r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4640
Expires: Sat, 26 Nov 2022 00:38:33 GMT
Date: Fri, 25 Nov 2022 23:21:13 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 10730f388c028d64e19b8a48d414768f
e43b104e57e5ea7ff8568835776858cf2ede6f00
f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6011
Cache-Control: max-age=132612
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 23:21:13 GMT
Etag: "63809972-1d7"
Expires: Sun, 27 Nov 2022 12:11:25 GMT
Last-Modified: Fri, 25 Nov 2022 10:31:14 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
best-fixedmatches1x2.com/
162.213.253.11301 Moved Permanently 707 B URL HTTP/1.1 best-fixedmatches1x2.com/
IP 162.213.253.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 25 Nov 2022 23:21:13 GMT
server: LiteSpeed
location: https://best-fixedmatches1x2.com/
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8c63b226725ca6e92e3ef586ac19e603
d21ae42a1927501e5293ff3564f52b49f6b0decc
141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4531
Expires: Sat, 26 Nov 2022 00:36:44 GMT
Date: Fri, 25 Nov 2022 23:21:13 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 23:17:29 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 224
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 3knmvv3wGdDnbD+FHNBMDfq8QkVmsCKB/q+lEa7oMfiUFTg3o8aziTqHosl9yyAIWAorkB12gzKx73s0cXnkOg==
x-amz-request-id: 14CN5AYCX5Z5SQXG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 22:44:00 GMT
age: 2233
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 23:21:14 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 23:08:53 GMT
cache-control: public,max-age=3600
age: 741
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash ed83cd8ec84249a3b93fd2fa60c10172
197fe18b0cec7a6866adfa17700db4374e752c4b
96f44856b9f2b05ddc502980c355e4d9d4ecc141a07f4b8262cef04a24f6206c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 23:21:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 24 Nov 2022 20:41:10 GMT
Expires: Thu, 01 Dec 2022 20:41:09 GMT
Etag: "197fe18b0cec7a6866adfa17700db4374e752c4b"
Cache-Control: max-age=508194,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76fe1e986c5fb4fd-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash df06e70fc8a35facf1d8db463d18e231
fa8a2975566cc792898f870e48ae7518d3657326
4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2195
Cache-Control: max-age=123732
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 23:21:14 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 09:43:26 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.218.168.248101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.168.248:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 76QoVt1+J31acBIAJRSGtA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SW1kquT/BQvLjm8doEZJG7esmQ8=
best-fixedmatches1x2.com/wp-content/themes/comicpress/style.css
162.213.253.11200 OK 7.8 kB URL HTTP/2 best-fixedmatches1x2.com/wp-content/themes/comicpress/style.css
IP 162.213.253.11:0
File type assembler source, ASCII text, with very long lines (327)
Hash 229c975003e217ca5a009d85968d9479
4690ee526d6045a04632d1dd8784549da9c1a317
b5aaa64048673eaf65131b30dfea97bfdfcca7edb7f7519cdb370aea9213e267
GET /wp-content/themes/comicpress/style.css HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: text/css
last-modified: Sun, 11 Jul 2021 08:42:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 7798
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-includes/css/classic-themes.min.css?ver=1
162.213.253.11200 OK 217 B URL HTTP/2 best-fixedmatches1x2.com/wp-includes/css/classic-themes.min.css?ver=1
IP 162.213.253.11:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: text/css
last-modified: Tue, 08 Nov 2022 22:27:13 GMT
accept-ranges: bytes
content-length: 217
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
162.213.253.11200 OK 12 kB URL HTTP/2 best-fixedmatches1x2.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 162.213.253.11:0
File type ASCII text, with very long lines (47826)
Hash c4d7cc056b49b00e05cc29cc59aa3d5a
48c426bec60099d2a8628df430ed682c72aab42a
8009c12f2674a8d38401f4b5faad1fef2cfcd18a8c927ed2561ae9d7de9b57b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: text/css
last-modified: Tue, 15 Nov 2022 20:28:37 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11616
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
162.213.253.11200 OK 4.0 kB URL HTTP/2 best-fixedmatches1x2.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 162.213.253.11:0
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: application/javascript
last-modified: Fri, 11 Dec 2020 10:43:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3995
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 832e7ef113aed147ba4de023e3a8e325
f63ef9e1d64ca20c519e664c5991194e5ebe1eaa
b815c1145859d4aa9e9fc8761bfbcc1822535f95f2d4ff3ff3c5d1e0c8d5d262
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 23:21:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 17:25:59 GMT
Expires: Wed, 30 Nov 2022 17:25:58 GMT
Etag: "f63ef9e1d64ca20c519e664c5991194e5ebe1eaa"
Cache-Control: max-age=410082,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76fe1e9ebcb8b4fd-OSL
best-fixedmatches1x2.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
162.213.253.11200 OK 30 kB URL HTTP/2 best-fixedmatches1x2.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 162.213.253.11:0
File type ASCII text, with very long lines (65447)
Hash 3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:27:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 30324
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-content/uploads/2022/09/Assia-Best-Soccer-Fixed-Matches-1X2.png
162.213.253.11200 OK 28 kB URL HTTP/2 best-fixedmatches1x2.com/wp-content/uploads/2022/09/Assia-Best-Soccer-Fixed-Matches-1X2.png
IP 162.213.253.11:0
File type PNG image data, 400 x 631, 8-bit/color RGB, non-interlaced\012- data
Hash a980789b171a4ac09626545199ff3ccb
7d84026030bb6f73a0427e4dafa1a71a1a346076
c9ed640ae19e2d6c81398a61f86879a1fc64ec43c5ba2a51e1e6ed21051cd529
