,"resource_available":false,"data":null}},"time_used":46,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":45,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bet9190.com/api/game-center/f/sport/querySportType","fqdn":"bet9190.com","domain":"bet9190.com","tld":"com"},"ip":{"addr":"104.18.6.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:45.237Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"bet9190.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Mon, 23 Mar 2026 16:10:16 GMT","end":"Sun, 21 Jun 2026 16:10:15 GMT"},"fingerprint":{"sha1":"AC:99:C6:93:9F:4E:62:A0:3B:79:13:29:64:0C:77:02:68:EB:67:86","sha256":"BE:33:6D:AD:6C:4C:0C:57:F6:B1:CB:78:D7:32:41:87:83:94:40:B3:9B:7B:18:87:2E:10:13:E0:90:E6:6A:74"}}},"request":{"raw":"POST /api/game-center/f/sport/querySportType HTTP/1.1\r\nHost: bet9190.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: vi\r\nAccept-Encoding: gzip, deflate, br\r\nDevice: PC\r\nCurrency: VND\r\nFrontAuthorization: \r\nTimestamp: 1774785885\r\nContent-Type: application/json\r\nContent-Length: 185\r\nOrigin: https://bet9190.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/home\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":185,"data":"{\"params\":\"wrxpBVPtdr47LHB7K851QZlSITaXRbwSI+hQTxNoZ5hpUn4Hzb9Dw1AAbQpZdi9VkI6575lKvS60rSrpMsapBvi+Z3RlesKZou3wGplqQdqMCeHnU4ui1FlyeDuIp8aMI4Om/HEV0k0A11BILoMWWhbfks2FWDIFaifrbIph05I=\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 29 Mar 2026 12:04:45 GMT\r\ncontent-type: application/json\r\ncontent-length: 1097\r\nserver: cloudflare\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, accept-encoding\r\naccess-control-allow-origin: https://bet9190.com\r\naccess-control-allow-credentials: true\r\ncontent-encoding: gzip\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 9e3ebd26bff20daa-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11960,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (11754), with no line terminators","md5":"52b582c8a8216cf59039037ddbf2b0cc","sha1":"1d5573922f6100940402aa2ad87c42f63caa6876","sha256":"ab950d22179d3c381e7e535c8e2828cff60ac65e4767de1485649f2500d1813b","sha512":"09f191415667140536dec85737c804d64de9fb7142f968070342fe2d42ebde601cafa9f18ed6cf3dda16178413db6d2913aa847c6c7d317925b81323f33c8a98","ssdeep":"192:HfEPEnEtE7rR52IRahana0a7H551mT07BSqJnhLZiK:lK","tlshash":"653245eb13c65c8c9b4d1f6094d72ac8f7e90153e8c2ac5e554aef4e808dab36707366","first_seen":"2026-03-29T12:05:39.414018Z","last_seen":"2026-03-29T12:05:39.414018Z","times_seen":1,"resource_available":false,"data":null}},"time_used":276,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":276,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-29","alert":"Phishing Block","trigger":"bet9190.com","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"cloudflare_dns","sensor_type":"DNS","title":"Cloudflare DNS","description":"Cloudflare DNS","scan_date":"2026-03-29","alert":"Sinkholed","trigger":"bet9190.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.cloudflare.com/application-services/products/dns/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"s.9a9q.com/data/ecc32c7584649f25a5f8727543d13334.png","fqdn":"s.9a9q.com","domain":"9a9q.com","tld":"com"},"ip":{"addr":"174.35.85.160","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://bet9190.com/","date":"2026-03-29T12:04:46.529Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"s.9a9q.com","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Thu, 19 Mar 2026 03:23:29 GMT","end":"Wed, 17 Jun 2026 03:23:28 GMT"},"fingerprint":{"sha1":"94:6C:01:A5:3F:8F:AA:47:1E:95:09:1A:B1:2A:F4:FE:3E:06:F7:AB","sha256":"69:19:C1:B7:C9:52:D7:AD:28:45:D8:83:64:05:A6:75:C4:5F:60:32:4A:78:BB:63:48:CA:9A:BB:48:8E:11:2A"}}},"request":{"raw":"GET /data/ecc32c7584649f25a5f8727543d13334.png HTTP/1.1\r\nHost: s.9a9q.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://bet9190.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Sun, 29 Mar 2026 12:04:46 GMT\r\nContent-Type: application/octet-stream\r\nContent-Length: 4569\r\nConnection: keep-alive\r\nx-amz-id-2: YicxUyh093fF/fjWSWkJ+gzZgT9d5PT5Yei6APmsOM5H9MGSW0T2wwrMbt2QRCTQ2BTIwUliZ3c=\r\nx-amz-request-id: X8WQG2E0WK4XVT1Q\r\nx-amz-replication-status: COMPLETED\r\nLast-Modified: Fri, 22 Sep 2023 03:21:40 GMT\r\nETag: \"ecc32c7584649f25a5f8727543d13334\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-version-id: 6DxvUMcF1Wn_kRf7qGtOdHemNYDe5Dhl\r\nAccept-Ranges: bytes\r\nServer: PWS/8.3.1.0.8\r\nAge: 76413\r\nx-ws-request-id: 69c9155e_PS-CDG-04A5e173_40658-16667\r\nCache-Control: max-age=2592000\r\nvia: 1.1 PS-CDG-04A5e173:34 (W)\r\nX-Px: ht PS-CDG-04A5e173CDG\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]}],"data":{"size":4569,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 100 x 100, 8-bit colormap, non-interlaced","md5":"ecc32c7584649f25a5f8727543d13334","sha1":"96e1281821f10e5482287b5f2e134b232f8b2fa9","sha256":"9ed8b7281149eec70f5771a6d8df3b806d08e6597cf897913bf52ea31ac4fd53","sha512":"a97e546962c43551aef249666c186bc741e32027a3e8defa3f4cb4772d654401034f477be9e8ad21f101ca23f9a6ebfdae5f60396773e9f5034860883666dddc","ssdeep":"96:VflMC7cv2Zx9ScsA3itRexruQPicEs5tYuEfLpBBiI809rhtFpUfcTjEU:Vflnc8xUcs8itRGiAicEs5tIpBBiI8yp","tlshash":"f7918eaa6e4bbc74c2f4c27c3b7fb296349b4749d43850163246a478c6984710fa1c9c","first_seen":"2023-11-26T14:35:21Z","last_seen":"2026-03-29T12:11:25.949874Z","times_seen":5,"resource_available":false,"data":null}},"time_used":368,"timings":{"blocked":166,"dns":102,"connect":30,"send":0,"wait":32,"receive":0,"ssl":34},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}