Report - bifa365f.com/

Report Overview

Submitted URL
bifa365f.com/
IP
20.239.193.208
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2024-05-07 05:46:53
Access
public
Website Title
乐趣网投天天久发
Final URL
bifa365f.com:8989/
Tags
bet365 gambling phishing
urlquery detections
Phishing - Bet365

Detections

urlquery
25
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
bifa365f.com	unknown	unknown	No data	No data	467 B	228 B	20.239.57.18
	unknown				8.5 kB	192 kB	20.239.57.18
fztjha.innittapp.com	unknown	unknown	No data	No data	30 kB	2.6 MB	103.198.200.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (41)

	URL	Size	First Seen	Last Seen
	bifa365f.com:8989/	29 B	2023-03-07	2024-05-19
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:14:38 Last Seen2024-05-19 08:51:28 Times Seen1892 Hash 9846b4b0c961f85e4c150bd29f4b86e1 adf30369fc215e80b26536f1e24a1824ad3b81d5 163a003d567f6d41f861d978c558eced69ed2b25c863055ed8171eefa350784b Loading...

	fztjha.innittapp.com/ftl/commonPage/js/jquery/jquery.nicescroll.min.js	65 kB	2023-03-07	2024-05-19
Pretty URL fztjha.innittapp.com/ftl/commonPage/js/jquery/jquery.nicescroll.min.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-05-19 08:51:29 Times Seen13439 Hash b5bc8cd626b389bde727a91e6ce79436 3df6c39300ac286cf596b3bda273cb39ff825429 a1eb48eeb3b3f2ba41940d3041464f0b386b7a7c4a8acb42f3017e691f4b116e Loading...

	fztjha.innittapp.com/061410/rcenter/common/js/gamebox/common/jquery.validate.extend.msites.js	15 kB	2023-03-07	2024-05-19
Pretty URL fztjha.innittapp.com/061410/rcenter/common/js/gamebox/common/jquery.validate.extend.msites.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-05-19 08:51:29 Times Seen13198 Hash 4fe7dadf050dad2dcfd386d21b880281 07e7feb8dc9309fe66d86d7a9e27f8efd32ab0bd aa891aafe8e98e1e15d81b2b116e6c3808d0bbbec56cd24818e2e7ac911877c9 Loading...

	fztjha.innittapp.com/ftl/commonPage/js/moment.js	117 kB	2023-07-29	2024-05-19
Pretty URL fztjha.innittapp.com/ftl/commonPage/js/moment.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-29 10:21:40 Last Seen2024-05-19 08:51:29 Times Seen9111 Hash 36c8f828395a9395549bd6e7307cb7e9 f30a4961558e2d3d4405e7d93aa28fdb63245e78 5d5e32fa1e06a0bc9396f349d142ad248e82086543e438c890e43f41e692db33 Loading...

	fztjha.innittapp.com/061410/rcenter/common/static/js/gb.validation.min.js?v=1714556748154	33 kB	2023-04-05	2024-05-19
Pretty URL fztjha.innittapp.com/061410/rcenter/common/static/js/gb.validation.min.js?v=1714556748154 IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 18:30:47 Last Seen2024-05-19 08:51:28 Times Seen6689 Hash a55780dc13cbf1a8d375f14ebb659cf2 9548cc269bcde0dc48e166fa6bab37af8a649e57 35d147a863ab8828e073ca1ae89d476a9cede797c410ac555597c1f442452cc8 Loading...

	bifa365f.com:8989/	2 B	2023-03-07	2024-05-19
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:30 Last Seen2024-05-19 10:00:20 Times Seen13733 Hash e1c06d85ae7b8b032bef47e42e4c08f9 71853c6197a6a7f222db0f1978c7cb232b87c5ee 75a11da44c802486bc6f65640aa48a730f0f684c5c07a42ba3cd1735eb3fb070 Loading...

	bifa365f.com:8989/	1.1 kB	2024-05-02	2024-05-14
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-02 08:16:20 Last Seen2024-05-14 20:48:41 Times Seen109 Hash 59a44f38a9e0ae5238e27842f27bb7bc ed4543bf5f278aeb2ea389fb0514856548c16787 5b1c78090be57784e415e15a692c9fb9abfb45fac3bdcf8695a0c7ab5ec3cc5a Loading...

	bifa365f.com:8989/	714 B	2024-05-07	2024-05-07
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-07 07:47:01 Last Seen2024-05-07 07:47:01 Times Seen1 Hash bef611817c4094741ceed5594305651a 4bbe2937e0c193eedcfa7915f2f9d127b09bd5fb 0a4458083855cabf3c9a85e4ef620f694d9661f3c8ee1f2fe5b485a3b0019805 Loading...

	fztjha.innittapp.com/ftl/commonPage/js/jquery/jquery-1.11.3.min.js	96 kB	2023-03-07	2024-05-19
Pretty URL fztjha.innittapp.com/ftl/commonPage/js/jquery/jquery-1.11.3.min.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:10 Last Seen2024-05-19 08:51:30 Times Seen13836 Hash b091a47f6b91e26c93a848092c6f3788 52918af2d431e73464060b35d364640c8db75606 329ab92b9276ef4e3148f69be6b208969bebdf2db3121a589caa172453fd9f10 Loading...

	fztjha.innittapp.com/ftl/commonPage/js/jquery/jquery.super-marquee.js	4.4 kB	2023-03-07	2024-05-19
Pretty URL fztjha.innittapp.com/ftl/commonPage/js/jquery/jquery.super-marquee.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-05-19 08:51:29 Times Seen13201 Hash f77d83590bc0a69298f2fbcc5d9911cd 1d6aa25d7052f53ad0181385e5efe72f224bbdb9 1d042b9441e860ddcc01b9e9e5e8d354121ee0e31b47f6e18a321e2e633d22e7 Loading...

	bifa365f.com:8989/message_zh_CN.js?v=1714556748154	32 kB	2023-12-07	2024-05-19
Pretty URL bifa365f.com:8989/message_zh_CN.js?v=1714556748154 IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-07 04:18:39 Last Seen2024-05-19 08:51:28 Times Seen1844 Hash 879e0d38aaa72a30c1987722f24ef0ff a71947b06e5ff779946d15db8877a103a5432036 fd47dca609ede55de5f51d756c967b63f0d223330e6eef19df0c3659e1bd9a55 Loading...

	fztjha.innittapp.com/ftl/commonPage/js/lazyload.js	12 kB	2023-08-15	2024-05-19
Pretty URL fztjha.innittapp.com/ftl/commonPage/js/lazyload.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-15 12:01:05 Last Seen2024-05-19 08:51:28 Times Seen4075 Hash d87854586672bff7f886a47da85da5ed 8d0537030dc7a81ade87a41a75fd5a75e4e33da1 17859187f895c27de8869fb6bfec579fd68c4588d0af71d08d334be92d144ada Loading...

	bifa365f.com:8989/	19 kB	2024-05-07	2024-05-07
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-07 07:47:01 Last Seen2024-05-07 07:47:01 Times Seen1 Hash a9aac3c3069b0e43ab939edd1782613e fa1f5e789ff9b89bceca867b3a1794f6f4f51795 7d6d6b438be6c3f6635939ce84526cc71bb0251394a8ee03d163700243f70b2b Loading...

	fztjha.innittapp.com/ftl/commonPage/js/layer.js	22 kB	2023-04-05	2024-05-19
Pretty URL fztjha.innittapp.com/ftl/commonPage/js/layer.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 18:30:47 Last Seen2024-05-19 08:51:29 Times Seen6576 Hash cb96339625e9d456e32f86cdb3c7a7a1 1301165c58bbb13c542cba493b7ab5774e87e31f 17fb047ba6828fcbdf2ca226fa4594cfded2b2fdfeaff89a5bd81c7cf0359919 Loading...

	fztjha.innittapp.com/061410/rcenter/common/js/jquery/plugins/jquery.validate/jquery.validate.js	28 kB	2023-04-05	2024-05-19
Pretty URL fztjha.innittapp.com/061410/rcenter/common/js/jquery/plugins/jquery.validate/jquery.validate.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 18:30:47 Last Seen2024-05-19 08:51:29 Times Seen6577 Hash 9c41709c2b64126b909c101a27f39153 4ab666b36c092577acb41390ad90e96d5fea7711 c1963697eeafb63b6c29e95da2d38d91dd907ab656e130e6e1c34d1dcd149f60 Loading...

	bifa365f.com:8989/	13 kB	2023-04-05	2024-05-19
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2024-05-19 08:51:28 Times Seen6587 Hash 109d40ff6f9b3510b169fac4b8e845ce 4ce0fc768718f555487159ddd745e728a0c74c64 7b782f2e9589aa72ddadf4546c0f09709c73bea1339cd0ce893dfc40f6252949 Loading...

	bifa365f.com:8989/commonPage/lan/i18n.js?t=1715060784.524	1.3 kB	2024-05-07	2024-05-07
Pretty URL bifa365f.com:8989/commonPage/lan/i18n.js?t=1715060784.524 IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 07:47:01 Last Seen2024-05-07 07:47:01 Times Seen2 Hash 3d02a9e99ae67439398f45dcc2f3de16 b777138fff6eb0c34b2fb86f843e3980469c4c08 20f46d5a5e3f2c6e1d96878044013ba76d96b5c1b207ea0877dab8da3a1b4a9a Loading...

	fztjha.innittapp.com/ftl/commonPage/js/idangerous.swiper.min.js	45 kB	2023-08-15	2024-05-19
Pretty URL fztjha.innittapp.com/ftl/commonPage/js/idangerous.swiper.min.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-15 12:01:05 Last Seen2024-05-19 08:51:29 Times Seen8165 Hash f15409fb02c527ce1f66a2fd3c4aa0e9 1e1e1bcc0f49e99e14ba34991cffe0745178d302 1a1b5d3d6fbfc28abe37a668abd59494208c63c5f0b5d040cf4bbbd137f87c27 Loading...

	fztjha.innittapp.com/ftl/commonPage/js/websocket/Comet.js	17 kB	2023-04-05	2024-05-19
Pretty URL fztjha.innittapp.com/ftl/commonPage/js/websocket/Comet.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 18:30:47 Last Seen2024-05-19 08:51:28 Times Seen6593 Hash 1008fe6a5e1a182d7775963b85405bb2 e174a7b08cc3cb5545af1cd33d2814e604119392 7479f6f22194ac37dd6d3f5a579b4682ac8dcb6389fb961cf4140f3fcc707a20 Loading...

	fztjha.innittapp.com/ftl/commonPage/js/bootstrap-dialog.min.js	20 kB	2023-03-07	2024-05-19
Pretty URL fztjha.innittapp.com/ftl/commonPage/js/bootstrap-dialog.min.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-05-19 08:51:29 Times Seen13227 Hash 5ce8851dc823429a42ab6147554403cc 28f381f0e0aa4f5d56690e65723bd97fb59a38e6 dd1edf5e54071903c4c1e81e33636444899d645df6b18bad22249da07f91c811 Loading...

	bifa365f.com:8989/	11 kB	2023-04-05	2024-05-19
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2024-05-19 08:51:28 Times Seen6561 Hash 6681856885ee92601b7711c11d19553f 95ab4437869df8c790cad28e0753a4c9ea362e73 ce52fd46b2a5cfd741a2f0c39bc2d5218271b5690bdf8ec33af94f1062e98d23 Loading...

	bifa365f.com:8989/	3.6 kB	2023-04-05	2024-05-19
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2024-05-19 08:51:28 Times Seen6559 Hash d15a9b513acdcf3e9b08901384511565 f1fe72392137895e4952f835c0330f76aacfecdf 9fa644edfd9af9be6b244016e8f4f0eaee414732edc6ba3641e8647253359995 Loading...

	bifa365f.com:8989/	22 kB	2024-05-07	2024-05-07
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-07 07:47:01 Last Seen2024-05-07 07:47:01 Times Seen1 Hash 5dd811e2658e7e81569e795692d7b0cc 0b06498a1a08357747a5ba58e73c278ad85517e8 b24045e6c1a2eb76d99a8e1b65d550c0ee07c9c38d6ab08063f2242d03bc8c09 Loading...

	fztjha.innittapp.com/ftl/commonPage/js/websocket/PopUp.js	2.1 kB	2023-03-07	2024-05-19
Pretty URL fztjha.innittapp.com/ftl/commonPage/js/websocket/PopUp.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-05-19 08:51:29 Times Seen13205 Hash 07864ad2e2759d53f8f2f14dd4295bd9 95144219e2eb702c4c4a707c3622b086876cf41c 871bf30791bb89605b61cea815c3786246274b65ede3b8a8b8c2dd9244cfa89d Loading...

	bifa365f.com:8989/	20 kB	2023-04-05	2024-05-19
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2024-05-19 08:51:28 Times Seen6555 Hash 9f5bce1aa50f72fd0834901c70db4f43 41771079bee5eb45539e694a5eff580732ab26b0 a50724b65a2657f6e67adbf98a3dd135de52b4786350f0b1bd142adff38c7ffd Loading...

	bifa365f.com:8989/	6 B	2023-03-07	2024-05-19
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:14:38 Last Seen2024-05-19 08:51:28 Times Seen7497 Hash edaddb8132e9e0880252c5b6c47bf1c1 dc08b5b6ca432b46cca94f1f297491e1b08736ea b98809417c0240085bf70f2a1127f0b622c1514651737e7e4ffac4b39e4da17e Loading...

	fztjha.innittapp.com/ftl/commonPage/js/websocket/CometMarathon.js	12 kB	2023-04-05	2024-05-19
Pretty URL fztjha.innittapp.com/ftl/commonPage/js/websocket/CometMarathon.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 18:30:47 Last Seen2024-05-19 08:51:29 Times Seen6586 Hash 466a7ed7d00986d45375c0cbffb5233c 68845ead668e9abd29c24b491dbf97b219226c08 7ddafae5a0a552d2d56101cdc8306403e8fb9570759d66c48b25893b409f0123 Loading...

	bifa365f.com:8989/	1.8 kB	2023-04-05	2024-05-19
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2024-05-19 08:51:28 Times Seen6551 Hash 9f1681b5a72417b33c2869aab85af152 b40a6d9c6d058c2bd6e126a1b0191182926b9d04 eabdfd0c5237f406e0acbef879968e72e5e3d62dd8e8b6bcee48e5ab7f4d0154 Loading...