GET /wp-content/uploads/2022/09/Assia-Best-Soccer-Fixed-Matches-1X2.png HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: image/png
last-modified: Sun, 04 Sep 2022 14:13:06 GMT
accept-ranges: bytes
content-length: 28317
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-content/themes/comicpress/js/ddsmoothmenu.js?ver=6.1.1
162.213.253.11200 OK 2.7 kB URL HTTP/2 best-fixedmatches1x2.com/wp-content/themes/comicpress/js/ddsmoothmenu.js?ver=6.1.1
IP 162.213.253.11:0
File type ASCII text, with CRLF line terminators
Hash 4e3943051db5b0e580e2c789a3205a6d
0d1cda36cdbac930c7673304759a8c7b0d66d02e
d326b4da3e61fcb98fb6f0c7d0c5067655ee335e5b07ea2e79be52fe6c6e6c0b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/comicpress/js/ddsmoothmenu.js?ver=6.1.1 HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: application/javascript
last-modified: Fri, 01 May 2020 11:41:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2699
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
arsenal-1x2.com/wp-content/uploads/2019/12/output_pM3zPl-1.gif
162.213.253.11200 OK 5.9 kB URL HTTP/2 arsenal-1x2.com/wp-content/uploads/2019/12/output_pM3zPl-1.gif
IP 162.213.253.11:0
File type GIF image data, version 89a, 200 x 60\012- data
Hash 2fa4d4aac05880579a5e90324cecefcf
e0e76b2e31f2c1821594a69c05e91632aee09010
5354393bf7513cc968ca21cb58bdd3f1aabbd3974f4224dc1b2e5ffd6943a62f
GET /wp-content/uploads/2019/12/output_pM3zPl-1.gif HTTP/1.1
Host: arsenal-1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://best-fixedmatches1x2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: image/gif
last-modified: Fri, 06 Dec 2019 13:40:42 GMT
accept-ranges: bytes
content-length: 5869
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
vary: User-Agent
content-security-policy: upgrade-insecure-requests
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-content/uploads/2020/05/Double-Fixed-Matches-1X2.png
162.213.253.11200 OK 11 kB URL HTTP/2 best-fixedmatches1x2.com/wp-content/uploads/2020/05/Double-Fixed-Matches-1X2.png
IP 162.213.253.11:0
File type PNG image data, 877 x 40, 8-bit colormap, non-interlaced\012- data
Hash fce6ff84dd7f9836036cabdb6ccbeb26
6f5c4ce104524c18ab60af987f9da67f65c0581f
a2b580af0bf7f9280c8f7555d90540638f05cba1f6d9a8e2c01417f67ceaa7f3
GET /wp-content/uploads/2020/05/Double-Fixed-Matches-1X2.png HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: image/png
last-modified: Fri, 01 May 2020 23:22:45 GMT
accept-ranges: bytes
content-length: 11438
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-content/themes/comicpress/js/menubar.js?ver=6.1.1
162.213.253.11200 OK 214 B URL HTTP/2 best-fixedmatches1x2.com/wp-content/themes/comicpress/js/menubar.js?ver=6.1.1
IP 162.213.253.11:0
File type ASCII text, with CRLF line terminators
Hash 3ca155ba6d055b3f68418d1ae1587153
12608155679b6c306249652cdd600fd31ad64b84
ae4e31d5f49a5e7c8a28778ea143e403e1e1a8070257ec9fa8ea030c6258e602
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/comicpress/js/menubar.js?ver=6.1.1 HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: application/javascript
last-modified: Fri, 01 May 2020 11:41:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 214
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.4.3
162.213.253.11200 OK 3.9 kB URL HTTP/2 best-fixedmatches1x2.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.4.3
IP 162.213.253.11:0
File type ASCII text, with very long lines (15069), with no line terminators
Hash c4e893c0003f847089b94560beb43c29
574e53ff80225a86105d0f31c2fb5584f0e0e94e
419abc84f01e5a95f6224ffd26b4af5b657bf1febcd56f05354526d37eb38e51
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/creame-whatsapp-me/public/css/joinchat.min.css?ver=4.4.3 HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 22:42:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3887
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-content/uploads/2020/05/Daily-Fixed-Matches-1X2.gif
162.213.253.11200 OK 11 kB URL HTTP/2 best-fixedmatches1x2.com/wp-content/uploads/2020/05/Daily-Fixed-Matches-1X2.gif
IP 162.213.253.11:0
File type GIF image data, version 89a, 769 x 58\012- data
Hash 3ab37d2ba62cfff8f55d433179410fa1
52a3c159a30aed2ba54414ca521f0389f92237ee
1df0fcdbb7b647cd7a9d5f56bf937020f7c90a18f955d835b5537cc870aae1f2
GET /wp-content/uploads/2020/05/Daily-Fixed-Matches-1X2.gif HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: image/gif
last-modified: Fri, 01 May 2020 23:25:19 GMT
accept-ranges: bytes
content-length: 11012
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-content/themes/comicpress/js/scroll.js
162.213.253.11200 OK 278 B URL HTTP/2 best-fixedmatches1x2.com/wp-content/themes/comicpress/js/scroll.js
IP 162.213.253.11:0
File type ASCII text, with CRLF line terminators
Hash 1fc66a4e44887c62b71df5cd2bb87d57
b57c8371db096a515143eb2d1cfeb41edfe10b91
1f719cbe4f2420e55302b8a8f20305c52c959f6ca589258fc24193d7372519de
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/comicpress/js/scroll.js HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: application/javascript
last-modified: Fri, 01 May 2020 11:41:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 278
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-content/themes/comicpress/js/instant.js
162.213.253.11200 OK 5.3 kB URL HTTP/2 best-fixedmatches1x2.com/wp-content/themes/comicpress/js/instant.js
IP 162.213.253.11:0
File type ASCII text, with very long lines (1100), with CRLF line terminators
Hash 22cc55193fa090c1b16720252186480c
fcac676e0a31c773e0eb58c86459b076f832739c
0a66b690bd6dd28001db7497ec1a14fa807eaf0a7cba64bdade39c9f268767d4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/comicpress/js/instant.js HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: application/javascript
last-modified: Fri, 01 May 2020 11:41:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5292
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-content/themes/comicpress/js/cvi_text_lib.js
162.213.253.11200 OK 5.9 kB URL HTTP/2 best-fixedmatches1x2.com/wp-content/themes/comicpress/js/cvi_text_lib.js
