| | 185.196.8.72 | 301 Moved Permanently | 0 B |
URL User Request GET HTTP/2IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: www.mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:08 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/7.4.29
expires: Thu, 18 Apr 2024 13:50:08 GMT
cache-control: max-age=3600
x-redirect-by: WordPress
location: https://mans-1xbet4755.ru/
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-content/uploads/2020/01/1xbet-%D1%80%D0%B5%D0%B3%D0%B8%D1%81%D1%82%D1%80%D0%B0%D1%86%D0%B8%D1%8F.png | 185.196.8.72 | 200 OK | 5.1 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-content/uploads/2020/01/1xbet-%D1%80%D0%B5%D0%B3%D0%B8%D1%81%D1%82%D1%80%D0%B0%D1%86%D0%B8%D1%8F.png IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
File typePNG image data, 898 x 276, 8-bit colormap, non-interlaced Hashe2e5e56bb232f1a41bfc19daf7096d44 2667e6e7f433f37da52e36f1d838e544b65c7b1e 9912e33041f739bb2b6ec5a1441f3fff2f718b537c1127831dd1eb1d7efbd72a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/01/1xbet-%D1%80%D0%B5%D0%B3%D0%B8%D1%81%D1%82%D1%80%D0%B0%D1%86%D0%B8%D1%8F.png HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:09 GMT
content-type: image/png
content-length: 5104
last-modified: Wed, 24 Feb 2021 15:18:39 GMT
etag: "60366e4f-13f0"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-content/uploads/2020/01/1xbet-%D0%B2%D1%85%D0%BE%D0%B4-%D0%B2-%D0%BB%D0%B8%D1%87%D0%BD%D1%8B%D0%B9-%D0%BA%D0%B0%D0%B1%D0%B8%D0%BD%D0%B5%D1%82.png | 185.196.8.72 | 200 OK | 3.3 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-content/uploads/2020/01/1xbet-%D0%B2%D1%85%D0%BE%D0%B4-%D0%B2-%D0%BB%D0%B8%D1%87%D0%BD%D1%8B%D0%B9-%D0%BA%D0%B0%D0%B1%D0%B8%D0%BD%D0%B5%D1%82.png IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
File typePNG image data, 672 x 209, 8-bit colormap, non-interlaced Hashfa72d493b5809eb300f29c88de78d0d2 63efc9468608f58df3e164dee2f53a76a7888e61 0c04e6718b797872bb28debe80ffa2b6284f003b0c2b3614bb0eec1370da5718
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/01/1xbet-%D0%B2%D1%85%D0%BE%D0%B4-%D0%B2-%D0%BB%D0%B8%D1%87%D0%BD%D1%8B%D0%B9-%D0%BA%D0%B0%D0%B1%D0%B8%D0%BD%D0%B5%D1%82.png HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:09 GMT
content-type: image/png
content-length: 3275
last-modified: Wed, 24 Feb 2021 15:18:39 GMT
etag: "60366e4f-ccb"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-content/uploads/2020/01/%D0%9F%D1%80%D0%BE%D0%BC%D0%BE%D0%BA%D0%BE%D0%B4-1xbet-%D0%BD%D0%B0-%D0%B4%D0%B5%D0%BD%D1%8C-%D1%80%D0%BE%D0%B6%D0%B4%D0%B5%D0%BD%D0%B8%D0%B5-768x263.jpg | 185.196.8.72 | 200 OK | 30 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-content/uploads/2020/01/%D0%9F%D1%80%D0%BE%D0%BC%D0%BE%D0%BA%D0%BE%D0%B4-1xbet-%D0%BD%D0%B0-%D0%B4%D0%B5%D0%BD%D1%8C-%D1%80%D0%BE%D0%B6%D0%B4%D0%B5%D0%BD%D0%B8%D0%B5-768x263.jpg IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 768x263, components 3 Hashb91edf3474ea23558c4ecb5ec53d3593 5942c7c947fd94e32c7c7beda358dd2822290add fade5ad3a9a66a97b71739b9cfbb51cae473ece8f5e0d5c59b00489248182d38
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/01/%D0%9F%D1%80%D0%BE%D0%BC%D0%BE%D0%BA%D0%BE%D0%B4-1xbet-%D0%BD%D0%B0-%D0%B4%D0%B5%D0%BD%D1%8C-%D1%80%D0%BE%D0%B6%D0%B4%D0%B5%D0%BD%D0%B8%D0%B5-768x263.jpg HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:09 GMT
content-type: image/jpeg
content-length: 29813
last-modified: Wed, 24 Feb 2021 15:18:39 GMT
etag: "60366e4f-7475"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-content/uploads/2020/01/1Xbet-%E2%80%94-%D0%B7%D0%B5%D1%80%D0%BA%D0%B0%D0%BB%D0%BE-%D1%82%D0%B5%D0%BB%D0%B5%D1%84%D0%BE%D0%BD-%D0%B3%D0%BE%D1%80%D1%8F%D1%87%D0%B5%D0%B9-%D0%BB%D0%B8%D0%BD%D0%B8%D0%B8.png | 185.196.8.72 | 200 OK | 18 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-content/uploads/2020/01/1Xbet-%E2%80%94-%D0%B7%D0%B5%D1%80%D0%BA%D0%B0%D0%BB%D0%BE-%D1%82%D0%B5%D0%BB%D0%B5%D1%84%D0%BE%D0%BD-%D0%B3%D0%BE%D1%80%D1%8F%D1%87%D0%B5%D0%B9-%D0%BB%D0%B8%D0%BD%D0%B8%D0%B8.png IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