	bifa365f.com:8989/	2.6 kB	2023-11-23	2024-05-19
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-23 15:36:17 Last Seen2024-05-19 08:51:28 Times Seen2249 Hash 9c3f7d9e5de3b764c32a679ad06ae3db 9ab260e36b46c6ca6f58066ee914f3826d86a37f fefe9a763127c0f92edfe95be1000aeed2eda7690482769c90dc9488dbe5d33a Loading...

	bifa365f.com:8989/	128 kB	2024-05-07	2024-05-07
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-07 07:47:01 Last Seen2024-05-07 07:47:01 Times Seen1 Hash 932a2062f9f6431bdcb052f58ed02c8f 6d901d1af68fad52940ef6d7bdf4b802141750d7 3533fd5823d3d1297ef61cc62abe29331da1d18ad317d056f770f79b553b8000 Loading...

	unknown	278 B	2023-04-14	2024-05-19
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 20:29:13 Last Seen2024-05-19 08:51:28 Times Seen5752 Hash cf0aad09d2e7287c48d72501c4ed8cbd 7950b8c00d5a278b662dbccd11af31398a408e51 72512199b29d971b5fe854b1f610604dcbdec2c38666c106f1d15863e0df32db Loading...

	bifa365f.com:8989/	1.4 kB	2023-08-21	2024-05-19
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-21 11:10:45 Last Seen2024-05-19 08:51:28 Times Seen3934 Hash 479c01001c455527cf2aafec087accad 230c5d853a00977d890c25cb56b5a07c5e0acd0e 0ad2a7081ff475ce3a2068fe69547248166c0fd39f26fbf03f2ac5db073a16cf Loading...

	bifa365f.com:8989/	3.5 kB	2023-10-24	2024-05-19
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-24 11:42:08 Last Seen2024-05-19 08:51:28 Times Seen3028 Hash 7932637ac9b0a1125acfaeffa837b6af 01107a42cef642f68e70ef30502ecb6c0de6a0d6 f938651bd7efeb3c523dcca3df1c9a0cc63b12f604816c8e49636fda5b1b1c7e Loading...

	bifa365f.com:8989/	2.0 kB	2023-11-22	2024-05-19
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-22 16:18:01 Last Seen2024-05-19 08:51:29 Times Seen2257 Hash dd4934ec50598a49950c57836d268ba9 9830d9f40b0baf411ea1e7b7a4b65675cf35ae04 89e8ae92a48e530a676704a7858edcc65fdd1488e39280ba8da4cb80dc5729d5 Loading...

	bifa365f.com:8989/	6.0 kB	2023-08-02	2024-05-19
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-02 04:42:13 Last Seen2024-05-19 08:51:29 Times Seen4445 Hash e6ea297058f6d52d83390d9ea7f914aa 349df987c3c4c50687d993b31f83cfea7f796730 2f21ca2376a9112f70c12ecc46d75ff792b067f5edceae5ea06011c13cf14e56 Loading...

	bifa365f.com:8989/	390 B	2023-04-05	2024-05-19
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 18:30:47 Last Seen2024-05-19 07:53:30 Times Seen6488 Hash 4e6bbb84979a27014e74be230fe8440f aafe0c1dba07e91354abfb25d154c0acbed24d61 03e9af072f4db23c6c6cd74a89c796a3c764731da4734682f3ccfc07e0e54e74 Loading...

	bifa365f.com:8989/	2.4 kB	2023-08-05	2024-05-07
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-05 21:48:47 Last Seen2024-05-07 07:47:01 Times Seen3 Hash 5aec16a4b35d9bc4d95120fc8b0673e7 9af11cb23b479c25eb7ca638ff77ec17aa55c407 ee4c2f794b90f1d05e3a1917d3e5aef8d935046a0a3f5684b0aae3ef7f8a0839 Loading...

	bifa365f.com:8989/	1.6 kB	2023-08-05	2024-05-07
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-05 21:48:47 Last Seen2024-05-07 07:47:01 Times Seen3 Hash a75653c91d4156ba6eed883c9fde4db3 43270582363a0e114b78c87225197a71f6d7a4c6 9f0e8c3db1e56349f3b5045850b6fa95c38efd71d4846aa1ac9d87a6b72b7a23 Loading...

	fztjha.innittapp.com/ftl/commonPage/js/float.js	7.0 kB	2023-03-07	2024-05-19
Pretty URL fztjha.innittapp.com/ftl/commonPage/js/float.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:38 Last Seen2024-05-19 08:51:29 Times Seen13206 Hash 829af863b0cdc4a603919824ae046299 1d417b1553e4ecb7125ebf2005b74255291fbf73 1dbe4afbc9ed220c08b9e95577b56f83e2e8e0f7620c5dc18266bb325e5bb271 Loading...

	fztjha.innittapp.com/ftl/commonPage/js/gui-base.js	61 kB	2023-08-26	2024-05-19
Pretty URL fztjha.innittapp.com/ftl/commonPage/js/gui-base.js IP 103.198.200.1 ASN #138915 Kaopu Cloud HK Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-26 00:19:56 Last Seen2024-05-19 08:51:29 Times Seen3542 Hash e6ce47d880d7a50ddf91b074c8572edf 6a3657c67209136e5b544859daecf16f2d153b72 c49e04c7ecfd07c74b58cf161ef2b58f2bc837a9091ed1ae090a33734cdaa734 Loading...

	bifa365f.com:8989/	0 B	2023-03-07	2024-05-19
Pretty URL bifa365f.com:8989/ IP 20.239.57.18 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-19 12:45:35 Times Seen37825949 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (79)

URL IP Response Size

bifa365f.com/

20.239.57.18

301 Moved Permanently

61 B

URL User Request GET HTTP/1.1
bifa365f.com/
IP
20.239.57.18:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subjectbifa365f.com
FingerprintE1:CA:A0:74:C8:35:F6:87:68:3C:4B:FD:D5:F6:1F:8B:D3:04:77:20
ValidityMon, 08 Apr 2024 17:23:36 GMT - Sun, 07 Jul 2024 17:23:35 GMT

File type
HTML document, ASCII text
Size
61 B (61 bytes)
Hash
262d5872080bdf36dbfc542d42e357da
aedd1ff851da81b3e0028f1dc7d02a2524483937
023d2b14efdbf6e6a7829f6281d8bf77e2e7e96838ed8cc8a8a8d8fcf0c2f846

HTTP Headers

GET / HTTP/1.1
Host: bifa365f.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
Location: https://bifa365f.com:8989/
Date: Tue, 07 May 2024 05:46:23 GMT
Content-Length: 61

bifa365f.com:8989/

20.239.57.18

200 OK

77 kB

URL User Request GET HTTP/1.1
bifa365f.com:8989/
IP
20.239.57.18:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuerLet's Encrypt
Subjectbifa365f.com
FingerprintE1:CA:A0:74:C8:35:F6:87:68:3C:4B:FD:D5:F6:1F:8B:D3:04:77:20
ValidityMon, 08 Apr 2024 17:23:36 GMT - Sun, 07 Jul 2024 17:23:35 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (334)
Size
77 kB (76725 bytes)
Hash
3310931f74191d1970858434f2ed0606
ce1340a0551667cc58864aaa6a674c728c76ecbb
76a50b5d3181527288eac3f2872f5459fbe5f9d4b807aea09c8ac72af6e2eeb1

HTTP Headers

GET / HTTP/1.1
Host: bifa365f.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Encoding: gzip
Content-Type: text/html; charset=utf-8
Date: Tue, 07 May 2024 05:46:24 GMT
Out-Line: gb-cdn-135
Uuid: -
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-Html-Cache: HIT-3600
Transfer-Encoding: chunked

bifa365f.com:8989/commonPage/lan/i18n.js?t=1715060784.524

20.239.57.18

200 OK

818 B

URL GET HTTP/1.1
bifa365f.com:8989/commonPage/lan/i18n.js?t=1715060784.524
IP
20.239.57.18:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bifa365f.com:8989/
Certificate
IssuerLet's Encrypt
Subjectbifa365f.com
FingerprintE1:CA:A0:74:C8:35:F6:87:68:3C:4B:FD:D5:F6:1F:8B:D3:04:77:20
ValidityMon, 08 Apr 2024 17:23:36 GMT - Sun, 07 Jul 2024 17:23:35 GMT

File type
ASCII text, with very long lines (1217)
Size
818 B (818 bytes)
Hash
3d02a9e99ae67439398f45dcc2f3de16
b777138fff6eb0c34b2fb86f843e3980469c4c08
20f46d5a5e3f2c6e1d96878044013ba76d96b5c1b207ea0877dab8da3a1b4a9a

HTTP Headers

GET /commonPage/lan/i18n.js?t=1715060784.524 HTTP/1.1
Host: bifa365f.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: application/javascript; charset=utf-8
Date: Tue, 07 May 2024 05:46:25 GMT
Out-Line: gb-cdn-135
Uuid: 01375-01-00000000-17150607856773
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
Content-Length: 818

bifa365f.com:8989/message_zh_CN.js?v=1714556748154

20.239.57.18

200 OK

9.9 kB

URL GET HTTP/1.1
bifa365f.com:8989/message_zh_CN.js?v=1714556748154
IP
20.239.57.18:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bifa365f.com:8989/
Certificate
IssuerLet's Encrypt
Subjectbifa365f.com
FingerprintE1:CA:A0:74:C8:35:F6:87:68:3C:4B:FD:D5:F6:1F:8B:D3:04:77:20
ValidityMon, 08 Apr 2024 17:23:36 GMT - Sun, 07 Jul 2024 17:23:35 GMT

File type
Unicode text, UTF-8 text, with very long lines (18069)
Size
9.9 kB (9892 bytes)
Hash
8e3a3463437bc8b56e112f0b87b6a0d0
dfaac70f23b58a771856460bb00aebc5fcadb2ce
0aa3002021c50dd94fcd0eb615a6735db1b54723503264f1c24985e0bcdd868b

HTTP Headers

GET /message_zh_CN.js?v=1714556748154 HTTP/1.1
Host: bifa365f.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400
Content-Encoding: gzip
Content-Type: application/javascript;charset=UTF-8
Date: Tue, 07 May 2024 05:46:25 GMT
Expires: Wed, 08 May 2024 05:46:25 GMT
Out-Line: gb-cdn-135
Uuid: 01375-01-00000000-171506078549bc
Vary: Accept-Encoding
X-Cache: HIT
X-Frame-Options: SAMEORIGIN
Transfer-Encoding: chunked

fztjha.innittapp.com/ftl/commonPage/js/float.js

103.198.200.1

200 OK

1.9 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/js/float.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
1.9 kB (1929 bytes)
Hash
829af863b0cdc4a603919824ae046299
1d417b1553e4ecb7125ebf2005b74255291fbf73
1dbe4afbc9ed220c08b9e95577b56f83e2e8e0f7620c5dc18266bb325e5bb271

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/float.js HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 1929
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: W/"612747ba-1b2f"
Date: Sat, 20 Apr 2024 12:29:21 GMT
Last-Modified: Thu, 26 Aug 2021 07:50:18 GMT
Expires: Mon, 20 May 2024 12:29:21 GMT
Age: 1444625
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
Content-Encoding: gzip
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-01
X-Cdn-Request-ID: fbf7ddf1e907f9b4fe53c6d5cc131ab8

fztjha.innittapp.com/ftl/bf365-1375/themes/style/bootstrap-dialog.min.css

103.198.200.1

200 OK

632 B

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/style/bootstrap-dialog.min.css
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
ASCII text
Size
632 B (632 bytes)
Hash
19269eb81eaba7f15e800ccd7b89ed13
b08af10f0595c059b225007b71f423e745c38de1
53d258be8cf25421200c9ea9a8cb0b9a58eeda7ee03901d71e7093b6d6df0177

HTTP Headers

GET /ftl/bf365-1375/themes/style/bootstrap-dialog.min.css HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 632
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: W/"615a7c17-adc"
Date: Sat, 20 Apr 2024 12:29:18 GMT
Last-Modified: Mon, 04 Oct 2021 03:59:19 GMT
Expires: Mon, 20 May 2024 12:29:18 GMT
Age: 1444628
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-05
X-Cdn-Request-ID: e59ff46c050434f8282d5562fa7cf9ce

fztjha.innittapp.com/ftl/commonPage/themes/gui-skin-default.css

103.198.200.1

200 OK

6.3 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/themes/gui-skin-default.css
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (7014)
Size
6.3 kB (6253 bytes)
Hash
4f6eba52b6bdba2bd8154d39c61fcaab
11a91e977ab64175dc2ec233d45c6cf9d34798b0
b4ae8f84403e1e8ea7f75cac8491e461ac6e5524260a04d772d53dd912f8e53a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/themes/gui-skin-default.css HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 6253
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: W/"64ad1569-7b6e"
Date: Sat, 20 Apr 2024 12:29:20 GMT
Last-Modified: Tue, 11 Jul 2023 08:40:09 GMT
Expires: Mon, 20 May 2024 12:29:20 GMT
Age: 1444626
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-06
X-Cdn-Request-ID: 62b5ffeef457dab811dab7291704155e

fztjha.innittapp.com/ftl/commonPage/themes/gui-base.css

103.198.200.1

200 OK

17 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/themes/gui-base.css
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (12023)
Size
17 kB (17118 bytes)
Hash
d01c79296c69daae2357744b28ad3a08
6979c86432a04a8cc22818055bd599e10d13892e
03bae6f265bda27347f4697d37ddb03335678cf0a76d5a246ee1b02463294599

HTTP Headers

GET /ftl/commonPage/themes/gui-base.css HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 17118
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: W/"661623eb-14596"
Date: Sat, 20 Apr 2024 12:29:19 GMT
Last-Modified: Wed, 10 Apr 2024 05:30:19 GMT
Expires: Mon, 20 May 2024 12:29:19 GMT
Age: 1444627
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-09
X-Cdn-Request-ID: 12510c67a770214e02236a2a428c4972

fztjha.innittapp.com/ftl/bf365-1375/themes/style/common.css

103.198.200.1

200 OK

6.0 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/style/common.css
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
ASCII text
Size
6.0 kB (5985 bytes)
Hash
4e59811498d5d6a2fe6dc02afc23d1ec
d3c3a6fab247d63506244ccd50c5e1da06477ae5
95b718de37400017624bb8c14df87909d93fdf15612e4eaa39e527fd6b1fc348