IP 162.213.253.11:0
File type Unicode text, UTF-8 text, with very long lines (398), with CRLF line terminators
Hash bd3c2c4e565eddf1ca8339db80bcb332
5a285ca38ca5073e904346a9fdea4e6cd647fb24
e18fc3e4634f4c1dbac972af4b6ec6a0bff34af3741427517beee9d9b5f5c29b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/comicpress/js/cvi_text_lib.js HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: application/javascript
last-modified: Fri, 01 May 2020 11:41:44 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 5861
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.4.3
162.213.253.11200 OK 2.4 kB URL HTTP/2 best-fixedmatches1x2.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.4.3
IP 162.213.253.11:0
File type ASCII text, with very long lines (7665), with no line terminators
Hash 85d12d0c9c9d62421652e83dd4a6f626
3574cfe4e9eb7cd522e8e4a95833be9d2a05ccfb
1ff1ab7ff7991f5bf4002aca32f0555ee0c69417407945a4be9cc91732ed4a56
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.4.3 HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 22:42:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2443
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
162.213.253.11200 OK 36 kB URL HTTP/2 best-fixedmatches1x2.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
IP 162.213.253.11:0
File type ASCII text, with very long lines (65266)
Hash eabd3755fb73f0e4ef1ac6e474373dd8
cd92121ebac48f10a27821172202bb1d06267663
37f62084aa872e3b695e87f549c236fda5828bc68036875a771768cd90bf2436
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: application/javascript
last-modified: Tue, 08 Nov 2022 22:27:13 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 36433
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
162.213.253.11200 OK 392 B URL HTTP/2 best-fixedmatches1x2.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1
IP 162.213.253.11:0
File type HTML document, ASCII text, with very long lines (906), with no line terminators
Hash 200d0ec78a54a35bb97450e75bddfe52
25a0c90e7c2a7f49b4d5abf3165eb2d03849c2cb
9555fae27002a4036ca476b62143a67552e3870a1ff46c5869611b5edbe1deac
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.1.1 HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: application/javascript
last-modified: Thu, 04 Feb 2021 08:12:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 392
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17
162.213.253.11200 OK 2.1 kB URL HTTP/2 best-fixedmatches1x2.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17
IP 162.213.253.11:0
File type ASCII text, with very long lines (6194)
Hash 81ab8688d9461f04792e86c9b8612dc8
27bd154ac89dc4a472c6f815189324202c1ccc45
34eb3b197e6cc1dadd018bb26e8e64c517e061f6fe50aa8337e6239961d4beac
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17 HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: application/javascript
last-modified: Fri, 11 Dec 2020 10:43:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2071
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
162.213.253.11200 OK 982 B URL HTTP/2 best-fixedmatches1x2.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
IP 162.213.253.11:0
File type ASCII text, with very long lines (4186), with no line terminators
Hash 24f4d7f425e792ab35adaab50816e54a
9e25bf79b674ddb7ba09ad7f118c50ec473c02c8
1c78bfb4d523785a4ebd37bb1f79f214f9bdb16673f7cc50805f7f1a26ad7f83
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: text/css
last-modified: Sat, 08 Jun 2019 00:45:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 982
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
162.213.253.11200 OK 2.4 kB URL HTTP/2 best-fixedmatches1x2.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP 162.213.253.11:0
File type ASCII text, with very long lines (11256), with no line terminators
Hash ce94f62588d05264ac0148712111cb11
518bcd922f54169aeb199c0ccbc5877165ac218e
84ab658a69c39f424be0b27f61d612447d01606fce33beb962cbea53627d8c81
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: text/css
last-modified: Fri, 11 Dec 2020 10:43:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2394
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
162.213.253.11200 OK 479 B URL HTTP/2 best-fixedmatches1x2.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1
IP 162.213.253.11:0
File type ASCII text, with very long lines (1191), with no line terminators
Hash 62b3593ce258f7488f936d31b1ab1b6e
34c14a9bf90463e4456add8d8d039453b8bb8b8e
be4b9efdf77f14940f6b8aa22e7287411cf0377f99009d49276b5cfa47c4f3ad
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.1.1 HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 11:16:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 479
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
162.213.253.11200 OK 4.6 kB URL HTTP/2 best-fixedmatches1x2.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 162.213.253.11:0
File type ASCII text, with very long lines (15660)
Hash 0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 11:16:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4619
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-content/themes/comicpress/images/background-overlay.png
162.213.253.11200 OK 3.9 kB URL HTTP/2 best-fixedmatches1x2.com/wp-content/themes/comicpress/images/background-overlay.png
IP 162.213.253.11:0
File type PNG image data, 14 x 500, 8-bit/color RGBA, non-interlaced\012- data
Hash 54672027c2a7d6d258e743a777fbbc4a
3219e3771046e407d2773f760dc3631b7e9f0c93
34074175a16e45819314442da5180c27a329e9dd35ab7ebdc90ba03220909044
GET /wp-content/themes/comicpress/images/background-overlay.png HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/wp-content/themes/comicpress/style.css
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: image/png
last-modified: Fri, 01 May 2020 11:41:44 GMT
accept-ranges: bytes
content-length: 3917
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-content/themes/comicpress/images/background-lines.png
162.213.253.11200 OK 200 B URL HTTP/2 best-fixedmatches1x2.com/wp-content/themes/comicpress/images/background-lines.png