File typePNG image data, 452 x 138, 8-bit/color RGBA, non-interlaced Hash5c62a8c5c82ba199052ba67a1bb59d07 6b329bebacbe642fe487226832f24fe267618b0a 51d8f244f3a14e619bf00a52a62120aa638da457909d0b730bfa03985f089a30
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/01/1Xbet-%E2%80%94-%D0%B7%D0%B5%D1%80%D0%BA%D0%B0%D0%BB%D0%BE-%D1%82%D0%B5%D0%BB%D0%B5%D1%84%D0%BE%D0%BD-%D0%B3%D0%BE%D1%80%D1%8F%D1%87%D0%B5%D0%B9-%D0%BB%D0%B8%D0%BD%D0%B8%D0%B8.png HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:09 GMT
content-type: image/png
content-length: 17807
last-modified: Wed, 24 Feb 2021 15:18:39 GMT
etag: "60366e4f-458f"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-content/uploads/2020/05/1xbet-%D0%BE%D1%84%D0%B8%D1%86%D0%B8%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9-%D1%81%D0%B0%D0%B9%D1%82-2.jpg | 185.196.8.72 | 200 OK | 54 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-content/uploads/2020/05/1xbet-%D0%BE%D1%84%D0%B8%D1%86%D0%B8%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9-%D1%81%D0%B0%D0%B9%D1%82-2.jpg IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, orientation=upper-left], baseline, precision 8, 898x436, components 3 Hash583f689d42ffadb9e3388b1d82362ce7 5a62798276cdfe404d88b4a92ee36a4926d8336c e7f3592bbe461a72728aead489a6e0f62e6e62a5b87e7505fe04580dc3863f9f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/05/1xbet-%D0%BE%D1%84%D0%B8%D1%86%D0%B8%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9-%D1%81%D0%B0%D0%B9%D1%82-2.jpg HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:09 GMT
content-type: image/jpeg
content-length: 54512
last-modified: Wed, 24 Feb 2021 15:18:39 GMT
etag: "60366e4f-d4f0"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-content/uploads/2020/01/header.png | 185.196.8.72 | 200 OK | 86 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-content/uploads/2020/01/header.png IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
File typePNG image data, 2880 x 188, 8-bit/color RGBA, non-interlaced Hash4f5c3380e3e1f821822d775bff8074e2 dd7d87ec3e5fc3fdaf2c934afc9a8c51a4c776e6 2044d14610a09247cd32cf33b8f345bf15d38a269bc0184f85d5b7cae1b53589
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/01/header.png HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:09 GMT
content-type: image/png
content-length: 86294
last-modified: Wed, 24 Feb 2021 15:18:39 GMT
etag: "60366e4f-15116"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-content/uploads/2020/01/%D1%80%D0%B5%D0%B3%D0%B8%D1%81%D1%82%D1%80%D0%B0%D1%86%D0%B8%D1%8F-1xbet-%D0%B2-%D0%BE%D0%B4%D0%B8%D0%BD-%D0%BA%D0%BB%D0%B8%D0%BA.png | 185.196.8.72 | 200 OK | 56 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-content/uploads/2020/01/%D1%80%D0%B5%D0%B3%D0%B8%D1%81%D1%82%D1%80%D0%B0%D1%86%D0%B8%D1%8F-1xbet-%D0%B2-%D0%BE%D0%B4%D0%B8%D0%BD-%D0%BA%D0%BB%D0%B8%D0%BA.png IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
File typePNG image data, 768 x 339, 8-bit/color RGBA, non-interlaced Hash59e8ad6ce574bb1e04529c28b013a095 f9b2d20711756e05b5757a366bd134154d7d6782 e96bad4ffa4e50f774d06769086ec5e78a25d2857bf17ba10af4eb4fdef806b3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/01/%D1%80%D0%B5%D0%B3%D0%B8%D1%81%D1%82%D1%80%D0%B0%D1%86%D0%B8%D1%8F-1xbet-%D0%B2-%D0%BE%D0%B4%D0%B8%D0%BD-%D0%BA%D0%BB%D0%B8%D0%BA.png HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:09 GMT
content-type: image/png
content-length: 56122
last-modified: Wed, 24 Feb 2021 15:18:39 GMT
etag: "60366e4f-db3a"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto%3A400%2C400i%2C700&subset=cyrillic&display=swap | 216.58.207.234 | 200 OK | 1.2 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto%3A400%2C400i%2C700&subset=cyrillic&display=swap IP216.58.207.234:443