HTTP Headers

GET /ftl/bf365-1375/themes/style/common.css HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 5985
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: W/"615ec172-66b6"
Date: Sat, 20 Apr 2024 12:29:19 GMT
Last-Modified: Thu, 07 Oct 2021 09:44:18 GMT
Expires: Mon, 20 May 2024 12:29:19 GMT
Age: 1444626
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-04
X-Cdn-Request-ID: da174be50f5edc8d06f5d59868e65063

fztjha.innittapp.com/ftl/commonPage/js/jquery/jquery-1.11.3.min.js

103.198.200.1

200 OK

34 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/js/jquery/jquery-1.11.3.min.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32038)
Size
34 kB (33545 bytes)
Hash
b091a47f6b91e26c93a848092c6f3788
52918af2d431e73464060b35d364640c8db75606
329ab92b9276ef4e3148f69be6b208969bebdf2db3121a589caa172453fd9f10

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/jquery/jquery-1.11.3.min.js HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 33545
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: W/"5d848f4f-176d4"
Date: Sat, 20 Apr 2024 12:29:23 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Mon, 20 May 2024 12:29:23 GMT
Age: 1444622
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-206
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-11
X-Cdn-Request-ID: f592f4ff83a4998d7ff59865cda7fb62

fztjha.innittapp.com/ftl/commonPage/js/idangerous.swiper.min.js

103.198.200.1

200 OK

12 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/js/idangerous.swiper.min.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32034)
Size
12 kB (11957 bytes)
Hash
f15409fb02c527ce1f66a2fd3c4aa0e9
1e1e1bcc0f49e99e14ba34991cffe0745178d302
1a1b5d3d6fbfc28abe37a668abd59494208c63c5f0b5d040cf4bbbd137f87c27

HTTP Headers

GET /ftl/commonPage/js/idangerous.swiper.min.js HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 11957
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: W/"64d5b951-b083"
Date: Sat, 20 Apr 2024 12:29:21 GMT
Last-Modified: Fri, 11 Aug 2023 04:30:09 GMT
Expires: Mon, 20 May 2024 12:29:21 GMT
Age: 1444625
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-12
X-Cdn-Request-ID: afa8952f1352f3be19012fb601f6f7da

fztjha.innittapp.com/ftl/commonPage/js/websocket/Comet.js

103.198.200.1

200 OK

4.0 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/js/websocket/Comet.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
4.0 kB (4031 bytes)
Hash
4de3e8bcf2f02d60519ca0d3584d3b8e
6323c2bf18b1bbf968e164bdf2e58d7677f67f8a
6cf6e96f51f13834e233bee9a9040f6eff70601dc0b755e60885b20550b35a9f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/websocket/Comet.js HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 4031
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: W/"60f60fb5-43bc"
Date: Sat, 20 Apr 2024 12:29:22 GMT
Last-Modified: Mon, 19 Jul 2021 23:50:13 GMT
Expires: Mon, 20 May 2024 12:29:22 GMT
Age: 1444623
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-206
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-04
X-Cdn-Request-ID: 41853f109701109df86731c269d09252

fztjha.innittapp.com/ftl/commonPage/js/websocket/CometMarathon.js

103.198.200.1

200 OK

3.3 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/js/websocket/CometMarathon.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
3.3 kB (3316 bytes)
Hash
3b4680db1e065116488f065419ca9f58
6c646601c5656ff6cb1fdf9d5b95823f41e9bcfa
e2bfb9fc21f2a1a6e33c7c5ed20de13ef2ef4bcf266aa4b2e6f2fee06f8f4eaf

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/websocket/CometMarathon.js HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 3316
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: W/"6260ddd4-2f13"
Date: Sat, 20 Apr 2024 12:29:23 GMT
Last-Modified: Thu, 21 Apr 2022 04:30:12 GMT
Expires: Mon, 20 May 2024 12:29:23 GMT
Age: 1444623
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-01
X-Cdn-Request-ID: 143a22ed25ca296a6376533bc8921024

fztjha.innittapp.com/ftl/commonPage/js/websocket/PopUp.js

103.198.200.1

200 OK

797 B

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/js/websocket/PopUp.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
Unicode text, UTF-8 text
Size
797 B (797 bytes)
Hash
07864ad2e2759d53f8f2f14dd4295bd9
95144219e2eb702c4c4a707c3622b086876cf41c
871bf30791bb89605b61cea815c3786246274b65ede3b8a8b8c2dd9244cfa89d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/websocket/PopUp.js HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 797
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: W/"6260ddd4-828"
Date: Sat, 20 Apr 2024 12:29:22 GMT
Last-Modified: Thu, 21 Apr 2022 04:30:12 GMT
Expires: Mon, 20 May 2024 12:29:22 GMT
Age: 1444624
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-07
X-Cdn-Request-ID: 4996afa24bdbf79e80844148fef5663c

fztjha.innittapp.com/ftl/commonPage/themes/hongbao.css

103.155.16.137

200 OK

5.7 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/themes/hongbao.css
IP
103.155.16.137:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (336)
Size
5.7 kB (5666 bytes)
Hash
499a3a64bcf22609681f5337a6360c80
fc05a8a391c8375ea4e47183eca56a18bed8fca7
5339bf22971b6400e64154decc06b84fd4be337c2758cc7ca565756c92c97894

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/themes/hongbao.css HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fztjha.innittapp.com/ftl/commonPage/themes/gui-base.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 5666
Connection: keep-alive
Server: Default-server-KS-CLOUD-XJP-12-02
ETag: W/"64252e4f-d530"
Date: Mon, 22 Apr 2024 06:41:35 GMT
Last-Modified: Thu, 30 Mar 2023 06:38:07 GMT
Expires: Wed, 22 May 2024 06:41:35 GMT
Age: 1292691
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-206
x-link-via: xjp21:443;xjp12:80;
X-Cache-Status: HIT from KS-CLOUD-XJP-12-02, HIT from KS-CLOUD-XJP-FOREIGN-21-06
X-Cdn-Request-ID: 3991ca38caa3cfbe96353a8e6471ebeb

fztjha.innittapp.com/ftl/commonPage/js/gui-base.js

103.198.200.1

200 OK

16 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/js/gui-base.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (11056)
Size
16 kB (15779 bytes)
Hash
4007cfe0a95df1d6a9f4252e636f995f
b0f9a2ad5c49b9b50ac5d025c8e9ce803eb5d7a8
4370313fa317e44140f85bba141ec24c2c9ef674593779d3349d2a44001699d0

HTTP Headers

GET /ftl/commonPage/js/gui-base.js HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 15779
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: W/"64ddbaed-ee5c"
Date: Sat, 20 Apr 2024 12:29:22 GMT
Last-Modified: Thu, 17 Aug 2023 06:15:09 GMT
Expires: Mon, 20 May 2024 12:29:22 GMT
Age: 1444625
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-206
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: e0f8acf65af38d3e3de128388beaea1c

fztjha.innittapp.com/ftl/commonPage/js/lazyload.js

103.198.200.1

200 OK

2.7 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/js/lazyload.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
2.7 kB (2731 bytes)
Hash
58f1a7fa1a19b0e5ad0a5bad974b98cf
6963ce7378e6c992de06e7e77d79432a0d38f54d
fb513dceb383ebeda507b1e1cc89ab4d73de071d8aa4fc78bc22f66e7fc5a7e4

HTTP Headers

GET /ftl/commonPage/js/lazyload.js HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 2731
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: W/"64d05f66-2f79"
Date: Sat, 20 Apr 2024 12:29:22 GMT
Last-Modified: Mon, 07 Aug 2023 03:05:10 GMT
Expires: Mon, 20 May 2024 12:29:22 GMT
Age: 1444624
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-11
X-Cdn-Request-ID: 1f2f3394cc904472543a9db9f4af7a22

fztjha.innittapp.com/ftl/commonPage/js/bootstrap-dialog.min.js

103.198.200.1

200 OK

5.0 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/js/bootstrap-dialog.min.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (20132), with no line terminators
Size
5.0 kB (5007 bytes)
Hash
5ce8851dc823429a42ab6147554403cc
28f381f0e0aa4f5d56690e65723bd97fb59a38e6
dd1edf5e54071903c4c1e81e33636444899d645df6b18bad22249da07f91c811

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/bootstrap-dialog.min.js HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 5007
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: W/"5d848f4f-4ea4"
Date: Sat, 20 Apr 2024 12:29:19 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Mon, 20 May 2024 12:29:19 GMT
Age: 1444627
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-04
X-Cdn-Request-ID: 1a8a2ca1614e17c2d42a64b8c56d6b81

fztjha.innittapp.com/ftl/commonPage/js/jquery/jquery.super-marquee.js

103.198.200.1

200 OK

1.4 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/js/jquery/jquery.super-marquee.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (4433), with no line terminators
Size
1.4 kB (1421 bytes)
Hash
f77d83590bc0a69298f2fbcc5d9911cd
1d6aa25d7052f53ad0181385e5efe72f224bbdb9
1d042b9441e860ddcc01b9e9e5e8d354121ee0e31b47f6e18a321e2e633d22e7

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/jquery/jquery.super-marquee.js HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 1421
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-05
ETag: W/"5d848f4f-1151"
Date: Sat, 20 Apr 2024 12:29:20 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Mon, 20 May 2024 12:29:20 GMT
Age: 1444627
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-206
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-05, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: 5d3f24349607f455da1c5b20730dfdb4

fztjha.innittapp.com/ftl/commonPage/js/layer.js

103.198.200.1

200 OK

7.6 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/js/layer.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (21922)
Size
7.6 kB (7599 bytes)
Hash
c42797aecccd5494e2b747cedf1a890b
b9e06a6d245b6a3c87f2753db0c9c9aa020640b2
56feab66e10b4718de666fc63941b4f36a5e553e8887d663e137e635add8beb3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/layer.js HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 7599
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: W/"5d848f4f-55f6"
Date: Sat, 20 Apr 2024 12:29:21 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Mon, 20 May 2024 12:29:21 GMT
Age: 1444625
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-04
X-Cdn-Request-ID: b4407f8ba3e5278f29b51b1e39c0b512

fztjha.innittapp.com/ftl/commonPage/js/jquery/jquery.nicescroll.min.js

103.198.200.1

200 OK

17 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/js/jquery/jquery.nicescroll.min.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (64577)
Size
17 kB (17446 bytes)
Hash
b5bc8cd626b389bde727a91e6ce79436
3df6c39300ac286cf596b3bda273cb39ff825429
a1eb48eeb3b3f2ba41940d3041464f0b386b7a7c4a8acb42f3017e691f4b116e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/jquery/jquery.nicescroll.min.js HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 17446
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: W/"5d848f4f-fc8b"
Date: Sat, 20 Apr 2024 12:29:20 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Mon, 20 May 2024 12:29:20 GMT
Age: 1444627
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-206
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-10
X-Cdn-Request-ID: 4d1fd6d916685ea8b05b03ad8c8cf6e4

fztjha.innittapp.com/061410/rcenter/common/js/jquery/plugins/jquery.validate/jquery.validate.js

103.198.200.1

200 OK

7.7 kB

URL GET HTTP/1.1
fztjha.innittapp.com/061410/rcenter/common/js/jquery/plugins/jquery.validate/jquery.validate.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (27669)
Size
7.7 kB (7746 bytes)
Hash
f8c2b37c1dc626eede6a2e3e37aa4504
d4e8419497caa64c8a850ac4808dddb89b5eeb3f
728d63b799ab3d9bee5e987ad13f71aeb9d30ff78ed552c7edc425531c9c0f2a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /061410/rcenter/common/js/jquery/plugins/jquery.validate/jquery.validate.js HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 7746
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-05
ETag: W/"655579ca-6caf"
Date: Sat, 20 Apr 2024 12:29:20 GMT
Last-Modified: Thu, 16 Nov 2023 02:09:14 GMT
Expires: Mon, 20 May 2024 12:29:20 GMT
Age: 1444626
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-05, HIT from KS-CLOUD-XG-FOREIGN-21-08
X-Cdn-Request-ID: 67a1fb78c89d3cc0a319e4f40e88eef6

fztjha.innittapp.com/ftl/commonPage/themes/gui-layer.css

103.155.16.137

200 OK

6.9 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/themes/gui-layer.css
IP
103.155.16.137:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (489)
Size
6.9 kB (6923 bytes)
Hash
858eefc3fa70af7d0115c901908471f5
29c181bbbc09a424f7de7cb57629bd8a9e3c679a
9f6a77c93f998e065f1ed52eb9943a3c560a50366bba2c8a34a4a1223c793caf

HTTP Headers

GET /ftl/commonPage/themes/gui-layer.css HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fztjha.innittapp.com/ftl/commonPage/themes/gui-base.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 6923
Connection: keep-alive
Server: Default-server-KS-CLOUD-XJP-12-03
ETag: W/"64ddd5e1-c760"
Date: Mon, 22 Apr 2024 06:41:34 GMT
Last-Modified: Thu, 17 Aug 2023 08:10:09 GMT
Expires: Wed, 22 May 2024 06:41:34 GMT
Age: 1292693
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xjp21:443;xjp12:80;
X-Cache-Status: HIT from KS-CLOUD-XJP-12-03, HIT from KS-CLOUD-XJP-FOREIGN-21-16
X-Cdn-Request-ID: 8692a88e16284bce20c571f2dfd7b1e1

fztjha.innittapp.com/061410/rcenter/common/js/gamebox/common/jquery.validate.extend.msites.js

103.198.200.1

200 OK

4.1 kB

URL GET HTTP/1.1
fztjha.innittapp.com/061410/rcenter/common/js/gamebox/common/jquery.validate.extend.msites.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (14855), with no line terminators
Size
4.1 kB (4126 bytes)
Hash
4fe7dadf050dad2dcfd386d21b880281
07e7feb8dc9309fe66d86d7a9e27f8efd32ab0bd
aa891aafe8e98e1e15d81b2b116e6c3808d0bbbec56cd24818e2e7ac911877c9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /061410/rcenter/common/js/gamebox/common/jquery.validate.extend.msites.js HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 4126
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: W/"655579ca-3a09"
Date: Sat, 20 Apr 2024 12:29:21 GMT
Last-Modified: Thu, 16 Nov 2023 02:09:14 GMT
Expires: Mon, 20 May 2024 12:29:21 GMT
Age: 1444626
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-206
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-07
X-Cdn-Request-ID: d672747ab62eb0bd143ef5421b087885

fztjha.innittapp.com/ftl/commonPage/js/moment.js

103.198.200.1

200 OK

27 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/js/moment.js
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text
Size
27 kB (26968 bytes)
Hash
36c8f828395a9395549bd6e7307cb7e9
f30a4961558e2d3d4405e7d93aa28fdb63245e78
5d5e32fa1e06a0bc9396f349d142ad248e82086543e438c890e43f41e692db33

