Report - 365bet838.com/

Report Overview

Submitted URL
365bet838.com/
IP
45.200.73.198
ASN
#133847 Anpple Tech Enterprise
Submitted
2024-05-04 06:59:51
Access
public
Website Title
Welcome -No.1
Final URL
365bet838.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
38

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
static-web.ggu4w15rx3x0.com	unknown	2023-07-17	2023-08-01	2024-01-21	20 kB	6.9 MB	182.160.14.112
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-05-03	555 B	78 kB	104.17.24.14
365bet838.com	unknown	2021-10-06	2022-07-10	2024-01-18	10 kB	766 kB	45.200.73.198

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	365bet838.com	Sinkholed
2024-05-04	medium	365bet838.com	Sinkholed
2024-05-04	medium	365bet838.com	Sinkholed
2024-05-04	medium	365bet838.com	Sinkholed
2024-05-04	medium	365bet838.com	Sinkholed
2024-05-04	medium	365bet838.com	Sinkholed
2024-05-04	medium	365bet838.com	Sinkholed
2024-05-04	medium	365bet838.com	Sinkholed
2024-05-04	medium	365bet838.com	Sinkholed
2024-05-04	medium	365bet838.com	Sinkholed
2024-05-04	medium	365bet838.com	Sinkholed
2024-05-04	medium	365bet838.com	Sinkholed
2024-05-04	medium	365bet838.com	Sinkholed
2024-05-04	medium	365bet838.com	Sinkholed
2024-05-04	medium	365bet838.com	Sinkholed
2024-05-04	medium	365bet838.com	Sinkholed
2024-05-04	medium	365bet838.com	Sinkholed
2024-05-04	medium	365bet838.com	Sinkholed
2024-05-04	medium	365bet838.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	unknown	1.3 kB	2024-05-04	2024-05-04
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2024-05-04 08:59:55 Last Seen2024-05-04 08:59:55 Times Seen1 Hash 392f4cd5ba656968887f3cfe0acd4ed9 9fd37176483c7b1265b960fc94ca521a1c08b816 c0921b13494eee5325e97e861c482a4c7afc0794a967bc402475cc87c7968e40 Loading...

	365bet838.com/	752 B	2024-05-04	2024-05-04
Pretty URL 365bet838.com/ IP 45.200.73.198 ASN #133847 Anpple Tech Enterprise Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 08:59:55 Last Seen2024-05-04 08:59:55 Times Seen1 Hash 2ae1119ee922938425af54471a1aa78e 7c3b543dcd116ed023d48452e2297d729a8f8f9c b20aae2f3e179a7b6fd0372011d6ab247f1473128b16aa9cd404ae49cac9ce65 Loading...

	static-web.ggu4w15rx3x0.com/jtqp6z/js/game/Game.js	118 kB	2024-05-04	2024-05-04
Pretty URL static-web.ggu4w15rx3x0.com/jtqp6z/js/game/Game.js IP 182.160.14.112 ASN #136907 HUAWEI CLOUDS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 08:59:55 Last Seen2024-05-04 08:59:55 Times Seen1 Hash 10c294dfe980be931b71c1e55e373850 ee0853cb78409eae073a4905326c8c8a326efa8f 7613e0f9c9eafe165781f474075ec49d5fc95c114cd1505c3a71d14c7c512335 Loading...

	static-web.ggu4w15rx3x0.com/jtqp6z/js/jquery/jquery.min.js	96 kB	2023-03-07	2024-05-18
Pretty URL static-web.ggu4w15rx3x0.com/jtqp6z/js/jquery/jquery.min.js IP 182.160.14.112 ASN #136907 HUAWEI CLOUDS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:51 Last Seen2024-05-18 09:47:30 Times Seen10338 Hash 5790ead7ad3ba27397aedfa3d263b867 8130544c215fe5d1ec081d83461bf4a711e74882 2ecd295d295bec062cedebe177e54b9d6b19fc0a841dc5c178c654c9ccff09c0 Loading...

	365bet838.com/	24 B	2023-03-10	2024-05-04
Pretty URL 365bet838.com/ IP 45.200.73.198 ASN #133847 Anpple Tech Enterprise Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 13:16:42 Last Seen2024-05-04 08:59:55 Times Seen10 Hash 9b6727088260025d3cabe951b62eff1a d60b52764fdd2c988593639457ae3c8a76485f62 0272557fe6374e9f68ffb96b56cde175c8c47a826fc4151f1a029829c698c6dc Loading...

	static-web.ggu4w15rx3x0.com/jtqp6z/js/general.js?20230328	7.3 kB	2023-07-28	2024-05-04
Pretty URL static-web.ggu4w15rx3x0.com/jtqp6z/js/general.js?20230328 IP 182.160.14.112 ASN #136907 HUAWEI CLOUDS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-28 10:56:23 Last Seen2024-05-04 08:59:56 Times Seen15 Hash 5063d82922069c27b8cba6029280acbe 14c3d441b2e63d3ef995c6624b3593892f09041d d769842f2b689226adb6fad77230b524f647765d9faca7ce172f32a20bea3a4c Loading...

	static-web.ggu4w15rx3x0.com/jtqp6z/js/ewangdun/load.js?v=2	12 kB	2023-04-05	2024-05-04
Pretty URL static-web.ggu4w15rx3x0.com/jtqp6z/js/ewangdun/load.js?v=2 IP 182.160.14.112 ASN #136907 HUAWEI CLOUDS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 03:30:47 Last Seen2024-05-04 08:59:55 Times Seen36 Hash e03d795ee892938ec977e72926761136 058d3cba634088620400d198d7a5abe13c40b2e9 666f9924b7a98ed2960cf78ababc8289146a346386de539380c8f9e51b94bae4 Loading...

	365bet838.com/	2.2 kB	2023-07-28	2024-05-04
Pretty URL 365bet838.com/ IP 45.200.73.198 ASN #133847 Anpple Tech Enterprise Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-28 10:56:23 Last Seen2024-05-04 08:59:55 Times Seen7 Hash ddf0d5706f40e9a97299ba451b642b74 4cf824927553958581246cf4452367ab2e07ecd3 915f10fcff1bf22350b9b7a6d84088d20d70a102354f5eef9ff5ac4fdae700e8 Loading...

	365bet838.com/	909 B	2023-03-07	2024-05-04
Pretty URL 365bet838.com/ IP 45.200.73.198 ASN #133847 Anpple Tech Enterprise Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:28:09 Last Seen2024-05-04 08:59:55 Times Seen59 Hash c90c2bac7c9872126720cbe33b4e95cd e3ab220f42807ae749e9fa8d05e9b283094833cd bffe454c886fcb3b3ca18f125a2a502781d2f332a9b5348a70592d396bea7bf4 Loading...

	static-web.ggu4w15rx3x0.com/jtqp6z/js/kz.js	76 kB	2024-05-04	2024-05-04
Pretty URL static-web.ggu4w15rx3x0.com/jtqp6z/js/kz.js IP 182.160.14.112 ASN #136907 HUAWEI CLOUDS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 08:59:55 Last Seen2024-05-04 08:59:56 Times Seen2 Hash b431d0bec74ccca600528e2e0bfe2d51 42bd27a1515c114820aca776ffbd7fe0068586a1 f0ebf822d30ea02720d57762c0b439d34153a92e9857576b8cadac7a72e6ece9 Loading...

	365bet838.com/	1.5 kB	2023-07-19	2024-05-04
Pretty URL 365bet838.com/ IP 45.200.73.198 ASN #133847 Anpple Tech Enterprise Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-19 21:49:26 Last Seen2024-05-04 08:59:55 Times Seen8 Hash 206aab7034807a1fd4a645411283699d 982dc3476aaa16fa7e644e4dbadbeb5ce5970c69 d6b59b784553f9d1b24cd95bfc7a4a8e1652750d7911b29ee5b197e188274ebb Loading...

	365bet838.com/	104 B	2023-07-19	2024-05-04
Pretty URL 365bet838.com/ IP 45.200.73.198 ASN #133847 Anpple Tech Enterprise Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-19 21:49:26 Last Seen2024-05-04 08:59:55 Times Seen3 Hash 842686460810f4795ecb9617f364cf11 72e8878c91fd6d913133467077ba7c0cfe8c4b79 f9b39b768d69a4a09b9de6ed7ba6c9b3509967362cd67b4313ae8131da05449b Loading...

	365bet838.com/	99 B	2023-03-10	2024-05-04
Pretty URL 365bet838.com/ IP 45.200.73.198 ASN #133847 Anpple Tech Enterprise Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 13:16:42 Last Seen2024-05-04 08:59:55 Times Seen9 Hash f3eb56bc178eb5678ae14b82c89e97eb 3da5ccc2b73e6259b64cd69b5d6de24aaf204c20 0968ca709ceaa0c154f0ec1888d6df5fc151aa980e33184cfa40bd5392615c0f Loading...