IP 162.213.253.11:0
File type PNG image data, 5 x 5, 8-bit/color RGBA, non-interlaced\012- data
Hash 59f2790e57947c058c603d74e7d84479
41748db6f9a384801fd39a11046ef39742d7f48a
0c476c6540c6371bd8b87d40a3facf44d5a5489dcdbd0c1d49bea9b436c48506
GET /wp-content/themes/comicpress/images/background-lines.png HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/wp-content/themes/comicpress/style.css
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: image/png
last-modified: Fri, 01 May 2020 11:41:44 GMT
accept-ranges: bytes
content-length: 200
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-content/themes/comicpress/images/pushpin-small.png
162.213.253.11200 OK 752 B URL HTTP/2 best-fixedmatches1x2.com/wp-content/themes/comicpress/images/pushpin-small.png
IP 162.213.253.11:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 54991b0478ebd9cd8cff75022398f995
4f8bcb4ec7edf59c25325a9afd2557d0a9d114b2
1a2a2b01af3aca9e2a3f76b7a54eabaf2a6e595882e5127e912bedfbb71421a6
GET /wp-content/themes/comicpress/images/pushpin-small.png HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/wp-content/themes/comicpress/style.css
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: image/png
last-modified: Fri, 01 May 2020 11:41:44 GMT
accept-ranges: bytes
content-length: 752
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 81aa0e4d7917a99c40c049d587b25472
bc82c0067314f6f4eaf66521776cc770553f749b
b0eaaa94ef844ddbc9635e3c0233d959b6bf5530640b7d906ee28746100b405b
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B0EAAA94EF844DDBC9635E3C0233D959B6BF5530640B7D906EE28746100B405B"
Last-Modified: Thu, 24 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13739
Expires: Sat, 26 Nov 2022 03:10:15 GMT
Date: Fri, 25 Nov 2022 23:21:16 GMT
Connection: keep-alive
iqfixed.com/wp-content/uploads/2021/12/IQFIXED.gif
104.21.73.59200 OK 18 kB URL HTTP/2 iqfixed.com/wp-content/uploads/2021/12/IQFIXED.gif
IP 104.21.73.59:0
File type GIF image data, version 89a, 200 x 70\012- data
Hash 500522e317eb2b6bd6d974338b35c8c6
9ffdb9e4c7eba12aeeb3d3afd65dfac9f259e050
83886179475b9b5484d2dd92aada60f6827b13720d21324a376e347aa824b4e2
GET /wp-content/uploads/2021/12/IQFIXED.gif HTTP/1.1
Host: iqfixed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://best-fixedmatches1x2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 23:21:16 GMT
content-type: image/gif
content-length: 17605
last-modified: Thu, 02 Dec 2021 16:19:52 GMT
etag: "61a8f228-44c5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 105023
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ah1L38M5lo6ffYZpIhL7d%2Bt3M7lG8v1cp97u1HK8L06h8uk0Nm5144uSJmhBTsR66LtPIQUng2vZVlLG2aPQtElfDv99tR5WaZ%2FS%2BgS0zVifYj%2Fsr%2FP%2BMyyKTE3qBw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe1ea3ded9b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1dc47cbdaae1fc58f5d077952cdeb6c7
370e9a0520f3e6b9e0d74c1d1d91cebc5f8add62
407fd54da33a28c5fdbb3835d1b66cd8b80b2dcaf2552bb09353800813c3b84a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6321
Cache-Control: max-age=130753
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 23:21:16 GMT
Etag: "638090fd-117"
Expires: Sun, 27 Nov 2022 11:40:29 GMT
Last-Modified: Fri, 25 Nov 2022 09:55:09 GMT
Server: ECS (amb/6B87)
X-Cache: HIT
Content-Length: 279
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 780d87eb83b60d43abb214d7286e75f4
1270a3360d756f422f5fa456dd64bb43a90d7189
f507827a37ecf6332ce1a9879f0e98bad235e427455c6450be88bee6a46ab02f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F507827A37ECF6332CE1A9879F0E98BAD235E427455C6450BE88BEE6A46AB02F"
Last-Modified: Wed, 23 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21594
Expires: Sat, 26 Nov 2022 05:21:10 GMT
Date: Fri, 25 Nov 2022 23:21:16 GMT
Connection: keep-alive
accuratefixedmatches.com/wp-content/uploads/2021/04/accuratebanner.gif
172.67.198.38200 OK 35 kB URL HTTP/2 accuratefixedmatches.com/wp-content/uploads/2021/04/accuratebanner.gif
IP 172.67.198.38:0
File type GIF image data, version 89a, 469 x 137\012- data
Hash 0a5ea1a65f35f27bad944ce0a6299d09
5ed6cb9a0c39d3351f71317883fb1d964ab622eb
b7f940ed425d695c4d327b022608967b16b9a6dcf3ccaee3554ba9350c6420d6
GET /wp-content/uploads/2021/04/accuratebanner.gif HTTP/1.1
Host: accuratefixedmatches.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://best-fixedmatches1x2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 23:21:16 GMT
content-type: image/gif
content-length: 35343
last-modified: Wed, 07 Apr 2021 23:29:52 GMT
etag: "606e4070-8a0f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 12439767
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EYpqojK9EnqiF0TTNl1V8BgECrcqyM1p90r8qRjIfGFEr2JyhEFUkM2Jgc8WDSjyB0EFAxSLgsNPAbPKlQDadIj3XJoyIduxggupVWIhaWOSfoXh8yRgFTqKOXbGapevDaTwiO8%2BnKHQ6rA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe1ea42be8b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8507
Expires: Sat, 26 Nov 2022 01:43:03 GMT
Date: Fri, 25 Nov 2022 23:21:16 GMT
Connection: keep-alive
fixedbet1x2.com/wp-content/uploads/2022/01/soccerfixed1x2.gif
172.67.186.13200 OK 49 kB URL HTTP/2 fixedbet1x2.com/wp-content/uploads/2022/01/soccerfixed1x2.gif
IP 172.67.186.13:0
File type GIF image data, version 89a, 400 x 150\012- data
Hash a892a82ad7e9897265b79ed7e27b22a6
3967a7ee1137c190263a0b2abcc6a74f8b9ac87d
9da8813cdf0056ee59c3b5a0ed81e5c5569b4a3ab65bb159a2c31e55b75c8322
GET /wp-content/uploads/2022/01/soccerfixed1x2.gif HTTP/1.1
Host: fixedbet1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://best-fixedmatches1x2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 23:21:16 GMT
content-type: image/gif
content-length: 48833
last-modified: Mon, 31 Jan 2022 09:00:52 GMT
etag: "61f7a544-bec1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 105023
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ilj9HjtEf2D6lzLiUlw7q3Y%2FokjrmtlgALdUaN3N%2BjQQPxiRpdBoaFsUh1tRpWnbTXiIO9UoZRnwf4TblX4IxKbPC371tROegspuneeiElEkKmPEcaoD6x2FdDLYAKQhNxA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe1ea44ec90afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