HTTP Headers

GET /ftl/commonPage/js/moment.js HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 26968
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: W/"64b633ca-1cab9"
Date: Sat, 20 Apr 2024 12:29:20 GMT
Last-Modified: Tue, 18 Jul 2023 06:40:10 GMT
Expires: Mon, 20 May 2024 12:29:20 GMT
Age: 1444626
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-04
X-Cdn-Request-ID: eaca5fdc6ca57b2b0f8171139ba2758c

fztjha.innittapp.com/ftl/commonPage/themes/hb/css/pc.css

103.198.200.1

200 OK

911 B

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/themes/hb/css/pc.css
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
ASCII text
Size
911 B (911 bytes)
Hash
1da71520b7a0a61526a8fa8d0feb40d1
ba1bf69dad8783563328054cae58ccabf1b00829
5eb4d895bcb33061cda238c8ff4985ede69a866819b980c732cf3802ec101e8d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/themes/hb/css/pc.css HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 911
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: W/"5d848f4f-b5d"
Date: Sat, 20 Apr 2024 12:29:18 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Mon, 20 May 2024 12:29:18 GMT
Age: 1444629
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-10
X-Cdn-Request-ID: 090634903bccb2b2a700e1e574798d84

fztjha.innittapp.com/061410/rcenter/common/static/js/gb.validation.min.js?v=1714556748154

103.198.200.1

200 OK

5.2 kB

URL GET HTTP/1.1
fztjha.innittapp.com/061410/rcenter/common/static/js/gb.validation.min.js?v=1714556748154
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (801)
Size
5.2 kB (5207 bytes)
Hash
30be40425b37bee4158676082cef1f4d
b41ed46721936872d5d7eadf303ce22938240d2a
f5ca5f543161a6b37ca2bf26c4f3c630fe08323108c77dac1fba6ce755ce6f47

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /061410/rcenter/common/static/js/gb.validation.min.js?v=1714556748154 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 5207
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: W/"633d510e-7fd7"
Date: Sat, 20 Apr 2024 12:29:22 GMT
Last-Modified: Wed, 05 Oct 2022 09:40:30 GMT
Expires: Mon, 20 May 2024 12:29:22 GMT
Age: 1444625
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
Content-Encoding: gzip
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-08
X-Cdn-Request-ID: b7c22ac40ef56f3b5df8b45725f5e7d1

fztjha.innittapp.com/061410/rcenter/common/static/css/gb.validation.min.css

103.198.200.1

200 OK

3.8 kB

URL GET HTTP/1.1
fztjha.innittapp.com/061410/rcenter/common/static/css/gb.validation.min.css
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (2295)
Size
3.8 kB (3788 bytes)
Hash
f00ce0554efc5adea6a8e02d5e501cad
388840e376568b37ac0103aa5c87a268778db67a
3043f42fdd97ec607648da79c3abfa6f364404c7594143227c2541d1f0ac6069

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /061410/rcenter/common/static/css/gb.validation.min.css HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 3788
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: W/"633d510e-2d52"
Date: Sat, 20 Apr 2024 12:29:19 GMT
Last-Modified: Wed, 05 Oct 2022 09:40:30 GMT
Expires: Mon, 20 May 2024 12:29:19 GMT
Age: 1444628
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-206
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-05
X-Cdn-Request-ID: 0e0c5e700c9c879116377923fca1ff55

fztjha.innittapp.com/ftl/commonPage/js/theme/default/layer.css?v=3.1.0

103.198.200.1

200 OK

3.1 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/js/theme/default/layer.css?v=3.1.0
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
ASCII text
Size
3.1 kB (3111 bytes)
Hash
5cf9259b7dd27aacd46161ec23d261cf
ba0c399616a5ae9cdd8aec5b76ba4aae4822367c
7f73a66b3a9a38576d124b6243a8984d795028e3493b8fa3f688d8dbe10cbccc

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/js/theme/default/layer.css?v=3.1.0 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 3111
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: W/"6131d862-48e4"
Date: Sat, 20 Apr 2024 12:29:24 GMT
Last-Modified: Fri, 03 Sep 2021 08:10:10 GMT
Expires: Mon, 20 May 2024 12:29:24 GMT
Age: 1444623
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-07
X-Cdn-Request-ID: 6bee80a7a86c815d793101071fbd4535

bifa365f.com:8989/mobile-api/v5/origin/getFloat.html

20.239.57.18

200 OK

2.6 kB

URL POST HTTP/1.1
bifa365f.com:8989/mobile-api/v5/origin/getFloat.html
IP
20.239.57.18:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bifa365f.com:8989/
Certificate
IssuerLet's Encrypt
Subjectbifa365f.com
FingerprintE1:CA:A0:74:C8:35:F6:87:68:3C:4B:FD:D5:F6:1F:8B:D3:04:77:20
ValidityMon, 08 Apr 2024 17:23:36 GMT - Sun, 07 Jul 2024 17:23:35 GMT

File type
JSON text data
Size
2.6 kB (2559 bytes)
Hash
2bd9c2b95f9f48310f2baaf20dcac3ba
0b42f2c6fdc514d24c86cc251835318bfcaa2015
0846013f969fa4500f5a47571a5e8829f66e7e656d5e195e25f997098e6339ef

HTTP Headers

POST /mobile-api/v5/origin/getFloat.html HTTP/1.1
Host: bifa365f.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 68
Origin: https://bifa365f.com:8989
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Cookie: sticket=9qZ3pZVE13TldabUx
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type,Access-Token,X-Requested-With
Access-Control-Allow-Methods: *
Access-Control-Allow-Origin: https://bifa365f.com:8989
Access-Control-Max-Age: 3600
Content-Disposition: inline;filename=f.txt
Content-Encoding: gzip
Content-Type: text/html;charset=utf-8
Date: Tue, 07 May 2024 05:46:28 GMT
Out-Line: gb-cdn-135
Set-Cookie: route=f7c95a7b6b031c620a6304190a7ddf24; Path=/
Sub-Sys: mobile
Uuid: 01375-01-00000000-1715060788a584
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
Transfer-Encoding: chunked

bifa365f.com:8989/index/getAppsUrl.html?device=android&fPixelId=&accessToken=&apiVersion=

20.239.57.18

200 OK

912 B

URL GET HTTP/1.1
bifa365f.com:8989/index/getAppsUrl.html?device=android&fPixelId=&accessToken=&apiVersion=
IP
20.239.57.18:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bifa365f.com:8989/
Certificate
IssuerLet's Encrypt
Subjectbifa365f.com
FingerprintE1:CA:A0:74:C8:35:F6:87:68:3C:4B:FD:D5:F6:1F:8B:D3:04:77:20
ValidityMon, 08 Apr 2024 17:23:36 GMT - Sun, 07 Jul 2024 17:23:35 GMT

File type
JSON text data
Size
912 B (912 bytes)
Hash
8912f03d82f4e91607b8a868979d89a5
0b3e3199614e1e4bef518b961f1b25a6d59b35a6
1f0938674a716e19bcf34c7905f74cecfd745babfa8bf09b31fec3c2a3b0010c

HTTP Headers

GET /index/getAppsUrl.html?device=android&fPixelId=&accessToken=&apiVersion= HTTP/1.1
Host: bifa365f.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Cookie: sticket=9qZ3pZVE13TldabUx
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Disposition: inline;filename=f.txt
Content-Encoding: gzip
Content-Type: text/html; charset=utf-8
Date: Tue, 07 May 2024 05:46:28 GMT
Out-Line: gb-cdn-135
Set-Cookie: route=cff4f63a4f0402d67e06fc02582263f1; Path=/
Sub-Sys: msite
Uuid: 01375-01-00000000-171506078803a7
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
Content-Length: 912

bifa365f.com:8989/ftl/bf365-1375/themes/images/hot2.gif

20.239.57.18

200 OK

254 B

URL GET HTTP/1.1
bifa365f.com:8989/ftl/bf365-1375/themes/images/hot2.gif
IP
20.239.57.18:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bifa365f.com:8989/
Certificate
IssuerLet's Encrypt
Subjectbifa365f.com
FingerprintE1:CA:A0:74:C8:35:F6:87:68:3C:4B:FD:D5:F6:1F:8B:D3:04:77:20
ValidityMon, 08 Apr 2024 17:23:36 GMT - Sun, 07 Jul 2024 17:23:35 GMT

File type
GIF image data, version 89a, 16 x 17
Size
254 B (254 bytes)
Hash
b013f8fa3ec997fe20dc80b82af0ad0a
e02ce6c30d5c0abfaa3e008d1a3ce7d11f299ed9
119bff063d1d402fdf6e48bc7e681d48aabfb9bc65378dfcf64a8845ec3fceef

HTTP Headers

GET /ftl/bf365-1375/themes/images/hot2.gif HTTP/1.1
Host: bifa365f.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Cookie: sticket=9qZ3pZVE13TldabUx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=86400
Content-Length: 254
Content-Type: image/gif
Date: Tue, 07 May 2024 05:46:28 GMT
Etag: "613c72aa-fe"
Expires: Wed, 08 May 2024 05:46:28 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Out-Line: gb-cdn-135
Uuid: -
X-Cache: HIT
X-Frame-Options: SAMEORIGIN

fztjha.innittapp.com/ftl/commonPage/zh_CN/mobileTopic/images/special_3.jpg

103.198.200.1

200 OK

6.9 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/zh_CN/mobileTopic/images/special_3.jpg
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 168x168, components 3
Size
6.9 kB (6871 bytes)
Hash
99be4bfe275809d4e436b77c991b1381
54eadee77394eb62ccf377ae68d9f49acb5b6785
4ca35131972acdf420b94f0d64a5a0f504eb5a7b0e6fb7b8b467916a12aae37d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/zh_CN/mobileTopic/images/special_3.jpg HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 6871
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "5d848f4f-1ad7"
Date: Sat, 20 Apr 2024 18:10:35 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Mon, 20 May 2024 18:10:35 GMT
Age: 1424152
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-09
X-Cdn-Request-ID: df526dd0582d8a6319c582fd74174f85

bifa365f.com:8989/ftl/bf365-1375/themes/images/notice.png

20.239.57.18

200 OK

978 B

URL GET HTTP/1.1
bifa365f.com:8989/ftl/bf365-1375/themes/images/notice.png
IP
20.239.57.18:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bifa365f.com:8989/
Certificate
IssuerLet's Encrypt
Subjectbifa365f.com
FingerprintE1:CA:A0:74:C8:35:F6:87:68:3C:4B:FD:D5:F6:1F:8B:D3:04:77:20
ValidityMon, 08 Apr 2024 17:23:36 GMT - Sun, 07 Jul 2024 17:23:35 GMT

File type
PNG image data, 300 x 39, 8-bit colormap, non-interlaced
Size
978 B (978 bytes)
Hash
72c27f850249aa99911e915b5357e2a6
48851b2114e727f43e3b147f84b23ad80e4516f0
a2a37b9b49508bbbaceba4675804bcb370645ea87f1a77d6d7a27721119cdbdb

HTTP Headers

GET /ftl/bf365-1375/themes/images/notice.png HTTP/1.1
Host: bifa365f.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Cookie: sticket=9qZ3pZVE13TldabUx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400
Content-Length: 978
Content-Type: image/png
Date: Tue, 07 May 2024 05:46:28 GMT
Etag: "613c72aa-3d2"
Expires: Wed, 08 May 2024 05:46:28 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Out-Line: gb-cdn-135
Uuid: -
X-Cache: HIT
X-Frame-Options: SAMEORIGIN

bifa365f.com:8989/index/getUserTimeZoneDate.html?t=lvvywtsg

20.239.57.18

200 OK

119 B

URL GET HTTP/1.1
bifa365f.com:8989/index/getUserTimeZoneDate.html?t=lvvywtsg
IP
20.239.57.18:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bifa365f.com:8989/
Certificate
IssuerLet's Encrypt
Subjectbifa365f.com
FingerprintE1:CA:A0:74:C8:35:F6:87:68:3C:4B:FD:D5:F6:1F:8B:D3:04:77:20
ValidityMon, 08 Apr 2024 17:23:36 GMT - Sun, 07 Jul 2024 17:23:35 GMT

File type
JSON text data
Size
119 B (119 bytes)
Hash
5aea4fbbe696fbebc0e64c4967be518b
cad663c3dcd765dad791d83cb0eab7e96d4ad111
9892504463661aba0611859673e95c3bc81002d2a89115393793bb1dd55e56ca

HTTP Headers

GET /index/getUserTimeZoneDate.html?t=lvvywtsg HTTP/1.1
Host: bifa365f.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Cookie: sticket=9qZ3pZVE13TldabUx; route=cff4f63a4f0402d67e06fc02582263f1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cachettl: 3
Content-Disposition: inline;filename=f.txt
Content-Length: 119
Content-Type: text/html; charset=utf-8
Date: Tue, 07 May 2024 05:46:28 GMT
Out-Line: gb-cdn-135
Sub-Sys: msite
Uuid: 01375-01-00000000-1715060788150c
X-Frame-Options: SAMEORIGIN

bifa365f.com:8989/ftl/bf365-1375/themes/images/top_bg.jpg

20.239.57.18

200 OK

369 B

URL GET HTTP/1.1
bifa365f.com:8989/ftl/bf365-1375/themes/images/top_bg.jpg
IP
20.239.57.18:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bifa365f.com:8989/
Certificate
IssuerLet's Encrypt
Subjectbifa365f.com
FingerprintE1:CA:A0:74:C8:35:F6:87:68:3C:4B:FD:D5:F6:1F:8B:D3:04:77:20
ValidityMon, 08 Apr 2024 17:23:36 GMT - Sun, 07 Jul 2024 17:23:35 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 30x105, components 3
Size
369 B (369 bytes)
Hash
87a0b6824c64f94bd512924e3ceff157
1ea48f71f2563a81aed69cb5c1b6668af22aebbf
f2156a49e0c094c7cf2350ca1d39ff9b33729ccfa2039fa96978958bbe175ed3