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typegzip compressed data, max compression Hashe0ec045fdc68d134b321a686b4cd8d57 da3d7df4606fb1654c2c8604db4cfb1e15860994 90e4d183ad8c4a791133010bda1480217614f9e93272acf994e81c60d78d9440
GET /css?family=Roboto%3A400%2C400i%2C700&subset=cyrillic&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 12:50:09 GMT
date: Thu, 18 Apr 2024 12:50:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2 | 142.250.74.99 | 200 OK | 9.6 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2 IP142.250.74.99:443
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 9644, version 1.0 Hash6f112ec2b932ee12379442c42853244e b2e73c8c70d6261e1d187f41693c43ac4fe0809d 6a84eeee6a25e7c9a8a03191007a6720566b5a2aa2384d36168fb07f49e97e9e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mans-1xbet4755.ru
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9644
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:34:37 GMT
expires: Fri, 18 Apr 2025 02:34:37 GMT
cache-control: public, max-age=31536000
age: 36932
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.99 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.99:443
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mans-1xbet4755.ru
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:37:01 GMT
expires: Fri, 18 Apr 2025 02:37:01 GMT
cache-control: public, max-age=31536000
age: 36788
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-includes/js/jquery/jquery.min.js | 185.196.8.72 | 200 OK | 31 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-includes/js/jquery/jquery.min.js IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
File typegzip compressed data, from Unix Hash94ca20a800335b7c9020a4830d6006b0 eb98ac438137b5e83e8973a0266f868a085c98b6 b87f61724862b75f4f260ead3f07fb8ee539ff0aa51b7e1610c1f87b5475812f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:09 GMT
content-type: application/javascript
last-modified: Mon, 13 Nov 2023 13:11:38 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6552208a-15601"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 142.250.74.99 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP142.250.74.99:443
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mans-1xbet4755.ru
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 10:46:32 GMT
expires: Wed, 16 Apr 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 180217
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-content/uploads/2020/01/fon.png | 185.196.8.72 | 200 OK | 7.4 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-content/uploads/2020/01/fon.png IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
File typePNG image data, 504 x 342, 8-bit/color RGBA, non-interlaced Hash70dd0d0d4ef26ce566084b6bd34a124c ed8f716db1320b544382ee8b42122e7fca504453 309052d8dd7c2d0335869f069cf6a100c38e5d07ecb128ececd580c081668695
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/01/fon.png HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:09 GMT
content-type: image/png
content-length: 7435
last-modified: Wed, 24 Feb 2021 15:18:39 GMT
etag: "60366e4f-1d0b"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 | 142.250.74.99 | 200 OK | 9.6 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 IP142.250.74.99:443
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 9628, version 1.0 Hashd9ac47c7e500fb7083b8d595eaf6fe12 112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933 495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mans-1xbet4755.ru
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:37:03 GMT
expires: Fri, 18 Apr 2025 02:37:03 GMT
cache-control: public, max-age=31536000
age: 36786
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-content/themes/root/fonts/fontawesome-webfont.woff2?v=4.7.0 | 185.196.8.72 | 200 OK | 77 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-content/themes/root/fonts/fontawesome-webfont.woff2?v=4.7.0 IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459 Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/root/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/wp-content/themes/root/css/style.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:09 GMT
content-type: font/woff2
content-length: 77160
last-modified: Wed, 24 Feb 2021 15:18:39 GMT
etag: "60366e4f-12d68"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-content/uploads/2020/01/cropped-1xbet-32x32.png | 185.196.8.72 | 200 OK | 2.0 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-content/uploads/2020/01/cropped-1xbet-32x32.png IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hashcde5dcb520c00c9a1745879406f2d7e9 e0e8e49580c8a137ac1860ee5ebfd98afb7c9add 28b1f428dedec31af34d634c2a5b3bd3ad1bdb8338439109d6bfe9f6638d5e40
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/01/cropped-1xbet-32x32.png HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:10 GMT
content-type: image/png
content-length: 2004
last-modified: Wed, 24 Feb 2021 15:18:39 GMT
etag: "60366e4f-7d4"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-content/uploads/2020/01/cropped-1xbet-192x192.png | 185.196.8.72 | 200 OK | 24 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-content/uploads/2020/01/cropped-1xbet-192x192.png IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hash867e7d22f5c13c5739b6e3b7f49daa2e eef5dca28a8db22c0e312f3b5e7c7cbd35005875 82033fdd8ca9e238f00e9bf14be2eaa5a2b12f70e51a5be319d28d3a90d87943
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/01/cropped-1xbet-192x192.png HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:10 GMT
content-type: image/png
content-length: 24338
last-modified: Wed, 24 Feb 2021 15:18:39 GMT
etag: "60366e4f-5f12"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-content/themes/root/js/swiper.min.js | 185.196.8.72 | 200 OK | 125 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-content/themes/root/js/swiper.min.js IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
File typeJavaScript source, ASCII text, with very long lines (65260), with CRLF line terminators Size125 kB (124711 bytes) Hash7dbc7c098c7ec9306dd8bb5e4e9e9343 a01d40dea1d1240404fe3510c9d28353efd470bc 7481ca08ab9f3cba9123f51023007c2132b1b31c09009c0a9dca77c1c2c98631
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/root/js/swiper.min.js HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:09 GMT
content-type: application/javascript
last-modified: Wed, 24 Feb 2021 15:18:39 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"60366e4f-1e727"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-content/themes/root/js/scripts.min.js | 185.196.8.72 | 200 OK | 7.5 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-content/themes/root/js/scripts.min.js IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (7849), with no line terminators Hashdafcc24645df402e5cc811dfc68e7ef0 fb9a042686b22177b3e589e4f44d5b544d390889 83017a095ad1c4158dc5a34031f28ec1b96beb9b976521c065f9d47aa0f06751
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/root/js/scripts.min.js HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:09 GMT
content-type: application/javascript
last-modified: Wed, 24 Feb 2021 15:18:39 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"60366e4f-1d5c"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-content/plugins/q2w3-fixed-widget/js/frontend.min.js | 185.196.8.72 | 200 OK | 23 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-content/plugins/q2w3-fixed-widget/js/frontend.min.js IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
File typeJavaScript source, ASCII text, with very long lines (23432) Hash63fad256b41b5d84bc1e86461a96a318 20d44c76509b9fb61a6e005112d60a1f3b73b8ec a69c12ccd186a899db79fce802b46c08e71f69c2c422be2666ed8565e3add026
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/q2w3-fixed-widget/js/frontend.min.js HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:09 GMT
content-type: application/javascript
last-modified: Mon, 27 Mar 2023 07:44:08 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"64214948-5b89"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-includes/js/jquery/jquery-migrate.min.js | 185.196.8.72 | 200 OK | 14 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-includes/js/jquery/jquery-migrate.min.js IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:09 GMT
content-type: application/javascript
last-modified: Mon, 13 Nov 2023 13:11:38 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6552208a-3509"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-content/themes/root/js/lightbox.js | 185.196.8.72 | 200 OK | 3.0 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-content/themes/root/js/lightbox.js IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
File typeJavaScript source, ASCII text, with very long lines (3252), with no line terminators Hash0ef6d4005191b3a9a8b9a811789e7df4 b005dee782ef7824f2e790fff80dc1dd0a6643ff cc5b598adc3703e0035e2904ab8cfa2fb67a4a572fce33151263511bdd0113e7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/root/js/lightbox.js HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:09 GMT
content-type: application/javascript
last-modified: Wed, 24 Feb 2021 15:18:39 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"60366e4f-bd2"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| | 185.196.8.72 | 200 OK | 65 kB |
URL User Request GET HTTP/2IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:08 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
x-powered-by: PHP/7.4.29
link: <https://mans-1xbet4755.ru/wp-json/>; rel="https://api.w.org/", <https://mans-1xbet4755.ru/wp-json/wp/v2/pages/14>; rel="alternate"; type="application/json", <https://mans-1xbet4755.ru/>; rel=shortlink
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-includes/css/dist/block-library/style.min.css | 185.196.8.72 | 200 OK | 110 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-includes/css/dist/block-library/style.min.css IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
Size110 kB (110147 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:09 GMT
content-type: text/css
last-modified: Wed, 31 Jan 2024 13:24:54 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"65ba4a26-1ae43"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| mans-1xbet4755.ru/wp-content/themes/root/css/style.min.css | 185.196.8.72 | 200 OK | 160 kB |
URL GET HTTP/2mans-1xbet4755.ru/wp-content/themes/root/css/style.min.css IP185.196.8.72:443 ASN#42624 Simple Carrier LLC
Requested byhttps://mans-1xbet4755.ru/ CertificateIssuerLet's Encrypt Subjectmans-1xbet4755.ru FingerprintDA:76:BA:03:C8:85:46:5A:5D:69:0C:BE:C6:78:A5:18:81:04:B3:DF ValidityTue, 12 Mar 2024 21:39:12 GMT - Mon, 10 Jun 2024 21:39:11 GMT
File typeASCII text, with very long lines (61354), with CRLF line terminators Size160 kB (159698 bytes) Hashdb0c92dce8172260579e378b72ebe501 c875c34d20bfcd87fbfa85c8f85fed722be59836 eb0eeccb1f7e8f02c3c4a7898e67e48fe87f43bbd4e90cd542ed14e506ab05f1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/root/css/style.min.css HTTP/1.1
Host: mans-1xbet4755.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mans-1xbet4755.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.20.1
date: Thu, 18 Apr 2024 12:50:09 GMT
content-type: text/css
last-modified: Wed, 24 Feb 2021 15:18:39 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"60366e4f-26fd2"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|