i.imgur.com/SDreCCj.gif
151.101.84.193200 OK 43 kB IP 151.101.84.193:0
File type GIF image data, version 89a, 400 x 100\012- data
Hash f6565b86230a3a8214faea89d654ba48
63754fa2875e247a7cb7f51223a0e0bdf1d2b8a1
8367e019e14ea208edb5f12b130b13bd8f2d4312f247dfb65edb3bb0bcb5916c
GET /SDreCCj.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://best-fixedmatches1x2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Sun, 21 Mar 2021 12:42:28 GMT
etag: "f6565b86230a3a8214faea89d654ba48"
content-type: image/gif
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 25 Nov 2022 23:21:16 GMT
age: 4357485
x-served-by: cache-iad-kjyo7100092-IAD, cache-bma1627-BMA
x-cache: HIT, HIT
x-cache-hits: 2066, 1
x-timer: S1669418476.192777,VS0,VE4
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 42946
X-Firefox-Spdy: h2
i.imgur.com/hujwOcZ.gif
151.101.84.193200 OK 85 kB IP 151.101.84.193:0
File type GIF image data, version 89a, 471 x 126\012- data
Hash 5cfb1079720733cdccd1e94baca2bdb6
0c8eb3a8b268efd8e324556f0768df89dea52ea5
bd88625e534414b3d68dfc5a71228ac40265d223f3a6fe068df160b27d9e7243
GET /hujwOcZ.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://best-fixedmatches1x2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Sat, 11 Oct 2014 20:30:41 GMT
etag: "5cfb1079720733cdccd1e94baca2bdb6"
content-type: image/gif
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 25 Nov 2022 23:21:16 GMT
age: 1494869
x-served-by: cache-iad-kcgs7200125-IAD, cache-bma1627-BMA
x-cache: HIT, HIT
x-cache-hits: 543, 1
x-timer: S1669418476.198059,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 85169
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1d4957ade3ffd4446d3fcfc4ddea6952
3fba8864e71766ca06ab3feac4c304bd1643ee6c
3f9b0e4b427e3d7ce78afcd621b9325ed00149a07f7324bce7a92345f5b5b923
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=171957
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 23:21:16 GMT
Etag: "63814aa1-117"
Expires: Sun, 27 Nov 2022 23:07:13 GMT
Last-Modified: Fri, 25 Nov 2022 23:07:13 GMT
Server: nginx
Content-Length: 279
www.best-bet.asia/images/front/logo.jpg
91.215.216.44200 OK 18 kB URL HTTP/1.1 www.best-bet.asia/images/front/logo.jpg
IP 91.215.216.44:0
ASN #49699 SuperHosting.BG Ltd.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 546x211, components 3\012- data
Hash cb03d5746b48b19236130bdf28a9d5f6
1ce80863307150d51c238c5daddc5fb858609cb9
ff109c9a1d27f5abe82d64a3f34d356db6f57cb24ff03c562258a3e7c01ad9e6
GET /images/front/logo.jpg HTTP/1.1
Host: www.best-bet.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 23:21:18 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 29 Jan 2015 21:55:23 GMT
ETag: "12c104ad-4564-50dd18b7b68c0"
Accept-Ranges: bytes
Content-Length: 17764
Keep-Alive: timeout=5, max=100
Content-Type: image/jpeg
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 81aa0e4d7917a99c40c049d587b25472
bc82c0067314f6f4eaf66521776cc770553f749b
b0eaaa94ef844ddbc9635e3c0233d959b6bf5530640b7d906ee28746100b405b
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B0EAAA94EF844DDBC9635E3C0233D959B6BF5530640B7D906EE28746100B405B"
Last-Modified: Thu, 24 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13739
Expires: Sat, 26 Nov 2022 03:10:15 GMT
Date: Fri, 25 Nov 2022 23:21:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ac95573-22e8-41b4-a5f2-d8adbaff2829.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ac95573-22e8-41b4-a5f2-d8adbaff2829.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c135ab961de12d926b94f9abae8adbe
139f48ea60880efc6d2977f4d3141809f22adfef
1578a994e7c4eef451f1c744116caa95e1aa995c4817a13832f1ac3487cea95d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ac95573-22e8-41b4-a5f2-d8adbaff2829.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2944
x-amzn-requestid: 8f1b2573-39ab-442e-8c6e-97538a28aba0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWXXEjJIAMFu1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813762-52f27ff536b0c3b84bdfba8e;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:45:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9hy8v_azPZzuVRv1VN61DoNWbfA83JPs4JcZfRyLo3j6HCtWv_gkNw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:48:48 GMT
age: 5548
etag: "139f48ea60880efc6d2977f4d3141809f22adfef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1dc47cbdaae1fc58f5d077952cdeb6c7
370e9a0520f3e6b9e0d74c1d1d91cebc5f8add62
407fd54da33a28c5fdbb3835d1b66cd8b80b2dcaf2552bb09353800813c3b84a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6321
Cache-Control: max-age=130753
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 23:21:16 GMT
Etag: "638090fd-117"
Expires: Sun, 27 Nov 2022 11:40:29 GMT
Last-Modified: Fri, 25 Nov 2022 09:55:09 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7c216e6-fb54-4285-8656-a1e15990a37a.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7c216e6-fb54-4285-8656-a1e15990a37a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 70fae9ac56bb7676177d4252757f0180
bd3027af47f20f4bb9ac36cd9e4493e28e6b041c
1378749f1b28b6c56b8e76418fc5dd59cf608a4e64c1e1067b4f19df10233afc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7c216e6-fb54-4285-8656-a1e15990a37a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8078
x-amzn-requestid: e199b062-09f2-46b8-a8ee-6d7b782f7359
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVC7GT2oAMF5XA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813545-485ea8fd3e785be748834efd;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yJdSAEHw1AFVsBFBSX5G6rqED3Kpi_P69vtTrVVE1vFDtl3XMsyJ4g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:03:54 GMT
age: 4642
etag: "bd3027af47f20f4bb9ac36cd9e4493e28e6b041c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc791f23-9e0d-4ffd-991b-9c697774e053.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc791f23-9e0d-4ffd-991b-9c697774e053.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e0174b63e0e8e8184799bedd77c7ca5f
ab196fcf5ef72cd13d1f8f370039258b963834ba