HTTP Headers

GET /ftl/bf365-1375/themes/images/top_bg.jpg HTTP/1.1
Host: bifa365f.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Cookie: sticket=9qZ3pZVE13TldabUx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400
Content-Length: 369
Content-Type: image/jpeg
Date: Tue, 07 May 2024 05:46:28 GMT
Etag: "613c72aa-171"
Expires: Wed, 08 May 2024 05:46:28 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Out-Line: gb-cdn-135
Uuid: -
X-Cache: HIT
X-Frame-Options: SAMEORIGIN

bifa365f.com:8989/ftl/commonPage/themes/images/hongbao/icon-close-1.png

20.239.57.18

200 OK

6.1 kB

URL GET HTTP/1.1
bifa365f.com:8989/ftl/commonPage/themes/images/hongbao/icon-close-1.png
IP
20.239.57.18:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bifa365f.com:8989/
Certificate
IssuerLet's Encrypt
Subjectbifa365f.com
FingerprintE1:CA:A0:74:C8:35:F6:87:68:3C:4B:FD:D5:F6:1F:8B:D3:04:77:20
ValidityMon, 08 Apr 2024 17:23:36 GMT - Sun, 07 Jul 2024 17:23:35 GMT

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced
Size
6.1 kB (6087 bytes)
Hash
30eb0e841ea47a1f05854ebca3f9e9c1
0cb9874c32ff8837c1ffaf89cba502ceb3483b2b
382670ae61fc81522b190a0536d7b993058183aea2ffe81d197ded6af07d2183

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/themes/images/hongbao/icon-close-1.png HTTP/1.1
Host: bifa365f.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Cookie: sticket=9qZ3pZVE13TldabUx; route=cff4f63a4f0402d67e06fc02582263f1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400
Content-Length: 6087
Content-Type: image/png
Date: Tue, 07 May 2024 05:46:28 GMT
Etag: "611369ee-17c7"
Expires: Wed, 08 May 2024 05:46:28 GMT
Last-Modified: Wed, 11 Aug 2021 06:10:54 GMT
Out-Line: gb-cdn-135
Uuid: -
X-Cache: HIT
X-Frame-Options: SAMEORIGIN

bifa365f.com:8989/ftl/commonPage/images/partner/partner-hongtu-goldGradient.png

20.239.57.18

200 OK

87 kB

URL GET HTTP/1.1
bifa365f.com:8989/ftl/commonPage/images/partner/partner-hongtu-goldGradient.png
IP
20.239.57.18:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bifa365f.com:8989/
Certificate
IssuerLet's Encrypt
Subjectbifa365f.com
FingerprintE1:CA:A0:74:C8:35:F6:87:68:3C:4B:FD:D5:F6:1F:8B:D3:04:77:20
ValidityMon, 08 Apr 2024 17:23:36 GMT - Sun, 07 Jul 2024 17:23:35 GMT

File type
PNG image data, 4964 x 72, 8-bit colormap, non-interlaced
Size
87 kB (86597 bytes)
Hash
f27ded2561ffd51a112741a1d783230d
b5382b043f37a2cd93e802472958d8b49c14241f
db4f7cbfc843c8b3915a389d8002aa727adb6f39f0789e63762c609ac9c835dd

HTTP Headers

GET /ftl/commonPage/images/partner/partner-hongtu-goldGradient.png HTTP/1.1
Host: bifa365f.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Cookie: sticket=9qZ3pZVE13TldabUx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: max-age=86400
Content-Length: 86597
Content-Type: image/png
Date: Tue, 07 May 2024 05:46:28 GMT
Etag: "6613b927-15245"
Expires: Wed, 08 May 2024 05:46:28 GMT
Last-Modified: Mon, 08 Apr 2024 09:30:15 GMT
Out-Line: gb-cdn-135
Uuid: -
X-Cache: HIT
X-Frame-Options: SAMEORIGIN

bifa365f.com:8989/headerInfo.html?t=lvvywu04

20.239.57.18

200 OK

116 B

URL GET HTTP/1.1
bifa365f.com:8989/headerInfo.html?t=lvvywu04
IP
20.239.57.18:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bifa365f.com:8989/
Certificate
IssuerLet's Encrypt
Subjectbifa365f.com
FingerprintE1:CA:A0:74:C8:35:F6:87:68:3C:4B:FD:D5:F6:1F:8B:D3:04:77:20
ValidityMon, 08 Apr 2024 17:23:36 GMT - Sun, 07 Jul 2024 17:23:35 GMT

File type
JSON text data
Size
116 B (116 bytes)
Hash
6a9b562e8f5c7085e2d45c829214e237
ee9b047ef4903dc2ff32d3f1b525604f146ab287
2f2fbfd330a1dd4f490f47593463591bbbf8df5809d4d641002cf503a905618d

HTTP Headers

GET /headerInfo.html?t=lvvywu04 HTTP/1.1
Host: bifa365f.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Cookie: sticket=9qZ3pZVE13TldabUx; route=cff4f63a4f0402d67e06fc02582263f1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Disposition: inline;filename=f.txt
Content-Encoding: gzip
Content-Type: text/html; charset=utf-8
Date: Tue, 07 May 2024 05:46:28 GMT
Out-Line: gb-cdn-135
Sub-Sys: msite
Uuid: 01375-01-00000000-17150607885574
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
Content-Length: 116

bifa365f.com:8989/mobile-api/v5/chess/getActivityMsg.html?function=sign

20.239.57.18

200 OK

141 B

URL GET HTTP/1.1
bifa365f.com:8989/mobile-api/v5/chess/getActivityMsg.html?function=sign
IP
20.239.57.18:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bifa365f.com:8989/
Certificate
IssuerLet's Encrypt
Subjectbifa365f.com
FingerprintE1:CA:A0:74:C8:35:F6:87:68:3C:4B:FD:D5:F6:1F:8B:D3:04:77:20
ValidityMon, 08 Apr 2024 17:23:36 GMT - Sun, 07 Jul 2024 17:23:35 GMT

File type
JSON text data
Size
141 B (141 bytes)
Hash
381b7de0ec7283b89f95d816cdfffc33
c839889e199f44fdc2b2d04169768e322ceaee77
811dea6ceac68441b7e490a52c1ac0b873feb0c910175fa35c752dfc4126ecb8

HTTP Headers

GET /mobile-api/v5/chess/getActivityMsg.html?function=sign HTTP/1.1
Host: bifa365f.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Cookie: sticket=9qZ3pZVE13TldabUx; route=cff4f63a4f0402d67e06fc02582263f1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type,Access-Token,X-Requested-With
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 3600
Content-Disposition: inline;filename=f.txt
Content-Length: 141
Content-Type: text/html;charset=utf-8
Date: Tue, 07 May 2024 05:46:29 GMT
Out-Line: gb-cdn-135
Set-Cookie: route=66776b881a59021b52807ef9298664ac; Path=/
Sub-Sys: mobile
Uuid: 01375-01-00000000-17150607896609
X-Frame-Options: SAMEORIGIN

bifa365f.com:8989/mobile-api/v5/origin/loginSwitchCheck.html

20.239.57.18

200 OK

174 B

URL GET HTTP/1.1
bifa365f.com:8989/mobile-api/v5/origin/loginSwitchCheck.html
IP
20.239.57.18:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bifa365f.com:8989/
Certificate
IssuerLet's Encrypt
Subjectbifa365f.com
FingerprintE1:CA:A0:74:C8:35:F6:87:68:3C:4B:FD:D5:F6:1F:8B:D3:04:77:20
ValidityMon, 08 Apr 2024 17:23:36 GMT - Sun, 07 Jul 2024 17:23:35 GMT

File type
JSON text data
Size
174 B (174 bytes)
Hash
1452cebf3e2bb129b06762f43f09e5c8
0ec65f1e79233e8c59f76c55fb89ac8637cfb070
99a31cd18b8ce37d3725d0a77d5e314452d2906ed2b54b8b19d4de849d1bf13d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /mobile-api/v5/origin/loginSwitchCheck.html HTTP/1.1
Host: bifa365f.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Cookie: sticket=9qZ3pZVE13TldabUx; route=cff4f63a4f0402d67e06fc02582263f1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type,Access-Token,X-Requested-With
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 3600
Content-Disposition: inline;filename=f.txt
Content-Length: 174
Content-Type: text/html;charset=utf-8
Date: Tue, 07 May 2024 05:46:29 GMT
Out-Line: gb-cdn-135
Set-Cookie: route=9f8c829bfb3537f530509e8eaa83639a; Path=/
Sub-Sys: mobile
Uuid: 01375-01-00000000-17150607894e89
X-Frame-Options: SAMEORIGIN

bifa365f.com:8989/index/getUserTimeZoneDate.html?t=lvvywu9n

20.239.57.18

200 OK

119 B

URL GET HTTP/1.1
bifa365f.com:8989/index/getUserTimeZoneDate.html?t=lvvywu9n
IP
20.239.57.18:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bifa365f.com:8989/
Certificate
IssuerLet's Encrypt
Subjectbifa365f.com
FingerprintE1:CA:A0:74:C8:35:F6:87:68:3C:4B:FD:D5:F6:1F:8B:D3:04:77:20
ValidityMon, 08 Apr 2024 17:23:36 GMT - Sun, 07 Jul 2024 17:23:35 GMT

File type
JSON text data
Size
119 B (119 bytes)
Hash
a4c8e3108c36b42949ad476b3de25142
78f6d1a2b23947107832a7ab360a5fdb6d7c8bb0
6966128076075ed220174d8804ba379577471fcf2c772efa1d57d585ba5db6a0

HTTP Headers

GET /index/getUserTimeZoneDate.html?t=lvvywu9n HTTP/1.1
Host: bifa365f.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Cookie: sticket=9qZ3pZVE13TldabUx; route=cff4f63a4f0402d67e06fc02582263f1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cachettl: 3
Content-Disposition: inline;filename=f.txt
Content-Length: 119
Content-Type: text/html; charset=utf-8
Date: Tue, 07 May 2024 05:46:29 GMT
Out-Line: gb-cdn-135
Sub-Sys: msite
Uuid: 01375-01-00000000-171506078976e8
X-Frame-Options: SAMEORIGIN

fztjha.innittapp.com/fserver/files/gb/1375/carousel/10005/1599561477402.jpg?wsSecret=8ca374402e8c419d00530a76df7bd7c4&wsTime=1715060787

103.198.200.1

200 OK

235 kB

URL GET HTTP/1.1
fztjha.innittapp.com/fserver/files/gb/1375/carousel/10005/1599561477402.jpg?wsSecret=8ca374402e8c419d00530a76df7bd7c4&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x450, components 3
Size
235 kB (235128 bytes)
Hash
a61f04ead86627a73034845c5037c61e
1d1d078ec765fb89898d4589ae116b92e395fd4a
923927cbcc5af1395422b5b3d659be60f67c3b5392363286a44256feea6ed2e9

HTTP Headers

GET /fserver/files/gb/1375/carousel/10005/1599561477402.jpg?wsSecret=8ca374402e8c419d00530a76df7bd7c4&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 235128
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "637d2143-39678"
Date: Sat, 20 Apr 2024 18:10:36 GMT
Last-Modified: Tue, 22 Nov 2022 19:21:39 GMT
Expires: Mon, 20 May 2024 18:10:36 GMT
Age: 1424152
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-13
X-Cdn-Request-ID: 35ddd742484df21458aa38bdaef39000

bifa365f.com:8989/mobile-api/v5/origin/getThirdParam.html

20.239.57.18

200 OK

103 B

URL GET HTTP/1.1
bifa365f.com:8989/mobile-api/v5/origin/getThirdParam.html
IP
20.239.57.18:8989
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://bifa365f.com:8989/
Certificate
IssuerLet's Encrypt
Subjectbifa365f.com
FingerprintE1:CA:A0:74:C8:35:F6:87:68:3C:4B:FD:D5:F6:1F:8B:D3:04:77:20
ValidityMon, 08 Apr 2024 17:23:36 GMT - Sun, 07 Jul 2024 17:23:35 GMT

File type
JSON text data
Size
103 B (103 bytes)
Hash
9ac55fe189e4f53f37156e563e0f542e
18b13b1360ce9fbd973e046d2652be38d58a15e0
d7e02321006e1520d4c3e8d26428462419388e022cc89f3c974d0b87ad83af7b

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /mobile-api/v5/origin/getThirdParam.html HTTP/1.1
Host: bifa365f.com:8989
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Cookie: sticket=9qZ3pZVE13TldabUx; route=9f8c829bfb3537f530509e8eaa83639a
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type,Access-Token,X-Requested-With
Access-Control-Allow-Methods: *
Access-Control-Max-Age: 3600
Content-Disposition: inline;filename=f.txt
Content-Length: 103
Content-Type: text/html;charset=utf-8
Date: Tue, 07 May 2024 05:46:29 GMT
Out-Line: gb-cdn-135
Sub-Sys: mobile
Uuid: 01375-01-00000000-17150607898d7c
X-Frame-Options: SAMEORIGIN

fztjha.innittapp.com/ftl/bf365-1375/themes/images/header_bg.jpg?wsSecret=ceb4e740b07d28ef94f992642fd08df7&wsTime=1715060787

103.198.200.1

200 OK

4.4 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/images/header_bg.jpg?wsSecret=ceb4e740b07d28ef94f992642fd08df7&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1097x105, components 3
Size
4.4 kB (4405 bytes)
Hash
52e4009793b45e5f5e539ad5b8094bc1
07457d8a4cbb04ab6313c4aec1a20786bacf3392
de22d3c029fabcc192283c9504ae28fac4826eb759f17d785985d5dbbaac672d

HTTP Headers

GET /ftl/bf365-1375/themes/images/header_bg.jpg?wsSecret=ceb4e740b07d28ef94f992642fd08df7&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 4405
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-05
ETag: "613c72aa-1135"
Date: Sat, 20 Apr 2024 18:10:39 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Expires: Mon, 20 May 2024 18:10:39 GMT
Age: 1424150
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-05, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: 0dd2e0cf6bcd8e34a89f95428261ced7

fztjha.innittapp.com/ftl/commonPage/themes/images/layer-dialog/gui-layer-close-bg.png

103.155.16.137

200 OK

1.3 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/themes/images/layer-dialog/gui-layer-close-bg.png
IP
103.155.16.137:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 34 x 34, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1321 bytes)
Hash
a2e938202c0287b9c82461a6fd94dee9
b5e2adc7cb07c18a70a88af314e56b946ec1a1b6
df9ce20db277ad8302c704a73aff5024683a0d38aff0d3e7e884a67a24439936

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/themes/images/layer-dialog/gui-layer-close-bg.png HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fztjha.innittapp.com/ftl/commonPage/themes/gui-layer.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 1321
Connection: keep-alive
Server: Default-server-KS-CLOUD-XJP-12-03
ETag: "5d848f4f-529"
Date: Mon, 22 Apr 2024 06:41:36 GMT
Last-Modified: Fri, 20 Sep 2019 08:35:27 GMT
Expires: Wed, 22 May 2024 06:41:36 GMT
Age: 1292693
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: HIT
uuid: -
out-line: gb-cdn-206
x-link-via: xjp21:443;xjp12:80;
X-Cache-Status: HIT from KS-CLOUD-XJP-12-03, HIT from KS-CLOUD-XJP-FOREIGN-21-21
X-Cdn-Request-ID: 9c74d7e8e012efce8fc64d35a323b6b4

fztjha.innittapp.com/ftl/bf365-1375/images/logos.png?wsSecret=e4aebc950508d65818a8f197130d1c8e&wsTime=1715060787

103.155.16.137

200 OK

6.1 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/images/logos.png?wsSecret=e4aebc950508d65818a8f197130d1c8e&wsTime=1715060787
IP
103.155.16.137:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 355 x 71, 8-bit/color RGBA, non-interlaced
Size
6.1 kB (6084 bytes)
Hash
0fa0ad2288c8d78d7e90acbb21e9cee4
347eeb15bfe73b15a60b9605ab44e44d6c2a21b8
693129ebea1d9759e25b8ff6e03ad8bbfe9557f866984ad6ce21087b3b3100cb

HTTP Headers

GET /ftl/bf365-1375/images/logos.png?wsSecret=e4aebc950508d65818a8f197130d1c8e&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 6084
Connection: keep-alive
Server: Default-server-KS-CLOUD-XJP-12-08
ETag: "613c72aa-17c4"
Date: Mon, 22 Apr 2024 06:41:39 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Expires: Wed, 22 May 2024 06:41:39 GMT
Age: 1292690
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-206
x-link-via: xjp21:443;xjp12:80;
X-Cache-Status: HIT from KS-CLOUD-XJP-12-08, HIT from KS-CLOUD-XJP-FOREIGN-21-10
X-Cdn-Request-ID: 3a5640cf0c491c6a2f63d343eb909332

fztjha.innittapp.com/ftl/bf365-1375/themes/images/lanicon.png?wsSecret=05b0b5fde22ae6a359b500412bf79dd3&wsTime=1715060787

103.155.16.137

200 OK

2.4 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/images/lanicon.png?wsSecret=05b0b5fde22ae6a359b500412bf79dd3&wsTime=1715060787
IP
103.155.16.137:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 72 x 60, 8-bit colormap, non-interlaced
Size
2.4 kB (2421 bytes)
Hash
c1b2a13253a2048e9d30d1eeca0482b5
a32edc2d007bdbdc4a90a6d2267dd0b6c332fd9e
fc7e3391e2bcad24284e997307e042bd45688a7930e4e460f33cb969ae3c7ea6

HTTP Headers

GET /ftl/bf365-1375/themes/images/lanicon.png?wsSecret=05b0b5fde22ae6a359b500412bf79dd3&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2421
Connection: keep-alive
Server: Default-server-KS-CLOUD-XJP-12-03
ETag: "613c72aa-975"
Date: Mon, 22 Apr 2024 06:41:38 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Expires: Wed, 22 May 2024 06:41:38 GMT
Age: 1292691
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xjp21:443;xjp12:80;
X-Cache-Status: HIT from KS-CLOUD-XJP-12-03, HIT from KS-CLOUD-XJP-FOREIGN-21-09
X-Cdn-Request-ID: c6618321e047ffe8530e2301bed08a8e

fztjha.innittapp.com/ftl/bf365-1375/themes/images/login.png?wsSecret=c47a3684f89c69f07ad6821efd1ed232&wsTime=1715060787

103.155.16.137

200 OK

2.2 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/images/login.png?wsSecret=c47a3684f89c69f07ad6821efd1ed232&wsTime=1715060787
IP
103.155.16.137:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 63 x 58, 8-bit colormap, non-interlaced
Size
2.2 kB (2239 bytes)
Hash
b426eea48c0bcfb706af0abf55e1d80d
8538c5e982b029fd20c50e6836d3f352ead42fec
2434ff0bab26e9ba3a2aa2b1d09ece8b7411f866ac6d41fa3e449a92bfd72402

HTTP Headers

GET /ftl/bf365-1375/themes/images/login.png?wsSecret=c47a3684f89c69f07ad6821efd1ed232&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2239
Connection: keep-alive
Server: Default-server-KS-CLOUD-XJP-12-03
ETag: "613c72aa-8bf"
Date: Mon, 22 Apr 2024 06:41:38 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Expires: Wed, 22 May 2024 06:41:38 GMT
Age: 1292690
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-206
x-link-via: xjp21:443;xjp12:80;
X-Cache-Status: HIT from KS-CLOUD-XJP-12-03, HIT from KS-CLOUD-XJP-FOREIGN-21-06
X-Cdn-Request-ID: c9897bb2e7ff1cd754573e21087d9a4e

fztjha.innittapp.com/fserver/files/gb/1375/Logo/1/1598348196892.png?wsSecret=4bec1c86f0424f11b6ddc69a713d5aba&wsTime=1715060787

103.155.16.137

200 OK

29 kB

URL GET HTTP/1.1
fztjha.innittapp.com/fserver/files/gb/1375/Logo/1/1598348196892.png?wsSecret=4bec1c86f0424f11b6ddc69a713d5aba&wsTime=1715060787
IP
103.155.16.137:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 285 x 120, 8-bit/color RGBA, non-interlaced
Size
29 kB (28801 bytes)
Hash
cde7d2ad6c20d9501510f147e81f2c06
e216fac5e8e182d2dd4da6292942cacd4e6c8814
32333f2d0167acaaa2050a7c381fcb29871723fc54aeced293ae5766ccf4347f

HTTP Headers

GET /fserver/files/gb/1375/Logo/1/1598348196892.png?wsSecret=4bec1c86f0424f11b6ddc69a713d5aba&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 28801
Connection: keep-alive
Server: Default-server-KS-CLOUD-XJP-FOREIGN-12-05
ETag: "5f44caa6-7081"
Date: Mon, 22 Apr 2024 06:41:39 GMT
Last-Modified: Tue, 25 Aug 2020 08:24:06 GMT
Expires: Wed, 22 May 2024 06:41:39 GMT
Age: 1292689
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xjp21:443;xjp12:80;
X-Cache-Status: HIT from KS-CLOUD-XJP-FOREIGN-12-05, HIT from KS-CLOUD-XJP-FOREIGN-21-11
X-Cdn-Request-ID: 0e8ce05456ade702db4ffbd31dcbca3a

fztjha.innittapp.com/ftl/bf365-1375/images/license.png?wsSecret=3348cf17bf28614f25fd9066b54cef77&wsTime=1715060787

103.198.200.1

200 OK

60 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/images/license.png?wsSecret=3348cf17bf28614f25fd9066b54cef77&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 338 x 233, 8-bit/color RGBA, non-interlaced
Size
60 kB (60071 bytes)
Hash
587868542724dd7dcdfbe6e5645d9832
b5489c2eaa27e7370ed38b53dd76a8703baf82d1
813e6c163fecce6859c6f488d83514b5c7b5a33d07d96c3e972a4884919b82f6

HTTP Headers

GET /ftl/bf365-1375/images/license.png?wsSecret=3348cf17bf28614f25fd9066b54cef77&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 60071
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: "613c72a9-eaa7"
Date: Sat, 20 Apr 2024 18:10:38 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:05 GMT
Expires: Mon, 20 May 2024 18:10:38 GMT
Age: 1424150
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-206
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-04
X-Cdn-Request-ID: 6b193f3a78c2bc915c25741889093e69

fztjha.innittapp.com/fserver/files/gb/1375/carousel/10166/1714172891520.jpg?wsSecret=594e3f105e9d536c9f4da989c6c5d7cc&wsTime=1715060787

103.198.200.1

200 OK

76 kB

URL GET HTTP/1.1
fztjha.innittapp.com/fserver/files/gb/1375/carousel/10166/1714172891520.jpg?wsSecret=594e3f105e9d536c9f4da989c6c5d7cc&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, progressive, precision 8, 692x516, components 3
Size
76 kB (75816 bytes)
Hash
4f150e35775e0d95d86a414cb2329998
8d9bddfa6129beee9d7c345efae944d73420dddf
5f45c289403e2da937753842b0ebbd4f68155e2a775a4ea8bfc06e6c065374e7

HTTP Headers

GET /fserver/files/gb/1375/carousel/10166/1714172891520.jpg?wsSecret=594e3f105e9d536c9f4da989c6c5d7cc&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 75816
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "662c33db-12828"
Date: Sat, 27 Apr 2024 05:03:59 GMT
Last-Modified: Fri, 26 Apr 2024 23:08:11 GMT
Expires: Mon, 27 May 2024 05:03:59 GMT
Age: 866550
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-07
X-Cdn-Request-ID: 36d68c8e88b5e00ac97450d9c988d6ea

fztjha.innittapp.com/ftl/bf365-1375/themes/images/joinus.png?wsSecret=e27d12d0edb71210a4ed51fb84c8f6dd&wsTime=1715060787

103.198.200.1

200 OK

2.6 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/images/joinus.png?wsSecret=e27d12d0edb71210a4ed51fb84c8f6dd&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 83 x 58, 8-bit colormap, non-interlaced
Size
2.6 kB (2603 bytes)
Hash
fe8db875634f682d4ee7893fc34484ce
f926ef17213a2a03b501c23162aec03262617a21
e2edfbb13e5dd550c301945f36f874ba4987ababc87cb5189e42117d035b6c99

HTTP Headers

GET /ftl/bf365-1375/themes/images/joinus.png?wsSecret=e27d12d0edb71210a4ed51fb84c8f6dd&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 2603
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "613c72aa-a2b"
Date: Sat, 20 Apr 2024 18:10:41 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Expires: Mon, 20 May 2024 18:10:41 GMT
Age: 1424148
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-06
X-Cdn-Request-ID: 8e70b524061b86cbcd1512b0b00304d2

fztjha.innittapp.com/fserver/files/gb/1375/carousel/10024/1602333645006.jpg?wsSecret=f1a689488ae954eacdbaba4ce0378dc7&wsTime=1715060787

103.155.16.137

200 OK

114 kB

URL GET HTTP/1.1
fztjha.innittapp.com/fserver/files/gb/1375/carousel/10024/1602333645006.jpg?wsSecret=f1a689488ae954eacdbaba4ce0378dc7&wsTime=1715060787
IP
103.155.16.137:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 692x516, components 3
Size
114 kB (114285 bytes)
Hash
ca8ad3f6cf194844862df28347f159c6
efa1696c3d19f8ae7d976df708c1351b9346cf30
961e97c6e45d369bbdaecfff86dbdd9ba70b6c2575c17ec8df0af08e2cbbf7ea

HTTP Headers

GET /fserver/files/gb/1375/carousel/10024/1602333645006.jpg?wsSecret=f1a689488ae954eacdbaba4ce0378dc7&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 114285
Connection: keep-alive
Server: Default-server-KS-CLOUD-XJP-12-07
ETag: "637d21af-1be6d"
Date: Mon, 22 Apr 2024 06:41:38 GMT
Last-Modified: Tue, 22 Nov 2022 19:23:27 GMT
Expires: Wed, 22 May 2024 06:41:38 GMT
Age: 1292690
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xjp21:443;xjp12:80;
X-Cache-Status: HIT from KS-CLOUD-XJP-12-07, HIT from KS-CLOUD-XJP-FOREIGN-21-11
X-Cdn-Request-ID: 47ceaca89a29ee8fc2f344230bd8b107

fztjha.innittapp.com/fserver/files/gb/1375/carousel/10102/1661671973182.jpg?wsSecret=4d9b21523cf2cc1cb62a48ff436c0a8c&wsTime=1715060787

103.198.200.1

200 OK

198 kB

URL GET HTTP/1.1
fztjha.innittapp.com/fserver/files/gb/1375/carousel/10102/1661671973182.jpg?wsSecret=4d9b21523cf2cc1cb62a48ff436c0a8c&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 692x516, components 3
Size
198 kB (198549 bytes)
Hash
eeb851eadb6106ce8f1f5e5652507e02
d93d8d319278e607c4c23025fb5c4ab7503888ce
02ae7569049611c4c17540c66c223517ef5706438b70ab9900753161ff4dabec

HTTP Headers

GET /fserver/files/gb/1375/carousel/10102/1661671973182.jpg?wsSecret=4d9b21523cf2cc1cb62a48ff436c0a8c&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 198549
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-05
ETag: "637d22ee-30795"
Date: Sat, 20 Apr 2024 18:10:38 GMT
Last-Modified: Tue, 22 Nov 2022 19:28:46 GMT
Expires: Mon, 20 May 2024 18:10:38 GMT
Age: 1424151
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-206
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-05, HIT from KS-CLOUD-XG-FOREIGN-21-01
X-Cdn-Request-ID: 0a812e076806d7000223d2ea2c3cbd1e

fztjha.innittapp.com/ftl/bf365-1375/themes/images/nav.png?wsSecret=1a6afba746cd26249e118550be0020f8&wsTime=1715060787

103.198.200.1

200 OK

1.5 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/images/nav.png?wsSecret=1a6afba746cd26249e118550be0020f8&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 1000 x 47, 8-bit colormap, non-interlaced
Size
1.5 kB (1545 bytes)
Hash
a1f0874c22b7bf3f5931ad49399cee68
e45277ff9c53d44e3f789cba2a80e43d9b908c17
e123c7f068c8baf14b6c73a4571737c595e3e933de87ec02bf266da3ae225e06

HTTP Headers

GET /ftl/bf365-1375/themes/images/nav.png?wsSecret=1a6afba746cd26249e118550be0020f8&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 1545
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "613c72aa-609"
Date: Sat, 20 Apr 2024 18:10:44 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Expires: Mon, 20 May 2024 18:10:44 GMT
Age: 1424146
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-206
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: 161523119188992cd00282571b5085f8

fztjha.innittapp.com/fserver/files/gb/1375/carousel/10029/1602953947517.jpg?wsSecret=8d88bfebc52a1ee6a37d4de97477013f&wsTime=1715060787