	365bet838.com/	707 B	2023-03-14	2024-05-04
Pretty URL 365bet838.com/ IP 45.200.73.198 ASN #133847 Anpple Tech Enterprise Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-14 11:29:07 Last Seen2024-05-04 08:59:55 Times Seen4 Hash 89c05453b50d38ce6b3b6540f4cd2f93 762439a4bd6105e7215bf670bb44d337d3706bba de764fafa25dca35da23377c0c6db37e7d159916aa2dc88f9684ba2d9c7aea12 Loading...

	365bet838.com/	6.0 kB	2024-05-04	2024-05-04
Pretty URL 365bet838.com/ IP 45.200.73.198 ASN #133847 Anpple Tech Enterprise Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 08:59:55 Last Seen2024-05-04 08:59:55 Times Seen1 Hash 0127d6d87e0c66b5bab168f033d73983 61493219f834a880dfd7bc1779e30d0fa79c5d7b 2e80c798faad010bdefa677c7dfc6763a3ed0b2a1ae90100e8caee9b0ac3e819 Loading...

	static-web.ggu4w15rx3x0.com/jtqp6z/js/jquery/jquery.scrollbox.js	9.2 kB	2023-07-28	2024-05-04
Pretty URL static-web.ggu4w15rx3x0.com/jtqp6z/js/jquery/jquery.scrollbox.js IP 182.160.14.112 ASN #136907 HUAWEI CLOUDS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-28 10:56:23 Last Seen2024-05-04 08:59:56 Times Seen11 Hash e723221958fd875addec70919eacecf7 3205c9e53b8aaa5ae52cc05fd8f21e874a6bd33e fe2973687ecf5490ab5159b8fa6c6ffdcac1a7e44158e6f82ccefc56c4e3c83c Loading...

	static-web.ggu4w15rx3x0.com/jtqp6z/js/lang/lang_chs.js?v=1265	42 kB	2024-05-04	2024-05-04
Pretty URL static-web.ggu4w15rx3x0.com/jtqp6z/js/lang/lang_chs.js?v=1265 IP 182.160.14.112 ASN #136907 HUAWEI CLOUDS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 08:59:55 Last Seen2024-05-04 08:59:56 Times Seen1 Hash bb66328aac10068e2e9de4bedaa1d1e5 a0ac8a6c6779fe794924ae916734513887fb167c b7a6ac3b5b194d6c1d2d87bfbe13d32806f7c116f4e636f52f39fd45b6a2c8bb Loading...

	365bet838.com/	78 kB	2024-05-04	2024-05-04
Pretty URL 365bet838.com/ IP 45.200.73.198 ASN #133847 Anpple Tech Enterprise Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-04 08:59:56 Last Seen2024-05-04 08:59:56 Times Seen1 Hash 6a3044c833987c5149e8b44b33392b72 0ece38eb56c4faa0e0ff5ca73cabeb45f01b1c89 f21b71764ce43dc079e45238154781d3f3a720fed8d83f0c8f212cdb915f1bb8 Loading...

	static-web.ggu4w15rx3x0.com/jtqp6z/util/rsa.js	14 kB	2023-03-07	2024-05-16
Pretty URL static-web.ggu4w15rx3x0.com/jtqp6z/util/rsa.js IP 182.160.14.112 ASN #136907 HUAWEI CLOUDS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28:09 Last Seen2024-05-16 20:33:01 Times Seen494 Hash 2e28749b1ce6013a456d4498a447dff3 89d8c436922a84f097e86090179d112c3d6e13c2 1748bdff25c71702d781b076f961920ef32283e324153b256e963202431a35ba Loading...

	365bet838.com/	1 B	2023-03-07	2024-05-18
Pretty URL 365bet838.com/ IP 45.200.73.198 ASN #133847 Anpple Tech Enterprise Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:54 Last Seen2024-05-18 08:51:29 Times Seen70681 Hash 68b329da9893e34099c7d8ad5cb9c940 adc83b19e793491b1c6ea0fd8b46cd9f32e592fc 01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b Loading...

	static-web.ggu4w15rx3x0.com/jtqp6z/js/jquery/jquery.cookie.js	3.1 kB	2023-03-07	2024-05-18
Pretty URL static-web.ggu4w15rx3x0.com/jtqp6z/js/jquery/jquery.cookie.js IP 182.160.14.112 ASN #136907 HUAWEI CLOUDS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:43 Last Seen2024-05-18 08:25:47 Times Seen3256 Hash 0f1f6cd6e0036897019b376d38593403 498b29de6e170fffc8535183b7d6550490f0a159 8c0301b3dba5061632d7321cd8bb7bd527f48288d5cb15ff614ea0c1dcc1ad69 Loading...

	static-web.ggu4w15rx3x0.com/jtqp6z/util/all.js	83 kB	2024-05-04	2024-05-04
Pretty URL static-web.ggu4w15rx3x0.com/jtqp6z/util/all.js IP 182.160.14.112 ASN #136907 HUAWEI CLOUDS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 08:59:56 Last Seen2024-05-04 08:59:56 Times Seen2 Hash 0d2860f26ccea6044bd194b688d3695b bf651df7882599152844797ca47cd95ff69455c8 46220a311f341c1430820bdff9925896b9a7e6535ac04c90ccb0cd8361f69abf Loading...

	static-web.ggu4w15rx3x0.com/jtqp6z/js/popup.js	36 kB	2023-07-28	2024-05-04
Pretty URL static-web.ggu4w15rx3x0.com/jtqp6z/js/popup.js IP 182.160.14.112 ASN #136907 HUAWEI CLOUDS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-28 10:56:23 Last Seen2024-05-04 08:59:56 Times Seen27 Hash 49a3c10091206bbef0c89eedb84a9b27 a91d9fb471d2aa069216447564abf269d22f6f82 f814ec8f85208580a30b74df5cc1fdb2b2fee25d521f583bd2ef265983714e18 Loading...

	static-web.ggu4w15rx3x0.com/jtqp6z/js/game/hallgame.js?39	3.5 kB	2024-05-04	2024-05-04
Pretty URL static-web.ggu4w15rx3x0.com/jtqp6z/js/game/hallgame.js?39 IP 182.160.14.112 ASN #136907 HUAWEI CLOUDS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 08:59:56 Last Seen2024-05-04 08:59:56 Times Seen2 Hash 90584be522bad60a2c21ee5e7c507223 2c438050e9f3dda6746ee5f07bffc5fa0c26b3f1 23569a58e44b9ae62231d68c388e4fef30a0a00d06bb4a24ec05ee15ffe9e056 Loading...

	365bet838.com/	252 B	2023-03-07	2024-05-04
Pretty URL 365bet838.com/ IP 45.200.73.198 ASN #133847 Anpple Tech Enterprise Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:28:09 Last Seen2024-05-04 08:59:56 Times Seen59 Hash a996798f889ab840776861d9b3494a3a 6d7eef96f4e559e374608ddcafc4773d876e1ca0 c04e5efefa518111f4a700336bd83264dd17f621d338a8de0362005b1895207a Loading...

	static-web.ggu4w15rx3x0.com/jtqp6z/js/lang/error_chs.js?v=100	23 kB	2024-05-04	2024-05-04
Pretty URL static-web.ggu4w15rx3x0.com/jtqp6z/js/lang/error_chs.js?v=100 IP 182.160.14.112 ASN #136907 HUAWEI CLOUDS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 08:59:56 Last Seen2024-05-04 08:59:56 Times Seen1 Hash 2ccc76ecbe4514f4b625b890c9653861 347f697db8c1feacfd3af79e772c8ad89cd710ad fc317594fe00eda98d7edf110a57500101f727cb76d918d27bbbe16d141793e2 Loading...