ffb99678ae74f059a66aaf5097b1c4b659519012f137b40a644ded7a3c524623
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc791f23-9e0d-4ffd-991b-9c697774e053.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14128
x-amzn-requestid: ac7d027c-55fe-479d-a5ca-baa09eabebea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLUgEEXSIAMFzmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813466-061f1c9c36d007347d0c1302;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:32:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QSNpiUlg-IP41ezykW8i6qiDO9pXaopLa5Wnc_UtWP5AR5jJNbHywQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:02:02 GMT
age: 4754
etag: "ab196fcf5ef72cd13d1f8f370039258b963834ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
winfixedbet.com/wp-content/uploads/2022/02/winfixedbet.gif
172.67.143.209200 OK 12 kB URL HTTP/2 winfixedbet.com/wp-content/uploads/2022/02/winfixedbet.gif
IP 172.67.143.209:0
File type GIF image data, version 89a, 400 x 150\012- data
Hash d64c27a565c0ac10fc96297bd6c3527c
9b5ddd85c0dc535760339d1fae772ca487d56ed2
56091a6032ddc43a4c3473a063b70d34b87d1e9b1bc70e97323a6f52304baca8
GET /wp-content/uploads/2022/02/winfixedbet.gif HTTP/1.1
Host: winfixedbet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://best-fixedmatches1x2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 23:21:16 GMT
content-type: image/gif
content-length: 11641
last-modified: Sun, 06 Feb 2022 23:35:17 GMT
etag: "62005b35-2d79"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 219637
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iGPyDYDQXbiK7tYUJZiNRkwqGj7hhNDMRd0f7ldkP74pFcc96YCJev%2FQj9PCl6rtJhAGiVZrNbcF9f6UZvAgb6YOudS6JcsMigqiJyG4lsZzLM0ct69vngr2KvJcCQYuqcA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe1ea49c7bb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b1c6878914466cfece680fa7cb73502
47fac81a2dd809df5c42ca1362f71d553572d2b1
6458883dfa2bdfd483e92e5f847a229508ef00ce1dbd11f49eec369d0bd3160a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7cJmhEGkKqLUQUMqGuYtWBeu_1nlEUAxgTMy4ABekPJYrJP95wE6Jg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:59:05 GMT
age: 4931
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 05:04:28 GMT
age: 65808
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab1c6bf9-39a7-42ca-a718-a572401add09.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab1c6bf9-39a7-42ca-a718-a572401add09.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b72976b3f013ace345c85b0bdfea5f76
3e9004d90ed72f3034eae5cddd476eb50ac63ea6
068a487b9ae3d7461ef16e04cee8802a7b76a2bce19bf66df48b2b1cdb0c772c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab1c6bf9-39a7-42ca-a718-a572401add09.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6382
x-amzn-requestid: e1e4c180-7f90-4d4b-a5f4-094e5f542a18
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLacUFC4oAMFayA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813de8-09efee9d0604d16c61e3d452;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 22:12:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: SR2His1pCOwZHi7bBtnG8QeCtZQsCMeJxs-UCpd79SK_77eM5fWeog==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:24:51 GMT
age: 3385
etag: "3e9004d90ed72f3034eae5cddd476eb50ac63ea6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash dad108fc93953e42a0fe7d6b803f8931
012b3e246a93018b30f1e0e2a1e33bf9dd54adca
15e2bcb868ee34dd9193170c5134f68e3e069b7c3f1d5d7b9891c69913acbd4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 23:21:16 GMT
Etag: "637f9c37-117"
Server: ECS (amb/6B7E)
Content-Length: 279
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 780d87eb83b60d43abb214d7286e75f4
1270a3360d756f422f5fa456dd64bb43a90d7189
f507827a37ecf6332ce1a9879f0e98bad235e427455c6450be88bee6a46ab02f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "F507827A37ECF6332CE1A9879F0E98BAD235E427455C6450BE88BEE6A46AB02F"
Last-Modified: Wed, 23 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21594
Expires: Sat, 26 Nov 2022 05:21:10 GMT
Date: Fri, 25 Nov 2022 23:21:16 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash bccc329ec04b3380bc44d26f13fcf332
ba3c05fc109f2bdf4d9101e4f6e24809dcbe6f83
de0dc12eafb3a3e7eb43101de1c540410a0899519a5a32845b8aa2721d6af236
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 23:21:16 GMT
Etag: "637f846e-118"
Server: ECS (amb/6B8F)
Content-Length: 279
solo-predictions.com/wp-content/uploads/2022/01/solo-predictions.gif
104.21.93.47200 OK 6.3 kB URL HTTP/2 solo-predictions.com/wp-content/uploads/2022/01/solo-predictions.gif
IP 104.21.93.47:0
File type GIF image data, version 89a, 400 x 150\012- data
Hash 970a8f0b8d77119989fdad8f016d3d5e
a3744b40f8a91a46b811981e96879dc804e570d9
5f839c29ffeb3f8bf863dfc0d23ce06d66824a5240345e5eecf0bfa1d3def861
GET /wp-content/uploads/2022/01/solo-predictions.gif HTTP/1.1
Host: solo-predictions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://best-fixedmatches1x2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 23:21:16 GMT
content-type: image/gif
content-length: 6256
last-modified: Sun, 16 Jan 2022 23:05:36 GMT
etag: "61e4a4c0-1870"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 105023
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EACO3z3A63AwVjCrx10F8%2FAwOXXvwKQ5qiIs0D8JzLe08SeEj1SPXEoYcRSiYB6y2FY1OLGXkpHTlS0Yb6B6rM31jCpZyQDnPBNcB1wKUusrYBEHr2YZZ7ondCLK%2FA7hHtwcx7ScGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe1ea4ee02b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
h2hfacts.com/wp-content/uploads/2021/08/logo.png
172.67.129.212200 OK 27 kB URL HTTP/2 h2hfacts.com/wp-content/uploads/2021/08/logo.png
IP 172.67.129.212:0
File type PNG image data, 300 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash ffbdc39c57ccce6d63bc85278b96236f
1dbe79e3f134c46c04bfec46b64d2ab4ba35c4c4
ec8c42dc34b58a62e84edd0376d247ea993b584fa41cf9889549e44773ded694
GET /wp-content/uploads/2021/08/logo.png HTTP/1.1
Host: h2hfacts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://best-fixedmatches1x2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 23:21:16 GMT
content-type: image/png
content-length: 27033
last-modified: Wed, 25 Aug 2021 13:45:35 GMT
etag: "6126497f-6999"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 105023
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AAv2yLBwR8UkVPiRLSMIkWfZvncftEa1Z5gEJfyKU0Tze%2B7dvVo5DKq0yZx0GCloz2gbR46SsnsWSp421QzliAZxOYgo0vjoVlvEzHmggBKLEFcYpuVuEzOK7773PmM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe1ea4e9fe0b4d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1d4957ade3ffd4446d3fcfc4ddea6952
3fba8864e71766ca06ab3feac4c304bd1643ee6c
3f9b0e4b427e3d7ce78afcd621b9325ed00149a07f7324bce7a92345f5b5b923
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=171957
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 23:21:16 GMT
Etag: "63814aa1-117"
Expires: Sun, 27 Nov 2022 23:07:13 GMT
Last-Modified: Fri, 25 Nov 2022 23:07:13 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 7b11b6f122175f3b542fbd4ea3ecdbec
db93760008eb2d163c4c7521c2777df3e7c22578
93dac0f3281c3dc14df0d6fdb34d111e7bee3fbf1c07d72cd98015b382a62e91
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 23:21:16 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 02:16:34 GMT
Expires: Wed, 30 Nov 2022 02:16:33 GMT
Etag: "db93760008eb2d163c4c7521c2777df3e7c22578"
Cache-Control: max-age=355516,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76fe1ea4fc57b4fd-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash dad108fc93953e42a0fe7d6b803f8931
012b3e246a93018b30f1e0e2a1e33bf9dd54adca
15e2bcb868ee34dd9193170c5134f68e3e069b7c3f1d5d7b9891c69913acbd4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 23:21:16 GMT
Server: ECS (amb/6BBA)
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash bccc329ec04b3380bc44d26f13fcf332
ba3c05fc109f2bdf4d9101e4f6e24809dcbe6f83
de0dc12eafb3a3e7eb43101de1c540410a0899519a5a32845b8aa2721d6af236
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=142075
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 23:21:16 GMT
Etag: "6380d5e7-117"
Expires: Sun, 27 Nov 2022 14:49:11 GMT
Last-Modified: Fri, 25 Nov 2022 14:49:11 GMT
Server: nginx
Content-Length: 279
haaland-1x2.com/wp-content/uploads/2022/09/Untitled-2.gif
162.213.253.11200 OK 18 kB URL HTTP/2 haaland-1x2.com/wp-content/uploads/2022/09/Untitled-2.gif
IP 162.213.253.11:0
File type GIF image data, version 89a, 250 x 80\012- data
Hash bd0999fb931390750d1fc6e68c041bd6
06631f4bbc7e8d38e423f4518a911eef50ae57a8
f3b6b071574e9afedf743f298f7ac31b118562298df0d5159ca7b238b8a69330
GET /wp-content/uploads/2022/09/Untitled-2.gif HTTP/1.1
Host: haaland-1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://best-fixedmatches1x2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:16 GMT
content-type: image/gif
last-modified: Tue, 27 Sep 2022 15:31:32 GMT
accept-ranges: bytes
content-length: 17709
date: Fri, 25 Nov 2022 23:21:16 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-content/uploads/2022/04/Europe-Live-Score-Fixed-Matches-1X2.gif
162.213.253.11200 OK 16 kB URL HTTP/2 best-fixedmatches1x2.com/wp-content/uploads/2022/04/Europe-Live-Score-Fixed-Matches-1X2.gif
IP 162.213.253.11:0
File type GIF image data, version 89a, 294 x 103\012- data
Hash d36480c6f554a67d705597368f366454
f3aa8a6bbdb0979d7d5be69b0e57a898cf1a03fc
66e4a282ce242276e8f4dd6aaa9fce26eb03ff9c2e2b0e44fa3b48d57139fbe5
GET /wp-content/uploads/2022/04/Europe-Live-Score-Fixed-Matches-1X2.gif HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:16 GMT
content-type: image/gif
last-modified: Tue, 26 Apr 2022 21:16:32 GMT
accept-ranges: bytes
content-length: 15825
date: Fri, 25 Nov 2022 23:21:16 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-includes/js/mediaelement/mejs-controls.svg
162.213.253.11200 OK 1.3 kB URL HTTP/2 best-fixedmatches1x2.com/wp-includes/js/mediaelement/mejs-controls.svg
IP 162.213.253.11:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (4597)
Hash 523e89523bf2e33352e22272b85ec630
fe6fa07a6ffb32f9d9baaa7b857eea6fbdbf754d
acf1ec2ee28483e5d75b0d24180d30b20b8e85f2dcd9151ef7db5b72fa276056
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mejs-controls.svg HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:16 GMT
content-type: image/svg+xml
last-modified: Tue, 01 Aug 2017 08:43:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1316
date: Fri, 25 Nov 2022 23:21:16 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b39d09bbca8e6027fb3862c8fd58d8cc
e71733bd444dc689b70f0eaf9f0af8d97bca28ea
8ffeb1845732ab60f2d14627d633c85950edcdcfd071ef6d50511b9c5c89b859
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8FFEB1845732AB60F2D14627D633C85950EDCDCFD071EF6D50511B9C5C89B859"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5237
Expires: Sat, 26 Nov 2022 00:48:34 GMT
Date: Fri, 25 Nov 2022 23:21:17 GMT
Connection: keep-alive
s10.histats.com/js15_as.js
46.105.201.240200 OK 4.4 kB URL HTTP/2 s10.histats.com/js15_as.js
IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (11440), with no line terminators
Hash ed192092c129db6123a3397855f42619
067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e
998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://best-fixedmatches1x2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 25 Nov 2022 23:18:21 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 589137444
content-type: application/javascript; charset=UTF-8
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-content/uploads/2020/05/cropped-best-fixedmatches1x2.png
162.213.253.11200 OK 501 kB URL HTTP/2 best-fixedmatches1x2.com/wp-content/uploads/2020/05/cropped-best-fixedmatches1x2.png
IP 162.213.253.11:0
File type PNG image data, 1206 x 436, 8-bit/color RGBA, non-interlaced\012- data
Size 501 kB (500579 bytes)
Hash a9cd3c66635a9e3c6af049ed2b2b56db
a40b9a1e1896d682ef4c2c349ccfc95898be90b9
a4df9bf22142c5677d9c0febb15cfe57ec7136439cbd8eb458b8a50bfb92da3f
GET /wp-content/uploads/2020/05/cropped-best-fixedmatches1x2.png HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:15 GMT
content-type: image/png
last-modified: Fri, 01 May 2020 13:01:59 GMT
accept-ranges: bytes
content-length: 500579
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
s4.histats.com/stats/4400186.php?4400186&@f16&@g1&@h1&@i1&@j1669418476421&@k0&@l1&@mBest%20Fixed%20Matches%2C%20Buy%20100%25%20Rigged%20Fixed%20Games%2C%20Professional%20Bet%20Predictions.%20%E2%80%93%20Buy%20100%25%20Fixed%20Games%20and%20Professional%20Sure%20Rigged%20Fixed%20Matches%2C%20Bet%20Predictions%2C%20Bet%20365&@n0&@o1000&@q0&@r0&@s234&@ten-US&@u1280&@b1:15641696&@b3:1669418476&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fbest-fixedmatches1x2.com%2F&@w
149.56.240.127200 OK 101 B URL HTTP/1.1 s4.histats.com/stats/4400186.php?4400186&@f16&@g1&@h1&@i1&@j1669418476421&@k0&@l1&@mBest%20Fixed%20Matches%2C%20Buy%20100%25%20Rigged%20Fixed%20Games%2C%20Professional%20Bet%20Predictions.%20%E2%80%93%20Buy%20100%25%20Fixed%20Games%20and%20Professional%20Sure%20Rigged%20Fixed%20Matches%2C%20Bet%20Predictions%2C%20Bet%20365&@n0&@o1000&@q0&@r0&@s234&@ten-US&@u1280&@b1:15641696&@b3:1669418476&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fbest-fixedmatches1x2.com%2F&@w
IP 149.56.240.127:0
File type ASCII text, with no line terminators
Hash 75635299ab505992abec969ed85125ef
2b35814336f2e794f9bdbc2695957119992bdeeb
1745e83c371477ebec7a102903d7dc985246f506d710c05c19b6974836a0bb42
GET /stats/4400186.php?4400186&@f16&@g1&@h1&@i1&@j1669418476421&@k0&@l1&@mBest%20Fixed%20Matches%2C%20Buy%20100%25%20Rigged%20Fixed%20Games%2C%20Professional%20Bet%20Predictions.%20%E2%80%93%20Buy%20100%25%20Fixed%20Games%20and%20Professional%20Sure%20Rigged%20Fixed%20Matches%2C%20Bet%20Predictions%2C%20Bet%20365&@n0&@o1000&@q0&@r0&@s234&@ten-US&@u1280&@b1:15641696&@b3:1669418476&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fbest-fixedmatches1x2.com%2F&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://best-fixedmatches1x2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 23:21:17 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 101
Connection: close
best-fixedmatches1x2.com/wp-content/uploads/2020/05/cropped-best-fixed-matches-soccer-predictions-1X2-32x32.png
162.213.253.11200 OK 2.1 kB URL HTTP/2 best-fixedmatches1x2.com/wp-content/uploads/2020/05/cropped-best-fixed-matches-soccer-predictions-1X2-32x32.png
IP 162.213.253.11:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash d8a9819155269619ee6fc81dedd36fb3
e48de5bc529369c3b0f6bb1c044f0f3e14d3f2b0
c73c107fff7c26dace51a2737dd6e57b3717d8cd8192290c78e3a0a178e18cd5
GET /wp-content/uploads/2020/05/cropped-best-fixed-matches-soccer-predictions-1X2-32x32.png HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:17 GMT
content-type: image/png
last-modified: Fri, 01 May 2020 20:25:31 GMT
accept-ranges: bytes
content-length: 2117
date: Fri, 25 Nov 2022 23:21:17 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-content/uploads/2020/05/cropped-best-fixed-matches-soccer-predictions-1X2-192x192.png
162.213.253.11200 OK 33 kB URL HTTP/2 best-fixedmatches1x2.com/wp-content/uploads/2020/05/cropped-best-fixed-matches-soccer-predictions-1X2-192x192.png
IP 162.213.253.11:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash d89132095f71f43a8edb3959cb55d0d0
665a4a6ad95d975ce3d81975744735b5a78595fd
95253d381d8e5c274e96e70719ad5af4ced1d04b2eca5d8dd706d2fe15d59d43
GET /wp-content/uploads/2020/05/cropped-best-fixed-matches-soccer-predictions-1X2-192x192.png HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://best-fixedmatches1x2.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 23:21:17 GMT
content-type: image/png
last-modified: Fri, 01 May 2020 20:25:31 GMT
accept-ranges: bytes
content-length: 32856
date: Fri, 25 Nov 2022 23:21:17 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/
162.213.253.11200 OK 0 B URL HTTP/2 best-fixedmatches1x2.com/
IP 162.213.253.11:0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://best-fixedmatches1x2.com/wp-json/>; rel="https://api.w.org/"
etag: "13873-1669412067;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Fri, 25 Nov 2022 23:21:14 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
s10.histats.com/counters/cc_234.js
46.105.201.240200 OK 0 B URL HTTP/2 s10.histats.com/counters/cc_234.js
IP 46.105.201.240:0
GET /counters/cc_234.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://best-fixedmatches1x2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 23:21:18 GMT
content-type: text/javascript
etag: W/"-1240973242"
last-modified: Thu, 16 Apr 2020 10:45:30 GMT
x-request-id: 627376815
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
accept-ranges: bytes
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-content/uploads/2022/02/Best-Europe-Soccer-Fixed-Matches-1X2.mp4?_=2
162.213.253.11206 Partial Content 0 B URL HTTP/2 best-fixedmatches1x2.com/wp-content/uploads/2022/02/Best-Europe-Soccer-Fixed-Matches-1X2.mp4?_=2
IP 162.213.253.11:0
GET /wp-content/uploads/2022/02/Best-Europe-Soccer-Fixed-Matches-1X2.mp4?_=2 HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://best-fixedmatches1x2.com/
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
content-type: video/mp4
last-modified: Fri, 18 Feb 2022 10:51:25 GMT
content-range: bytes 0-179707/179708
content-length: 179708
date: Fri, 25 Nov 2022 23:21:15 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
best-fixedmatches1x2.com/wp-content/uploads/2022/02/Best-Assia-Fixed-Soccer-Matches-1X2.mp4?_=1
162.213.253.11206 Partial Content 0 B URL HTTP/2 best-fixedmatches1x2.com/wp-content/uploads/2022/02/Best-Assia-Fixed-Soccer-Matches-1X2.mp4?_=1
IP 162.213.253.11:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/02/Best-Assia-Fixed-Soccer-Matches-1X2.mp4?_=1 HTTP/1.1
Host: best-fixedmatches1x2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://best-fixedmatches1x2.com/
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
content-type: video/mp4
last-modified: Fri, 18 Feb 2022 12:28:38 GMT
content-range: bytes 0-541779/541780
content-length: 541780
date: Fri, 25 Nov 2022 23:21:16 GMT
server: LiteSpeed
vary: User-Agent
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2