103.198.200.1

200 OK

142 kB

URL GET HTTP/1.1
fztjha.innittapp.com/fserver/files/gb/1375/carousel/10029/1602953947517.jpg?wsSecret=8d88bfebc52a1ee6a37d4de97477013f&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 692x516, components 3
Size
142 kB (142056 bytes)
Hash
40953906f130b771f4675c315e4e7a2d
07c0e1d60de811c159d7f55083f0b75c435ba903
b68c5441698d674ea21e63bfa8627009e2e0a237779e8b460050ce88ab184354

HTTP Headers

GET /fserver/files/gb/1375/carousel/10029/1602953947517.jpg?wsSecret=8d88bfebc52a1ee6a37d4de97477013f&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 142056
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "637d21bd-22ae8"
Date: Sat, 20 Apr 2024 18:10:38 GMT
Last-Modified: Tue, 22 Nov 2022 19:23:41 GMT
Expires: Mon, 20 May 2024 18:10:38 GMT
Age: 1424151
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-03
X-Cdn-Request-ID: b98f0ab2541fb2ab3d91142b3ea87342

fztjha.innittapp.com/fserver/files/gb/1375/carousel/10049/1628058864340.jpg?wsSecret=1202486e58d5f5ff6a632dd722ba3855&wsTime=1715060787

103.198.200.1

200 OK

144 kB

URL GET HTTP/1.1
fztjha.innittapp.com/fserver/files/gb/1375/carousel/10049/1628058864340.jpg?wsSecret=1202486e58d5f5ff6a632dd722ba3855&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 692x516, components 3
Size
144 kB (143928 bytes)
Hash
1eb144b294de8f497d3f076ebf4d0f4f
4ea8c9805411cf3b35c3a88615373ac68e9b1adb
c6e4c730a43134c0d8f41135744488c4e8bfe1217cdc131c15fb868c8e18f26c

HTTP Headers

GET /fserver/files/gb/1375/carousel/10049/1628058864340.jpg?wsSecret=1202486e58d5f5ff6a632dd722ba3855&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 143928
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "637d2260-23238"
Date: Sat, 20 Apr 2024 18:10:39 GMT
Last-Modified: Tue, 22 Nov 2022 19:26:24 GMT
Expires: Mon, 20 May 2024 18:10:39 GMT
Age: 1424149
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-12
X-Cdn-Request-ID: a401733a9d23fd5bb6cc266f427066ce

fztjha.innittapp.com/ftl/bf365-1375/themes/images/chat.jpg?wsSecret=41231b5df4c68cca2f0b6a6611773631&wsTime=1715060787

103.198.200.1

200 OK

2.5 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/images/chat.jpg?wsSecret=41231b5df4c68cca2f0b6a6611773631&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 91x31, components 3
Size
2.5 kB (2485 bytes)
Hash
e4d210d37609554cd8e64e427a4dbb1d
8c1fbde8b44e01534e046f5c6f128f9ce2c5b781
f91c42a02c37832cc6c3a24109420cf792e09ae6bcd48596f6f647ca5f4a3734

HTTP Headers

GET /ftl/bf365-1375/themes/images/chat.jpg?wsSecret=41231b5df4c68cca2f0b6a6611773631&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2485
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "613c72aa-9b5"
Date: Sat, 20 Apr 2024 18:10:40 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Expires: Mon, 20 May 2024 18:10:40 GMT
Age: 1424150
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: a6aadeaf156d90f418038c496b95a9e8

fztjha.innittapp.com/ftl/bf365-1375/themes/images/slide-next-icon.png?wsSecret=e58c725cb83857e8b85caba104c9db0b&wsTime=1715060787

103.198.200.1

200 OK

5.7 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/images/slide-next-icon.png?wsSecret=e58c725cb83857e8b85caba104c9db0b&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 70 x 260, 8-bit/color RGBA, non-interlaced
Size
5.7 kB (5661 bytes)
Hash
4be0a808f2ed8258b9ebced7ca27606b
3135828d31f29ac86f4f4834eba3b86820503146
38e6727a0e939bf830b9aa9e1acd49375da269b3b72483e04ecf822dbfa59a1c

HTTP Headers

GET /ftl/bf365-1375/themes/images/slide-next-icon.png?wsSecret=e58c725cb83857e8b85caba104c9db0b&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 5661
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-05
ETag: "613c72aa-161d"
Date: Sat, 20 Apr 2024 18:10:40 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Expires: Mon, 20 May 2024 18:10:40 GMT
Age: 1424150
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-206
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-05, HIT from KS-CLOUD-XG-FOREIGN-21-02
X-Cdn-Request-ID: 3ed90e51aafebeccd80e32e73b1fde61

fztjha.innittapp.com/ftl/bf365-1375/themes/images/slide-prev-icon.png?wsSecret=2c13fbc37e4c2743e57856a4f4d0fc53&wsTime=1715060787

103.155.16.137

200 OK

8.0 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/images/slide-prev-icon.png?wsSecret=2c13fbc37e4c2743e57856a4f4d0fc53&wsTime=1715060787
IP
103.155.16.137:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 70 x 260, 8-bit/color RGBA, non-interlaced
Size
8.0 kB (7990 bytes)
Hash
783d4feb97998752623960deb92e17e6
2a6b3acd563ef1264433be11e8a7f82c958bdfd1
c27eeb5f653babfe115d5dbc6a6fb6259753b5f35d4e3a12345b6135fb1ce45f

HTTP Headers

GET /ftl/bf365-1375/themes/images/slide-prev-icon.png?wsSecret=2c13fbc37e4c2743e57856a4f4d0fc53&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 7990
Connection: keep-alive
Server: Default-server-KS-CLOUD-XJP-12-09
ETag: "613c72aa-1f36"
Date: Mon, 22 Apr 2024 06:41:37 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Expires: Wed, 22 May 2024 06:41:37 GMT
Age: 1292692
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-206
x-link-via: xjp21:443;xjp12:80;
X-Cache-Status: HIT from KS-CLOUD-XJP-12-09, HIT from KS-CLOUD-XJP-FOREIGN-21-05
X-Cdn-Request-ID: 06861ecfce21fd816bcf812e8efb1be7

fztjha.innittapp.com/ftl/bf365-1375/themes/images/bg.png?wsSecret=cd1401b7530dc86cb8d59487cf382a5e&wsTime=1715060787

103.198.200.1

200 OK

3.5 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/images/bg.png?wsSecret=cd1401b7530dc86cb8d59487cf382a5e&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 1880 x 356, 4-bit colormap, non-interlaced
Size
3.5 kB (3529 bytes)
Hash
e0bcfa450a22879909b3738123ce08ab
2ee8a403da5b4a06cf17e21f13a13877f913f27f
fe23b66d141017cde61b661bf07d8c6ea1a92ef142322e4d577fa63e167d6a62

HTTP Headers

GET /ftl/bf365-1375/themes/images/bg.png?wsSecret=cd1401b7530dc86cb8d59487cf382a5e&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 3529
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "613c72aa-dc9"
Date: Sat, 20 Apr 2024 18:10:39 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Expires: Mon, 20 May 2024 18:10:39 GMT
Age: 1424150
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-11
X-Cdn-Request-ID: 8616d4a797dcb5b1d8ee1614d9513daf

fztjha.innittapp.com/ftl/bf365-1375/themes/images/notice_bg.png?wsSecret=e5894ac81c1fee62fd504986cf247897&wsTime=1715060787

103.198.200.1

200 OK

118 B

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/images/notice_bg.png?wsSecret=e5894ac81c1fee62fd504986cf247897&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 65 x 65, 1-bit colormap, non-interlaced
Size
118 B (118 bytes)
Hash
5f3e23d611bfe9ca876c8c19f7b24044
a28d54fdf0846b789938c5db5ef65806ae79928d
2479154a9e5bdf3b30b7016da27b136806795a5499e464a0f5ab89158fd8b593

HTTP Headers

GET /ftl/bf365-1375/themes/images/notice_bg.png?wsSecret=e5894ac81c1fee62fd504986cf247897&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 118
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "613c72aa-76"
Date: Sat, 20 Apr 2024 18:10:39 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Expires: Mon, 20 May 2024 18:10:39 GMT
Age: 1424151
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-10
X-Cdn-Request-ID: ab364b9f43a1cae0ccb64ac3f850f947

fztjha.innittapp.com/ftl/bf365-1375/themes/images/discount.png?wsSecret=7f537ff7e51960d6fadb23629de5f5b3&wsTime=1715060787

103.198.200.1

200 OK

8.2 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/images/discount.png?wsSecret=7f537ff7e51960d6fadb23629de5f5b3&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 284 x 124, 8-bit colormap, non-interlaced
Size
8.2 kB (8193 bytes)
Hash
9808de12eb3d5e8727d941300eefc7ba
d87e3868211b30b530c721d6edc030fc969164b0
356f4dc90bf4c0474390d41b8c3025e1733201243fab7483876e0f9ae4ab9525

HTTP Headers

GET /ftl/bf365-1375/themes/images/discount.png?wsSecret=7f537ff7e51960d6fadb23629de5f5b3&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 8193
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-05
ETag: "613c72aa-2001"
Date: Sat, 20 Apr 2024 18:10:40 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Expires: Mon, 20 May 2024 18:10:40 GMT
Age: 1424150
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-05, HIT from KS-CLOUD-XG-FOREIGN-21-02
X-Cdn-Request-ID: 932357c63b0957f11b9c8f1be3bd0053

fztjha.innittapp.com/ftl/bf365-1375/themes/images/Account.png?wsSecret=4303d2db1a602e2e43ec3eff9d1341f5&wsTime=1715060787

103.198.200.1

200 OK

7.4 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/images/Account.png?wsSecret=4303d2db1a602e2e43ec3eff9d1341f5&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 285 x 124, 8-bit colormap, non-interlaced
Size
7.4 kB (7422 bytes)
Hash
a73a964407e1deb27a9cdd24843f8a0a
b14913687062b9888efe9358f249e58b7b9d834d
9919ed688d4a8bfaffb9592d347ac8f2f6d3af8c81eab6afa41018eb6d77a486

HTTP Headers

GET /ftl/bf365-1375/themes/images/Account.png?wsSecret=4303d2db1a602e2e43ec3eff9d1341f5&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 7422
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: "613c72aa-1cfe"
Date: Sat, 20 Apr 2024 18:10:40 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Expires: Mon, 20 May 2024 18:10:40 GMT
Age: 1424150
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-206
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-05
X-Cdn-Request-ID: 30f0baa208187ccee4d5a9b1c233a0be

fztjha.innittapp.com/ftl/bf365-1375/themes/images/slot.jpg?wsSecret=22c5c1133aa851da12a0905aa31c37da&wsTime=1715060787

103.198.200.1

200 OK

44 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/images/slot.jpg?wsSecret=22c5c1133aa851da12a0905aa31c37da&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 340 x 340, 8-bit colormap, non-interlaced
Size
44 kB (43651 bytes)
Hash
5a61bbd5f6475f30e788bc436c78ef40
492d1466eb6c4865fe42db07ad87efaf890a8c91
f9e250aebb365923e1d2b8af767b5272381c309dae17d9d3999ba277fee5f5d8

HTTP Headers

GET /ftl/bf365-1375/themes/images/slot.jpg?wsSecret=22c5c1133aa851da12a0905aa31c37da&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 43651
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-05
ETag: "613c72aa-aa83"
Date: Sat, 20 Apr 2024 18:10:40 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Expires: Mon, 20 May 2024 18:10:40 GMT
Age: 1424149
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-05, HIT from KS-CLOUD-XG-FOREIGN-21-04
X-Cdn-Request-ID: c29af7d52b48ad1d1f01e6e7549914d7

fztjha.innittapp.com/ftl/bf365-1375/themes/images/footer_bg.jpg?wsSecret=23b2cb9f8f61bab08c3c42f8091b866b&wsTime=1715060787

103.198.200.1

200 OK

444 B

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/images/footer_bg.jpg?wsSecret=23b2cb9f8f61bab08c3c42f8091b866b&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 10x162, components 3
Size
444 B (444 bytes)
Hash
676be06690f2b408ace2224e29bbba56
0fa4eaee85ffec7f5427e9891f46b3910642b03d
ecb3c5a7bf880213970814ac512841fd796677bf18a1591184ed2b30e5166524

HTTP Headers

GET /ftl/bf365-1375/themes/images/footer_bg.jpg?wsSecret=23b2cb9f8f61bab08c3c42f8091b866b&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 444
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "613c72aa-1bc"
Date: Sat, 20 Apr 2024 18:10:41 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Expires: Mon, 20 May 2024 18:10:41 GMT
Age: 1424149
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-206
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-07
X-Cdn-Request-ID: 9a84abacbf231f64913d92a5142f2aed

fztjha.innittapp.com/ftl/bf365-1375/themes/images/live.jpg?wsSecret=43430488691a0ae33b0348ba5a00f157&wsTime=1715060787

103.155.16.137

200 OK

61 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/images/live.jpg?wsSecret=43430488691a0ae33b0348ba5a00f157&wsTime=1715060787
IP
103.155.16.137:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 340x340, components 3
Size
61 kB (61158 bytes)
Hash
ea832db9ea06b66cba117c5ed23f6e25
38aba3819cf02fb612d198bb5a097dd36b46520c
8e7ce48358ad4be0f828f1ca608d20aad5b6b8d7d50fd88c9ab08a34b3fbf9fc

HTTP Headers

GET /ftl/bf365-1375/themes/images/live.jpg?wsSecret=43430488691a0ae33b0348ba5a00f157&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 61158
Connection: keep-alive
Server: Default-server-KS-CLOUD-XJP-FOREIGN-12-05
ETag: "613c72aa-eee6"
Date: Mon, 22 Apr 2024 06:41:37 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Expires: Wed, 22 May 2024 06:41:37 GMT
Age: 1292692
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xjp21:443;xjp12:80;
X-Cache-Status: HIT from KS-CLOUD-XJP-FOREIGN-12-05, HIT from KS-CLOUD-XJP-FOREIGN-21-02
X-Cdn-Request-ID: 49e916b4740ea3d168f3e9c7704d6875

fztjha.innittapp.com/ftl/bf365-1375/themes/images/lottery.jpg?wsSecret=adbdb18f9430aa235aaf861235983912&wsTime=1715060787

103.198.200.1

200 OK

54 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/images/lottery.jpg?wsSecret=adbdb18f9430aa235aaf861235983912&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 340x340, components 3
Size
54 kB (53963 bytes)
Hash
fd11649c09417220fb2294aafaa675e5
eabfcff109a9a7ecea68b499b26fd7826bb310c6
35eb36d4b1c7c0cc6906adc2c8db419fd98dae6f44423c91843507d523d94a2c