HTTP Transactions (62)

URL IP Response Size

static-web.ggu4w15rx3x0.com/jtqp6z/static/style/swiper.min.css

182.160.14.112

200 OK

3.1 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/static/style/swiper.min.css
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
ASCII text, with very long lines (19512)
Size
3.1 kB (3059 bytes)
Hash
7b7697ceb019167bb5433df23dec0205
5e3208d4a25af2d92e87246bf979e2f3608b363a
e65f16b5e41f77ce09ab9d72747b5c9dd6c646f802544dc3d3eb3def2578a26b

HTTP Headers

GET /jtqp6z/static/style/swiper.min.css HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:27 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Jul 2023 03:59:35 GMT
ETag: W/"64b8b127-4d42"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: gocache
Expires: Sun, 05 May 2024 06:59:27 GMT
Cache-Control: max-age=86400
c-Type: st
rid: cfbbc32fc93fd56d9bd3ef505b2d31f3
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT

static-web.ggu4w15rx3x0.com/jtqp6z/static/style/css.css?1714805963

182.160.14.112

200 OK

4.9 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/static/style/css.css?1714805963
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (465)
Size
4.9 kB (4901 bytes)
Hash
6875923a0abd3529e614abc8072d513b
7e9933ec7a9a7f3df198360b28b1c9fee501fb24
20cafc71b1f4d9b68b6742eb2f5c3a2a1c851ce97632a20cefaefb5f43712157

HTTP Headers

GET /jtqp6z/static/style/css.css?1714805963 HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:27 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 26 Apr 2024 02:43:59 GMT
ETag: W/"662b14ef-624f"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: gocache
Expires: Sun, 05 May 2024 06:59:27 GMT
Cache-Control: max-age=86400
c-Type: st
rid: bc75963aa9d54e40d718a7ca0caf8876
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: MISS

static-web.ggu4w15rx3x0.com/jtqp6z/util/messenger.css

182.160.14.112

200 OK

1.6 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/util/messenger.css
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
ASCII text, with very long lines (5437)
Size
1.6 kB (1608 bytes)
Hash
d62f15b415b8a74c8386a1624ea2b3a3
41d8efc8e60f65ea302218fa951472b43cc3e51c
7ee6fbbc33d846c009c76208d17a7e2374967b255b3db1949ef622a1ffa685fd

HTTP Headers

GET /jtqp6z/util/messenger.css HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:27 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Jul 2023 03:23:16 GMT
ETag: W/"64b8a8a4-22b0"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: gocache
Expires: Sun, 05 May 2024 06:59:27 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 82a98c3569faabc2bc0331f713f60322
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT

static-web.ggu4w15rx3x0.com/jtqp6z/static/style/main.css?1714805963

182.160.14.112

200 OK

6.9 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/static/style/main.css?1714805963
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text
Size
6.9 kB (6908 bytes)
Hash
79c65db25f3da0cc2f99fe24ca2a61da
40fac31d60774fd703b2e58b1411ad4ace40403f
fe547fb191857aee6c6d44939de7fd54fce1e93ffc0291b56ffa7a4694a79e34

HTTP Headers

GET /jtqp6z/static/style/main.css?1714805963 HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:27 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Apr 2024 02:23:58 GMT
ETag: W/"662f04be-8ce5"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: gocache
Expires: Sun, 05 May 2024 06:59:27 GMT
Cache-Control: max-age=86400
c-Type: st
rid: b9f982bc5e28d6162a06c181cfb59941
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: MISS

static-web.ggu4w15rx3x0.com/jtqp6z/css/base.css

182.160.14.112

200 OK

28 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/css/base.css
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (539)
Size
28 kB (28145 bytes)
Hash
cc16f5f9dd34cc23a60afe45944401e3
5420fa1e9955bf5ea9ed33eecd7f3250e46b13d1
eeb3a6b5884dc483f0c742e6a86a6c15d96245c06ed19381a7cd31f3a5c35d10

HTTP Headers

GET /jtqp6z/css/base.css HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:26 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 21 Mar 2024 02:01:24 GMT
ETag: W/"65fb94f4-2d259"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: gocache
Expires: Sun, 05 May 2024 06:59:26 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 0f915f30b4e7fe2717195abcc76facd5
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT

static-web.ggu4w15rx3x0.com/jtqp6z/js/jquery/jquery.min.js

182.160.14.112

200 OK

32 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/js/jquery/jquery.min.js
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32047)
Size
32 kB (32205 bytes)
Hash
5790ead7ad3ba27397aedfa3d263b867
8130544c215fe5d1ec081d83461bf4a711e74882
2ecd295d295bec062cedebe177e54b9d6b19fc0a841dc5c178c654c9ccff09c0

HTTP Headers

GET /jtqp6z/js/jquery/jquery.min.js HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 20 Jul 2023 03:59:23 GMT
ETag: W/"64b8b11b-176bb"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:27 GMT
Cache-Control: max-age=86400
c-Type: st
rid: a9f8494f1a539ad51d7cceed77e6af4f
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Content-Encoding: br

static-web.ggu4w15rx3x0.com/jtqp6z/css/agent-manage/animate.css

182.160.14.112

200 OK

5.3 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/css/agent-manage/animate.css
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65342), with CRLF line terminators
Size
5.3 kB (5273 bytes)
Hash
b3d5b75898f1ed885c7d2b538faa8b81
bc96496831f4df311443b8e3d76cfc17db53a988
a61e123314188bd0453320008e01b4bbb665bee09039f4cbd9bef44de410ce67

HTTP Headers

GET /jtqp6z/css/agent-manage/animate.css HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:27 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Jul 2023 03:22:11 GMT
ETag: W/"64b8a863-1184c"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: gocache
Expires: Sun, 05 May 2024 06:59:27 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 73f751ee259f5ad9cd3890eb2b2ba8cd
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT

static-web.ggu4w15rx3x0.com/jtqp6z/js/lang/lang_chs.js?v=1265

182.160.14.112

200 OK

12 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/js/lang/lang_chs.js?v=1265
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text
Size
12 kB (11573 bytes)
Hash
513a4a7579cbb72d6b43a7f184048379
3f7c14b044df6075556b537f3d668d79495daea0
dde540ed01c5b5b11e4b6f40cbfedcbcbf255508cab78a4fb4fc040a48b7892e

HTTP Headers

GET /jtqp6z/js/lang/lang_chs.js?v=1265 HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 01 May 2024 03:13:44 GMT
ETag: W/"6631b368-a64d"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:27 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 3cb4455bb15253e7fa430bd14b3bbf82
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Content-Encoding: br

static-web.ggu4w15rx3x0.com/jtqp6z/js/lang/error_chs.js?v=100

182.160.14.112

200 OK

5.8 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/js/lang/error_chs.js?v=100
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text
Size
5.8 kB (5834 bytes)
Hash
b032699212efdfd1f0fb9a26e7d29e76
1067d67619419c1a81af89d64f93a7552299b9c5
f6c58cecaf3d3ef4e480205ba2d3173e5305cb4f60b7038dc18cf0aa875a543f

HTTP Headers

GET /jtqp6z/js/lang/error_chs.js?v=100 HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 02 Apr 2024 03:01:49 GMT
ETag: W/"660b751d-6124"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:27 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 4990515b9cbd8726e891f5babfdedb76
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Content-Encoding: br

static-web.ggu4w15rx3x0.com/jtqp6z/js/game/hallgame.js?39

182.160.14.112

200 OK

1.2 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/js/game/hallgame.js?39
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (349)
Size
1.2 kB (1165 bytes)
Hash
90584be522bad60a2c21ee5e7c507223
2c438050e9f3dda6746ee5f07bffc5fa0c26b3f1
23569a58e44b9ae62231d68c388e4fef30a0a00d06bb4a24ec05ee15ffe9e056

HTTP Headers

GET /jtqp6z/js/game/hallgame.js?39 HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 07 Mar 2024 03:37:20 GMT
ETag: W/"65e93670-dbf"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:27 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 01354ce2729c4714e64b69386b80d7b9
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Content-Encoding: br

static-web.ggu4w15rx3x0.com/jtqp6z/js/ewangdun/load.js?v=2

182.160.14.112

200 OK

3.9 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/js/ewangdun/load.js?v=2
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (549)
Size
3.9 kB (3917 bytes)
Hash
91d55058ab0642043a0cc8e1e15d4ee5
86897a2472cea2fbbf900373a9368cfb25c81452
7d76abd78e38a9ad2b848fe9d5c1c2decd17d59e6f5ed34ef01b61bec9af7b63

HTTP Headers

GET /jtqp6z/js/ewangdun/load.js?v=2 HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 20 Jul 2023 03:22:16 GMT
ETag: W/"64b8a868-2cf8"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:27 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 6b1a14599816110bb08f8a2d7bd87b57
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Content-Encoding: br

static-web.ggu4w15rx3x0.com/jtqp6z/js/jquery/jquery.scrollbox.js

182.160.14.112

200 OK

1.8 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/js/jquery/jquery.scrollbox.js
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
1.8 kB (1842 bytes)
Hash
e723221958fd875addec70919eacecf7
3205c9e53b8aaa5ae52cc05fd8f21e874a6bd33e
fe2973687ecf5490ab5159b8fa6c6ffdcac1a7e44158e6f82ccefc56c4e3c83c

HTTP Headers

GET /jtqp6z/js/jquery/jquery.scrollbox.js HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 20 Jul 2023 02:33:48 GMT
ETag: W/"64b89d0c-23ee"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:27 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 1293d5dc896a6e1f3209c365f9457367
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Content-Encoding: br

static-web.ggu4w15rx3x0.com/jtqp6z/css/agent-manage/font-awesome.min.css

182.160.14.112

200 OK

5.5 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/css/agent-manage/font-awesome.min.css
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
ASCII text, with very long lines (23907)
Size
5.5 kB (5480 bytes)
Hash
d41a9129654a03ce6518c0a3da810d79
c4d123b21d01b166c8fe6ebcc15358cacf899c83
8fecb7f69bc2fc44f33aef6e25792a63d87a633a3deea2c08e9225bb4eae7843

HTTP Headers

GET /jtqp6z/css/agent-manage/font-awesome.min.css HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:27 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Jul 2023 03:22:11 GMT
ETag: W/"64b8a863-5e05"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: gocache
Expires: Sun, 05 May 2024 06:59:27 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 8b3d217eef557e4b46f00035cf76d7c8
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT

static-web.ggu4w15rx3x0.com/jtqp6z/js/jquery/jquery.cookie.js

182.160.14.112

200 OK

1.2 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/js/jquery/jquery.cookie.js
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
1.2 kB (1236 bytes)
Hash
0f1f6cd6e0036897019b376d38593403
498b29de6e170fffc8535183b7d6550490f0a159
8c0301b3dba5061632d7321cd8bb7bd527f48288d5cb15ff614ea0c1dcc1ad69

HTTP Headers

GET /jtqp6z/js/jquery/jquery.cookie.js HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 20 Jul 2023 02:33:48 GMT
ETag: W/"64b89d0c-c44"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:27 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 19ab936a4195372d3b54571eb48a5b56
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Content-Encoding: br

static-web.ggu4w15rx3x0.com/jtqp6z/js/general.js?20230328

182.160.14.112

200 OK

2.2 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/js/general.js?20230328
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
2.2 kB (2219 bytes)
Hash
5063d82922069c27b8cba6029280acbe
14c3d441b2e63d3ef995c6624b3593892f09041d
d769842f2b689226adb6fad77230b524f647765d9faca7ce172f32a20bea3a4c

HTTP Headers

GET /jtqp6z/js/general.js?20230328 HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 20 Jul 2023 01:49:55 GMT
ETag: W/"64b892c3-1c8b"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:27 GMT
Cache-Control: max-age=86400
c-Type: st
rid: a514b9fd5e18511d2353724835106663
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Content-Encoding: br

static-web.ggu4w15rx3x0.com/jtqp6z/js/popup.js

182.160.14.112

200 OK

8.6 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/js/popup.js
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
8.6 kB (8564 bytes)
Hash
49a3c10091206bbef0c89eedb84a9b27
a91d9fb471d2aa069216447564abf269d22f6f82
f814ec8f85208580a30b74df5cc1fdb2b2fee25d521f583bd2ef265983714e18

HTTP Headers

GET /jtqp6z/js/popup.js HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 20 Jul 2023 03:22:16 GMT
ETag: W/"64b8a868-8eaf"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:27 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 5f2530885f88fea4efc989eaa91a2e26
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Content-Encoding: br

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.3.0

104.17.24.14

200 OK

77 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.3.0
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://365bet838.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://365bet838.com
DNT: 1
Connection: keep-alive
Referer: https://static-web.ggu4w15rx3x0.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:27 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 207802
expires: Thu, 24 Apr 2025 06:59:27 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PA%2Ft9azkF3AxAWv5Ju7yutu0gMWuCp3tuatgg62tJ6f%2FzzFn9fSoQtfPHxu3HLdFZ9cNzlTjego1I6oseLyxulEk2YQ7RGE6tQ8dvjWPcLekopP4E1UJt%2F7yrFXMC4pXI0k9BMFR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87e69bb3fe6e56bb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

365bet838.com/static/images/home/liveinplay_cn.png

45.200.73.198

200 OK

15 kB

URL GET HTTP/2
365bet838.com/static/images/home/liveinplay_cn.png
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
15 kB (15229 bytes)
Hash
35a11c9abe996965e9f917b28b7ffca6
8d67a4726bb3e77c4c7789f48709d83408e0436a
73f6f2ea721c02e035081e2c52bbfeaae91be55f01062cf7aab19c57ce924e30

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/images/home/liveinplay_cn.png HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Cookie: sel_cur=CNY; PHPSESSID=g535tg978d9lpu8l9tf45urs8h; _language_code=chs; _language_type=cn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:24 GMT
content-type: image/png
last-modified: Thu, 15 Jun 2023 06:54:35 GMT
etag: W/"648ab5ab-bd0"
x-env: T8
content-encoding: gzip
server: gocache
expires: Sun, 05 May 2024 06:59:24 GMT
cache-control: max-age=86400
c-type: st
rid: 8147dd472131d78d4042e94ed510985e
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2

static-web.ggu4w15rx3x0.com/jtqp6z/util/all.js

182.160.14.112

200 OK

24 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/util/all.js
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (5480)
Size
24 kB (23596 bytes)
Hash
0d2860f26ccea6044bd194b688d3695b
bf651df7882599152844797ca47cd95ff69455c8
46220a311f341c1430820bdff9925896b9a7e6535ac04c90ccb0cd8361f69abf

HTTP Headers

GET /jtqp6z/util/all.js HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 30 Jan 2024 03:13:43 GMT
ETag: W/"65b86967-14360"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 8508ad56d8d51ff966768c710802df5f
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Content-Encoding: br

static-web.ggu4w15rx3x0.com/jtqp6z/util/rsa.js

182.160.14.112

200 OK

4.7 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/util/rsa.js
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
ASCII text, with very long lines (5026)
Size
4.7 kB (4672 bytes)
Hash
2e28749b1ce6013a456d4498a447dff3
89d8c436922a84f097e86090179d112c3d6e13c2
1748bdff25c71702d781b076f961920ef32283e324153b256e963202431a35ba

HTTP Headers

GET /jtqp6z/util/rsa.js HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 20 Jul 2023 03:23:16 GMT
ETag: W/"64b8a8a4-34ca"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: a06df5d4abcef45a05218287ee3e2926
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Content-Encoding: br

static-web.ggu4w15rx3x0.com/jtqp6z/js/kz.js

182.160.14.112

200 OK

12 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/js/kz.js
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
12 kB (12333 bytes)
Hash
b431d0bec74ccca600528e2e0bfe2d51
42bd27a1515c114820aca776ffbd7fe0068586a1
f0ebf822d30ea02720d57762c0b439d34153a92e9857576b8cadac7a72e6ece9

HTTP Headers

GET /jtqp6z/js/kz.js HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 21 Mar 2024 00:53:30 GMT
ETag: W/"65fb850a-12a65"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 6c10aea80f6c36f8487baf7963cdcc26
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Content-Encoding: br

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/header_logo.png

182.160.14.112

2.0 kB

URL GET
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/header_logo.png
IP
182.160.14.112:0
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
PNG image data, 139 x 29, 8-bit/color RGBA, non-interlaced
Size
2.0 kB (2006 bytes)
Hash
af017a9ff95857ee6ecaa0095fe7f0d5
1e63b5ad6f9c41d8d30de14184618a5c4c8c62e6
0db3f8113d51ab5c0ef5f9dcbceeb88e80ba10dd4c6c24ec17ba7ad170a99616

HTTP Headers

GET /jtqp6z/static/images/header_logo.png HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Jul 2023 03:22:38 GMT
ETag: W/"64b8a87e-8dd"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: ea0eb0b3e1bf4c09052dd23ba513674b
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/body_bg.jpg

182.160.14.112

1.1 kB

URL GET
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/body_bg.jpg
IP
182.160.14.112:0
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 100x516, components 3
Size
1.1 kB (1136 bytes)
Hash
8baffa0afc278293ab7e70ecce7ca6a2
f4df9c8377308238d85750583441152ef5057376
74261bc4929c83dfcc687e0d58c739d201f18b99a69c51e0f53ca5d3e6b02cc0

HTTP Headers

GET /jtqp6z/static/images/body_bg.jpg HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static-web.ggu4w15rx3x0.com/jtqp6z/static/style/css.css?1714805963
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Jul 2023 01:50:31 GMT
ETag: W/"64b892e7-83a"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 31cef4e5367ee668d540b1e6528474e5
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/menu_bg.jpg

182.160.14.112

408 B

URL GET
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/menu_bg.jpg
IP
182.160.14.112:0
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 120x618, components 3
Size
408 B (408 bytes)
Hash
07cda116c2457daf9d5c5de6797fc776
d5bf1788c56d13644a64c85d0d565e14e3dd554b
b50064be9dac43f43fe6b60a894a2f0235b7fe3d5e94a9d3d499fc59019d0782

HTTP Headers

GET /jtqp6z/static/images/menu_bg.jpg HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static-web.ggu4w15rx3x0.com/jtqp6z/static/style/css.css?1714805963
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Jul 2023 01:50:31 GMT
ETag: W/"64b892e7-435"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 409ca881194a0ac2a64bf4b917925732
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/notice_icon.png

182.160.14.112

200 OK

729 B

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/notice_icon.png
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
PNG image data, 16 x 110, 8-bit/color RGBA, non-interlaced
Size
729 B (729 bytes)
Hash
f23dabb848895c3eaa13f475821f693c
8a59bc77e337ad7794a5aee591e8dcac4ea6b3f6
6c4a74f33066b916c8f25ff79910ecef63c790dc457691909eb788b5e59a3404

HTTP Headers

GET /jtqp6z/static/images/notice_icon.png HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static-web.ggu4w15rx3x0.com/jtqp6z/static/style/main.css?1714805963
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: image/png
Content-Length: 729
Connection: keep-alive
Last-Modified: Thu, 20 Jul 2023 02:34:00 GMT
ETag: "64b89d18-2d9"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: ee00abb220c509850230b82f5ebfd2d7
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Accept-Ranges: bytes

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/bg_sports_right.gif

182.160.14.112

200 OK

328 B

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/bg_sports_right.gif
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 204
Size
328 B (328 bytes)
Hash
529e66397f0f58b9403713b0f0f2389e
a41b221c87cd871f9e6accecd01fe7ddcf36267f
88e00e0e7c3dedd5a0e48f4143f22bb596c3356697bcaef8d2ae0d683966afa8

HTTP Headers

GET /jtqp6z/static/images/bg_sports_right.gif HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static-web.ggu4w15rx3x0.com/jtqp6z/static/style/css.css?1714805963
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: image/gif
Content-Length: 328
Connection: keep-alive
Last-Modified: Thu, 20 Jul 2023 03:59:35 GMT
ETag: "64b8b127-148"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 57257b4f160ae433c0bf0e4f4fe82d41
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Accept-Ranges: bytes

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/common_spirits.png

182.160.14.112

5.6 kB

URL GET
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/common_spirits.png
IP
182.160.14.112:0
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
PNG image data, 197 x 796, 8-bit/color RGBA, non-interlaced
Size
5.6 kB (5578 bytes)
Hash
27f978d6cf3511e195b60448fa0bbaea
e92211e44cc53b7d424803effc16da6458068545
ba1a84dc786f164cbe63afc8966596a96cb3749ed9d4cfe38eb1ef17f66498d2

HTTP Headers

GET /jtqp6z/static/images/common_spirits.png HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static-web.ggu4w15rx3x0.com/jtqp6z/css/base.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Jul 2023 03:59:35 GMT
ETag: W/"64b8b127-17c2"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: fada84c5e6a5ed88e49cce8d1c0e216a
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT

365bet838.com/static/images/btn_start_cn.png

45.200.73.198

200 OK

912 B

URL GET HTTP/2
365bet838.com/static/images/btn_start_cn.png
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type
PNG image data, 80 x 15, 8-bit/color RGBA, non-interlaced
Size
912 B (912 bytes)
Hash
4ef1aa99fd272d78de78bd3604abf415
55f959a4b5a09dc272c5a2319c32728942c8b89b
167dc9b28a40804c357e8c00d76859dcb738cc7f5f6d10ac968f62b83303a5c5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/images/btn_start_cn.png HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Cookie: sel_cur=CNY; PHPSESSID=g535tg978d9lpu8l9tf45urs8h; _language_code=chs; _language_type=cn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:28 GMT
content-type: image/png
content-length: 912
last-modified: Fri, 16 Jun 2023 03:26:47 GMT
etag: "648bd677-390"
x-env: T8
server: gocache
expires: Sun, 05 May 2024 06:59:28 GMT
cache-control: max-age=86400
c-type: st
rid: 8b7059ef4d05b237c5915ba6608877f7
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/home/NCDBP_210x204.webp

182.160.14.112

200 OK

37 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/home/NCDBP_210x204.webp
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
37 kB (37390 bytes)
Hash
dbbc87e799d41c9e30ddf441cbb39e0c
89ad18792dfe36e3d6afd9c82da906f45f614644
8cbefc755b04bedb2005fe9b92899d3e6ee45dccb9c05105bf5dcc18051e0c93

HTTP Headers

GET /jtqp6z/static/images/home/NCDBP_210x204.webp HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static-web.ggu4w15rx3x0.com/jtqp6z/static/style/css.css?1714805963
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: image/webp
Content-Length: 37390
Connection: keep-alive
Last-Modified: Tue, 29 Aug 2023 01:41:19 GMT
ETag: "64ed4cbf-920e"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 374858bb24b945bb2266ae4cfe20e5b4
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Accept-Ranges: bytes

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/header_bg.jpg

182.160.14.112

4.3 kB

URL GET
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/header_bg.jpg
IP
182.160.14.112:0
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1002x69, components 3
Size
4.3 kB (4270 bytes)
Hash
b91923a6c8b74388f5c8fd112e2a2782
61443911b4820c2ab2c7e016c1b40df3724d00b9
989f67ec4863695cddc54c629836155daaaca373c38f839e3de6275a89e02e44

HTTP Headers

GET /jtqp6z/static/images/header_bg.jpg HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static-web.ggu4w15rx3x0.com/jtqp6z/static/style/css.css?1714805963
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Jul 2023 03:22:38 GMT
ETag: W/"64b8a87e-160f"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: e92e698910d7ff2eab11dbb1d58631ea
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT

static-web.ggu4w15rx3x0.com/jtqp6z/js/jquery/jquery.cookie.js

182.160.14.112

200 OK

1.2 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/js/jquery/jquery.cookie.js
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
1.2 kB (1236 bytes)
Hash
0f1f6cd6e0036897019b376d38593403
498b29de6e170fffc8535183b7d6550490f0a159
8c0301b3dba5061632d7321cd8bb7bd527f48288d5cb15ff614ea0c1dcc1ad69

HTTP Headers

GET /jtqp6z/js/jquery/jquery.cookie.js HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 20 Jul 2023 02:33:48 GMT
ETag: W/"64b89d0c-c44"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: a8d87405a183c4f932247e1391efa982
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Content-Encoding: br

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/panel_bg.jpg

182.160.14.112

3.1 kB

URL GET
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/panel_bg.jpg
IP
182.160.14.112:0
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 271x234, components 3
Size
3.1 kB (3099 bytes)
Hash
564b0735e8d2be1bee6c233c70592d64
14c6097955dd5828453a9ef405096ea470487cca
1fd667ff5e9085d4e8b3581995bfbbd6279ab6177ae8961d35b0d091987c2146

HTTP Headers

GET /jtqp6z/static/images/panel_bg.jpg HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static-web.ggu4w15rx3x0.com/jtqp6z/static/style/css.css?1714805963
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 20 Jul 2023 01:50:31 GMT
ETag: W/"64b892e7-e14"
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: a957e2e694841147466fbb532046a198
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/home/home_chs_banner_bg.webp

182.160.14.112

200 OK

86 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/home/home_chs_banner_bg.webp
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
86 kB (86066 bytes)
Hash
47fa46e330ad78f8cd75b1574488f654
d0f1f4e0f7a140a63f4579ab7baca2d9b2628ef8
da579d3e7d4cc6ecbf6043d16e70161a7604424f2d5850a3be2cbb9f00380011

HTTP Headers

GET /jtqp6z/static/images/home/home_chs_banner_bg.webp HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static-web.ggu4w15rx3x0.com/jtqp6z/static/style/css.css?1714805963
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: image/webp
Content-Length: 86066
Connection: keep-alive
Last-Modified: Tue, 29 Aug 2023 01:41:23 GMT
ETag: "64ed4cc3-15032"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: a9748942afe71a64a6b60fc21f5f7b3a
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Accept-Ranges: bytes

static-web.ggu4w15rx3x0.com/jtqp6z/js/popup.js

182.160.14.112

200 OK

8.6 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/js/popup.js
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
8.6 kB (8564 bytes)
Hash
49a3c10091206bbef0c89eedb84a9b27
a91d9fb471d2aa069216447564abf269d22f6f82
f814ec8f85208580a30b74df5cc1fdb2b2fee25d521f583bd2ef265983714e18

HTTP Headers

GET /jtqp6z/js/popup.js HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 20 Jul 2023 03:22:16 GMT
ETag: W/"64b8a868-8eaf"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 2df9e29d6feb0ca77548d503e53f38a5
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Content-Encoding: br

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/nav/esports_drop.webp

182.160.14.112

200 OK

127 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/nav/esports_drop.webp
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
127 kB (127414 bytes)
Hash
5cef38b607257e4747e09531b7fa8dda
d279dfef028bc85e4eb4b9f3968a1dc8d54794db
1ad2307e431e516be56ca227661cec61dc6abcdc1c7343b1da809be39b27efe9

HTTP Headers

GET /jtqp6z/static/images/nav/esports_drop.webp HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static-web.ggu4w15rx3x0.com/jtqp6z/static/style/main.css?1714805963
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: image/webp
Content-Length: 127414
Connection: keep-alive
Last-Modified: Wed, 08 Nov 2023 01:35:20 GMT
ETag: "654ae5d8-1f1b6"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: b4c8ddc68d38a9473a13134ac0f57228
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Accept-Ranges: bytes

static-web.ggu4w15rx3x0.com/jtqp6z/js/general.js?20230328

182.160.14.112

200 OK

2.2 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/js/general.js?20230328
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
2.2 kB (2219 bytes)
Hash
5063d82922069c27b8cba6029280acbe
14c3d441b2e63d3ef995c6624b3593892f09041d
d769842f2b689226adb6fad77230b524f647765d9faca7ce172f32a20bea3a4c

HTTP Headers

GET /jtqp6z/js/general.js?20230328 HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:29 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 20 Jul 2023 01:49:55 GMT
ETag: W/"64b892c3-1c8b"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:29 GMT
Cache-Control: max-age=86400
c-Type: st
rid: ad02861fc8a6872ad3fb50598cb6be2c
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Content-Encoding: br

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/nav/lotto_drop.webp

182.160.14.112

200 OK

629 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/nav/lotto_drop.webp
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
629 kB (628640 bytes)
Hash
c5d40482b6cd7f5ef758affcca35826e
d9629294be86e46d879327c612f05bd138188ef5
2de0dd7e8627ffda3f239776c6bf444d33cbf118485626286f6eec66a66a1408

HTTP Headers

GET /jtqp6z/static/images/nav/lotto_drop.webp HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static-web.ggu4w15rx3x0.com/jtqp6z/static/style/main.css?1714805963
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: image/webp
Content-Length: 628640
Connection: keep-alive
Last-Modified: Wed, 06 Sep 2023 02:53:34 GMT
ETag: "64f7e9ae-997a0"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 9b7c43f7bacf5b86df1a9413244eb5c5
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Accept-Ranges: bytes

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/nav/fish_drop.webp

182.160.14.112

200 OK

349 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/nav/fish_drop.webp
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
349 kB (348840 bytes)
Hash
d87d9507edad76f7b9a1eebf9d736ce3
f725a2cbdc9d1f287716cb6dc9e5b23271ad9185
e1b93a775ec72782e51105874d226a7d9881e8e1c6d044d5ba6e6de0dc6c87dd

HTTP Headers

GET /jtqp6z/static/images/nav/fish_drop.webp HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static-web.ggu4w15rx3x0.com/jtqp6z/static/style/main.css?1714805963
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:29 GMT
Content-Type: image/webp
Content-Length: 348840
Connection: keep-alive
Last-Modified: Wed, 08 Nov 2023 01:35:21 GMT
ETag: "654ae5d9-552a8"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:29 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 15bab4ff5e13d512545bcd330e23bd0c
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Accept-Ranges: bytes

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/nav/sports_drop.webp

182.160.14.112

200 OK

1.7 MB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/nav/sports_drop.webp
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
1.7 MB (1659050 bytes)
Hash
4b07c84fb499382be531d4adde86fc3e
114edf5ace533e712c3f43f4dce57b91baf6bef5
e4c624e373a8277bff68082016b511f31df5dd71577413e9715364e7f4062c15

HTTP Headers

GET /jtqp6z/static/images/nav/sports_drop.webp HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static-web.ggu4w15rx3x0.com/jtqp6z/static/style/main.css?1714805963
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: image/webp
Content-Length: 1659050
Connection: keep-alive
Last-Modified: Wed, 08 Nov 2023 01:35:20 GMT
ETag: "654ae5d8-1950aa"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 6e4a964e19deca69b67a37ed012ded98
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Accept-Ranges: bytes

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/nav/games_drop.webp

182.160.14.112

200 OK

975 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/nav/games_drop.webp
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
975 kB (974658 bytes)
Hash
3335a8943069f5f00fb2e2e8eaa37c69
cff6d7d33878f712d476c3c6ede490eebb9962d0
cb5a21bac5a9d7742e1667d3fa69db012f12cf35def37e65c35dd75fa0000ca7

HTTP Headers

GET /jtqp6z/static/images/nav/games_drop.webp HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static-web.ggu4w15rx3x0.com/jtqp6z/static/style/main.css?1714805963
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:29 GMT
Content-Type: image/webp
Content-Length: 974658
Connection: keep-alive
Last-Modified: Mon, 29 Apr 2024 02:24:17 GMT
ETag: "662f04d1-edf42"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:29 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 5f5a2fdbe42606167b29e635b9b0c4b0
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Accept-Ranges: bytes

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/pagcor_logo.webp?2

182.160.14.112

200 OK

4.8 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/pagcor_logo.webp?2
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 224x225, Scaling: [none]x[none], YUV color, decoders should clamp
Size
4.8 kB (4780 bytes)
Hash
63d6d2aae4674752891dcbda686a2b97
24396a8ac27fe1d76bdaee4ee9fd5a04e5a73690
d4fba6e127f09e9fb80f12e48e9ea2857bb1cd9885302ef7ed0ea8b7ab7ae8cc

HTTP Headers

GET /jtqp6z/static/images/pagcor_logo.webp?2 HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:30 GMT
Content-Type: image/webp
Content-Length: 4780
Connection: keep-alive
Last-Modified: Mon, 30 Oct 2023 01:19:50 GMT
ETag: "653f04b6-12ac"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:30 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 8dfd4bd83f8e2ac9281da3b955dd91b9
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Accept-Ranges: bytes

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/nav/live_drop.webp?2

182.160.14.112

200 OK

1.7 MB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/nav/live_drop.webp?2
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
1.7 MB (1742578 bytes)
Hash
bf040d0d452ef3145afa5fd1bd3d8c94
0ee628457b6531bc30ac986cf82b1a6594fc20cb
6550c3f01b9f564a0241e002f3158063f90ded73a66ac60f3a73e5650a5f0c33

HTTP Headers

GET /jtqp6z/static/images/nav/live_drop.webp?2 HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static-web.ggu4w15rx3x0.com/jtqp6z/static/style/main.css?1714805963
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: image/webp
Content-Length: 1742578
Connection: keep-alive
Last-Modified: Fri, 26 Apr 2024 03:12:34 GMT
ETag: "662b1ba2-1a96f2"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: c6cab8c26269be99be392d380bc5911e
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Accept-Ranges: bytes

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/nav/chess_drop.webp

182.160.14.112

200 OK

983 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/nav/chess_drop.webp
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
983 kB (983424 bytes)
Hash
0cd2cae60f754f85b686fcfc4bdffafa
76599c4ea606e181073850476ce68c1fc10737d9
c8962df5d9f034d19cb5e8f19026dd3a5d2ed480aa54d1ff46dbc4a128e9ec32

HTTP Headers

GET /jtqp6z/static/images/nav/chess_drop.webp HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static-web.ggu4w15rx3x0.com/jtqp6z/static/style/main.css?1714805963
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:28 GMT
Content-Type: image/webp
Content-Length: 983424
Connection: keep-alive
Last-Modified: Wed, 08 Nov 2023 01:35:21 GMT
ETag: "654ae5d9-f0180"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:28 GMT
Cache-Control: max-age=86400
c-Type: st
rid: 94591ab364ea57650f66aa4c78322ce3
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Accept-Ranges: bytes

365bet838.com/home/getFloatingWindowsData

45.200.73.198

200 OK

5.3 kB

URL GET HTTP/2
365bet838.com/home/getFloatingWindowsData
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
5.3 kB (5291 bytes)
Hash
f73d988ed2589e804beb5e9c100493ee
e181835abfeb98c5bf015e80eb11cd505c2c1c08
d10b6ad01f84403ea9f3bcc3b3f16a5f09925169013de784c5c3a4bfb930fae5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/getFloatingWindowsData HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Cookie: sel_cur=CNY; PHPSESSID=g535tg978d9lpu8l9tf45urs8h; _language_code=chs; _language_type=cn
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:29 GMT
content-type: text/html; charset=UTF-8
set-cookie: sel_cur=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
sel_cur=CNY; expires=Sun, 05-May-2024 06:59:29 GMT; Max-Age=86400; path=/
x-env: T8, T8
content-encoding: gzip
server: gocache
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
c-type: df
rid: cc6cc754ffe8e3b64af4befda65df78c
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

365bet838.com/home/getFloatingWindowsData

45.200.73.198

200 OK

2.9 kB

URL GET HTTP/2
365bet838.com/home/getFloatingWindowsData
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
2.9 kB (2901 bytes)
Hash
6397c36caf3e9bdbf87f43fe46608757
9a3b780cebec56c9e67c9ee33229ab948587ee2d
85f5b3535ed59f2df00085234d4e006e8f76b57530772046de488fc4c9a5b260

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/getFloatingWindowsData HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Cookie: sel_cur=CNY; PHPSESSID=g535tg978d9lpu8l9tf45urs8h; _language_code=chs; _language_type=cn
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:29 GMT
content-type: text/html; charset=UTF-8
set-cookie: sel_cur=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
sel_cur=CNY; expires=Sun, 05-May-2024 06:59:29 GMT; Max-Age=86400; path=/
x-env: T8, T8
content-encoding: gzip
server: gocache
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
c-type: df
rid: 6c43c326894519d3f15352cbae799630
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

365bet838.com/home/getRedpacketData/

45.200.73.198

200 OK

6.1 kB

URL GET HTTP/2
365bet838.com/home/getRedpacketData/
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
6.1 kB (6087 bytes)
Hash
e4bdc6c5f32dc7bdf4ecbd3462825b1f
4b081f00b827d04d8ec9cc8b7d2c1da23c5a3745
c65be95d3d7de0f655b710109e13fa8f7e5bd76d2dd76ec15e35c3e54b0cb202

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/getRedpacketData/ HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Cookie: sel_cur=CNY; PHPSESSID=g535tg978d9lpu8l9tf45urs8h; _language_code=chs; _language_type=cn
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:29 GMT
content-type: text/html; charset=UTF-8
set-cookie: sel_cur=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
sel_cur=CNY; expires=Sun, 05-May-2024 06:59:29 GMT; Max-Age=86400; path=/
x-env: T8, T8
content-encoding: gzip
server: gocache
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
c-type: df
rid: cd841a671cd92afc805aad564a1c2e29
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

365bet838.com/home/getGeo

45.200.73.198

200 OK

8.9 kB

URL POST HTTP/2
365bet838.com/home/getGeo
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type
JSON text data
Size
8.9 kB (8882 bytes)
Hash
86178cb8dacbe7204c174581eedb5d15
2f1b4d6aaedb3b2e00e57cb42a93b95525f858e6
f946bf711a387a2aa40724e47c8b4daac581eb87a255d5c689131fa180088383

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /home/getGeo HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://365bet838.com
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Cookie: sel_cur=CNY; PHPSESSID=g535tg978d9lpu8l9tf45urs8h; _language_code=chs; _language_type=cn
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:29 GMT
content-type: application/json;charset=utf-8
vary: Accept-Encoding
set-cookie: sel_cur=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
sel_cur=CNY; expires=Sun, 05-May-2024 06:59:29 GMT; Max-Age=86400; path=/
x-env: T8, T8
server: gocache
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
c-type: df
rid: 08f252507602cd943c9c6a2c2363adee
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: br
X-Firefox-Spdy: h2

365bet838.com/home/getBannerList/?_=1714805967552

45.200.73.198

200 OK

374 B

URL GET HTTP/2
365bet838.com/home/getBannerList/?_=1714805967552
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (450), with no line terminators
Size
374 B (374 bytes)
Hash
f5b8c3711450fad7b9ecf1f0a0e8981c
cfdd42f297f1f98cf7c5ade231250ab3aceb78b6
25b09dfe95a72808aedd2fa6418cc28bd64ab2affadd499c4485b351b8d00989

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/getBannerList/?_=1714805967552 HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Cookie: sel_cur=CNY; PHPSESSID=g535tg978d9lpu8l9tf45urs8h; _language_code=chs; _language_type=cn
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:29 GMT
content-type: application/json
vary: Accept-Encoding
set-cookie: sel_cur=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
sel_cur=CNY; expires=Sun, 05-May-2024 06:59:29 GMT; Max-Age=86400; path=/
x-env: T8, T8
server: gocache
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
c-type: df
rid: 7f739bf8f77fad1295a588c5e7b96b47
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: br
X-Firefox-Spdy: h2

365bet838.com/static/images/bg_keno.jpg

45.200.73.198

200 OK

9.3 kB

URL GET HTTP/2
365bet838.com/static/images/bg_keno.jpg
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 271x80, components 3
Size
9.3 kB (9338 bytes)
Hash
40791bdfc606f697f708c1d46cac0c1a
1993a6b4062da8838740ce47442338f64cd1e63d
fc77baec630d2061e6b02cac290a6257b062fb63cbfc375c52afc6532e78988b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/images/bg_keno.jpg HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Cookie: sel_cur=CNY; PHPSESSID=g535tg978d9lpu8l9tf45urs8h; _language_code=chs; _language_type=cn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:24 GMT
content-type: image/jpeg
last-modified: Fri, 16 Jun 2023 03:26:47 GMT
etag: W/"648bd677-247a"
x-env: T8
content-encoding: gzip
server: gocache
expires: Sun, 05 May 2024 06:59:24 GMT
cache-control: max-age=86400
c-type: st
rid: 9635ab3ec28d97eecf31f97c76ebeb3e
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2

365bet838.com/

45.200.73.198

200 OK

317 kB

URL User Request GET HTTP/2
365bet838.com/
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type

Size
317 kB (316630 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:23 GMT
content-type: text/html; charset=UTF-8
set-cookie: sel_cur=CNY; expires=Sun, 05-May-2024 06:59:23 GMT; Max-Age=86400; path=/
PHPSESSID=g535tg978d9lpu8l9tf45urs8h; path=/
_language_type=cn; expires=Sun, 04-May-2025 06:59:23 GMT; Max-Age=31536000; path=/
_language_code=chs; path=/
appflyerWebView=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
appsflyerAppId=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
appsflyerKey=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
_pw_cookie_after_login=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=365bet838.com
_language_type=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
_language_type=cn; path=/
_pw_cookie_after_login=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=365bet838.com
_pw_cookie_after_login=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=365bet838.com
x-env: T8, T8
content-encoding: gzip
server: gocache
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
c-type: df
rid: 70d2ada858afe9ddcccde66d03c10b52
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

365bet838.com/home/getRedpacketDataV2/

45.200.73.198

200 OK

2 B

URL GET HTTP/2
365bet838.com/home/getRedpacketDataV2/
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type
JSON text data
Size
2 B (2 bytes)
Hash
d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/getRedpacketDataV2/ HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Cookie: sel_cur=CNY; PHPSESSID=g535tg978d9lpu8l9tf45urs8h; _language_code=chs; _language_type=cn
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:29 GMT
content-type: text/html; charset=UTF-8
set-cookie: sel_cur=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
sel_cur=CNY; expires=Sun, 05-May-2024 06:59:29 GMT; Max-Age=86400; path=/
x-env: T8, T8
content-encoding: gzip
server: gocache
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
c-type: df
rid: d98af0832d2b10d117e98e2adcf1c163
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

365bet838.com/home/getRedpacketV2SiteMsg/

45.200.73.198

200 OK

310 B

URL GET HTTP/2
365bet838.com/home/getRedpacketV2SiteMsg/
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (334), with no line terminators
Size
310 B (310 bytes)
Hash
823ae4f6a09d73ef14d2ba61e6fdd7a7
cf3bf579b83a7f3d720d625a216521f29a9cfe0d
a7bac778d0fea977260c05837d7a7bfd5b71109e1ecc72fd61488252e8b90178

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/getRedpacketV2SiteMsg/ HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Cookie: PHPSESSID=g535tg978d9lpu8l9tf45urs8h; _language_code=chs; _language_type=cn; sel_cur=CNY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:30 GMT
content-type: text/html; charset=UTF-8
set-cookie: sel_cur=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
sel_cur=CNY; expires=Sun, 05-May-2024 06:59:30 GMT; Max-Age=86400; path=/
_currentBrand=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
x-env: T8, T8
content-encoding: gzip
server: gocache
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
c-type: df
rid: 1f26a38598c32105b096193e278d9094
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

365bet838.com/home/getRedpacketV2SiteMsg/

45.200.73.198

200 OK

310 B

URL GET HTTP/2
365bet838.com/home/getRedpacketV2SiteMsg/
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (334), with no line terminators
Size
310 B (310 bytes)
Hash
823ae4f6a09d73ef14d2ba61e6fdd7a7
cf3bf579b83a7f3d720d625a216521f29a9cfe0d
a7bac778d0fea977260c05837d7a7bfd5b71109e1ecc72fd61488252e8b90178

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/getRedpacketV2SiteMsg/ HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Cookie: PHPSESSID=g535tg978d9lpu8l9tf45urs8h; _language_code=chs; _language_type=cn; sel_cur=CNY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:30 GMT
content-type: text/html; charset=UTF-8
set-cookie: sel_cur=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
sel_cur=CNY; expires=Sun, 05-May-2024 06:59:30 GMT; Max-Age=86400; path=/
_currentBrand=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
x-env: T8, T8
content-encoding: gzip
server: gocache
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
c-type: df
rid: 193e3efcfe6ef25cd5e103b0cfba428a
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

365bet838.com/static/images/bg_sports.jpg

45.200.73.198

200 OK

26 kB

URL GET HTTP/2
365bet838.com/static/images/bg_sports.jpg
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 270x85, components 3
Size
26 kB (26111 bytes)
Hash
a306407c426c355459173472a842625e
71648f03eef9a643c14c769567e47b89bf9d2b33
783e6f564a3261f3656048c716094aff3738f404e401b4a3cd965f789e8b9db7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/images/bg_sports.jpg HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Cookie: sel_cur=CNY; PHPSESSID=g535tg978d9lpu8l9tf45urs8h; _language_code=chs; _language_type=cn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:24 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jun 2023 06:54:35 GMT
etag: W/"648ab5ab-65ff"
x-env: T8
content-encoding: gzip
server: gocache
expires: Sun, 05 May 2024 06:59:24 GMT
cache-control: max-age=86400
c-type: st
rid: 0ed30aa5d1ffef4da5e7cdc091c33796
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2

static-web.ggu4w15rx3x0.com/jtqp6z/static/images/favicon.ico

0.0.0.0

0 B

URL GET
static-web.ggu4w15rx3x0.com/jtqp6z/static/images/favicon.ico
IP
0.0.0.0:0
ASN
#0

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /jtqp6z/static/images/favicon.ico HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:31 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 20 Jul 2023 01:50:31 GMT
ETag: W/"64b892e7-423e"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:31 GMT
Cache-Control: max-age=86400
c-Type: st
rid: b4bf805a13b45d89ebaf53822f6566a7
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Content-Encoding: br

365bet838.com/home/getSpecRedpacketData

45.200.73.198

200 OK

2 B

URL GET HTTP/2
365bet838.com/home/getSpecRedpacketData
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type
JSON text data
Size
2 B (2 bytes)
Hash
d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/getSpecRedpacketData HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Cookie: sel_cur=CNY; PHPSESSID=g535tg978d9lpu8l9tf45urs8h; _language_code=chs; _language_type=cn
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:29 GMT
content-type: text/html; charset=UTF-8
set-cookie: sel_cur=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
sel_cur=CNY; expires=Sun, 05-May-2024 06:59:29 GMT; Max-Age=86400; path=/
x-env: T8, T8
content-encoding: gzip
server: gocache
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
c-type: df
rid: 4b9d94e8eeef39949eb68ea2c5b18624
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

365bet838.com/static/images/home/204x30_live_streaming_cn.png

45.200.73.198

200 OK

2.7 kB

URL GET HTTP/2
365bet838.com/static/images/home/204x30_live_streaming_cn.png
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type
PNG image data, 204 x 30, 8-bit/color RGBA, non-interlaced
Size
2.7 kB (2689 bytes)
Hash
a3fff9c137884c6e3fd105563e79355b
8e57a49d48f6415d963acc34cf0eb6fdc4fb993a
588c0076e1674b84024c2339428826ecb52b7ae519386363265f5c3584b7ef1a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/images/home/204x30_live_streaming_cn.png HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Cookie: sel_cur=CNY; PHPSESSID=g535tg978d9lpu8l9tf45urs8h; _language_code=chs; _language_type=cn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:24 GMT
content-type: image/png
last-modified: Thu, 15 Jun 2023 06:54:35 GMT
etag: W/"648ab5ab-a81"
x-env: T8
content-encoding: gzip
server: gocache
expires: Sun, 05 May 2024 06:59:24 GMT
cache-control: max-age=86400
c-type: st
rid: 076d383e22f9a8996b02045e1914d235
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2

365bet838.com/home/getSpecRedpacketData

45.200.73.198

200 OK

2 B

URL GET HTTP/2
365bet838.com/home/getSpecRedpacketData
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type
JSON text data
Size
2 B (2 bytes)
Hash
d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/getSpecRedpacketData HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Cookie: sel_cur=CNY; PHPSESSID=g535tg978d9lpu8l9tf45urs8h; _language_code=chs; _language_type=cn
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:29 GMT
content-type: text/html; charset=UTF-8
set-cookie: sel_cur=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
sel_cur=CNY; expires=Sun, 05-May-2024 06:59:29 GMT; Max-Age=86400; path=/
x-env: T8, T8
content-encoding: gzip
server: gocache
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
c-type: df
rid: 30e7788f9c24294277a17f2176ecb305
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

365bet838.com/home/getRedpacketDataV2/

45.200.73.198

200 OK

2 B

URL GET HTTP/2
365bet838.com/home/getRedpacketDataV2/
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type
JSON text data
Size
2 B (2 bytes)
Hash
d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /home/getRedpacketDataV2/ HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Cookie: sel_cur=CNY; PHPSESSID=g535tg978d9lpu8l9tf45urs8h; _language_code=chs; _language_type=cn
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:29 GMT
content-type: text/html; charset=UTF-8
set-cookie: sel_cur=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
sel_cur=CNY; expires=Sun, 05-May-2024 06:59:29 GMT; Max-Age=86400; path=/
x-env: T8, T8
content-encoding: gzip
server: gocache
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
c-type: df
rid: 43227bb8d3e5d98a2609543582f361d2
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

365bet838.com/static/images/bg_live_casino.jpg

45.200.73.198

200 OK

15 kB

URL GET HTTP/2
365bet838.com/static/images/bg_live_casino.jpg
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 271x80, components 3
Size
15 kB (15042 bytes)
Hash
ab1bc537b0193bca763b78028d670e69
5c7b3f73fa14a2bf2a6893368a557de2aac62480
6814c3a3708fb9ede7759bc6f1f274b22fe5af35c4170598c29bbb86e9b1f8c9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/images/bg_live_casino.jpg HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Cookie: sel_cur=CNY; PHPSESSID=g535tg978d9lpu8l9tf45urs8h; _language_code=chs; _language_type=cn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:24 GMT
content-type: image/jpeg
last-modified: Fri, 16 Jun 2023 03:26:47 GMT
etag: W/"648bd677-3ac2"
x-env: T8
content-encoding: gzip
server: gocache
expires: Sun, 05 May 2024 06:59:24 GMT
cache-control: max-age=86400
c-type: st
rid: 54c5d7120fe092fb7386c66d06cee2be
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2

365bet838.com/poimg/i202309fd3386da53034089978d8c2b263502cd.png

45.200.73.198

200 OK

346 kB

URL GET HTTP/2
365bet838.com/poimg/i202309fd3386da53034089978d8c2b263502cd.png
IP
45.200.73.198:443
ASN
#133847 Anpple Tech Enterprise

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subject365bet838.com
Fingerprint83:B7:A9:66:1D:5D:E8:7A:44:C5:58:FF:A3:96:F4:A9:4C:00:AE:5E
ValidityFri, 23 Jun 2023 00:00:00 GMT - Sat, 22 Jun 2024 23:59:59 GMT

File type
PNG image data, 695 x 632, 8-bit/color RGBA, non-interlaced
Size
346 kB (345920 bytes)
Hash
2fad2602e64f033ff9900c970d1ea861
ce29506f1f3c80aea1a851470ebdaf48adc4d6fe
9e4cce1738c1e76b1b440c39f251c2c97e70b407768194a8f3d763bd9121e485

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /poimg/i202309fd3386da53034089978d8c2b263502cd.png HTTP/1.1
Host: 365bet838.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Cookie: sel_cur=CNY; PHPSESSID=g535tg978d9lpu8l9tf45urs8h; _language_code=chs; _language_type=cn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 06:59:25 GMT
content-type: image/png
last-modified: Thu, 07 Sep 2023 17:19:16 GMT
etag: W/"64fa0614-54740"
access-control-allow-origin: *
content-encoding: gzip
server: gocache
expires: Sun, 05 May 2024 06:59:25 GMT
cache-control: max-age=86400
c-type: st
rid: 488fe97a2f856aa1fbe738844827d881
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2

static-web.ggu4w15rx3x0.com/jtqp6z/js/game/Game.js

182.160.14.112

200 OK

118 kB

URL GET HTTP/1.1
static-web.ggu4w15rx3x0.com/jtqp6z/js/game/Game.js
IP
182.160.14.112:443
ASN
#136907 HUAWEI CLOUDS

Requested by
https://365bet838.com/
Certificate
IssuerSectigo Limited
Subjectstatic-web.ggu4w15rx3x0.com
Fingerprint3E:40:67:7E:CF:09:29:87:30:F7:50:26:E9:1E:AF:31:8A:57:9F:43
ValidityFri, 24 Nov 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT

File type

Size
118 kB (117694 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /jtqp6z/js/game/Game.js HTTP/1.1
Host: static-web.ggu4w15rx3x0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://365bet838.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 May 2024 06:59:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 23 Jan 2024 03:22:57 GMT
ETag: W/"65af3111-1cbbe"
Access-Control-Allow-Origin: *
Server: gocache
Expires: Sun, 05 May 2024 06:59:27 GMT
Cache-Control: max-age=86400
c-Type: st
rid: a2922f66d6eeb36c128bac34d58f5a33
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cache-Status: HIT
Content-Encoding: br

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (26)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL