andreuboet.com/
301 Moved Permanently 230 B IP
ASN #6739 Vodafone Ono, S.A.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 73b122e0939193c638efb6aab0c04205
34b419c2c863e9efe394ea5172946de2f022ba7b
1b30e252b047f458340fbdc9de217e372a2342285ac3f2af2c156dc28f8a18e2
GET / HTTP/1.1
Host: andreuboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 22 Jan 2023 06:46:04 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 230
Connection: keep-alive
Location: http://centriboet.com/
X-Powered-By: PleskLin
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 20d267853e48ef7d476459ed67da5d97
06d1bd08efd69c0e93486d3c423fa2640f372d29
24323cd45ca2ed01c63f908233d9b2ad5bb6f63394884c45bf6abb0221d0edd6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24323CD45CA2ED01C63F908233D9B2AD5BB6F63394884C45BF6ABB0221D0EDD6"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16145
Expires: Sun, 22 Jan 2023 11:15:09 GMT
Date: Sun, 22 Jan 2023 06:46:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4714c95a0c854e38f9be444f9343bf14
07ce5eb635448f2b3bafbe51e4dfeef47cdf4f7b
4d47e08c9afb704096e93a51f6e95c0dc7c7bc31e67ded39998ff37ed56e0965
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D47E08C9AFB704096E93A51F6E95C0DC7C7BC31E67DED39998FF37ED56E0965"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11921
Expires: Sun, 22 Jan 2023 10:04:45 GMT
Date: Sun, 22 Jan 2023 06:46:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 38c102db4bcfb9c4fb19174986950fd3
51c2cc8a3aca4da5c9ab3438467c29203fc0b0c3
dad6b64bc9f4dd827471ccc2e5273fceee574685376083aaa80f9d2f918037f2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DAD6B64BC9F4DD827471CCC2E5273FCEEE574685376083AAA80F9D2F918037F2"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4274
Expires: Sun, 22 Jan 2023 07:57:19 GMT
Date: Sun, 22 Jan 2023 06:46:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 22 Jan 2023 06:42:29 GMT
content-type: application/json
age: 216
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: U2Zirz8mQokBWwWGkgI1jYMf1fIVVk8j8ySU1bhBXXChDkfAUodRZVeb/2s+TMeYEMP/f/R0bSI=
x-amz-request-id: 3CT6JH2ENP06W52K
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 22 Jan 2023 06:18:18 GMT
age: 1667
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:05 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
centriboet.com/
301 Moved Permanently 162 B IP
ASN #6739 Vodafone Ono, S.A.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 22 Jan 2023 06:46:05 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://centriboet.com/
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ec0d0674dd21d131bddf25ddc44d3a75
aa4040fa902b90e216cb73f25e3c9a7a724c8ceb
070a0d7f846f64867a30fa1edf80017c7694cf80a20bae2f2c2c73c0f15db869
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "070A0D7F846F64867A30FA1EDF80017C7694CF80A20BAE2F2C2C73C0F15DB869"
Last-Modified: Sun, 22 Jan 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 22 Jan 2023 12:46:05 GMT
Date: Sun, 22 Jan 2023 06:46:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 22 Jan 2023 06:17:30 GMT
age: 1715
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash fc96297d0b59147e8f6052b16f1ca13f
23aeddfa143bb9be19b2ed06f2024a3a8aa120ce
034327c6ada560c662f451f3c95cd8531482d4ab51629e95875fab54c8f3e49a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 673
Cache-Control: max-age=95516
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:05 GMT
Etag: "63cbab28-1d7"
Expires: Mon, 23 Jan 2023 09:18:01 GMT
Last-Modified: Sat, 21 Jan 2023 09:06:48 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wrBY5h6F92OjtQH24YOnhA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nvvG9DVpCRWLJ9yKJYLXIncIjm8=
ocsp.digicert.com/
200 OK 280 B IP
Hash a25567cb3f63e13ec07e671356f7ad5b
f7bc53deb15fdeca18806318bf7d3267b1766c7f
09cbab3f29c812e2bc1c54b9a6600899fdc64ce0479bcb314a92553069a95f9d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1542
Cache-Control: max-age=160120
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:06 GMT
Etag: "63cca420-118"
Expires: Tue, 24 Jan 2023 03:14:46 GMT
Last-Modified: Sun, 22 Jan 2023 02:49:04 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 032ea16a79a95a9f16a60674c5f3ad5c
daea213df10fabce0cd857bcd4f3e64dd1293fad
4637cdfefc8df89f6f6cc042daa30247921cbd001bd16484b18c384f1e7b9781
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 032ea16a79a95a9f16a60674c5f3ad5c
daea213df10fabce0cd857bcd4f3e64dd1293fad
4637cdfefc8df89f6f6cc042daa30247921cbd001bd16484b18c384f1e7b9781
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 032ea16a79a95a9f16a60674c5f3ad5c
daea213df10fabce0cd857bcd4f3e64dd1293fad
4637cdfefc8df89f6f6cc042daa30247921cbd001bd16484b18c384f1e7b9781
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 032ea16a79a95a9f16a60674c5f3ad5c
daea213df10fabce0cd857bcd4f3e64dd1293fad
4637cdfefc8df89f6f6cc042daa30247921cbd001bd16484b18c384f1e7b9781
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
centriboet.com/wp-content/uploads/2017/02/Logo-Centriboet-blanco.png
200 OK 5.1 kB URL HTTP/2 centriboet.com/wp-content/uploads/2017/02/Logo-Centriboet-blanco.png
IP
ASN #6739 Vodafone Ono, S.A.
File type PNG image data, 600 x 72, 8-bit colormap, non-interlaced\012- data
Hash 067e5b2dd59688b6c529f89471aeaaf2
61ebbd14cb4f6f38594d6f6424b4fac92ee38651
afe13a1ff685512c6cadd758bdf04eff08baf80ec041065ce7ca6e168b5be2a7
GET /wp-content/uploads/2017/02/Logo-Centriboet-blanco.png HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: image/png
content-length: 5119
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
etag: "624d7b8c-13ff"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jqueryui/1.11.2/themes/smoothness/jquery-ui.css?ver=ebc0e58e277ef15de4ef982df04d5a83
200 OK 8.1 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jqueryui/1.11.2/themes/smoothness/jquery-ui.css?ver=ebc0e58e277ef15de4ef982df04d5a83
IP
File type ASCII text, with very long lines (2363)
Hash 1930141d1ccd3409ebbe8c2db4c43fcf
8d6b59aa365bf686ab7408353fd232d7ca7feab5
f2094ee57e84b8403b58f45dbe68411e3b02fe3f0cb465fdec48b206ab66d48f
GET /ajax/libs/jqueryui/1.11.2/themes/smoothness/jquery-ui.css?ver=ebc0e58e277ef15de4ef982df04d5a83 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css; charset=UTF-8
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 8060
date: Sun, 22 Jan 2023 06:46:06 GMT
expires: Mon, 22 Jan 2024 06:46:06 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/js/jquery-1.7.2.min.js?ver=1.7.2
200 OK 32 kB URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/js/jquery-1.7.2.min.js?ver=1.7.2
IP
ASN #6739 Vodafone Ono, S.A.
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash 472d1312d69861f7170e5d0e1d3fee0b
6618e86add1de81e5f22ed386be76bc0af46c2c0
ec9d95d2f559ad6608756761fb1316154626d7372a1b4c1f3f19044b1d6eb9dc
GET /wp-content/themes/CherryFramework/js/jquery-1.7.2.min.js?ver=1.7.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 07:47:44 GMT
vary: Accept-Encoding
etag: W/"62a2f720-17278"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/uploads/2017/02/banner-1.jpg
200 OK 18 kB URL HTTP/2 centriboet.com/wp-content/uploads/2017/02/banner-1.jpg
IP
ASN #6739 Vodafone Ono, S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 270x202, components 3\012- data
Hash 9b2c96c62d91b4701b37cffbc45a2ecb
91e43e247afdbe1533326cf2866e5f81c40c3006
a12d8b60247d824395d67d48020cedb3a945719d3e5f9d91d23f31959b3fe3dc
GET /wp-content/uploads/2017/02/banner-1.jpg HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: image/jpeg
content-length: 17832
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
etag: "624d7b8c-45a8"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
centriboet.com/wp-content/uploads/2017/07/Reparacio.jpg
200 OK 15 kB URL HTTP/2 centriboet.com/wp-content/uploads/2017/07/Reparacio.jpg
IP
ASN #6739 Vodafone Ono, S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 270x203, components 3\012- data
Hash 1745d75a2cfcb3baa985a6ccc3755f64
28cfe8f0ba589c5a30f27f3c30fc84f2116e3d37
ad783cf89986a18041de07567b31943a809a59086ccabe3a3d3a438dff2a546f
GET /wp-content/uploads/2017/07/Reparacio.jpg HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: image/jpeg
content-length: 15276
last-modified: Wed, 06 Apr 2022 11:37:49 GMT
etag: "624d7b8d-3bac"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
centriboet.com/wp-content/uploads/2017/02/banner-4.jpg
200 OK 16 kB URL HTTP/2 centriboet.com/wp-content/uploads/2017/02/banner-4.jpg
IP
ASN #6739 Vodafone Ono, S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 270x203, components 3\012- data
Hash 44a2cda6be3c79b2cdb7c4599d6f99f9
3309443908a66458e1dd793f118994b856bc09d4
aa24b9120fe2e9bbe080b3e879f96ca042ab3fa194d155afca692f5033fd7c5f
GET /wp-content/uploads/2017/02/banner-4.jpg HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: image/jpeg
content-length: 16394
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
etag: "624d7b8c-400a"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
centriboet.com/wp-content/uploads/2017/02/banner-3.jpg
200 OK 16 kB URL HTTP/2 centriboet.com/wp-content/uploads/2017/02/banner-3.jpg
IP
ASN #6739 Vodafone Ono, S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 270x202, components 3\012- data
Hash a538c3e5ca4a0ab5860c684bc6a40256
82d83d7e9dfe359116a29431b28f11913847cba4
e6d6fe0f30809a838a9e1fab3c933faaac2e18534a40bc980052ffd148b56a0a
GET /wp-content/uploads/2017/02/banner-3.jpg HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: image/jpeg
content-length: 15910
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
etag: "624d7b8c-3e26"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
centriboet.com/wp-content/plugins/qtranslate-x/flags/es.png
301 Moved Permanently 162 B URL HTTP/1.1 centriboet.com/wp-content/plugins/qtranslate-x/flags/es.png
IP
ASN #6739 Vodafone Ono, S.A.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/plugins/qtranslate-x/flags/es.png HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 22 Jan 2023 06:46:06 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://centriboet.com/wp-content/plugins/qtranslate-x/flags/es.png
centriboet.com/wp-content/plugins/qtranslate-x/flags/fr.png
301 Moved Permanently 162 B URL HTTP/1.1 centriboet.com/wp-content/plugins/qtranslate-x/flags/fr.png
IP
ASN #6739 Vodafone Ono, S.A.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/plugins/qtranslate-x/flags/fr.png HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 22 Jan 2023 06:46:06 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://centriboet.com/wp-content/plugins/qtranslate-x/flags/fr.png
centriboet.com/wp-content/plugins/qtranslate-x/flags/gb.png
301 Moved Permanently 162 B URL HTTP/1.1 centriboet.com/wp-content/plugins/qtranslate-x/flags/gb.png
IP
ASN #6739 Vodafone Ono, S.A.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/plugins/qtranslate-x/flags/gb.png HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 22 Jan 2023 06:46:06 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://centriboet.com/wp-content/plugins/qtranslate-x/flags/gb.png
centriboet.com/wp-content/plugins/qtranslate-x/flags/catala.png
301 Moved Permanently 162 B URL HTTP/1.1 centriboet.com/wp-content/plugins/qtranslate-x/flags/catala.png
IP
ASN #6739 Vodafone Ono, S.A.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wp-content/plugins/qtranslate-x/flags/catala.png HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 22 Jan 2023 06:46:06 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://centriboet.com/wp-content/plugins/qtranslate-x/flags/catala.png
centriboet.com/wp-content/themes/CherryFramework/js/jplayer.playlist.min.js?ver=2.3.0
200 OK 2.7 kB URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/js/jplayer.playlist.min.js?ver=2.3.0
IP
ASN #6739 Vodafone Ono, S.A.
File type HTML document, ASCII text, with very long lines (555)
Hash 028c353d09e540d1d7a862cca556e9e7
33607b07e448d79081faa8b9e197dd36761f4061
168d3f35be04a7c2fa922bf0ada10b65e4c2c380944df9d49e8a840c208155f5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/CherryFramework/js/jplayer.playlist.min.js?ver=2.3.0 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 07:47:44 GMT
vary: Accept-Encoding
etag: W/"62a2f720-228c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/js/device.min.js?ver=1.0.0
200 OK 1.2 kB URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/js/device.min.js?ver=1.0.0
IP
ASN #6739 Vodafone Ono, S.A.
File type ASCII text, with very long lines (2754)
Hash 6c4bab7b7591770db47af77e07c5c4a1
b23cdbea530f8bc8e5ca585c6da676952561572b
86834ff12f263d069c4b7a698020c1852bd22dedda3087cd776afd2e532646ea
GET /wp-content/themes/CherryFramework/js/device.min.js?ver=1.0.0 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 07:47:44 GMT
vary: Accept-Encoding
etag: W/"62a2f720-ada"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/plugins/qtranslate-x/flags/es.png
200 OK 202 B URL HTTP/2 centriboet.com/wp-content/plugins/qtranslate-x/flags/es.png
IP
ASN #6739 Vodafone Ono, S.A.
File type PNG image data, 18 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash 3658c3d48f41cd6fd98e61a3e34e76ca
d9fdb16a11ac1a54b2ae60ed34a67fa723b2529b
e4f0e60f0eac484185763cb71b42c3157427ed4b26aff7bc67018e5fc85ab1f6
GET /wp-content/plugins/qtranslate-x/flags/es.png HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: image/png
content-length: 202
x-accel-version: 0.01
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
etag: "ca-5dbfaca6cfb00"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
centriboet.com/wp-content/plugins/qtranslate-x/flags/fr.png
200 OK 149 B URL HTTP/2 centriboet.com/wp-content/plugins/qtranslate-x/flags/fr.png
IP
ASN #6739 Vodafone Ono, S.A.
File type PNG image data, 18 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash f2558d8e2c16ce0211285a8595854cd5
c117d52e19ccb715bd458bbf11f9077cf5bf77e2
7600b0f12c27ee38d18e5e84961e8c8677983ae1dab78d7f941798b0ad7b62e5
GET /wp-content/plugins/qtranslate-x/flags/fr.png HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: image/png
content-length: 149
x-accel-version: 0.01
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
etag: "95-5dbfaca6cfb00"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/theme53993/parallax-slider/js/jquery.simplr.smoothscroll.min.js?ver=1.0
200 OK 818 B URL HTTP/2 centriboet.com/wp-content/themes/theme53993/parallax-slider/js/jquery.simplr.smoothscroll.min.js?ver=1.0
IP
ASN #6739 Vodafone Ono, S.A.
File type ASCII text, with very long lines (639)
Hash 110571afd281c5a423e7ead7ff7986b9
971262f3577b499c099d8b3ee834147db4b6e9b0
9229afd562265a7a86b3e1a3296913498309366f6ab7e393e10c55c2147bb173
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/theme53993/parallax-slider/js/jquery.simplr.smoothscroll.min.js?ver=1.0 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Fri, 10 Jun 2022 08:52:10 GMT
etag: W/"300-5e1140dca0ee2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?v=3&key=AIzaSyAwG11f8oieDH612KVZe0DAChrGgizYRW4
200 OK 53 kB URL HTTP/2 maps.googleapis.com/maps/api/js?v=3&key=AIzaSyAwG11f8oieDH612KVZe0DAChrGgizYRW4
IP
File type ASCII text, with very long lines (2459)
Hash 71e71110c5303312e39b76359034d827
c9478dc0941f0aa35c4337f171f21c67ee53a723
31173cb8883b1ada396cfe17c87ae4f3da80e49091a26c2c622d6973253505f2
GET /maps/api/js?v=3&key=AIzaSyAwG11f8oieDH612KVZe0DAChrGgizYRW4 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sun, 22 Jan 2023 06:46:06 GMT
expires: Sun, 22 Jan 2023 07:16:06 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53387
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=168
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/js/jquery.zaccordion.min.js?ver=2.1.0
200 OK 2.6 kB URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/js/jquery.zaccordion.min.js?ver=2.1.0
IP
ASN #6739 Vodafone Ono, S.A.
File type ASCII text, with very long lines (10762), with no line terminators
Hash cc1628d9f1893b186051f6f876a32cc7
1ef8726703899cd5ec10e76fd47f890a000d7ac2
c99b4a425dba233f908f61af96f6d3406be5369525ef2e1624a60d09e8319353
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/CherryFramework/js/jquery.zaccordion.min.js?ver=2.1.0 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 07:47:44 GMT
vary: Accept-Encoding
etag: W/"62a2f720-2a0a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/js/jquery.isotope.js?ver=1.5.25
200 OK 4.7 kB URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/js/jquery.isotope.js?ver=1.5.25
IP
ASN #6739 Vodafone Ono, S.A.
File type HTML document, ASCII text, with very long lines (538)
Hash 5a7c59acb617164ce7a03b07421d669d
3dbce4e403363500fcbe96ecd706bb5d12f5c3f4
fe572b2eff7edaddddd14093cb7054a6b293fa561c1000267452d5ba1a3b355f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/CherryFramework/js/jquery.isotope.js?ver=1.5.25 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 07:47:44 GMT
vary: Accept-Encoding
etag: W/"62a2f720-3cb9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/theme53993/images/bgherounit.png
200 OK 95 B URL HTTP/2 centriboet.com/wp-content/themes/theme53993/images/bgherounit.png
IP
ASN #6739 Vodafone Ono, S.A.
File type PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash 32e03c91837cb9863b205b8a6cc48276
ccd97cca3fcfde046fe7f961175aaa8a487b11b1
04cf08e969445d5aeaf3c1fdd7ca4f054b913e58e5d04259ac7b87909afa3a2e
GET /wp-content/themes/theme53993/images/bgherounit.png HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/wp-content/themes/theme53993/main-style.css
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: image/png
content-length: 95
x-accel-version: 0.01
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
etag: "5f-5dbfaca6cfb00"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/js/jquery.magnific-popup.min.js?ver=0.9.3
200 OK 27 kB URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/js/jquery.magnific-popup.min.js?ver=0.9.3
IP
ASN #6739 Vodafone Ono, S.A.
File type ASCII text, with very long lines (20540)
Hash b589e9b32c105da56fbb5f476bc2ef41
8be273bdd0d9644d54dc90239298a137eb00b7f9
fb3c1c43568fba74361fb23e17748e2a86c5a9d3d1a26daa8365d5f56cf9bdef
GET /wp-content/themes/CherryFramework/js/jquery.magnific-popup.min.js?ver=0.9.3 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 07:47:44 GMT
vary: Accept-Encoding
etag: W/"62a2f720-50bd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/theme53993/images/patternwhite1.png
200 OK 564 B URL HTTP/2 centriboet.com/wp-content/themes/theme53993/images/patternwhite1.png
IP
ASN #6739 Vodafone Ono, S.A.
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 8ea9be591f3319fd4fc5eaec5c042909
379012baa6126fe676d88515c5eeba536880a052
fd60e0e7c0fd502448dda4fcfef6d66ef24678f6bb2667027abfa6536f7b5702
GET /wp-content/themes/theme53993/images/patternwhite1.png HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/wp-content/themes/theme53993/main-style.css
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: image/png
content-length: 564
x-accel-version: 0.01
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
etag: "234-5dbfaca6cfb00"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/theme53993/images/dashedbanners.png
200 OK 101 B URL HTTP/2 centriboet.com/wp-content/themes/theme53993/images/dashedbanners.png
IP
ASN #6739 Vodafone Ono, S.A.
File type PNG image data, 22 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 761168881e7aabe1d924ad5d604678e4
2181b9a4f6a853edee52fee5cfcfd79c5166545e
94584624d249e6b2dc92bf1219f69c9b372d0ee94ee3ed16ed99f5c38ec2123b
GET /wp-content/themes/theme53993/images/dashedbanners.png HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/wp-content/themes/theme53993/main-style.css
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: image/png
content-length: 101
x-accel-version: 0.01
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
etag: "65-5dbfaca6cfb00"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 25d59e4444b16818a49fec7128c90dcd
ea263f33790881a01e317fa03d935f7109523e41
22e26ea1917d1a0fed0b2af636f1baecb59768b0f85c9ab6b1c37d45e84dfa2d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
centriboet.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664
200 OK 1.3 kB URL HTTP/2 centriboet.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664
IP
ASN #6739 Vodafone Ono, S.A.
File type Unicode text, UTF-8 text, with very long lines (2472)
Hash 39c3ee0f9847a0cc3c022e8723608691
d94d58658f3f27c3f33e756c9f0eb838f34da8bc
41138c9d86a86cc0c6590334f7a86a4911ab90530f4ad33c4db040a7edf8c66c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 07:19:29 GMT
vary: Accept-Encoding
etag: W/"628dd881-9cc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 25d59e4444b16818a49fec7128c90dcd
ea263f33790881a01e317fa03d935f7109523e41
22e26ea1917d1a0fed0b2af636f1baecb59768b0f85c9ab6b1c37d45e84dfa2d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
centriboet.com/wp-includes/js/jquery/ui/controlgroup.min.js?ver=1.13.2
200 OK 1.9 kB URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/controlgroup.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
File type ASCII text, with very long lines (4205)
Hash 0ed58e91724666eb4c7fda690137764a
62aaa32630feff2ceba8eb4b091a07623a553d99
2eb623747232b455dc33931b7f7ccfd1c00c03bfd5c751d37690679ae081017b
GET /wp-includes/js/jquery/ui/controlgroup.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-1126"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/js/camera.min.js?ver=1.3.4
200 OK 53 kB URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/js/camera.min.js?ver=1.3.4
IP
ASN #6739 Vodafone Ono, S.A.
File type ASCII text, with very long lines (39107)
Hash 3b7a42db3db10e44400d4a79f2a7425e
3234df104f9bdd5716935a094c840df26d76079e
e43ff3ddd25cb1c028c034a47026115a1fe419b8b745037da3cdc59c25c9c6ec
GET /wp-content/themes/CherryFramework/js/camera.min.js?ver=1.3.4 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 07:47:44 GMT
vary: Accept-Encoding
etag: W/"62a2f720-99ea"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMRw.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMRw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 14964, version 1.0\012- data
Hash 44b4e1e6aecc684d11fe7501dd36df19
59e2710168a0d6889a24eaaa5134114f7e258461
6b0b111ca14c2147a0f0cb51f1317290eb5ec19b4a9bea595a5ad7ffb7d9661a
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMRw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://centriboet.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14964
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 10:14:53 GMT
expires: Thu, 18 Jan 2024 10:14:53 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:08:11 GMT
content-type: font/woff2
age: 333074
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/theme53993/parallax-slider/js/parallaxSlider.js?ver=1.0
200 OK 20 kB URL HTTP/2 centriboet.com/wp-content/themes/theme53993/parallax-slider/js/parallaxSlider.js?ver=1.0
IP
ASN #6739 Vodafone Ono, S.A.
File type ASCII text, with very long lines (392)
Hash e885add597c53640ca88e85a63b9f06f
6654e43d1a77b220911a96b93a3de5ae8e6d8f66
856d7c91b188f828d78c35b0cecd158d100973f731223e4e01a84934441f8178
GET /wp-content/themes/theme53993/parallax-slider/js/parallaxSlider.js?ver=1.0 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 08:52:41 GMT
vary: Accept-Encoding
etag: W/"62a30659-59b7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,300
200 OK 44 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,300
IP
Hash 9640a9e2904c4b14e8fbf7eef3e0354b
8468a107c43b484e455b6685a3b0b11a3cdacc30
2a8f7b3f5b2576a5f4a15f49032e47b558ac6f74c5e67ee89c41f7deb2689c66
GET /css?family=Open+Sans:400,300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 22 Jan 2023 06:46:06 GMT
date: Sun, 22 Jan 2023 06:46:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QN.woff2
200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QN.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 25672, version 1.0\012- data
Hash fe3e5be2baa0126122ba9367ebab73c8
40bec99106dfab5f3721ed725483eb618a9016cd
8b166007d6f54c33b3ea10ea23572bc3166f55f365840d3cbd6ef7b5dcf6674e
GET /s/quicksand/v30/6xKtdSZaM9iE8KbpRA_hK1QN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://centriboet.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25672
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 21 Jan 2023 21:20:14 GMT
expires: Sun, 21 Jan 2024 21:20:14 GMT
cache-control: public, max-age=31536000
age: 33953
last-modified: Mon, 18 Jul 2022 19:12:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 25d59e4444b16818a49fec7128c90dcd
ea263f33790881a01e317fa03d935f7109523e41
22e26ea1917d1a0fed0b2af636f1baecb59768b0f85c9ab6b1c37d45e84dfa2d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
centriboet.com/wp-content/themes/theme53993/parallax-slider/img/spinner.GIF
200 OK 26 kB URL HTTP/2 centriboet.com/wp-content/themes/theme53993/parallax-slider/img/spinner.GIF
IP
ASN #6739 Vodafone Ono, S.A.
File type GIF image data, version 89a, 36 x 36\012- data
Hash 6b6981691ac18df8f99c14dc56df084a
7c52c2644f97c52bebc8f4b0be2c90c9a939c173
e73cdd83f958a7c78c7c4024afa57a5dcf2ef66a4e4c9d4720ccf7bbe3012792
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/theme53993/parallax-slider/img/spinner.GIF HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/wp-content/themes/theme53993/main-style.css
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:07 GMT
content-type: image/gif
content-length: 26125
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
etag: "624d7b8c-660d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
200 OK 77 kB URL HTTP/2 centriboet.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP
ASN #6739 Vodafone Ono, S.A.
File type ASCII text, with very long lines (4875)
Hash 4686414cf645bfdc957311184eaf8e37
3419b217c384b338881cb292e3336dd54922d026
7b56c838c3a65f380e5eb34c8741b336f61da9ac26cbc9c1a1cf47dc4acf9508
GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 07:19:29 GMT
vary: Accept-Encoding
etag: W/"628dd881-132e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/en/?wordfence_lh=1&hid=657BDC6598DC9403C2A5553BA43F34CF&r=0.29404960298037763
200 OK 0 B URL HTTP/2 centriboet.com/en/?wordfence_lh=1&hid=657BDC6598DC9403C2A5553BA43F34CF&r=0.29404960298037763
IP
ASN #6739 Vodafone Ono, S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en/?wordfence_lh=1&hid=657BDC6598DC9403C2A5553BA43F34CF&r=0.29404960298037763 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:07 GMT
content-type: text/javascript;charset=UTF-8
content-length: 0
link: <https://centriboet.com/en/wp-json/>; rel="https://api.w.org/", <https://centriboet.com/en/wp-json/wp/v2/pages/203>; rel="alternate"; type="application/json", <https://centriboet.com/en/>; rel=shortlink
x-robots-tag: noindex
set-cookie: qtrans_front_language=en; expires=Mon, 22-Jan-2024 06:46:07 GMT; Max-Age=31536000; path=/
x-powered-by: PHP/7.4.33, PleskLin
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6841
Expires: Sun, 22 Jan 2023 08:40:08 GMT
Date: Sun, 22 Jan 2023 06:46:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6841
Expires: Sun, 22 Jan 2023 08:40:08 GMT
Date: Sun, 22 Jan 2023 06:46:07 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6841
Expires: Sun, 22 Jan 2023 08:40:08 GMT
Date: Sun, 22 Jan 2023 06:46:07 GMT
Connection: keep-alive
centriboet.com/wp-content/themes/theme53993/parallax-slider/js/jquery.mousewheel.min.js?ver=3.0.6
200 OK 8.7 kB URL HTTP/2 centriboet.com/wp-content/themes/theme53993/parallax-slider/js/jquery.mousewheel.min.js?ver=3.0.6
IP
ASN #6739 Vodafone Ono, S.A.
File type ASCII text, with very long lines (1020)
Hash e4f11a154c928cf356d7c517ee2bfd75
ac628372d9dba29a34f7eb46b40c4fc2dccefbe7
254f33a677bf354a41e92856eb7d2639b2693b6c00fd51d37506b06c406d12ca
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/theme53993/parallax-slider/js/jquery.mousewheel.min.js?ver=3.0.6 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 08:51:40 GMT
vary: Accept-Encoding
etag: W/"62a3061c-570"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71b4fb2b-957e-4b2e-a736-8b37c06f7c95.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71b4fb2b-957e-4b2e-a736-8b37c06f7c95.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03a13d74184595ec581932d00fc11945
656445fb81ad942ccb17044072dd7c1b4654b2c8
bed0c7c387b9e8ff3f1033f65544ce8527fa805d691ef805df01ca0dac938273
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71b4fb2b-957e-4b2e-a736-8b37c06f7c95.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 14414
x-amzn-requestid: 516b8fe5-60c2-43bd-94ad-c8f3a24476fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fHNWREIoIAMFxLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cc5c27-1dba5be24b3bec7b0072e1af;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CEKO3c9DXyHiFKW1kRPjR1c7bO7WbdiD-o3EhHDRtaSZVN5dI9mVOQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 21:50:43 GMT
age: 32124
etag: "656445fb81ad942ccb17044072dd7c1b4654b2c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5074bfa38808c4a0f18b00a601cfef53
ffc0c526e49251605b2c95d0d1d595f9c702cd9a
6262e4155e8fbf18388f2f38c8e65cb87db94dae66d1dbbd329b4973d8b243df
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a7ab95a69ddfa5014258076e66a6e19
1a54cca86788536002d6d18c5180ccf265ba1169
09348afd6055b26b5dba6f8f6ef763d52e6e040c039c6f763d64f71b8ca08d51
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10988
x-amzn-requestid: 67c03c6c-3896-4890-a75b-ecd7c1c1a4e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3foHG8tIAMF3XQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61300-2de17e5b0225f9427c197bc5;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tYwSI7_1wwDixmup43f8j54sJ541GjyzB2rboENRXfSpuwPKImlNjA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 01:38:03 GMT
age: 18484
etag: "1a54cca86788536002d6d18c5180ccf265ba1169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
centriboet.com/wp-content/plugins/cherry-plugin/lib/js/owl-carousel/owl.theme.css?ver=1.24
200 OK 11 kB URL HTTP/2 centriboet.com/wp-content/plugins/cherry-plugin/lib/js/owl-carousel/owl.theme.css?ver=1.24
IP
ASN #6739 Vodafone Ono, S.A.
Hash 284f9a29d9f27725764e73a68687f046
8f83c068845981789f70ecbfce860915b243950a
ef60fb19a9d678509b203727dcefd3c591eda3dd1ba0b1f380c1f90bf205798b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cherry-plugin/lib/js/owl-carousel/owl.theme.css?ver=1.24 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: text/css
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
vary: Accept-Encoding
etag: W/"624d7b8c-680"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/css/classic-themes.min.css?ver=1
200 OK 13 kB URL HTTP/2 centriboet.com/wp-includes/css/classic-themes.min.css?ver=1
IP
ASN #6739 Vodafone Ono, S.A.
Hash 569015f24629678d39ce816665c5171a
d760246e35294bbc880f379f80206ed4ac13d36d
0089873299255d11a1ab68fc25ada59239dfbde9652e335b9628d780c77f7e86
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: text/css
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
etag: W/"d9-5ec7a054f9b31"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/plugins/cherry-plugin/lib/js/FlexSlider/flexslider.css?ver=2.2.0
200 OK 12 kB URL HTTP/2 centriboet.com/wp-content/plugins/cherry-plugin/lib/js/FlexSlider/flexslider.css?ver=2.2.0
IP
ASN #6739 Vodafone Ono, S.A.
File type ASCII text, with very long lines (445)
Hash 8144b14320b185909d2b42ec4caccbe7
bfe653a9ca7047ed3d6a8f154d12aaebc124ce6e
f090d1fae60a409d4737419adcf6680a4bdf2db510196ad6dee27a2e37476cf5
GET /wp-content/plugins/cherry-plugin/lib/js/FlexSlider/flexslider.css?ver=2.2.0 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: text/css
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
vary: Accept-Encoding
etag: W/"624d7b8c-1735"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/theme53993/style.css
200 OK 5.9 kB URL HTTP/2 centriboet.com/wp-content/themes/theme53993/style.css
IP
ASN #6739 Vodafone Ono, S.A.
File type ASCII text, with CRLF line terminators
Hash c7a4c4e1bdd3d4bbbefb641c387d171b
dc3f951e5e6f1ae791391a4e1ae67351b9d73cdb
27275ce03e7ac32d75e48278cc28a00580ea3947c50db292851e9278d2744dd8
GET /wp-content/themes/theme53993/style.css HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: text/css
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
vary: Accept-Encoding
etag: W/"624d7b8c-767"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/plugins/cherry-plugin/lib/js/owl-carousel/owl.carousel.css?ver=1.24
200 OK 2.0 kB URL HTTP/2 centriboet.com/wp-content/plugins/cherry-plugin/lib/js/owl-carousel/owl.carousel.css?ver=1.24
IP
ASN #6739 Vodafone Ono, S.A.
Hash 20cbd169fe1d0dfbb22dd650a43380f5
edaaf6582262368f5773f7d644824d1f882041a9
788c21c0554db6a56225514e02ee1d994cdeb266540e49d161ada68164cf2fce
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cherry-plugin/lib/js/owl-carousel/owl.carousel.css?ver=1.24 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: text/css
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
vary: Accept-Encoding
etag: W/"624d7b8c-1721"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
File type ASCII text, with very long lines (4879)
Hash f41b794fced2b41e1984a313d2a01ce4
46acff060ae7bd905d590e03a0a03fabeadb2e20
4557e79ba60892b379de66a32490cb3e86a11ec561d4adb2ce62fd9abe3d34ee
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 22 Jan 2023 06:46:07 GMT
expires: Sun, 22 Jan 2023 06:46:07 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 7383329744558139318
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49605
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5074bfa38808c4a0f18b00a601cfef53
ffc0c526e49251605b2c95d0d1d595f9c702cd9a
6262e4155e8fbf18388f2f38c8e65cb87db94dae66d1dbbd329b4973d8b243df
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20230118/r20190131/zrt_lookup.html
200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230118/r20190131/zrt_lookup.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20230118/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Sat, 21 Jan 2023 20:36:16 GMT
expires: Sat, 04 Feb 2023 20:36:16 GMT
cache-control: public, max-age=1209600
age: 36591
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6f395936694ad6425512fdf9f562c4bf
f58cfa08b44f9ddde774026b92bc4e10fc9b99f5
1944b3b16c3b38fe6cc4f3447c1e410ba3d13b8ee098a2e3471e5921a0ce1361
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fb07d2c1d8bcee019ca03761dea26da2
eeb2c1a38a93b84ee59d073de34c82ab078d880e
ba1d0bc1bb2685cb37ea47d0486f1f56668d1619cc1f081b505fbaa7662375e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ace90ee2f1ce8ca0d69556c6398555a6
49b53ab37b77ebf26525ef3a84aaa9a817af9df4
6d66736ed5245c62987c88f0c3570eefd8f45c09f60dc9b2e1d585f05d1f00e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=centriboet.com&callback=_gfp_s_&client=ca-pub-6520255139364936
200 OK 251 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=centriboet.com&callback=_gfp_s_&client=ca-pub-6520255139364936
IP
File type ASCII text, with very long lines (395), with no line terminators
Hash 64741128b3598daf482da609b6525928
510192fcf973d6a05f4268e7ad7fde07854fe74f
be2a5ebd01a982bfde62c645d11ba71bd3704a20950ec19364cc5b85d1e9b8ae
GET /gampad/cookie.js?domain=centriboet.com&callback=_gfp_s_&client=ca-pub-6520255139364936 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 22 Jan 2023 06:46:07 GMT
server: cafe
cache-control: private
content-length: 251
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=centriboet.com
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=centriboet.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=centriboet.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 22 Jan 2023 06:46:07 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=centriboet.com
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=centriboet.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=centriboet.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 22 Jan 2023 06:46:07 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6f395936694ad6425512fdf9f562c4bf
f58cfa08b44f9ddde774026b92bc4e10fc9b99f5
1944b3b16c3b38fe6cc4f3447c1e410ba3d13b8ee098a2e3471e5921a0ce1361
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fb07d2c1d8bcee019ca03761dea26da2
eeb2c1a38a93b84ee59d073de34c82ab078d880e
ba1d0bc1bb2685cb37ea47d0486f1f56668d1619cc1f081b505fbaa7662375e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ace90ee2f1ce8ca0d69556c6398555a6
49b53ab37b77ebf26525ef3a84aaa9a817af9df4
6d66736ed5245c62987c88f0c3570eefd8f45c09f60dc9b2e1d585f05d1f00e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9200af48311c2b333eae1366dfdef80e
1b152e98696ae273eb41568ea22dc977e2a0949e
491c4e6de729cace7e2eb4002c5f1509de063db13a7c3bf27baa6d16e12b08c6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sun, 22 Jan 2023 06:46:07 GMT
expires: Sun, 22 Jan 2023 06:46:07 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jan 2023 12:37:02 GMT
expires: Tue, 16 Jan 2024 12:37:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 497345
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f4d171538addb3e350e03876c9c23d81
9874648e426c9a8b65ddcb1d3fc944b8464be9f5
e89b056e51c85f967d05f0cb23a2212d0f391838df414dda9f61e67a96dbefff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 06:46:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
200 OK 512 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash fab36be253314e855feb80c41e6f9029
9f535ee9d8f26dcd3855f2d1a3746dcec045b20a
f9ee51abaa8245c86c30630eb2ec60080c69265ebe5f8f766df558fb4f125c28
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sun, 22 Jan 2023 06:46:07 GMT
date: Sun, 22 Jan 2023 06:46:07 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-O-ztq8IiVWfoxuhm727OuA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 512
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/dialog.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/dialog.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-includes/js/jquery/ui/dialog.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-329f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/css/camera.css
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/css/camera.css
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-content/themes/CherryFramework/css/camera.css HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: text/css
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
vary: Accept-Encoding
etag: W/"624d7b8c-6698"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans&subset=latin
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans&subset=latin
IP
GET /css?family=Open+Sans&subset=latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 22 Jan 2023 06:46:06 GMT
date: Sun, 22 Jan 2023 06:46:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
centriboet.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Tue, 10 Jan 2023 12:14:20 GMT
vary: Accept-Encoding
etag: W/"63bd569c-2945"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/swfobject.js?ver=2.2-20120417
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/swfobject.js?ver=2.2-20120417
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/swfobject.js?ver=2.2-20120417 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 06 Apr 2022 11:37:49 GMT
vary: Accept-Encoding
etag: W/"624d7b8d-27f7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/plugins/cherry-plugin/includes/js/cherry-plugin.js?ver=1.2.8.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/plugins/cherry-plugin/includes/js/cherry-plugin.js?ver=1.2.8.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cherry-plugin/includes/js/cherry-plugin.js?ver=1.2.8.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
vary: Accept-Encoding
etag: W/"624d7b8c-72b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/progressbar.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/progressbar.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/progressbar.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-9ec"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/js/jquery.mobilemenu.js?ver=1.0
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/js/jquery.mobilemenu.js?ver=1.0
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/CherryFramework/js/jquery.mobilemenu.js?ver=1.0 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 07:47:44 GMT
vary: Accept-Encoding
etag: W/"62a2f720-81a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/plugins/cherry-lazy-load-master/css/lazy-load.css?ver=1.0
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/plugins/cherry-lazy-load-master/css/lazy-load.css?ver=1.0
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cherry-lazy-load-master/css/lazy-load.css?ver=1.0 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: text/css
last-modified: Fri, 10 Jun 2022 09:27:22 GMT
vary: Accept-Encoding
etag: W/"62a30e7a-8ce"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/plugins/cherry-plugin/lib/js/FlexSlider/jquery.flexslider-min.js?ver=2.2.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/plugins/cherry-plugin/lib/js/FlexSlider/jquery.flexslider-min.js?ver=2.2.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cherry-plugin/lib/js/FlexSlider/jquery.flexslider-min.js?ver=2.2.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
vary: Accept-Encoding
etag: W/"624d7b8c-5486"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/js/tmstickup.js?ver=1.0.0
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/js/tmstickup.js?ver=1.0.0
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/CherryFramework/js/tmstickup.js?ver=1.0.0 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 07:47:44 GMT
vary: Accept-Encoding
etag: W/"62a2f720-9ca"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/js/jquery.mobile.customized.min.js
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/js/jquery.mobile.customized.min.js
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/CherryFramework/js/jquery.mobile.customized.min.js HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 07:47:44 GMT
vary: Accept-Encoding
etag: W/"62a2f720-4343"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Tue, 10 Jan 2023 12:14:20 GMT
vary: Accept-Encoding
etag: W/"63bd569c-316c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/resizable.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/resizable.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-includes/js/jquery/ui/resizable.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-4911"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/selectable.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/selectable.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/selectable.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-1188"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/tabs.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-2ea1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/
302 Found 0 B IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Sun, 22 Jan 2023 06:46:05 GMT
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie: qtrans_front_language=en; expires=Mon, 22-Jan-2024 06:46:05 GMT; Max-Age=31536000; path=/
location: https://centriboet.com/en/
x-powered-by: PHP/7.4.33, PleskLin
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/js/custom.js?ver=1.0
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/js/custom.js?ver=1.0
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/CherryFramework/js/custom.js?ver=1.0 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 07:47:44 GMT
vary: Accept-Encoding
etag: W/"62a2f720-1c5a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/js/superfish.js?ver=1.5.3
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/js/superfish.js?ver=1.5.3
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/CherryFramework/js/superfish.js?ver=1.5.3 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 07:47:44 GMT
vary: Accept-Encoding
etag: W/"62a2f720-b61"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/plugins/cherry-plugin/lib/js/elasti-carousel/jquery.elastislide.js?ver=1.2.8.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/plugins/cherry-plugin/lib/js/elasti-carousel/jquery.elastislide.js?ver=1.2.8.2
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-content/plugins/cherry-plugin/lib/js/elasti-carousel/jquery.elastislide.js?ver=1.2.8.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
vary: Accept-Encoding
etag: W/"624d7b8c-186c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/js/jflickrfeed.js?ver=1.0
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/js/jflickrfeed.js?ver=1.0
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/CherryFramework/js/jflickrfeed.js?ver=1.0 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 07:47:44 GMT
vary: Accept-Encoding
etag: W/"62a2f720-436"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/bootstrap/js/bootstrap.min.js?ver=2.3.0
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/bootstrap/js/bootstrap.min.js?ver=2.3.0
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/CherryFramework/bootstrap/js/bootstrap.min.js?ver=2.3.0 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 08:15:04 GMT
vary: Accept-Encoding
etag: W/"62a2fd88-7054"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/effect-blind.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/effect-blind.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-includes/js/jquery/ui/effect-blind.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
etag: W/"360-5ec7a0550d79d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/effect-clip.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/effect-clip.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/effect-clip.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
etag: W/"30c-5ec7a0550e355"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/effect-drop.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/effect-drop.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/effect-drop.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
etag: W/"2e1-5ec7a0550d3b5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/theme53993/bootstrap/css/bootstrap.css
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/themes/theme53993/bootstrap/css/bootstrap.css
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-content/themes/theme53993/bootstrap/css/bootstrap.css HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: text/css
last-modified: Fri, 10 Jun 2022 08:49:08 GMT
vary: Accept-Encoding
etag: W/"62a30584-1a3a1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/js/jquery-migrate-1.2.1.min.js?ver=1.2.1
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/js/jquery-migrate-1.2.1.min.js?ver=1.2.1
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/CherryFramework/js/jquery-migrate-1.2.1.min.js?ver=1.2.1 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 07:47:44 GMT
vary: Accept-Encoding
etag: W/"62a2f720-1c1f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-2782"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/effect-fade.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/effect-fade.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/effect-fade.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
etag: W/"1fd-5ec7a0550df6d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-19fb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/spinner.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/spinner.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/spinner.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-1dc4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/theme53993/main-style.css
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/themes/theme53993/main-style.css
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-content/themes/theme53993/main-style.css HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: text/css
last-modified: Fri, 10 Jun 2022 08:49:08 GMT
vary: Accept-Encoding
etag: W/"62a30584-1405e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/effect-explode.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/effect-explode.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/effect-explode.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-452"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/js/jquery.jplayer.min.js?ver=2.6.0
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/js/jquery.jplayer.min.js?ver=2.6.0
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/CherryFramework/js/jquery.jplayer.min.js?ver=2.6.0 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 07:47:44 GMT
vary: Accept-Encoding
etag: W/"62a2f720-d453"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-53c0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-includes/js/jquery/ui/effect-slide.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
etag: W/"385-5ec7a0550cfcd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/effect-scale.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/effect-scale.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-includes/js/jquery/ui/effect-scale.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
etag: W/"2c3-5ec7a0550e355"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/theme53993/bootstrap/css/responsive.css
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/themes/theme53993/bootstrap/css/responsive.css
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-content/themes/theme53993/bootstrap/css/responsive.css HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: text/css
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
vary: Accept-Encoding
etag: W/"624d7b8c-55b9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 07:19:29 GMT
vary: Accept-Encoding
etag: W/"628dd881-194b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-636f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/effect-size.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/effect-size.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/effect-size.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-9ab"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/tooltip.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-1828"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/plugins/cherry-plugin/lib/js/jquery.easing.1.3.js?ver=1.3
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/plugins/cherry-plugin/lib/js/jquery.easing.1.3.js?ver=1.3
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cherry-plugin/lib/js/jquery.easing.1.3.js?ver=1.3 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
vary: Accept-Encoding
etag: W/"624d7b8c-ceb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-27f6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/checkboxradio.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/checkboxradio.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/checkboxradio.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-10d5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-d4a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/effect-fold.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/effect-fold.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/effect-fold.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
etag: W/"3ec-5ec7a0550d3b5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-includes/js/jquery/ui/accordion.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-226e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/effect-pulsate.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/effect-pulsate.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/effect-pulsate.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
etag: W/"2a0-5ec7a0550c7fd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/plugins/cherry-plugin/includes/css/cherry-plugin.css?ver=1.2.8.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/plugins/cherry-plugin/includes/css/cherry-plugin.css?ver=1.2.8.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/cherry-plugin/includes/css/cherry-plugin.css?ver=1.2.8.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: text/css
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
vary: Accept-Encoding
etag: W/"624d7b8c-7ad0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/plugins/cherry-lazy-load-master/js/cherry.lazy-load.js?ver=1.0
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/plugins/cherry-lazy-load-master/js/cherry.lazy-load.js?ver=1.0
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-content/plugins/cherry-lazy-load-master/js/cherry.lazy-load.js?ver=1.0 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 09:27:22 GMT
vary: Accept-Encoding
etag: W/"62a30e7a-1204"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/js/jquery.debouncedresize.js?ver=1.0
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/js/jquery.debouncedresize.js?ver=1.0
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-content/themes/CherryFramework/js/jquery.debouncedresize.js?ver=1.0 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Fri, 10 Jun 2022 07:47:44 GMT
etag: W/"15b-5e11327540800"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/plugins/cherry-lazy-load-master/js/device.min.js?ver=1.0.0
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/plugins/cherry-lazy-load-master/js/device.min.js?ver=1.0.0
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-content/plugins/cherry-lazy-load-master/js/device.min.js?ver=1.0.0 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 09:27:22 GMT
vary: Accept-Encoding
etag: W/"62a30e7a-ada"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-459f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/effect-highlight.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/effect-highlight.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/effect-highlight.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
etag: W/"278-5ec7a0550c415"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans+Condensed:300&subset=latin
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans+Condensed:300&subset=latin
IP
GET /css?family=Open+Sans+Condensed:300&subset=latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 22 Jan 2023 06:46:06 GMT
date: Sun, 22 Jan 2023 06:46:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
centriboet.com/wp-includes/css/dist/block-library/style.min.css?ver=ebc0e58e277ef15de4ef982df04d5a83
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/css/dist/block-library/style.min.css?ver=ebc0e58e277ef15de4ef982df04d5a83
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=ebc0e58e277ef15de4ef982df04d5a83 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: text/css
last-modified: Wed, 16 Nov 2022 16:17:26 GMT
vary: Accept-Encoding
etag: W/"63750d16-172a9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/effect-transfer.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/effect-transfer.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-includes/js/jquery/ui/effect-transfer.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
etag: W/"1aa-5ec7a0550e355"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/slider.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-includes/js/jquery/ui/slider.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-29e8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-4794"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/css/magnific-popup.css?ver=0.9.3
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/css/magnific-popup.css?ver=0.9.3
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-content/themes/CherryFramework/css/magnific-popup.css?ver=0.9.3 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: text/css
last-modified: Wed, 06 Apr 2022 11:37:48 GMT
vary: Accept-Encoding
etag: W/"624d7b8c-2458"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
netdna.bootstrapcdn.com/font-awesome/3.2.1/css/font-awesome.css?ver=3.2.1
200 OK 0 B URL HTTP/2 netdna.bootstrapcdn.com/font-awesome/3.2.1/css/font-awesome.css?ver=3.2.1
IP
GET /font-awesome/3.2.1/css/font-awesome.css?ver=3.2.1 HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:51 GMT
cdn-cachedat: 08/03/2021 17:42:29
cdn-edgestorageid: 601
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-proxyver: 1.0
cdn-status: 200
cdn-requestid: 6a3ecfb7abce577b84969b7b3a3242a6
cdn-cache: HIT
cf-cache-status: HIT
age: 265283
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78d654a0ae46b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/js/modernizr.js?ver=2.0.6
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/js/modernizr.js?ver=2.0.6
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/CherryFramework/js/modernizr.js?ver=2.0.6 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 07:47:44 GMT
vary: Accept-Encoding
etag: W/"62a2f720-301a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 25 May 2022 07:19:29 GMT
etag: W/"1f2-5dfd0e4d8608d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-8f7b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-2112"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/themes/CherryFramework/js/jquery.ba-resize.min.js?ver=1.1
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/themes/CherryFramework/js/jquery.ba-resize.min.js?ver=1.1
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/CherryFramework/js/jquery.ba-resize.min.js?ver=1.1 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Fri, 10 Jun 2022 07:47:44 GMT
vary: Accept-Encoding
etag: W/"62a2f720-44a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: text/css
last-modified: Tue, 10 Jan 2023 12:14:20 GMT
vary: Accept-Encoding
etag: W/"63bd569c-af3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/button.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/button.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-includes/js/jquery/ui/button.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-17fa"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-includes/js/jquery/ui/effect.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
vary: Accept-Encoding
etag: W/"63624196-43ba"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/effect-bounce.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/effect-bounce.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/effect-bounce.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
etag: W/"3cf-5ec7a0550d3b5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
centriboet.com/wp-includes/js/jquery/ui/effect-shake.min.js?ver=1.13.2
200 OK 0 B URL HTTP/2 centriboet.com/wp-includes/js/jquery/ui/effect-shake.min.js?ver=1.13.2
IP
ASN #6739 Vodafone Ono, S.A.
GET /wp-includes/js/jquery/ui/effect-shake.min.js?ver=1.13.2 HTTP/1.1
Host: centriboet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://centriboet.com/en/
Cookie: qtrans_front_language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 06:46:06 GMT
content-type: application/javascript
vary: Accept-Encoding
x-accel-version: 0.01
last-modified: Wed, 02 Nov 2022 10:08:22 GMT
etag: W/"33e-5ec7a0550eb25"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
89.140.72.153
35.241.9.150
104.18.11.207
23.36.77.32
93.184.220.29