HTTP Headers

GET /ftl/bf365-1375/themes/images/lottery.jpg?wsSecret=adbdb18f9430aa235aaf861235983912&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 53963
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-06
ETag: "613c72aa-d2cb"
Date: Sat, 20 Apr 2024 18:10:39 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Expires: Mon, 20 May 2024 18:10:39 GMT
Age: 1424151
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-06, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: fc5445671ac302a58c439a62c638a165

fztjha.innittapp.com/ftl/bf365-1375/themes/images/sport.jpg?wsSecret=228862771d05a3f67fbea5a2f937a762&wsTime=1715060787

103.198.200.1

200 OK

56 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/bf365-1375/themes/images/sport.jpg?wsSecret=228862771d05a3f67fbea5a2f937a762&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 340x340, components 3
Size
56 kB (55854 bytes)
Hash
cdfdc6f95c725bd5355ef1e5dc62ae95
4ade653fe04b19912514e4d07df1be7778f3a8b2
c92354c654dae36c7baa1acb509a88bc64f4c298e8684680471519dae7bd49eb

HTTP Headers

GET /ftl/bf365-1375/themes/images/sport.jpg?wsSecret=228862771d05a3f67fbea5a2f937a762&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 55854
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "613c72aa-da2e"
Date: Sat, 20 Apr 2024 18:10:39 GMT
Last-Modified: Sat, 11 Sep 2021 09:11:06 GMT
Expires: Mon, 20 May 2024 18:10:39 GMT
Age: 1424151
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-06
X-Cdn-Request-ID: c6595724cd434b820c29de9312aab61e

fztjha.innittapp.com/ftl/commonPage/themes/images/hongbao/hongbao_type2.png?wsSecret=e194c0493fe94fc5c04f14406788239e&wsTime=1715060787

103.198.200.1

200 OK

97 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/themes/images/hongbao/hongbao_type2.png?wsSecret=e194c0493fe94fc5c04f14406788239e&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 250 x 290, 8-bit/color RGBA, non-interlaced
Size
97 kB (96781 bytes)
Hash
7cba82537203f393f21f63f855ecb3a6
5be53b9f8a346d56535ddc1fed69707aec03e2b8
69bfc1a826e8db539aba70f98c11d3cb0f3d9f8f47a9e150c259211e8070f18a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/themes/images/hongbao/hongbao_type2.png?wsSecret=e194c0493fe94fc5c04f14406788239e&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 96781
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-04
ETag: "61309af5-17a0d"
Date: Sat, 20 Apr 2024 18:10:41 GMT
Last-Modified: Thu, 02 Sep 2021 09:35:49 GMT
Expires: Mon, 20 May 2024 18:10:41 GMT
Age: 1424149
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-04, HIT from KS-CLOUD-XG-FOREIGN-21-02
X-Cdn-Request-ID: f546cdac735a8f6bea7eb706517581e3

fztjha.innittapp.com/fserver/files/gb/1375/floatImage/204/1598788571571.png?wsSecret=24cf5aee31e8fb1cd1eb9e10e042e21f&wsTime=1715060787

103.198.200.1

200 OK

8.1 kB

URL GET HTTP/1.1
fztjha.innittapp.com/fserver/files/gb/1375/floatImage/204/1598788571571.png?wsSecret=24cf5aee31e8fb1cd1eb9e10e042e21f&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
Size
8.1 kB (8106 bytes)
Hash
4e2424741f0e55093ccbf940466fda30
835ebc690a06f2b6fe761c11167d2974410fab1c
be7974e6115c11b997d07f6414709e798f0b6803579d452d2efa6a694027e49d

HTTP Headers

GET /fserver/files/gb/1375/floatImage/204/1598788571571.png?wsSecret=24cf5aee31e8fb1cd1eb9e10e042e21f&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 8106
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "5f4b82e2-1faa"
Date: Sat, 20 Apr 2024 18:10:41 GMT
Last-Modified: Sun, 30 Aug 2020 10:43:46 GMT
Expires: Mon, 20 May 2024 18:10:41 GMT
Age: 1424150
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-07
X-Cdn-Request-ID: 3c3c0e56d3fa89b8ba9a18a6d27e65b9

fztjha.innittapp.com/fserver/files/gb/1375/floatImage/204/1694496645384.jpg?wsSecret=532380c5b1543e266a2b4a0877c201de&wsTime=1715060787

103.198.200.1

200 OK

7.6 kB

URL GET HTTP/1.1
fztjha.innittapp.com/fserver/files/gb/1375/floatImage/204/1694496645384.jpg?wsSecret=532380c5b1543e266a2b4a0877c201de&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3
Size
7.6 kB (7563 bytes)
Hash
430ad1ccc74937fed9d8e9f2f4e6c7c2
2d8b885e098f60d6e5c7402fea51cfd131e1cd4f
580e35e4ed8a19e57a25e75c62f1e330425faf8b533b93be8ba8f2f78b0b31ea

HTTP Headers

GET /fserver/files/gb/1375/floatImage/204/1694496645384.jpg?wsSecret=532380c5b1543e266a2b4a0877c201de&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 7563
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "64fff785-1d8b"
Date: Sat, 20 Apr 2024 18:10:41 GMT
Last-Modified: Tue, 12 Sep 2023 05:30:45 GMT
Expires: Mon, 20 May 2024 18:10:41 GMT
Age: 1424149
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-08
X-Cdn-Request-ID: 9202ff4914596212407e4fe860ae2622

fztjha.innittapp.com/ftl/commonPage/themes/images/hongbao/hongbao_type2_hover.png?wsSecret=3e2a1ceb6bef9d91963ecdef7a5612ec&wsTime=1715060787

103.198.200.1

200 OK

103 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/themes/images/hongbao/hongbao_type2_hover.png?wsSecret=3e2a1ceb6bef9d91963ecdef7a5612ec&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 250 x 290, 8-bit/color RGBA, non-interlaced
Size
103 kB (103097 bytes)
Hash
22d9895f65b064eedd9f6437e32ece6f
4095a9dc84b4b9477ba88358deaebae434f44b8d
7ba3c90a5fe78b7e5eaab734581c96a33e7293cf1995c22906121de97d35b8a1

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Bet365

HTTP Headers

GET /ftl/commonPage/themes/images/hongbao/hongbao_type2_hover.png?wsSecret=3e2a1ceb6bef9d91963ecdef7a5612ec&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 103097
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-03
ETag: "61309af5-192b9"
Date: Sat, 20 Apr 2024 18:10:41 GMT
Last-Modified: Thu, 02 Sep 2021 09:35:49 GMT
Expires: Mon, 20 May 2024 18:10:41 GMT
Age: 1424149
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-206
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-03, HIT from KS-CLOUD-XG-FOREIGN-21-02
X-Cdn-Request-ID: c3412c258222256383eb526c77f17579

fztjha.innittapp.com/fserver/files/gb/1375/floatImage/204/1598788571829.png?wsSecret=7d24f5360d14bfc810df33c84f7da4cd&wsTime=1715060787

103.155.16.137

200 OK

7.0 kB

URL GET HTTP/1.1
fztjha.innittapp.com/fserver/files/gb/1375/floatImage/204/1598788571829.png?wsSecret=7d24f5360d14bfc810df33c84f7da4cd&wsTime=1715060787
IP
103.155.16.137:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
Size
7.0 kB (6982 bytes)
Hash
140f8d5070103666afde9fa3056f9837
cc2144dd6c4e98286f2970335e951f17a12faffc
cee63619e1872593818f350684cfd3826797635b8ccdbe6af195ef740c64d409

HTTP Headers

GET /fserver/files/gb/1375/floatImage/204/1598788571829.png?wsSecret=7d24f5360d14bfc810df33c84f7da4cd&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 6982
Connection: keep-alive
Server: Default-server-KS-CLOUD-XJP-12-07
ETag: "5f4b82e2-1b46"
Date: Mon, 22 Apr 2024 06:41:38 GMT
Last-Modified: Sun, 30 Aug 2020 10:43:46 GMT
Expires: Wed, 22 May 2024 06:41:38 GMT
Age: 1292693
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xjp21:443;xjp12:80;
X-Cache-Status: HIT from KS-CLOUD-XJP-12-07, HIT from KS-CLOUD-XJP-FOREIGN-21-09
X-Cdn-Request-ID: 1c1c7ea709971c82a7f987a373882ba7

fztjha.innittapp.com/ftl/commonPage/images/favicon/favicon_1375.png?wsSecret=d373903d6fe7b8f505e03f076c2ac3c6&wsTime=1715060787

103.198.200.1

200 OK

13 kB

URL GET HTTP/1.1
fztjha.innittapp.com/ftl/commonPage/images/favicon/favicon_1375.png?wsSecret=d373903d6fe7b8f505e03f076c2ac3c6&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced
Size
13 kB (13252 bytes)
Hash
820dd6ad6a8b67bfe4f9fbd7a9351f23
5ef196105289ad4a541a3e8ea248cc96634c0723
1074cc657559d6d379c7b56e379812246eb3863bc6a97ed9f579c65979ec45e6

HTTP Headers

GET /ftl/commonPage/images/favicon/favicon_1375.png?wsSecret=d373903d6fe7b8f505e03f076c2ac3c6&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 13252
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-01
ETag: "6311d300-33c4"
Date: Sat, 20 Apr 2024 20:11:53 GMT
Last-Modified: Fri, 02 Sep 2022 09:55:12 GMT
Expires: Mon, 20 May 2024 20:11:53 GMT
Age: 1416878
Cache-Control: max-age=86400
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-01, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: 173632c577920506b7d436dd0320d0f8

fztjha.innittapp.com/fserver/files/gb/1375/carousel/10010/1599390128019.jpg?wsSecret=5ae6117506171a7ad23d59a39d9ec049&wsTime=1715060787

103.198.200.1

200 OK

282 kB

URL GET HTTP/1.1
fztjha.innittapp.com/fserver/files/gb/1375/carousel/10010/1599390128019.jpg?wsSecret=5ae6117506171a7ad23d59a39d9ec049&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x450, components 3
Size
282 kB (281459 bytes)
Hash
42caf07d588f6722b5e0b41865ffe027
d0162648e70204aaeabab04c37e55921444e36e5
a0938dc1d67e7dacee52125fef0af46873c6d7e23842440312ecf4c8969f4322

HTTP Headers

GET /fserver/files/gb/1375/carousel/10010/1599390128019.jpg?wsSecret=5ae6117506171a7ad23d59a39d9ec049&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 281459
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-05
ETag: "637d2153-44b73"
Date: Sat, 20 Apr 2024 18:10:41 GMT
Last-Modified: Tue, 22 Nov 2022 19:21:55 GMT
Expires: Mon, 20 May 2024 18:10:41 GMT
Age: 1424149
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-206
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-05, HIT from KS-CLOUD-XG-FOREIGN-21-15
X-Cdn-Request-ID: eab66e42413b79af299be3d7adb64090

fztjha.innittapp.com/fserver/files/gb/1375/carousel/10014/1599486190035.jpg?wsSecret=175eaac858b32ae63060d4773870f68f&wsTime=1715060787

103.198.200.1

200 OK

172 kB

URL GET HTTP/1.1
fztjha.innittapp.com/fserver/files/gb/1375/carousel/10014/1599486190035.jpg?wsSecret=175eaac858b32ae63060d4773870f68f&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x450, components 3
Size
172 kB (172005 bytes)
Hash
113239c144674ed01b0ffa3adba4b2d0
2677be47922c3ba329b972b1e1f74bb6aaaba754
4c4051722aa17d37cc29045e86c334690ae379fafa8ce8c7f857d9d89713886d

HTTP Headers

GET /fserver/files/gb/1375/carousel/10014/1599486190035.jpg?wsSecret=175eaac858b32ae63060d4773870f68f&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 172005
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "637d217f-29fe5"
Date: Sat, 20 Apr 2024 18:10:43 GMT
Last-Modified: Tue, 22 Nov 2022 19:22:39 GMT
Expires: Mon, 20 May 2024 18:10:43 GMT
Age: 1424150
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-204
x-link-via: xg21:443;xg12:80;
X-Cache-Status: MISS from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-12
X-Cdn-Request-ID: e0fac66d324fed51368ae5bc4be46c3e

fztjha.innittapp.com/fserver/files/gb/1375/carousel/10011/1599390143399.jpg?wsSecret=7ae6cde1e3479a23215ebb2927b3db37&wsTime=1715060787

103.198.200.1

200 OK

424 kB

URL GET HTTP/1.1
fztjha.innittapp.com/fserver/files/gb/1375/carousel/10011/1599390143399.jpg?wsSecret=7ae6cde1e3479a23215ebb2927b3db37&wsTime=1715060787
IP
103.198.200.1:443
ASN
#138915 Kaopu Cloud HK Limited

Requested by
https://bifa365f.com:8989/
Certificate
IssuerSectigo Limited
Subject*.innittapp.com
Fingerprint6F:49:D6:21:C6:18:81:D4:5F:C0:B5:3D:51:88:F4:5E:3D:5A:81:62
ValidityThu, 21 Mar 2024 00:00:00 GMT - Fri, 21 Mar 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x450, components 3
Size
424 kB (424319 bytes)
Hash
3717bfd6c122a2e40fb80f817beb094b
4c143a086a41d21b79a76d414c08f14cf35e905b
9f9eb49d92962698a36a1f04a63d7d92aefebb1eaf5c5e216b6e733b3824a992

HTTP Headers

GET /fserver/files/gb/1375/carousel/10011/1599390143399.jpg?wsSecret=7ae6cde1e3479a23215ebb2927b3db37&wsTime=1715060787 HTTP/1.1
Host: fztjha.innittapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bifa365f.com:8989/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 424319
Connection: keep-alive
Server: Default-server-KS-CLOUD-XG-FOREIGN-12-02
ETag: "637d2163-6797f"
Date: Sat, 20 Apr 2024 18:10:44 GMT
Last-Modified: Tue, 22 Nov 2022 19:22:11 GMT
Expires: Mon, 20 May 2024 18:10:44 GMT
Age: 1424151
Cache-Control: max-age=86400
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
X-Cache: MISS
uuid: -
out-line: gb-cdn-205
x-link-via: xg21:443;xg12:80;
X-Cache-Status: HIT from KS-CLOUD-XG-FOREIGN-12-02, HIT from KS-CLOUD-XG-FOREIGN-21-09
X-Cdn-Request-ID: 6b9b8bf722d22b5bb4013034482ce5b2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (41)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML