Report - bestbid.club/

Report Overview

Submitted URL
bestbid.club/
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-24 23:23:04
Access
public
Website Title
Just like chivalry is unstoppable this can be sure it is a golden happiness!
Final URL
www.bestbid.club/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
172

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
dog.theurl.fun	unknown	2021-12-14	2023-01-16	2024-04-18	398 B	21 kB	188.114.97.1
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-24	454 B	5.0 kB	142.250.74.106
bestbid.club	unknown	2024-03-18	2016-01-26	2024-04-11	469 B	102 kB	188.114.96.1
www.bestbid.club	unknown	unknown	No data	No data	40 kB	12 MB	188.114.96.1
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-23	515 B	24 kB	216.58.207.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed
2024-04-24	medium	bestbid.club	Sinkholed

ThreatFox

No alerts detected

JavaScript (16)

	URL	Size	First Seen	Last Seen
	www.bestbid.club/includes/templates/zz/js/main.min.js	168 kB	2023-05-12	2024-05-02
Pretty URL www.bestbid.club/includes/templates/zz/js/main.min.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-02 05:54:29 Times Seen17 Hash 963608f1c69df54f544f04f3410ba54a 086530ffd03a8cdc0ed75cefa81cf81fbfe086d4 d98cb5ffb9342be5ba20b320cdd9e6b2e03e279aaa05a1263abb9d49b4512277 Loading...

	www.bestbid.club/includes/templates/zz/js/math.js	668 kB	2023-03-12	2024-05-02
Pretty URL www.bestbid.club/includes/templates/zz/js/math.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 14:26:42 Last Seen2024-05-02 05:54:29 Times Seen14 Hash e6da9959fba966e384a82ec5219abd11 68029acbfd887841005f9079b40ac28a63974dc9 bae55dcedeb7936344bedc3bae8b9bb45800642163487b92d02b773ea26e8afc Loading...

	www.bestbid.club/	64 B	2023-05-12	2024-05-02
Pretty URL www.bestbid.club/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-02 05:54:28 Times Seen11 Hash bd146bc11f8c177016e01bb1c3cb2b84 5307602062928420d50938d40d883ae5babcd61e 302d7c85b977c75475394af66ced057fc243ccee3834ffa7bc42b41b5207627b Loading...

	www.bestbid.club/	445 B	2023-05-12	2024-05-02
Pretty URL www.bestbid.club/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-02 05:54:28 Times Seen11 Hash 3bfabe3a0b26194d076635ef091f9a28 0ee4efef9a90448fd86acf6b52606fbcd0dd05b7 b9c1304ab2cffcee322f776399bfb8ecb27cec6174462154f0f73bc2ddc2c285 Loading...

	www.bestbid.club/	305 B	2023-05-12	2024-05-02
Pretty URL www.bestbid.club/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-02 05:54:28 Times Seen11 Hash 3c5877dfc329785b3b1feaa851814219 fa454d9df84b08f936fca5c1b52b40758329bf9c 7c1633ee8604dc64868fdd39d2804031ad83eab0b8be8b7b5442dd6a8def6c0d Loading...

	www.bestbid.club/includes/public/pet.js	3.8 kB	2023-05-12	2024-05-02
Pretty URL www.bestbid.club/includes/public/pet.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-02 05:54:28 Times Seen11 Hash 61fea4a7df3023f3f5b18001217a87a3 428bb44d8470d729dffebd1ae4a01bf3d5a1c13c b8674344a06c3629dc7b0d4877afe849c01de343550d1d9c281019c778d1eb6b Loading...

	www.bestbid.club/	786 B	2023-05-12	2024-05-02
Pretty URL www.bestbid.club/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-02 05:54:28 Times Seen11 Hash b0c87d50c0600c0936f66c1b9dbfa30f 1ef525b658f825f269fec1dc7552192c930d7f2e f3cc63005b1d0051480cf9b2eb854f3f4b811cca7aa714ee571c047f99fa1422 Loading...

	www.bestbid.club/	786 B	2023-05-12	2024-05-02
Pretty URL www.bestbid.club/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-02 05:54:29 Times Seen10 Hash aad1d565d728dbb8e9237e82119c6b96 fe6c74668fabd5eff252b43db19da49d52bf4840 dd0b00cbdbccb956f10bce6ffd68f58c01a703f33f32947c8c164a979074528e Loading...

	www.bestbid.club/includes/public/common.js	2.2 kB	2023-05-12	2024-05-02
Pretty URL www.bestbid.club/includes/public/common.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-02 05:54:29 Times Seen17 Hash 41a1017007e75284bfd0088a3b341c95 8e45edb5559445a1b080535e016f50c2eee7dc44 6b304459c49b1acf7dcaf525015ffba70679af3e7271c5a22f5bd92da89e1dd9 Loading...

	www.bestbid.club/includes/templates/zz/js/jquery.cookie.js	3.7 kB	2023-03-10	2024-05-02
Pretty URL www.bestbid.club/includes/templates/zz/js/jquery.cookie.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:17:01 Last Seen2024-05-02 05:54:28 Times Seen25 Hash b8971117e9c8947cf893238ff9cb72d9 701f08b7ca1e82d19f3d9293e7287c42f7b62441 6095bcf7fc41ef2ce227b773040e9878e2ed86349adedd2c87e61ce6eae5bd22 Loading...

	www.bestbid.club/	786 B	2023-05-12	2024-05-02
Pretty URL www.bestbid.club/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-02 05:54:29 Times Seen10 Hash d87bf2e8525cb8cd560b24981e878f03 0722bd930b611e38a70c206b167ed4df12940662 3e5cc92dc63e80647aa323b9c2f5bdd5fc388c051c5d1c0a93f453980b4d03ec Loading...

	www.bestbid.club/includes/templates/zz/js/show.js	3.3 kB	2023-05-12	2024-05-02
Pretty URL www.bestbid.club/includes/templates/zz/js/show.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-02 05:54:28 Times Seen12 Hash f9f8bcb387fccc01469bf2331eeb2058 ca47be61b25995e36c56d680e24ef7594503dfdb 76c955dc43f3da4b30149d83aeae128ef910f7c59b6311b08caf45037d7b9c98 Loading...

	www.bestbid.club/	786 B	2023-05-12	2024-05-02
Pretty URL www.bestbid.club/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-02 05:54:29 Times Seen10 Hash fcb968171464979de87bc4948d6b4a51 53b11a43670de7c6ff3f33e67db7d198768fdf1c f8c61631cce24f2827480509948c0c7900b0401831557e606d8ad501afb0c06d Loading...

	www.bestbid.club/includes/templates/zz/js/public.js	40 kB	2024-01-28	2024-05-02
Pretty URL www.bestbid.club/includes/templates/zz/js/public.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-28 05:14:35 Last Seen2024-05-02 05:54:28 Times Seen10 Hash c7a5a0613f0e7e26a3715f5d9ddfee60 bf07b648a162988f36f2647b9f6dea8b66cc528b 2122e1b5aaeb0f9a07335d835dd074cb0f60d04dcf486a81d4d4917810acf59f Loading...

	www.bestbid.club/	198 B	2023-05-12	2024-05-02
Pretty URL www.bestbid.club/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-12 20:05:14 Last Seen2024-05-02 05:54:29 Times Seen10 Hash 91be9223d169f0bbeab4c8e45cdde859 cbef4b29156c975a7745b869ae5ad353fd92e164 591bfb2933f83f121c5998d1480fbe08742304aa1397d23f1dda6dc58b9e6d00 Loading...

	dog.theurl.fun/dog.js	21 kB	2023-03-08	2024-05-03
Pretty URL dog.theurl.fun/dog.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:27:57 Last Seen2024-05-03 08:12:05 Times Seen130 Hash 363238022f57abd2c177de9f6eb493a2 406d2b6f088ddee8efbf2030e1133f40ff8afb56 60b7079153ad519731ca32621217e42c420d3c2100440b4b0c5326f814b4e30d Loading...

HTTP Transactions (89)

URL IP Response Size

www.bestbid.club/

188.114.96.1

200 OK

167 B

URL User Request GET HTTP/3
www.bestbid.club/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
0104c301c5e02bd6148b8703d19b3a73
7436e0b4b1f8c222c38069890b75fa2baf9ca620
446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Wed, 24 Apr 2024 23:22:35 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 25 Apr 2024 00:22:35 GMT
Location: https://www.bestbid.club/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FI9%2BR834oJTbE%2Bd8WUGzneaTkctXHE8uWU8PSERQrTmkqXit%2FkFqUioFwUCHhPUC5x2ptGUK6%2BsqwaulmCaxsW8SPoI2M%2FcBxn0nhCYuFmJFHZYOSGIMA%2BQtuMoV%2Fcq6r%2BOj"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8799d6122dbb568a-OSL
alt-svc: h2=":443"; ma=60

www.bestbid.club/includes/templates/zz/images/logo.png

188.114.96.1

200 OK

4.6 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/images/logo.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
PNG image data, 430 x 31, 8-bit/color RGBA, non-interlaced
Size
4.6 kB (4645 bytes)
Hash
f5a91a145d9b027abd3891fc58bcd736
417d8529796427847fcb6508e0783f4267f7dff1
f569b407210e3c0ac0b7d9e06654cca842e09b2c0a982bbc529029f808d06bd2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/logo.png HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/png
content-length: 4645
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Fri, 24 May 2024 23:22:37 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ceWRotEXa2lZSuRwY0boGvwU4R%2FnYKA64hPJ6VdG%2BSie9LkgDfaY31jaFXhhvx8v4OMV5%2F106MRAApWi9%2B2mH1D4Gh6QL2MFGrmAwH15OC5aW7AIum1l3sPHz3PXJX%2Bx7MfU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61d79e7b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/6648/60fa91646854b6d1fc8a0328.jpg

188.114.96.1

200 OK

2.4 kB

URL GET HTTP/3
www.bestbid.club/static/6648/60fa91646854b6d1fc8a0328.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 200x200, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B1", progressive, precision 8, 96x63, components 3
Size
2.4 kB (2415 bytes)
Hash
799a1377815be1e6d504a9108f33d75d
bc06efdca07fab195840764af800f99d11272dc6
5e7331fc4a5068e83a5dab773c4c0be653a29a80dfff91e03652d3598d647b0d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/6648/60fa91646854b6d1fc8a0328.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 2415
last-modified: Fri, 23 Jul 2021 09:52:36 GMT
etag: "60fa9164-96f"
expires: Fri, 24 May 2024 23:22:26 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m8Wdl8V8ihmaYtr6jz3IaOMw8zamOZsHch1oInuXKKGuF7SGbLq4uRg%2BHQq6L6gnq90uAuqy5Wb%2BrSiQu3IouL0WhIdEtWHbtK%2FDi9TL5URpeHNGrSAc2CTr67SN4YQnyEkKIePpAKs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61d89f1b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/8506/60e337c95c35faac3f316b1a.jpg

188.114.96.1

200 OK

8.4 kB

URL GET HTTP/3
www.bestbid.club/static/8506/60e337c95c35faac3f316b1a.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x400, components 3
Size
8.4 kB (8362 bytes)
Hash
10aa34bf16ded6303f52f8260685687b
1c75c86641eb89fa3f82e5a96aff5e1db75b2c04
9ac4905771cfa3cee113ce3d224f3b8d51fe473dc80e7125bf45f1085816010f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/8506/60e337c95c35faac3f316b1a.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 8362
last-modified: Mon, 05 Jul 2021 16:48:09 GMT
etag: "60e337c9-20aa"
expires: Fri, 24 May 2024 23:22:26 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dNv11F57eUZ11%2F78DqTFjeGm7%2BSfWl4yfEPh5GgsEEIE%2BSJr8GdXeSSpEIuAuln8hn4Al77Dma7RdGYv7eOxXAQLe49IQAQzfnndGH8A6VRm8aTkzb5xwHV%2B5vlGFEBKId4Xle4DfZs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61daa03b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/7055/60e334bc5c35faac3f29092f.jpg

188.114.96.1

200 OK

12 kB

URL GET HTTP/3
www.bestbid.club/static/7055/60e334bc5c35faac3f29092f.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x400, components 3
Size
12 kB (12031 bytes)
Hash
a9c092671d6e66a6c2df1d8bc0a7c234
f4a7da75c0fe02540e78f440e462721c12508610
5bffbd79ec56199fab5bcc6b52fa39ba8e3ce9172b261b6a1b3458210b006d31

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/7055/60e334bc5c35faac3f29092f.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 12031
last-modified: Mon, 05 Jul 2021 16:35:08 GMT
etag: "60e334bc-2eff"
expires: Fri, 24 May 2024 18:39:52 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hCOjZgtbJiJHMdnkWoOq30WmfoAxwmAHJ2paruzC2OBFpuhu6zIumwW3N6g0t34uy%2F7Yu%2FzxLChk%2BZvUrMY1LF2LcwEZ4Lq3d2%2F340qjki%2Fmh%2FM9ZxAYnf5ZGZMrY1zsKMcKmD2g5vw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dba11b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/2519/60e4a73c5c35faac3fc8f6f7.jpg

188.114.96.1

200 OK

3.7 kB

URL GET HTTP/3
www.bestbid.club/static/2519/60e4a73c5c35faac3fc8f6f7.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B1", progressive, precision 8, 96x65, components 3
Size
3.7 kB (3742 bytes)
Hash
24fe8311775a328e9069b0ec1526a095
53d0844337b4dcd3b252c5c75c3080d193de46cc
f29311bfab18ee5471181fcae165e33300d3df90d36ad03bdf26956eec05d75b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/2519/60e4a73c5c35faac3fc8f6f7.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 3742
last-modified: Tue, 06 Jul 2021 18:55:56 GMT
etag: "60e4a73c-e9e"
expires: Fri, 24 May 2024 23:22:26 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=td5dTiPAh9gF14%2BDYMJ%2FEEIjcKTRZ4KZ8cA1c0KFwlLxuwk9YVdzyOMD0qB8vD1MVX5OApDhRte6sQbYpMAMfBJFW4uTxqibjE1%2FL1mupsvjMEsb8HfvgCyjzN0wlcKJLnhOJtRC5t0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dca19b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/2987/60ebfb3d6854b6d1fc6ba69b.jpg

188.114.96.1

200 OK

2.6 kB

URL GET HTTP/3
www.bestbid.club/static/2987/60ebfb3d6854b6d1fc6ba69b.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B1", progressive, precision 8, 96x49, components 3
Size
2.6 kB (2596 bytes)
Hash
109203394d2569788d98ca3c35af553b
a100161da792763c87e92ee70aba63cc433c3cd8
488267e7ae1ef79eace9e42c7cfb5c70bc347d928a3267e97a76a33f391f692a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/2987/60ebfb3d6854b6d1fc6ba69b.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 2596
last-modified: Mon, 12 Jul 2021 08:20:13 GMT
etag: "60ebfb3d-a24"
expires: Fri, 24 May 2024 23:22:26 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tgKcxiyUlVwm4qNTy%2BYYcgKIiv4nob8aAhm1eDzTCGYq0uRDghIiE4BEAoP3HJZFlgt0oMEjB4FR%2BwFkG3LODoqOtkS5bkI3r%2FacBeAXx4vKa1fUUjIGeKYQ9wBn2l%2FdjeeG8vrHZfg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dda24b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/images/safe/1.png

188.114.96.1

200 OK

5.2 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/images/safe/1.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
PNG image data, 114 x 50, 8-bit/color RGB, non-interlaced
Size
5.2 kB (5212 bytes)
Hash
32f2065b479aa3f5eabe642c40d49e25
96a9e87e3756be89f7ad17d42f1d35bf762c3da3
d505895ce16935f199a638e825608f780df1ab794f71dec7a2cd7877e330e039

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/safe/1.png HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/png
content-length: 5212
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Fri, 24 May 2024 23:22:37 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B%2FT0UwIJTZQ1WZ3gmWEZzhkKa1IxI2mp8VuDRRWAHBf%2FC%2BDRqGQEkKglvEyjK75B%2FE5kWE5MGsoEGuObNkrUUcbdquuNd1x2cPthyBpg6EltQKminhl%2B4BFD4kQ4pFBQog0m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61e0a42b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/images/safe/2.gif

188.114.96.1

200 OK

7.6 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/images/safe/2.gif
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
GIF image data, version 89a, 90 x 50
Size
7.6 kB (7599 bytes)
Hash
1931d61a7a5c4a5f41e2202367e56c71
1cdff3ebaa351822a827d7a2062f9ad44596ab01
234bafeda944f540c5b76f81c2d11077e445bc4655888dafb1594b380683ddb1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/safe/2.gif HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/gif
content-length: 7599
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 01 May 2024 23:22:37 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JY4sqR83%2FAqqnlhInlF8ijww42uoUbDf13qPaUcykiYEXTqunP2zPU8g1TxVLj7m%2B2Le0Cnpb%2FrHwEHIG%2BkHrOSwcfDIgj%2B7j0XOihmiZDKW0Yq5ZwTRJaCjGJ%2BDekogL%2BtJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61e1a44b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/2946/60e8f871e9f4224eb520d192.jpg

188.114.96.1

200 OK

25 kB

URL GET HTTP/3
www.bestbid.club/static/2946/60e8f871e9f4224eb520d192.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 500x375, components 3
Size
25 kB (25131 bytes)
Hash
91c6ff19afd0454c18a4378d3b4254ba
d7ff2e522b17c42a817770eda15db3ebbcde96c0
faff78ae3d159ed8b9a1c44d874b0d4a6b04622cf8b7268e73ac26f97a09ae0d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/2946/60e8f871e9f4224eb520d192.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 25131
last-modified: Sat, 10 Jul 2021 01:31:29 GMT
etag: "60e8f871-622b"
expires: Fri, 24 May 2024 23:22:26 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LJ%2F8Lhgcdn5Uvq1W9MIOyBZwlEANBlnY88NMXhhd%2BnqLTql3WHUT2anhx7HcBZLSjItMyq4NSC0%2F9mvPq5wS8q7x6cmdFvGdLpqhf6PPaq955Ip8suyIixda37AEkIUp502KACuynqE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61d99fab50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/2025/60e2eeb35c35faac3f995049.jpg

188.114.96.1

200 OK

29 kB

URL GET HTTP/3
www.bestbid.club/static/2025/60e2eeb35c35faac3f995049.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 500x375, components 3
Size
29 kB (29204 bytes)
Hash
6086f0f2e45979bc2cdf5a71864e8140
5e507ba23a3476da60cfb2d2df5feb616343872e
788006a5fa203bac879014429ee0cee0c755c50673bd318cf36a7b6da0c8544d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/2025/60e2eeb35c35faac3f995049.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 29204
last-modified: Mon, 05 Jul 2021 11:36:19 GMT
etag: "60e2eeb3-7214"
expires: Fri, 24 May 2024 18:39:52 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QMmBBQxGjMNBsyOwh0GZHQnoL0KTOf5loN%2F%2FX6RoPtkMEFPzAC3kWAMdpoi9zXntEH7RvGHXsp9EPZJKOU%2Fgpn%2FCmgC6PpEc4iCHnBhWHvu1ox3ciP%2Bm9OZTp327A6mToT4xIToMHco%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61daa08b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/4677/60e333fd5c35faac3f26fed5.jpg

188.114.96.1

200 OK

14 kB

URL GET HTTP/3
www.bestbid.club/static/4677/60e333fd5c35faac3f26fed5.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x400, components 3
Size
14 kB (13824 bytes)
Hash
66cb2d229f68e07efbe42459282fd8db
43489ec0c3317e887a5ed3e85bc9d53a8f71fc4d
f251d8c20e335e8dadf6415f258e0f9b8b42cc4c6bd6810e6f50a619d7187d39

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/4677/60e333fd5c35faac3f26fed5.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 13824
last-modified: Mon, 05 Jul 2021 16:31:57 GMT
etag: "60e333fd-3600"
expires: Fri, 24 May 2024 18:39:52 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zWeqvJ5YUZ6JVBtt770iUgCwkT8Va8cyR3%2FZm7Qr4b%2FnHY7j24hfTbmNgOreJfig%2FiIS1mNwRvkHrI349hfJa1B1BkeQV6q8UjNXurqi9oDs%2BIOMSLZgRMqUU5nMzOtqMFYB05spUh0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61daa04b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/images/cr.jpg

188.114.96.1

200 OK

12 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/images/cr.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2020:02:17 14:16:15], baseline, precision 8, 75x50, components 3
Size
12 kB (12446 bytes)
Hash
d84629ed4f3688263730cd7cba05a78a
acc27344113183549c299e9e7822503ef93c228a
71b372ded31e65b16b203a42cc8e3f070f516ce0f47c81b92e9a88375cc1ceba

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/cr.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 12446
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Fri, 24 May 2024 23:22:37 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hho57xAddSxgNhQmnYqWBDWrfP96okLBI7DkyL4zlBxNj16Tf69fncoWDIJSDBZlGmNLyfpBIfB059Pk%2Bx4MeQ%2BLfIXE4Oijh%2FJBQmXPQzOL3HHk%2FuLk2qSinLPejIqDBoIa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61e1a47b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/1631/60e4f7d65c35faac3f9bde4f.jpg

188.114.96.1

200 OK

26 kB

URL GET HTTP/3
www.bestbid.club/static/1631/60e4f7d65c35faac3f9bde4f.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 350x350, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x206, components 3
Size
26 kB (26518 bytes)
Hash
cb7034e4a65d9afccc5872f5e16edb33
2ba7e68b050312fdca9594ae81e286a978c264d8
c730b50f930824b2bec8e94e1ce1ca10fdb65d3a886d975d43404737595bfbc6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/1631/60e4f7d65c35faac3f9bde4f.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 26518
last-modified: Wed, 07 Jul 2021 00:39:50 GMT
etag: "60e4f7d6-6796"
expires: Fri, 24 May 2024 18:39:52 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qt4e%2F0qIEx1wse7H6CY%2BiZxtcGwuiRJ8DBFvizTtFAZzgqKH%2FkzK0YhkB4WZe2czR28%2BBuvgV0l4%2B2w0lym3fVEKtB5zZzozyCcL2k63cMIWADqrJcZ%2Fq%2BYNq%2FeUFjpk3p8Y0qFic3Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61d99ffb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/7130/60e337d55c35faac3f318f2a.jpg

188.114.96.1

200 OK

20 kB

URL GET HTTP/3
www.bestbid.club/static/7130/60e337d55c35faac3f318f2a.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x400, components 3
Size
20 kB (19816 bytes)
Hash
317eb42ca9cae901d2308db4c06334dd
3fd6e7d15daaef9f3cf6530e62d5fee1a78cc810
774e6e80cee12229a728fe6f71129f96a767dc7016c07fab39f103dbbd7631e2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/7130/60e337d55c35faac3f318f2a.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 19816
last-modified: Mon, 05 Jul 2021 16:48:21 GMT
etag: "60e337d5-4d68"
expires: Fri, 24 May 2024 18:39:52 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wuh9QWndCsMeACqSCiHL8g9SRgSHRszPowZZ98%2ByIsdfLZYyPolnBGzE8N5kHJMDFCVUyv8exu3m%2BkDyC1y9qaVlslEwHOQZJeiVALKZFH%2BQ8JfujhhvzWNOL8WmUr5l1O3ak8wte2A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dba14b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/images/7dayreturn1.jpg

188.114.96.1

200 OK

14 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/images/7dayreturn1.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=200, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=200], baseline, precision 8, 50x50, components 3
Size
14 kB (14457 bytes)
Hash
612a870e4af8b62dd0a5dbc227bc7243
a632f76b67592684abc1406d95b298c1109bb182
634f3b0695d5b97dccb6d739866aaa1e2eb4d7f3ef6b9be71a05b7d1ad1d320c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/7dayreturn1.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 14457
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Fri, 24 May 2024 23:22:37 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gMP0WTpzAnjxLBOaEybu2rrkIaWNKFMv7JuipnE4fwV4gmLfpyLOkLjtM5ZIfODr3TGNAJkD0KzdNcfR6%2BcZ3ovifNG2YpB%2BYcsnkwGDQ3P5tAngqGYEfVRjDiI4JxYTR1nP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61e1a45b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/images/banner_pc/22.jpeg

188.114.96.1

200 OK

64 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/images/banner_pc/22.jpeg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2022:09:08 10:30:42], progressive, precision 8, 1200x350, components 3
Size
64 kB (63953 bytes)
Hash
f57d9b0820a098131091bdca27f5db29
1d2f4019ff9ba99d6e72965f14109755edf5864a
4f2bd0eead11f5479d884e136ba17d0147c79b06792fb8bb8df531087f649e09

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/banner_pc/22.jpeg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 63953
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Fri, 24 May 2024 23:22:37 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0m%2FlLGY%2BEQM3flaOn2kYSvCwEGIp5pluSLtfESUbzv1hMKNFQ41Iua8IaMEUBNUjreChuIRynvP0GctZjBfMWGF0ukwE4IaVF8gmDU0u9OxxP1rw7xG3SPFSIBbQ1xyUWsx6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61d89edb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/2635/60e44d295c35faac3f2634cb.jpg

188.114.96.1

200 OK

66 kB

URL GET HTTP/3
www.bestbid.club/static/2635/60e44d295c35faac3f2634cb.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 112x111, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1118x670, components 3
Size
66 kB (65617 bytes)
Hash
d2c0e6b09d17c7ce2a33ea96555917f8
dbe4296775bb6e7ea336290627fcaa7c3abfb574
a936585ef08fea3de592532f9689cddd581bd77bf46f45155913edfcb029bd2d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/2635/60e44d295c35faac3f2634cb.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 65617
last-modified: Thu, 22 Sep 2022 07:20:38 GMT
etag: "632c0cc6-10051"
expires: Fri, 24 May 2024 18:39:52 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RWRn944RcoDAceCVR%2BRaH3oRTuO6WwFQzjZaTdrEq21rltgR3kEutA1faKhVRemz98jxwlL7wQm5E23nLvd0%2B52kk%2BGdQVLo%2BXqmEvj0A2pxbiKLB1UI%2Bnkni7rtiTTBkE8MzxrkCQA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61d99f7b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/images/banner_pc/29.jpeg

188.114.96.1

200 OK

97 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/images/banner_pc/29.jpeg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Windows), datetime=2022:09:08 10:26:02], progressive, precision 8, 1200x350, components 3
Size
97 kB (96814 bytes)
Hash
036c28c05854b4d07bd3395bea926f0a
5820746914d0090840049f4942fca13a882938ff
baa178324535b656cc5c7cefa3794f50dfd47f2bb20ec482bac7d077aa63c944

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/banner_pc/29.jpeg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 96814
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Fri, 24 May 2024 23:22:37 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wkAQ6AtW5Aw%2BU2CgYCQt%2FviCikjBOBJNwIa%2FAxWafwXf3VhhQ5zuPPL1%2FzBWmG8KXbMYG3SXrreSZUWfDVwP74jEp0uS4AtguKhIXh6FUczwkpxyqlYsZjHTin5fw%2Fvq8Bgx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61d89f0b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/2991/60e4c31b5c35faac3f19a55f.jpg

188.114.96.1

200 OK

38 kB

URL GET HTTP/3
www.bestbid.club/static/2991/60e4c31b5c35faac3f19a55f.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 272x500, components 3
Size
38 kB (38417 bytes)
Hash
b931d93af2972b8bba6b1a3d00f8cf10
95a3053aa289b73fe9c37d1c34c7462c6a2aba16
aaedf7c175eeef77233ec59133c69c38fdbc92c9a7eed8510bd1af92b14e7888

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/2991/60e4c31b5c35faac3f19a55f.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 38417
last-modified: Tue, 06 Jul 2021 20:54:51 GMT
etag: "60e4c31b-9611"
expires: Fri, 24 May 2024 18:39:56 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pes2lMWy5vrVGdN6dQ7MPjEHwbb5DlbIWTrlRXK7rtgCdVz4SxBbw%2FBtI1r7q5U4H98DTaCQ%2FiDlQpcp3KjOjiyt06acc8kdDTAOOej6MPatveyVbgAJR43ZWrh5U801PQdktve98j8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dfa35b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/8330/60e38e185c35faac3f1da5ca.jpg

188.114.96.1

200 OK

56 kB

URL GET HTTP/3
www.bestbid.club/static/8330/60e38e185c35faac3f1da5ca.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 500x500, components 3
Size
56 kB (55796 bytes)
Hash
e7620611e2a4fa8bc11c7739f6b91c0b
3c1907c3783358037008da02b2270821a443c08c
02306ff5ad88709287411c44ec0d1be0afe7b63faf95cf51cbf1b17a902505cf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/8330/60e38e185c35faac3f1da5ca.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 55796
last-modified: Mon, 05 Jul 2021 22:56:24 GMT
etag: "60e38e18-d9f4"
expires: Fri, 24 May 2024 18:39:52 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6c4akp1le7XiXRUsIhhrK7jGpM7GWNHIU65m8%2BL%2FIx3ChhZKvL9FBl2%2F2QTETg0eguIEOB8WOEaE6NcIMQ%2BFEn6wiV7WGCu2WUpu8Hyo%2BGD%2BSqEekVm9ZNLD%2Bnk9boQ4l4iMLQTTLrU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61daa02b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/9009/60e4f3de5c35faac3f917b11.jpg

188.114.96.1

200 OK

48 kB

URL GET HTTP/3
www.bestbid.club/static/9009/60e4f3de5c35faac3f917b11.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 360x360, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x319, components 3
Size
48 kB (47606 bytes)
Hash
9584cd4537285bcc542e8c42dbf959d6
7230399e505089c8768b673a642a3059ff6488fb
5c4c7bb82e625bd74035894b0f380e85ba8858c2cb1d4b8aca126bb44cef32af

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/9009/60e4f3de5c35faac3f917b11.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 47606
last-modified: Wed, 07 Jul 2021 00:22:54 GMT
etag: "60e4f3de-b9f6"
expires: Fri, 24 May 2024 18:39:52 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5qgliwjG9uVvmMefeW3Fb1bYjkXxwwkSNmUeDfdOjD4wAA6fByI89lr2mOXOXu91dzJVqiusSJS9Ut9jOQQMaWDKfZv9Qxm0Vg%2BDfxuBW8p8uRQdlFM5vh8HV4w7tKbyTHIG44Df4VE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61d99f9b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/7978/60e3043d5c35faac3fd3d60a.jpg

188.114.96.1

200 OK

60 kB

URL GET HTTP/3
www.bestbid.club/static/7978/60e3043d5c35faac3fd3d60a.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 500x500, components 3
Size
60 kB (60046 bytes)
Hash
47ec83aee676b7c08cff7b72525eb80e
23c5463c95d322b61f2919580aae946bcd9c7761
8c9a78b9513957a02038365e2814b8264b1ae6fae9d253f5482221e00cfce048

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/7978/60e3043d5c35faac3fd3d60a.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 60046
last-modified: Mon, 05 Jul 2021 13:08:13 GMT
etag: "60e3043d-ea8e"
expires: Fri, 24 May 2024 18:39:55 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7MXOjncyoXfl9VmHxIgQgxpDoc%2FlG3o2Xxd0aradw%2BBR0z%2FIjkfVVS8xQ1zb3mmRGUGrmz%2FM0cfxD8tDnH8%2B8mTT5F9XRMSaxm3G9ojdLa195tFLDcjFN0OHYfiSiVncO8w2fmwzE5U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dda23b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/8539/60e338cc5c35faac3f34300b.jpg

188.114.96.1

200 OK

9.4 kB

URL GET HTTP/3
www.bestbid.club/static/8539/60e338cc5c35faac3f34300b.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x400, components 3
Size
9.4 kB (9443 bytes)
Hash
b6c30f8a02581e84c0535045e4c1f66a
570cc3026a55db7403d9fec60677e7b0c200aec0
3a838e9a66f4e5f93da454c13ea2b7b342483443694dbf60c904312759de17c1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/8539/60e338cc5c35faac3f34300b.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 9443
last-modified: Mon, 05 Jul 2021 16:52:28 GMT
etag: "60e338cc-24e3"
expires: Fri, 24 May 2024 23:22:37 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VlJo6HvGIXP4vSTRxmh64tiX%2B2%2BhzgsoP5e8Tho0SZVXDppD5R7IVIWufKR50SOSKje7GryPfIw%2FDOcHTwstw5P94zbcEecP5UZXtvngctTU2p0xNuFgvIQTffZWB7oQeGlwkRaS8S4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61daa0ab50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/images/payments2-min_1584400166.jpg

188.114.96.1

200 OK

66 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/images/payments2-min_1584400166.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
PNG image data, 1049 x 50, 8-bit/color RGB, non-interlaced
Size
66 kB (65740 bytes)
Hash
49bdf28c54a80d43a273495df22484db
c94ccbb3b33f25e3612abe91248bdd68dd92ed73
7cbb025935534836e8fd86310e93ca452e1ba1aa76584f66f91bfb5f4bc10db7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/payments2-min_1584400166.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 65740
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Fri, 24 May 2024 23:22:37 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XYe27Z1z1sZxc5IjMFAuGNKiObihxyagp7JRSaS2ldTEJS0LwHuq1iEjP9b4%2FaOivYw8SW8x%2BqEg1ZJFCkZQXfV%2B1KKq2glfY4mxOao%2FsJ99LikvISnfeniqJg6opaEaN8bD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61e1a49b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/9456/60e304a15c35faac3fd4e700.jpg

188.114.96.1

200 OK

99 kB

URL GET HTTP/3
www.bestbid.club/static/9456/60e304a15c35faac3fd4e700.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 688x566, components 3
Size
99 kB (98895 bytes)
Hash
5d3f11ea1bf9d3384d7e2a82e0dac67e
06d85b426ccbd020707df95972ac7a306018d244
d05f45a79c1d13d3bf6d853f04fbd8ba3d44d76be52d5c8451a4a1a6343f67c0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/9456/60e304a15c35faac3fd4e700.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 98895
last-modified: Mon, 05 Jul 2021 13:09:53 GMT
etag: "60e304a1-1824f"
expires: Fri, 24 May 2024 18:39:55 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1uvPqHRlp%2FdA%2B5LoZ1gWxGdhF4tjn1RouE79W%2FebR9pQc6UVEUrM%2F7HVDOLrGULyr4MIJyvFMba%2B4ed7cDDZKbC8yTP3iC2B5s%2FN0oh%2BPuKSc98bzvmXppKUiwSQHUM0qpajDc0xiVU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dea27b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/7402/60e344e05c35faac3f552e1a.jpg

188.114.96.1

200 OK

146 kB

URL GET HTTP/3
www.bestbid.club/static/7402/60e344e05c35faac3f552e1a.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1600x1383, components 3
Size
146 kB (145675 bytes)
Hash
3c07a238a80631456a4277b0fad88b7d
aa25a80bee1ab07ead22bf19ee94250bd9d3628c
50ae1bbdaf3337acaa502933573b5bf23a71be102ae835e631c9f621418e8d9a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/7402/60e344e05c35faac3f552e1a.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 145675
last-modified: Mon, 05 Jul 2021 17:44:00 GMT
etag: "60e344e0-2390b"
expires: Fri, 24 May 2024 23:22:26 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LIPeTv1%2BaFZ4rL7WQMCgma5RM%2FRNxZZRwL8X24IGyomI7Wu4x%2BgS%2BEAf64gftAMUlGHU%2BfY5YfIkStwz9EkVdblICI%2F6QUwqc7dN1jhghZejLp%2FR5XFN0D95JnleIyHMa1u%2FVhUZvlI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dba15b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/9361/60e307d55c35faac3fde2171.jpg

188.114.96.1

200 OK

121 kB

URL GET HTTP/3
www.bestbid.club/static/9361/60e307d55c35faac3fde2171.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 665x665, components 3
Size
121 kB (121328 bytes)
Hash
1588f254014318a7e5db52290209c250
62ec7a490a34931306cd94f8d4cbacd437ed0959
12198d45c7faa9f0108178ed5b439bd26a3c44ae2f04839b4c73d03bb172e4b8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/9361/60e307d55c35faac3fde2171.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 121328
last-modified: Mon, 05 Jul 2021 13:23:33 GMT
etag: "60e307d5-1d9f0"
expires: Fri, 24 May 2024 23:22:26 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NgkxJQSmScd1FBd33%2BGk2VYGYKfcLi%2FdVtOdzJRcwrThDWtYYhg%2F8HNNYUyt%2BqkfL4lQNttebIYn%2FV0ss3xjkbr87zr2RvoIM%2BcjGyZ5mIWwh0TojizRyjk4Z0ORlohReqRSX6cvCkg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dda25b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/0040/60e6114de9f4224eb5baa608.jpg

188.114.96.1

200 OK

100 kB

URL GET HTTP/3
www.bestbid.club/static/0040/60e6114de9f4224eb5baa608.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 800x800, components 3
Size
100 kB (99978 bytes)
Hash
14a5e079adb664920aa6256b2884c9bf
184ebdfed72ec572c520b84f0748c67e8fb8fb97
536f536483b89b5fd6a4275417a8c89340374396a916617a036eaa87f457a763

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/0040/60e6114de9f4224eb5baa608.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 99978
last-modified: Wed, 07 Jul 2021 20:40:45 GMT
etag: "60e6114d-1868a"
expires: Fri, 24 May 2024 18:39:56 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qSPrfe8GerGnCYhEKNrsBLkxAJxmZIQkFkAK9qPrWxn4MAHblGc6QftFLOVEvWIbLcIA3EBjwZP55AgeN0czIHa%2BQbseIGoyBEHGNFQH7malqzPgb9%2BnO7KETXglJi6eInxU%2BWn0M6U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dea2bb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/4702/60e3394b5c35faac3f35933e.jpg

188.114.96.1

200 OK

8.7 kB

URL GET HTTP/3
www.bestbid.club/static/4702/60e3394b5c35faac3f35933e.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x400, components 3
Size
8.7 kB (8713 bytes)
Hash
d7a5628983701c58a811644bae7a3d38
1b13e1345c60f1aca929a9665bbc58d9af597cb8
dd7205b50828df5a21f3f1791b1a3aa730f4460fccc0f6bc21d840d712a587bc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/4702/60e3394b5c35faac3f35933e.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 8713
last-modified: Mon, 05 Jul 2021 16:54:35 GMT
etag: "60e3394b-2209"
expires: Fri, 24 May 2024 23:22:37 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p4AIDIdLS2e2i5%2FTVdytmuet3EomQNO12Y2ykEsogKzASIO1LSRsOi%2FPtXMT8Bw4%2FBkfeq86jRoa0NQyOWYQ6CkyjhIhu97upbC2IeRDGblE2AMu3VY2ea3YpQobLlYhzwVMtlIoGrA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dba0db50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/2780/60f38c956854b6d1fc4bbc6c.jpg

188.114.96.1

200 OK

162 kB

URL GET HTTP/3
www.bestbid.club/static/2780/60f38c956854b6d1fc4bbc6c.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPCM), density 100x100, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1000x1000, components 3
Size
162 kB (162466 bytes)
Hash
0a1ef26089687b694e35efe47d196c7c
e389ce7a9b8b616d4b6f98cb2015e97f9e4839d5
87898867ad59e4ede14f2cc938b21f3402e5e457f87c4825fb8365bc637c5da2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/2780/60f38c956854b6d1fc4bbc6c.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 162466
last-modified: Sun, 18 Jul 2021 02:06:13 GMT
etag: "60f38c95-27aa2"
expires: Fri, 24 May 2024 18:39:54 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OWQNlFYYOB1644C9CkEK2ZdWohU6OBKp0PpX0v6Pu9B3HbKsKLfR0Ap7VWzcaViZTNloOpSeBd%2FriG0200hOkAdJ%2BymDU%2BGS9RJpz7xVXNG2zvIU68AJUoJlBJ68aPPo%2BgllPltXM1g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dca1cb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/3892/60e340145c35faac3f46b2d4.jpg

188.114.96.1

200 OK

214 kB

URL GET HTTP/3
www.bestbid.club/static/3892/60e340145c35faac3f46b2d4.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1600x1158, components 3
Size
214 kB (214320 bytes)
Hash
0b099f334218a1e03914889b7d7fced5
86d1f67eb6b9f40e071f2fe2466aabaf9ee20e89
cdeb260bc7012b4360566967692fee66920469289bc5b5bb3c3767570d89d111

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/3892/60e340145c35faac3f46b2d4.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 214320
last-modified: Mon, 05 Jul 2021 17:23:32 GMT
etag: "60e34014-34530"
expires: Fri, 24 May 2024 18:39:52 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=whApT91vgUSBqkz67XnawsTqFEMM2BSnWVRmveXW7%2B9jdMPIdHh3%2BZjd6olE7BBh8VJWLq33GKo3pJhkxLTrDRiStIUDUhNyz%2FJyuBquemkIgX9x610OJkkRuqBUJlenwiKaVpZ8yeE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61daa06b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/5607/60e3072a5c35faac3fdc2fb7.jpg

188.114.96.1

200 OK

146 kB

URL GET HTTP/3
www.bestbid.club/static/5607/60e3072a5c35faac3fdc2fb7.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 813x755, components 3
Size
146 kB (146492 bytes)
Hash
48ba1ac31fe03d058c5b7bbc56356f17
6799981c569380349d36c162790d84a1031dfa09
36926a29bf249becfaf8841afc706d7418b5655721b41ab9b343f7f23b610e78

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/5607/60e3072a5c35faac3fdc2fb7.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 146492
last-modified: Mon, 05 Jul 2021 13:20:42 GMT
etag: "60e3072a-23c3c"
expires: Fri, 24 May 2024 18:39:56 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9bkabCBr4YC8Ns8w6A01VkhgzjGecQxCm9DaZskQ3cDtwkwehvl8nBO3OitSy7Q5xQjpPYcGxBjdhsnb0Tpe%2F5i13aTUDB1uupRVMIcYaD3iqB6KooKHIJG2UwuImLxxGBwe6utsuKY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dea2eb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/0307/60f6930d6854b6d1fc745e63.jpg

188.114.96.1

200 OK

83 kB

URL GET HTTP/3
www.bestbid.club/static/0307/60f6930d6854b6d1fc745e63.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 655x655, components 3
Size
83 kB (83226 bytes)
Hash
57ffee4def400f04660130cd75fc0c8e
0d6b57ef5900dd25a9f2ce0a708d49b968159ae4
f8db763acc3c7aa75d3e4656eea0fb67f46166a5a66a45f85c212455a08d929f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/0307/60f6930d6854b6d1fc745e63.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 83226
last-modified: Tue, 20 Jul 2021 09:10:37 GMT
etag: "60f6930d-1451a"
expires: Fri, 24 May 2024 18:39:56 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5zWQdjzMRbBvEIrnlKAo%2FrFXzdD1b1jIhBdhKZTR1g69JPEq0aGVvOYUAVOU18Nhz3F%2BfMmV2vawKnfjqHQutXka%2Bj6Y1bYuHWTa%2BkFCg%2FWVHY5E7lBOWEcCMjoKED3dZt5o3CId5Nw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dea2fb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/4152/60e7fd9fe9f4224eb56abda8.jpg

188.114.96.1

200 OK

243 kB

URL GET HTTP/3
www.bestbid.club/static/4152/60e7fd9fe9f4224eb56abda8.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1600x878, components 3
Size
243 kB (243327 bytes)
Hash
c0753d7ad6a722f82641d3ab7bc1dffb
fb25240ba496dfa739374eabff2b813656532942
f76b10c8964384ad64308a0e788c8a9318c9d88fcb4588e41d6370895709f946

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/4152/60e7fd9fe9f4224eb56abda8.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 243327
last-modified: Fri, 09 Jul 2021 07:41:19 GMT
etag: "60e7fd9f-3b67f"
expires: Fri, 24 May 2024 18:39:52 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wHzmnHOBpQgXTkJY3Q8E0ULc1H6zWewLutnVqhbhzzyFx23aUW7pxChcamixyNMxaoeGdUKJSowJK6acqMGdo%2BHeNl1QUY9uvyLmeOqoTDGCFCz8ECjHw8madzbhJ9s5SlvqRK0UnC0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61daa00b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/1386/60e334225c35faac3f2767fa.jpg

188.114.96.1

200 OK

227 kB

URL GET HTTP/3
www.bestbid.club/static/1386/60e334225c35faac3f2767fa.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1500x1500, components 3
Size
227 kB (226848 bytes)
Hash
bf6b3571921d3088b9649fd2bb21175f
564c867f5e8ee1902464d6c1daa5f0f32efe2170
bdcb2a3f522d96a949f26be2c31faa7bbe1a640a8169789da3e330e1ea172884

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/1386/60e334225c35faac3f2767fa.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 226848
last-modified: Mon, 05 Jul 2021 16:32:34 GMT
etag: "60e33422-37620"
expires: Fri, 24 May 2024 23:22:26 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0l%2BZl%2FgQ7FaXK1fi15TMR7ffrAlwAJ7afN%2B%2FK18zgD%2Fqi0MIFygXLMDa%2FvZ2NSs6JkLLG0Zi6v4gvPN%2Biq4WuhGT86WbKtnnn8clQ56EzeP6fyBqe%2F1yedLiNGW6Hq50Dybe7XL5SZg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dba0eb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/1577/60f59bfd6854b6d1fcd01319.jpg

188.114.96.1

200 OK

3.9 kB

URL GET HTTP/3
www.bestbid.club/static/1577/60f59bfd6854b6d1fcd01319.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B1", progressive, precision 8, 96x72, components 3
Size
3.9 kB (3940 bytes)
Hash
6aa5ad52d83777e6eb01a128e0e5710d
2bd2ff85587b28f65e2a92a37ed9dfaf34c63ee7
f1ef5f3085135de062db7dc60d2f60d0716d1379910d0e42017ebb23b26e4b9a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/1577/60f59bfd6854b6d1fcd01319.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 3940
last-modified: Mon, 19 Jul 2021 15:36:29 GMT
etag: "60f59bfd-f64"
expires: Fri, 24 May 2024 23:22:37 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d%2FmYoKT%2B7T0BlKN3gq9Kkwhax6NN9SGw8JrldCSORfWZUlwnEYlY%2B2SoGnNbq6p2Cv%2FKpVBy5Ouun9kD3OfvNnkl%2Fmwum3B8mxWUlKkxzHfYwN99XkD3V3%2FShCoSXqmBIg4XCJzkqDw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dba17b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/0245/60e301a85c35faac3fccf9f5.jpg

188.114.96.1

200 OK

196 kB

URL GET HTTP/3
www.bestbid.club/static/0245/60e301a85c35faac3fccf9f5.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1005x1005, components 3
Size
196 kB (195676 bytes)
Hash
aec387824ca168b8f621d5b67fa487a5
ff682e63c4c29fdb007a22f1985fe8f0d80cf018
670a4ba6110d6598f46ea08b4f32f7e1977e9a026d75bdffb98bae8e5e7b04a2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/0245/60e301a85c35faac3fccf9f5.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 195676
last-modified: Mon, 05 Jul 2021 12:57:12 GMT
etag: "60e301a8-2fc5c"
expires: Fri, 24 May 2024 18:39:54 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uSsQSGnCvrlm0VYze%2FycFsiIOvIJicPnKUFrP9s3yaKxkQSZ34ikSHj0CbD05I0B17RNnDrtlai7S508%2FpZAtQ%2FKBCCn%2FS%2FLM4K6jaZA2ma2wBx1kY32QMss6KmnGbgVVY8iLyTvHhU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dca1bb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/8465/60e358ce5c35faac3f8f6941.jpg

188.114.96.1

200 OK

185 kB

URL GET HTTP/3
www.bestbid.club/static/8465/60e358ce5c35faac3f8f6941.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 960x960, components 3
Size
185 kB (185227 bytes)
Hash
74294338a627f871e8f2314c461f7c1d
396a4d930c61b6d615e7104020169192d40a58dc
072a97d9d26177909628f398ebb6046e3f3b581f12ff4d3650a905e09da8ceb1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/8465/60e358ce5c35faac3f8f6941.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 185227
last-modified: Mon, 05 Jul 2021 19:09:02 GMT
etag: "60e358ce-2d38b"
expires: Fri, 24 May 2024 18:39:55 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4yG8A2NgHpvamqR7kGaoUx69VwUXXIjHHSSx0GOPdNxv4J1MkepN7mVvQejVnJT2Ta6H5BR677m4rYDCXOY1pFZq8yzkZgxOx2n%2B6LWKKmdLo1np8s2bTS2HWwv2MzhRvCdgWIvVDvk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dca1fb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/9334/60e64b4fe9f4224eb5492626.jpg

188.114.96.1

200 OK

429 kB

URL GET HTTP/3
www.bestbid.club/static/9334/60e64b4fe9f4224eb5492626.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1200x1200, components 3
Size
429 kB (429158 bytes)
Hash
bb52fd8067038e944c2bc86b7778a89f
c07ee1ae4d5e32a4e4c04c7e1bf2ee25b54f7f55
23295345e99343f1eaea1f9e90ec5d4b9dd56ecdeb48dcea5b48695b05cc11a7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/9334/60e64b4fe9f4224eb5492626.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 429158
last-modified: Thu, 08 Jul 2021 00:48:15 GMT
etag: "60e64b4f-68c66"
expires: Fri, 24 May 2024 23:22:26 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d%2BVtWIqiiMBj0hVoWf5SUmCJwvsfZNIWynsJO0lFmrQnzu8VnbXFGU7BusvYs3HdVPIEUULaO%2FLdi2U8X%2BHb1neInlfkt0QELOntv6AiajE8FWEP8I%2F%2F5UowaUh8tAxRKDRztCHkeWM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61d99fdb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/8617/60e333e55c35faac3f26bb59.jpg

188.114.96.1

200 OK

330 kB

URL GET HTTP/3
www.bestbid.club/static/8617/60e333e55c35faac3f26bb59.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1500x1500, components 3
Size
330 kB (330416 bytes)
Hash
cc340a43d0b009f9f17338491b333d55
5957da8fc71c8f998dd245c1caf809c5e7a4003f
60e6b10786bdfe76a2a8a32d255ee27ce775c0e4e9f9b5794657bbcfa0bcf5de

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/8617/60e333e55c35faac3f26bb59.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 330416
last-modified: Mon, 05 Jul 2021 16:31:33 GMT
etag: "60e333e5-50ab0"
expires: Fri, 24 May 2024 23:22:26 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dmnHdeh%2BLgbz6DjpDLctfnzaXmRiu5GQ0LYuHqNI6GmYWlgleND5hCik%2Fiiuwj%2F0xAY21PzvdlewbjzIRljzZ0pCPYv7dKTeeRwp%2Fc%2FeqU3y0dieUWNx%2FhRttZ%2BzQSakpZFejhkJtlk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61daa07b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/9613/60eedd416854b6d1fc5c471d.jpg

188.114.96.1

200 OK

493 kB

URL GET HTTP/3
www.bestbid.club/static/9613/60eedd416854b6d1fc5c471d.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1539x1137, components 3
Size
493 kB (492889 bytes)
Hash
485d54675ad68a71e7b3fce25eab9c60
e58aa4149a7c3638b7bed8dbb435bccf8c312364
a4b79812b527f772dcc0f8b0b264181e17d030851b564a7411a23d1978c8eb8c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/9613/60eedd416854b6d1fc5c471d.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 492889
last-modified: Wed, 14 Jul 2021 12:49:05 GMT
etag: "60eedd41-78559"
expires: Fri, 24 May 2024 18:39:52 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bcP5ojw%2BOvc%2Ff4pURyXr2k312ROy%2FPDj%2FU7ktZRmpD1c4F979bYfBQWW15zBdB%2Bx5So7J9Z5XvvTyvShcTSCIeyQfFQ0YmOmhl%2FDVcSJVxFQl53OzIVM1GEdB%2B4jgUb2WCuV6u7z3D8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61d89f2b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/4179/60e4f5df5c35faac3f967523.jpg

188.114.96.1

200 OK

426 kB

URL GET HTTP/3
www.bestbid.club/static/4179/60e4f5df5c35faac3f967523.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1111x1216, components 3
Size
426 kB (426394 bytes)
Hash
79fc7d89e8f3111b308cdffef2c3d1ad
2d6dc3884d8b09ee9e8573643c763a1c02c4efa2
2bfd72e73944d7eb2bafc584776b0606eeedee6b2460d7d6fd5ae58e6e2016bf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/4179/60e4f5df5c35faac3f967523.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 426394
last-modified: Wed, 07 Jul 2021 00:31:27 GMT
etag: "60e4f5df-6819a"
expires: Fri, 24 May 2024 23:22:26 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tlvk9dKmd3p1o%2FYX5lursj6tmvOGRHgpEqecFjEajtuM8zaUG96W%2FO33ZMfV2E3U8nUNfI7uGD06mEOdpFfhSdPnCwaqxylF6UqWyquHS%2FUSYtnVGaRyIB6At7dsnH%2FGu7vrD9SR57Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61d99fbb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/0185/60e306fa5c35faac3fdb9bd9.jpg

188.114.96.1

200 OK

96 kB

URL GET HTTP/3
www.bestbid.club/static/0185/60e306fa5c35faac3fdb9bd9.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 800x819, components 3
Size
96 kB (96516 bytes)
Hash
07383bb0eee7d0f9762f5187089a4f9f
c8dfc2a111e52315f22431b698c88ce03b6bb87c
50d5a33ce241742b012fe1cc22ea25b7703890b5adaedd0837e0406e690b8f57

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/0185/60e306fa5c35faac3fdb9bd9.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 96516
last-modified: Mon, 05 Jul 2021 13:19:54 GMT
etag: "60e306fa-17904"
expires: Fri, 24 May 2024 23:22:37 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BXiTbiXHVZ9gi5WhfJBxJDialztypThEM9sKkL1Lai9mmapRXI1xFciCPIIYBYR3SIJTlYdOvA5HuNSCQDQ6VPEKoiS81q1TyKFe6M20i9lEoYUPz5Oqz7YtHl232hKtW5Mr57w%2B00E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dba18b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/3289/60f59b866854b6d1fccf1159.jpg

188.114.96.1

200 OK

81 kB

URL GET HTTP/3
www.bestbid.club/static/3289/60f59b866854b6d1fccf1159.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 600x600, components 3
Size
81 kB (81113 bytes)
Hash
d4e83838000937e549a2b4821a579ba3
30a89cc04943c374118ce62aafb394fa8579febb
828f2cecb715a2d40c0210d59e7164afcc4b5be182c45dbbc1dfbf7a826b14d0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/3289/60f59b866854b6d1fccf1159.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:38 GMT
content-type: image/jpeg
content-length: 81113
last-modified: Mon, 19 Jul 2021 15:34:30 GMT
etag: "60f59b86-13cd9"
expires: Fri, 24 May 2024 23:22:37 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i98mD2tlBg05LPlQAi1cI5PJwYdwkKsmZv7NEyYFYVuWzpk%2F3FCajUO8DPLeWwGOGw2coa7tCV4gYcPQS%2Bv1zfYUHGvrhxChWnBQ0OwPsvF49x2XqgraTSQ1MCPSeT5OUtlldlq%2Fuyw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dca1eb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/9561/60e3076f5c35faac3fdcfc99.jpg

188.114.96.1

200 OK

555 kB

URL GET HTTP/3
www.bestbid.club/static/9561/60e3076f5c35faac3fdcfc99.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1600x1564, components 3
Size
555 kB (555068 bytes)
Hash
97b38f93432c492eec4f76d75fdcc196
abfdaf06555728443f91c9f9ee21306e777ab513
a10bed47b9b1694415b71846442209f5b49061670e00e8af7a0dbbfa483f4b85

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/9561/60e3076f5c35faac3fdcfc99.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 555068
last-modified: Mon, 05 Jul 2021 13:21:51 GMT
etag: "60e3076f-8783c"
expires: Fri, 24 May 2024 18:39:55 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ukRO8G4J%2FTrAeMKgHNYosStbLt0gr6zjouLUXOMvI4w73WnyhZeuXbuVehsAfSJT4yketwFWvbghgF1JyIWRxSopiN09FYLWdNIPLlivkozqj6CjEWlaenFojCDBR6fUs1t7kHSeke4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dda21b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/2192/60e2fde85c35faac3fc25880.jpg

188.114.96.1

200 OK

220 kB

URL GET HTTP/3
www.bestbid.club/static/2192/60e2fde85c35faac3fc25880.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1600x1227, components 3
Size
220 kB (219783 bytes)
Hash
fd0f74f336230ae870a5a2b5eaaea0d5
49ae1ca6f29638fe3a16e3c6e0419e06d1141b1d
5daaaa020b28222bb09d197757f41982ed51b85859e9e0150d8481b7c4c1a93c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/2192/60e2fde85c35faac3fc25880.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 219783
last-modified: Mon, 05 Jul 2021 12:41:12 GMT
etag: "60e2fde8-35a87"
expires: Fri, 24 May 2024 23:22:26 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wIfWdxEWotJxeVhF9uzgqGmjK9tx%2FJHWQF4PdlkWjH26nOYXgRybliyyV8VCNtso%2FNgy1RXIhcePMcXP5B4DQXs9%2FPRwTgy3HGNnx2broQHe51AN8mmduWkiHEj0Ey8pTM3fGi4IVrw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dda22b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/6261/60ee82dd6854b6d1fc8c3435.jpg

188.114.96.1

200 OK

307 kB

URL GET HTTP/3
www.bestbid.club/static/6261/60ee82dd6854b6d1fc8c3435.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1600x1589, components 3
Size
307 kB (306593 bytes)
Hash
f6cbcedeff189bf3bbfedab4e5d8aeb0
9ab643a4cce985b5a2994a07d22f2cc2c3cfd051
f9e6d86030b2c03155dd6edbc9c1927ef80c6109b2b3ab1cd2e1251de5bfc5d1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/6261/60ee82dd6854b6d1fc8c3435.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 306593
last-modified: Wed, 14 Jul 2021 06:23:25 GMT
etag: "60ee82dd-4ada1"
expires: Fri, 24 May 2024 18:39:55 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F%2FVDA6%2FZ0cP0xxsUEpG7QYucDAKsIIdvNbQn5zT%2BHl%2BrXpuzoJsFxLEklZfsB6gYo2HK%2F00LvT4y%2FlG5AZHGWlaB5JKtkQk8k8wl7%2FNFJ7nLvw0WuC4GCjk7j3Wp1%2B0K0%2F1fQ30K%2Bd0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dea28b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/0530/60e64e52e9f4224eb5503f92.jpg

188.114.96.1

200 OK

1.2 MB

URL GET HTTP/3
www.bestbid.club/static/0530/60e64e52e9f4224eb5503f92.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1600x1600, components 3
Size
1.2 MB (1157232 bytes)
Hash
c5cebe3d7df89bab16003f584b7e3d6d
7942cd74376f3da9d9499401426ae3a6244fb2c5
402c5a919766f0156f25830a18c1dea9ffa54b80cf9ad970faccb016383ace32

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/0530/60e64e52e9f4224eb5503f92.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 1157232
last-modified: Thu, 08 Jul 2021 01:01:06 GMT
etag: "60e64e52-11a870"
expires: Fri, 24 May 2024 23:22:26 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ARzXhXRDsM6t7EuBuhhf4Uw6zEHHv6U3YZ6TZ6UVSq4xPr%2FOVW4g0pvcp3tM%2FPcrWUvfIWwBOB2%2FwMV3Wgk01vpb0nP07pKKJBERrSkdA7rFEVPUqBxz1dy17toM1%2FfaaO7iXKN2bik%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61d99f8b50f-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.227

200 OK

24 kB

URL GET HTTP/2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bestbid.club
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:21:46 GMT
expires: Fri, 18 Apr 2025 17:21:46 GMT
cache-control: public, max-age=31536000
age: 540052
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.bestbid.club/static/8626/60eb2c0a6854b6d1fc9fbb22.jpg

188.114.96.1

200 OK

454 kB

URL GET HTTP/3
www.bestbid.club/static/8626/60eb2c0a6854b6d1fc9fbb22.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1582x1600, components 3
Size
454 kB (454385 bytes)
Hash
70a48ebdb10feb4df69f9346d8ed774d
c0aa751cf7fe81b78c0d02c8b47e3cbdc9814864
aa9291ef12d27bd46b7953aa929e898516debea60913fed8db383ca332c8bf40

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/8626/60eb2c0a6854b6d1fc9fbb22.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:38 GMT
content-type: image/jpeg
content-length: 454385
last-modified: Sun, 11 Jul 2021 17:36:10 GMT
etag: "60eb2c0a-6eef1"
expires: Fri, 24 May 2024 23:22:37 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X3RfCdRMmSk%2BCSQ4Zb5j1QC8sRFiiHoPyjUGFLYC92io3Uz1EN3kiaHR89xsFTh2Mujf%2BqD7mjXLPKsRdWFsNTZoeH6%2B8iuLO%2BMYcst7JfefaLmfK%2FwSrwVpLS6%2BK0IaWWrmwbg3dM0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dea2cb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/2703/60e3173c5c35faac3f05ef8f.jpg

188.114.96.1

200 OK

1.3 MB

URL GET HTTP/3
www.bestbid.club/static/2703/60e3173c5c35faac3f05ef8f.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1600x1600, components 3
Size
1.3 MB (1250592 bytes)
Hash
9a19e6b5b924b28e318916999325a515
0a51c7519463af14a4d0d99054bc24995e1ce7d0
20b2d01b9bd6308a55e8d0a34e67066ea5a0cd74054a521f68025c7a28d30468

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/2703/60e3173c5c35faac3f05ef8f.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 1250592
last-modified: Mon, 05 Jul 2021 14:29:16 GMT
etag: "60e3173c-131520"
expires: Fri, 24 May 2024 18:39:52 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zYcvcpqmuTvzbTsxOOb0BPE8eeBgvzKPvTItClq8tZADR0qwfFToMETa9DcH7CROPh5csfMDu8s5r3T36FrTEFs66mcQCZIjo7sK9Fnsqoo5yw4FadTsfMp1BxA7kcEVwHfjafr54No%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61d99fcb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/2036/60f687286854b6d1fc5fce84.jpg

188.114.96.1

200 OK

464 kB

URL GET HTTP/3
www.bestbid.club/static/2036/60f687286854b6d1fc5fce84.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1566x1600, components 3
Size
464 kB (463724 bytes)
Hash
6a2687f4d7485d873d4fba4149a5ad93
6cad1342b6c12ac4959f228c0d2f5123cbc870ab
1e5e457175572879ee191312411ac2eaad4b21eed640e4c6303e314c0ce3a2a0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/2036/60f687286854b6d1fc5fce84.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 463724
last-modified: Tue, 20 Jul 2021 08:19:52 GMT
etag: "60f68728-7136c"
expires: Fri, 24 May 2024 18:39:56 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MeBGKf0fUlfvxrRO0eyFdhn5nbAK3%2BDNDw8ffhFpsON3aJv6eEPQpMc4kWlBzcxDX98DnV37Od2AcFANWZIEQt97E069d4Eu4NGT5kA%2FztX7wzxYZUuAVmVXEyBE7DlJ3bKtVbGKs30%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dea2db50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/5916/60f692c76854b6d1fc73e43c.jpg

188.114.96.1

200 OK

34 kB

URL GET HTTP/3
www.bestbid.club/static/5916/60f692c76854b6d1fc73e43c.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 400x400, components 3
Size
34 kB (34120 bytes)
Hash
b0cb97ed85032d7e54a7f6c8c98d2adb
0db1de4fe8539c77b6bf580e247abe0b1ab273ba
d0d32099e7812b85acaff35ef87a2ff5d9f81ca7dcc9a3f7c1ef06233d2dc450

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/5916/60f692c76854b6d1fc73e43c.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 34120
last-modified: Tue, 20 Jul 2021 09:09:27 GMT
etag: "60f692c7-8548"
expires: Fri, 24 May 2024 23:22:37 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CgSt9FeTvx%2BpjXuSHf%2BKj0LSY6Ztt6QHxo%2FccIgbF%2F24DYdw3eT7%2FTFXYRR3hQmKZLajNN3wQwMXlOqgzTOxLYqPvBXzn93tx2UeOelRPwPO0qrU2WJZ81BKhPaWWnBVRpXRaTT3HLc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dfa38b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/5817/60e306505c35faac3fd9a169.jpg

188.114.96.1

200 OK

622 kB

URL GET HTTP/3
www.bestbid.club/static/5817/60e306505c35faac3fd9a169.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1600x1600, components 3
Size
622 kB (621833 bytes)
Hash
d0fcc6bf9aadcbbd583d1b42dd9fe8dc
7fc4f15c549f3e6cf6a3d40ef6a6bc085a772b06
ead1fa77785b45760f55f9cb2179daa2ad2f86bdfbac11bfbe5aacfe305cc527

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/5817/60e306505c35faac3fd9a169.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 621833
last-modified: Mon, 05 Jul 2021 13:17:04 GMT
etag: "60e30650-97d09"
expires: Fri, 24 May 2024 23:22:26 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cq7wvS37P%2F4eeMrJz%2B7Vc1BCk7UGCVQg69tMdkG4CCochmO1DIIwrRKDMl%2BjcIqYT09e6tsBte838fhXqYByVgenkyhDfydoLd2T7%2B8IjxgQoNVDkGA2kf1IoZtPcfs%2FK9G9nGyR%2B6c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61dfa3bb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/7713/60e307015c35faac3fdbb421.jpg

188.114.96.1

200 OK

305 kB

URL GET HTTP/3
www.bestbid.club/static/7713/60e307015c35faac3fdbb421.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1019x1076, components 3
Size
305 kB (305179 bytes)
Hash
ac56bdcb96839ad6d6d2829fac9913a9
cbcda8c2bd93fc7c56337364a526492469caaf99
2231c9b9761865d56dea7dea0444803ff092cb79caeca0d5503bd29fd896188e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/7713/60e307015c35faac3fdbb421.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:38 GMT
content-type: image/jpeg
content-length: 305179
last-modified: Mon, 05 Jul 2021 13:20:01 GMT
etag: "60e30701-4a81b"
expires: Fri, 24 May 2024 23:22:37 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=44FW%2BHtJuwmfFI%2Fyt7Yvn2aXSrR4ulH1O1OtXQl5MFvIlAlLfpwe6sm8PJxDgsYgWQNlLawCYIWw4Ws%2FSyZpjxzAwbH%2Blk%2BLa9GcTBsSkMYdKI3Mxe3aeOSzyRd%2FUUANU%2BiZ41%2FSGVs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61e0a3eb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/9452/60e309485c35faac3fe2424c.jpg

188.114.96.1

200 OK

666 kB

URL GET HTTP/3
www.bestbid.club/static/9452/60e309485c35faac3fe2424c.jpg
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, comment: "Processed By eBay with ImageMagick, z1.1.0. ||B2", progressive, precision 8, 1600x1600, components 3
Size
666 kB (665935 bytes)
Hash
ed7184bbc79e298a4cdc55846b2cfd50
9c6c13244073b70515e333bba9b6c22fa1ac1028
d9e15e170ac2e6c755c1d1f8b4a9b96bb05e8226df6b6b96a6ec0f4efb59e372

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/9452/60e309485c35faac3fe2424c.jpg HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: image/jpeg
content-length: 665935
last-modified: Mon, 05 Jul 2021 13:29:44 GMT
etag: "60e30948-a294f"
expires: Fri, 24 May 2024 23:22:26 GMT
cache-control: public, max-age=2678400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7X2U1OzmBftLjCfA5rIAGnOYrEb7TDJKjhcaPllnHp54TjivFAcefWypfUOexrC4dS9CQmskKGDaaw5kj11sqU%2F9e%2FVySjHR%2FQrjqQJnol1fODHKjFCiKK7ygDKJWHgs2g8qHbWkPAo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 8799d61e0a3fb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/languages/english/images/icon.gif

188.114.96.1

200 OK

1.2 kB

URL GET HTTP/3
www.bestbid.club/includes/languages/english/images/icon.gif
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
PNG image data, 49 x 32, 8-bit/color RGBA, non-interlaced
Size
1.2 kB (1233 bytes)
Hash
4b7a64715c15cc5fd05450fa59402b16
7be75d26c88e9894b55d9ecbcb4a74b821c87d7e
9225185152dd4e84cbcc0a3e0197bdffcbc036343f8333561a8b130b03a84151

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/languages/english/images/icon.gif HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:38 GMT
content-type: image/gif
content-length: 1233
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 01 May 2024 23:22:37 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:38 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N0xC2abzAJbCtNJz96AJ%2BKqUmWKUOet41maMmtI%2B9YV5Lv%2F7FFCT7zXLHMqDvCvSd0ckDPu%2Fv3kk07nffDMbKNNJoRfjgc0pr4whRDp2iNuF6yN%2FZroi9b0tNtAUDsMWKTUw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d6228bf6b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/languages/french/images/icon.gif

188.114.96.1

200 OK

295 B

URL GET HTTP/3
www.bestbid.club/includes/languages/french/images/icon.gif
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
GIF image data, version 89a, 24 x 15
Size
295 B (295 bytes)
Hash
013d1c4a57e2d88d215ae2a5fc17e225
f33c00b8fb338e3f2d7ae7a1f83ddd60514668be
b62dbc80ab2937d6863c9b00706cd959860b4a17c7ca9b7be335c0b5d214aef8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/languages/french/images/icon.gif HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:38 GMT
content-type: image/gif
content-length: 295
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 01 May 2024 23:22:37 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:38 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BMRyhXfjYorfR7%2Fjflu4YftIgNEblqjf8XWhG477OFpaJ4Wt8wZv7Y4VPIY%2BLnoqSw4bljg%2BQuquPIFQiPpaheEvKUpXSDEkTqScjP7HoPTQ4J63nGgmp2efNCdVRTgbihGE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d6228bf7b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/languages/german/images/icon.gif

188.114.96.1

200 OK

113 B

URL GET HTTP/3
www.bestbid.club/includes/languages/german/images/icon.gif
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
GIF image data, version 89a, 24 x 15
Size
113 B (113 bytes)
Hash
a8322202d4482003fa45a989beb83b3d
7fcc605f48d6ac6a8e1f8cbd703e396e269dda4e
e3ca5080e33b648425002ba39b9652478fdc46d89545602f89daf40cacf6e861

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/languages/german/images/icon.gif HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:38 GMT
content-type: image/gif
content-length: 113
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 01 May 2024 23:22:37 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:38 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P2QV%2B5eNppfxIMQu4gYgrX%2Fipkodj27JIUxPwlSUGiYGr7%2F%2BrwJWd1zx8QjT%2B6NP%2F0ksfrB8Wa5DzcdYhr5U4qhmXMIp06%2FhJ7f7707Oe43Oe9aZ23H6JX1S1ittTue8GnwO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d6228bf8b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/languages/italian/images/icon.gif

188.114.96.1

200 OK

94 B

URL GET HTTP/3
www.bestbid.club/includes/languages/italian/images/icon.gif
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
GIF image data, version 89a, 24 x 15
Size
94 B (94 bytes)
Hash
d56ff8d06072afcedc9efbae308949ac
f34e669cda6b19091466ffb618a324490e84ee7c
ae793be450080e0c773c31fc00daecbb0828d5eff5542dab87ae108c98e7422f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/languages/italian/images/icon.gif HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:38 GMT
content-type: image/gif
content-length: 94
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 01 May 2024 23:22:38 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:38 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=41syWo4E0pwtyjycQgobHZaXZkPcKJLCNZae2wSpd3a%2B7kSeSrCV6C6uPshzJEXvsmVPizFtC0fLctGT6r%2BnO31wAqYUd4SPs2yD3Y69qr6ENQQFqsu2HYmHIe7o5ouDt1RJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d6228bf9b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/languages/spanish/images/icon.gif

188.114.96.1

200 OK

370 B

URL GET HTTP/3
www.bestbid.club/includes/languages/spanish/images/icon.gif
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
GIF image data, version 89a, 24 x 15
Size
370 B (370 bytes)
Hash
3748f4226c70f5578a8f31ca1947044a
a9f8304be2414d6832c5d5f21a6f7bc139d4cb32
1afc8e9fbefc7f2e684e9ccfcaef9250d113d9d21a8b7200c647a0e2015c0ee6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/languages/spanish/images/icon.gif HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:38 GMT
content-type: image/gif
content-length: 370
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 01 May 2024 23:22:38 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:38 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xdLZWCNxHfSbNUYOPMZNrKK4ErNHdd8Q%2FKmpJOBpWDN40UOb0yJJVF66zKgWpCAc7NliCbCCSBnt0T8DAY5cuuMouVHcpub6L1eMoEL5ZctiORokA5t52F1MWJ36VzNRXS%2BN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d6228bfab50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/languages/dutch/images/icon.gif

188.114.96.1

200 OK

356 B

URL GET HTTP/3
www.bestbid.club/includes/languages/dutch/images/icon.gif
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
GIF image data, version 89a, 24 x 16
Size
356 B (356 bytes)
Hash
76a03f2d53129797ec0c69ae4afa626e
ffe260fc13135bb12f3d94185cc4781bf5a0ffac
e53b7061b81f44cd76c766c5ab497bfd363dddfa8fc95d3d7579d80cbb5ad870

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/languages/dutch/images/icon.gif HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:38 GMT
content-type: image/gif
content-length: 356
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 01 May 2024 23:22:37 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:38 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DBaSYtzQIkvs%2BzitiofR2erodiHSUYTmQDADXz4snhxYqTbCsXqRQJC72jaZh1vEAJZC1MhWvvb3KwKkYR95KS%2BDjCJHkGwPkde7Y%2BzJfO%2Fbs9lfbZjvGrcbQUrtA9rCKUvZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d6228bfbb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/images/i_sale.png

188.114.96.1

200 OK

2.2 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/images/i_sale.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
PNG image data, 81 x 83, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2224 bytes)
Hash
71bf04b2b192c1177d8700c7d538b5a1
f2054b868ee68fff37db755a1d30266419636276
35f39050ebc2493eda9c7d4744afc3ca60caecacb51165fbfa36d39a06813b87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/i_sale.png HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/includes/templates/zz/css/stylesheet.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:38 GMT
content-type: image/png
content-length: 2224
vary: cf-ipcountry,cf-connecting-ip,user-agent, Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Fri, 24 May 2024 23:22:38 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:38 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3hdpjT7ahixfguNfbt8WXPiBJ9siX%2Bzm1pp5dphAQ%2BgRVUsY5CAMPpPx4eMOogqJJs7ujzUC9VGoqAjwpz4SJg8Ivezl00arFzCmdzqBW9RHlBVp8ZOAlk9YrKiFMv%2BKmCLA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d6228bfdb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/font/icomoon.ttf

188.114.96.1

200 OK

6.5 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/font/icomoon.ttf
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon
Size
6.5 kB (6460 bytes)
Hash
8e5141e352db24a29233a2468e189b14
3bb36e1ab54481ec670c0523781212937836a8a2
afdc22749775b45f73ca80a0ad7d2a372baa7fbfb8cf2a08f0f0b402ecba6e09

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/font/icomoon.ttf HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/includes/templates/zz/css/main.min.css?v=1.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:38 GMT
content-type: font/ttf
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 24 Apr 2024 23:27:38 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:38 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dXzJI0rMYDwL4wP7XUwk6O%2FkBScyUK%2FrnMPDQBhWuRZjJvZ1A1rloQo5Q%2Brk9EBsBriBRLXAQiojeCOSKdTsPR7aY%2FCgxwLQ1mnBPfIazM%2BRRZgPIwlHnqMsnsxnYHrVBmmz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d622fc33b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestbid.club/index.php?main_page=get_dog_config

188.114.96.1

200 OK

7.5 kB

URL POST HTTP/3
www.bestbid.club/index.php?main_page=get_dog_config
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JSON text data
Size
7.5 kB (7459 bytes)
Hash
f021083136f3800b14900f854d68ac9b
7548bf89015bb40964a4c7e9003b15d54272d258
011e0bff5e1fa3f4b66156943a4d0c6a24a2469d6f8e25fb27ca99662b302efa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /index.php?main_page=get_dog_config HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://www.bestbid.club
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:38 GMT
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: zenid=7buar2lvtdb1edtuo32hefg6v6; path=/; domain=.www.bestbid.club; HttpOnly
language=en; expires=Wed, 01-May-2024 23:22:37 GMT; Max-Age=604800; path=/
currency=USD; expires=Wed, 01-May-2024 23:22:37 GMT; Max-Age=604800; path=/
content-language: en
link: <https://www.bestbid.club/index.php?main_page=get_dog_config>; rel="alternate"; hreflang="en-us", <https://www.bestbid.club/index.php?main_page=get_dog_config>; rel="alternate"; hreflang="en-gb" , <https://www.bestbid.club/index.php?main_page=get_dog_config>; rel="alternate"; hreflang="en-ca" , <https://www.bestbid.club/index.php?main_page=get_dog_config>; rel="alternate"; hreflang="en-au" , <https://www.bestbid.club/index.php?main_page=get_dog_config>; rel="alternate"; hreflang="en-nz" , <https://www.bestbid.club/index.php?main_page=get_dog_config>; rel="alternate"; hreflang="en-ie" , <https://www.bestbid.club/index.php?main_page=get_dog_config>; rel="alternate"; hreflang="en" , <https://www.bestbid.club/index.php?main_page=get_dog_config>; rel="alternate"; hreflang="x-default"
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KsUJVZQP4Ut6boGoRK2y35t2d36erbbWYEdoqT9PnOZxEmoi0vBsvcWymlq1TbM%2BuIiq%2BZXmoUmWqjoqqGTHmBoZDcCJitwrpeeiYnqsdCKZL9QoZDUEhgI8Iy9aXz6raOp3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d6207b29b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/images/favicon.ico

188.114.96.1

200 OK

13 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/images/favicon.ico
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel
Size
13 kB (12667 bytes)
Hash
65522fdbf2c438821cdc6cf6ff05ec37
0a1b06ec47207da3b9dfe0a4806ff14fc2c74e45
2eb9393f69afdfba8381e96892d70ceabd63522dd45009ba0256b9f7b8bc8438

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/images/favicon.ico HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Cookie: zenid=7buar2lvtdb1edtuo32hefg6v6; language=en; currency=USD
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:39 GMT
content-type: image/x-icon
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Thu, 25 Apr 2024 23:22:39 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:39 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Sdkx5nxXrOc%2FwE39cnLb4kzYTWfXvPHVAdUR%2Fzj%2F60AqkPPfEWa2z5jIdBK9o0%2FNJIlu4%2B57FHljkmcF1oZ8HpL5D5rkx0%2Bg76%2FK1%2F7HiX9WKCKWpxyA%2BDO%2FNXeL6BNGSvmZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d62c4fc6b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestbid.club/static/2701/60e334c75c35faac3f2927ed.none

188.114.96.1

410 Gone

18 kB

URL GET HTTP/3
www.bestbid.club/static/2701/60e334c75c35faac3f2927ed.none
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
data
Size
18 kB (17674 bytes)
Hash
eba273dd55b12032fa0476d6fc83197c
eb6cc44b8ac4b911e3b21eba3c737bcd89862382
d8d7ac5fc3a91e3b8d38672ce2307d8685626a575bca65bca23503c5add820fa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /static/2701/60e334c75c35faac3f2927ed.none HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 410 Gone
date: Wed, 24 Apr 2024 23:22:38 GMT
content-type: text/html
content-language: en
link: <(null)://(null)(null)>; rel="alternate"; hreflang="en-us", <(null)://(null)(null)>; rel="alternate"; hreflang="en-gb" , <(null)://(null)(null)>; rel="alternate"; hreflang="en-ca" , <(null)://(null)(null)>; rel="alternate"; hreflang="en-au" , <(null)://(null)(null)>; rel="alternate"; hreflang="en-nz" , <(null)://(null)(null)>; rel="alternate"; hreflang="en-ie" , <(null)://(null)(null)>; rel="alternate"; hreflang="en" , <(null)://(null)(null)>; rel="alternate"; hreflang="x-default"
cache-control: max-age=2678400
cf-cache-status: DYNAMIC
age: 16966
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b7oS29WEp%2BPpxSL%2FMiiiRm7uaLPCGdzy2lCR27iG1JXRwqFbvr8ac0R3dawuOhjqJMT3%2FoT9mTFmeDjiLeFdun17uugwr%2Fua%2Fk8cf%2BXEPq5hAuRiiXxR1U8Ywz%2BagYCAN3WA1aGWU%2B4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799d6230c41b50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/fonts-append/icomoon1.ttf?8ng78a

188.114.96.1

200 OK

1.6 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/fonts-append/icomoon1.ttf?8ng78a
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon
Size
1.6 kB (1596 bytes)
Hash
883f3ad96d0f4b688be7afda2ee86d9c
1186c3918b206008021df0d29be29996fcfaad31
9e170484d33b1c01a2545eb44a0725ac04778464077843dae232f0245d51a0e9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/fonts-append/icomoon1.ttf?8ng78a HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/includes/templates/zz/css/font_append.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:38 GMT
content-type: font/ttf
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 24 Apr 2024 23:27:38 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:38 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k3etDQ8sw2MvHkp6myCkHyrSNEAyba2dNKvjAwZTGIsn4v5fzme2XoCh4Vqw%2FnHm7Kpof%2Ftr3MnNX2ZyV5YbsxD92Mot4GeBbDFCht9EYGcL1cx9vIaWADjkqV5mGIQjF4%2BK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d6230c40b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/css/main.min.css?v=1.0

188.114.96.1

200 OK

141 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/css/main.min.css?v=1.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
ASCII text, with very long lines (25218)
Size
141 kB (141031 bytes)
Hash
ba191be877d1648c7b7728ecc0a7eb77
9ade154853061029357281c9b22e13e0d5f71d46
f34c0f0dcc5b876c56d1c39343f9fde7c11f9dce19c8141b1e719ab5f633b125

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/css/main.min.css?v=1.0 HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: text/css
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Thu, 21 Mar 2024 05:27:45 GMT
cache-control: max-age=14400
expires: Thu, 25 Apr 2024 00:22:37 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XtbxSz9Ae2iGQJoMQK2IIQawdqzYb%2B3xDbRUSPp9LhbZGnTtCst4TFrjnxOqLIOG2XF6tS9dN0jnHpkuT6w7Zup%2Ferb8eb9EH%2FMuLgJW9izFXcAwo4ip%2FR7KJFKElr%2FLCyfW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61d69d4b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/js/main.min.js

188.114.96.1

200 OK

168 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/js/main.min.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type

Size
168 kB (168445 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/js/main.min.js HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: application/javascript
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Thu, 21 Mar 2024 05:27:45 GMT
cache-control: max-age=14400
expires: Wed, 24 Apr 2024 23:27:37 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Bbty7d%2FGEhRyyt5TJSURSpnn7PrV2TKe4wxaKR9Sdh6TIiYiWjtx5%2FT1mBYonvb0d2EBgMZ5atA%2B2hlih9RDsPzT77Kfh9%2F06eowkorPNH0Hc7Ob4Evk66SupsYzZ0izIxrZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61d79ddb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/css/stylesheet.css

188.114.96.1

200 OK

116 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/css/stylesheet.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
ASCII text, with very long lines (1353)
Size
116 kB (115455 bytes)
Hash
695c58ea78c8d8ab3a16b27dafb53c97
15221f42f9c575f1f3fdabe847b1f9202b8528cd
f56ba6c69cef1da53520b7754edfd313ae46958d94e7f1d08cc3ecbf034cf334

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/css/stylesheet.css HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: text/css
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Thu, 21 Mar 2024 05:27:45 GMT
cache-control: max-age=14400
expires: Thu, 25 Apr 2024 00:22:37 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9TaW7ioZYuY0mzMa0Hs0LINUyBhlrGXRrftY8JbFn2T58X5bwBSyyhbRB2W7SNojQQJUr6BKYMeRNpz4ftPHTPJTot6XJhIEj7ipn93FCC87%2FvfG2eY7BvLV3bqJuvlJc2Nd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61d79dbb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/public/pet.js

188.114.96.1

200 OK

3.8 kB

URL GET HTTP/3
www.bestbid.club/includes/public/pet.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
Unicode text, UTF-8 text, with very long lines (3571), with no line terminators
Size
3.8 kB (3767 bytes)
Hash
ab88e0fa4c18cf8b94fe066e88915931
7d7ca8ce2239a1262a2a77c0dc1a6a3c1cf36bd6
f41e8bcf0c1e8ba681aaa22f6923ddca990b25101764dc95434359af3f36b1ac

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/public/pet.js HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: application/javascript
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Thu, 21 Mar 2024 05:27:45 GMT
cache-control: max-age=14400
expires: Wed, 24 Apr 2024 23:27:37 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=75VLfd8yPGUQ8eZ0uGxQX%2B4J7TJt%2B9B%2B8DEFUS6PiDt1MjP4AVPEUcKKqu6rx5IHLe0bOkyb6TwZEiHHmJjt0dKoP69ip13Z%2BfXUl61VWcrkGnAvvTBbRFicFLy37%2Br1gbfW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61d79e2b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestbid.club/index.php?main_page=customer_loginstatus

188.114.96.1

200 OK

36 B

URL POST HTTP/3
www.bestbid.club/index.php?main_page=customer_loginstatus
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
36 B (36 bytes)
Hash
82b17edf862f02f0317ad430aee7a879
c4d9c9db63a3dbd7cd69d4d49caedef4686db992
842963752588b8cc3ae073364fdd06a2970703123e248cc44512d1dec2ee2d00

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /index.php?main_page=customer_loginstatus HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://www.bestbid.club
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:38 GMT
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: zenid=8l29gmg8d5bdtvbige66rm1be6; path=/; domain=.www.bestbid.club; HttpOnly
language=en; expires=Wed, 01-May-2024 23:22:38 GMT; Max-Age=604800; path=/
currency=USD; expires=Wed, 01-May-2024 23:22:38 GMT; Max-Age=604800; path=/
content-language: en
link: <https://www.bestbid.club/index.php?main_page=customer_loginstatus>; rel="alternate"; hreflang="en-us", <https://www.bestbid.club/index.php?main_page=customer_loginstatus>; rel="alternate"; hreflang="en-gb" , <https://www.bestbid.club/index.php?main_page=customer_loginstatus>; rel="alternate"; hreflang="en-ca" , <https://www.bestbid.club/index.php?main_page=customer_loginstatus>; rel="alternate"; hreflang="en-au" , <https://www.bestbid.club/index.php?main_page=customer_loginstatus>; rel="alternate"; hreflang="en-nz" , <https://www.bestbid.club/index.php?main_page=customer_loginstatus>; rel="alternate"; hreflang="en-ie" , <https://www.bestbid.club/index.php?main_page=customer_loginstatus>; rel="alternate"; hreflang="en" , <https://www.bestbid.club/index.php?main_page=customer_loginstatus>; rel="alternate"; hreflang="x-default"
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yRMZHF1zq2XkHcBK4PJsUxbie7bKBFBV%2BtqcDwZyguehFNXIo4EPncIBtq4LqGzGHNRELHL958nTaYDQEFrrFA3S3C48YmmaCjDowwLUZT%2FcFuGdSv3A0%2BdevvvRXoPtmK%2BM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d6238c65b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/js/jquery.cookie.js

188.114.96.1

200 OK

3.7 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/js/jquery.cookie.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JavaScript source, ASCII text, with very long lines (3858), with no line terminators
Size
3.7 kB (3731 bytes)
Hash
4afc396961d087387944aeae391bb17e
bfda399ab5d56939ee3ba464d5f8c12862a76dba
2ec95b45153d555e26dbacb2b4a9ab4bbfdf4df6670257e5f2582327dcf8672b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/js/jquery.cookie.js HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: application/javascript
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Thu, 21 Mar 2024 05:27:45 GMT
cache-control: max-age=14400
expires: Wed, 24 Apr 2024 23:27:37 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mAoRR81L%2BsRv1tXWn6hXY58epdM2eKrEq82Smx1AnVOGmClA5bOlAc6Tx76WJriHYqFxuE7Owq881cxJ9470E5RhNJhVUrn%2F53bDxs%2BlrF4eB5aVz8feWLyL2LGjU%2FEJlN79"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61d79e5b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/css/archive.css

188.114.96.1

200 OK

25 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/css/archive.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
ASCII text
Size
25 kB (25011 bytes)
Hash
077acb9c1e813cce43e6a9df34622ffc
0721f61882dc9f13c88ad25309d9233f654bc87c
ce96f8705a489478d0434ef893fc5675894e042ebf7c7ce77fb9af03f4076976

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/css/archive.css HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: text/css
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Thu, 21 Mar 2024 05:27:45 GMT
cache-control: max-age=14400
expires: Thu, 25 Apr 2024 00:22:37 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cJp5yzl2qLd8SyMMzD2G%2Bt7rmaAehaKnViRHteh5ehZOHil0WfVXiznNs6MwHcLoOwUdZV4A%2BIgG6X8U7LulTuL%2FG8Z6YRXfRRRYbbwJmodN%2Fw53qhlMZ2P8WwT6L%2BPUGBP7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61d79d8b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestbid.club/index.php?main_page=selected_data

188.114.96.1

200 OK

4.2 kB

URL POST HTTP/3
www.bestbid.club/index.php?main_page=selected_data
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (4682), with no line terminators
Size
4.2 kB (4214 bytes)
Hash
5122839bc34cc2163ea3294b9d950764
bcf7236ff36805dbfa6994ff88ec9b1dba7c5b71
b3cd9e14d0aeb8aecf4a1ec2646bae89fb4017d1cca93c0cc00b5cf83bb1a11b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /index.php?main_page=selected_data HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://www.bestbid.club
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Cookie: zenid=8l29gmg8d5bdtvbige66rm1be6; language=en; currency=USD
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:39 GMT
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-language: en
link: <https://www.bestbid.club/index.php?main_page=selected_data>; rel="alternate"; hreflang="en-us", <https://www.bestbid.club/index.php?main_page=selected_data>; rel="alternate"; hreflang="en-gb" , <https://www.bestbid.club/index.php?main_page=selected_data>; rel="alternate"; hreflang="en-ca" , <https://www.bestbid.club/index.php?main_page=selected_data>; rel="alternate"; hreflang="en-au" , <https://www.bestbid.club/index.php?main_page=selected_data>; rel="alternate"; hreflang="en-nz" , <https://www.bestbid.club/index.php?main_page=selected_data>; rel="alternate"; hreflang="en-ie" , <https://www.bestbid.club/index.php?main_page=selected_data>; rel="alternate"; hreflang="en" , <https://www.bestbid.club/index.php?main_page=selected_data>; rel="alternate"; hreflang="x-default"
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wnJ8PoSDaKhX2tjteOTaTp2QQUShsBvMPKdhLJd4GOUWHr%2FqpCQK%2Bjx0u1AQSjsB0Vw5uZ%2F%2FpHeVlIg21TwINnJCqYE7E9jlSJaUXFZ0RN6vv65pBrY5i1mgMSncr1Vb6nMF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d62c7fd8b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/public/common.js

188.114.96.1

200 OK

2.2 kB

URL GET HTTP/3
www.bestbid.club/includes/public/common.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
Unicode text, UTF-8 text, with very long lines (1966), with no line terminators
Size
2.2 kB (2219 bytes)
Hash
dc905fa5e8e97745a02ae33a07cb5324
00a229f4518a5fd41994783db7dcbab316cbe11f
57a31cc7a8b5cab77394a299f63ee5a296be4315684198f1c9d743cb6014f695

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/public/common.js HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: application/javascript
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Thu, 21 Mar 2024 05:27:45 GMT
cache-control: max-age=14400
expires: Wed, 24 Apr 2024 23:27:37 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pKT9bXKm%2B%2Bo79h5UEa3cidoTqQ51cravvzyOjD7PU2zgtq9n%2FolhJXGpvuDTrP26R7o8i4%2FHmLNnJRenXa2%2BPpYhmrTq%2B00qUgNmNtoniifQ23OuARhddfFkzN0XKEA%2FM1TX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61d79dcb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dog.theurl.fun/dog.js

188.114.97.1

200 OK

21 kB

URL GET HTTP/2
dog.theurl.fun/dog.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerLet's Encrypt
Subjecttheurl.fun
FingerprintCE:35:82:47:76:0E:AC:7D:47:6C:94:DB:A4:3C:95:25:73:80:6B:0B
ValidityThu, 11 Apr 2024 10:03:30 GMT - Wed, 10 Jul 2024 10:03:29 GMT

File type

Size
21 kB (20650 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /dog.js HTTP/1.1
Host: dog.theurl.fun
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 23:22:39 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
x-cache: MISS
cache-control: max-age=14400
cf-cache-status: HIT
age: 698
last-modified: Wed, 24 Apr 2024 23:11:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jDc%2F4tx%2Fi%2FluAA%2FaQeu1g6CxUDnM7vvZLWxyZzWbmz59KFzby1kCy3cSCujB8fnJRU54SgXMDJEyadGqMlnVkgw0pnSwuUnrDqNX2EHKODvo03kShvguwSDiewKDjr%2F56Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d62cee06712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.bestbid.club/includes/templates/zz/js/show.js

188.114.96.1

200 OK

3.3 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/js/show.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (3542), with no line terminators
Size
3.3 kB (3280 bytes)
Hash
11c483707baab9b31214a308c43fc152
8c81931e4158e88f660010b9e2818f6fc7f325c0
99d44523804155b9135ea5ecf95af13b3f888e35cf7717dd04d2fe340d6f7954

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/js/show.js HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: application/javascript
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Thu, 21 Mar 2024 05:27:45 GMT
cache-control: max-age=14400
expires: Wed, 24 Apr 2024 23:27:37 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9MdWk8jKrABihZW8%2BoVjBQMwweKguBJISt%2FJ0SzCoy%2FBJkbEn1qso866vMGSe7wDI085RDrHa%2FSw6CHr0BNteQ5tks%2F6pC6xh7iNIN2mCE90ABrXGn4gH1mi8eEev5vIvtHB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61d89e9b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/js/public.js

188.114.96.1

200 OK

40 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/js/public.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type

Size
40 kB (39718 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/js/public.js HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: application/javascript
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Thu, 21 Mar 2024 05:27:45 GMT
cache-control: max-age=14400
expires: Wed, 24 Apr 2024 23:27:37 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1QIRxz9EpF34bz9CcK2ik%2FI421fxXAZaE3LwPT%2Ftdf5tJJ55k6Rz3HjI2Ww3jLFE6VCW8KR86d8TfvLEc0UxQOvGXQzqAwZSWd6ckPSgFxwIIU2QHmyIoqA4nu%2FOdqVbrUX3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61d79deb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Lato:400,400i,700,700i,900,900i

142.250.74.106

200 OK

4.3 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Lato:400,400i,700,700i,900,900i
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (4445), with no line terminators
Size
4.3 kB (4349 bytes)
Hash
fe2df1028ad1f3fafb652b8bceef478b
03b897204f0e2614af481c7db99f9636e9fb43d1
c2b3054e38b7b26202d27d1fa3d541f3132916348f9fdd8d0c338bfed8040243

HTTP Headers

GET /css?family=Lato:400,400i,700,700i,900,900i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 23:22:37 GMT
date: Wed, 24 Apr 2024 23:22:37 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.bestbid.club/includes/templates/zz/css/font_append.css

188.114.96.1

200 OK

944 B

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/css/font_append.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
ASCII text, with very long lines (997), with no line terminators
Size
944 B (944 bytes)
Hash
6d9bef5581689f5ac5942f0f334e7f59
a997c0ab7c776a7955b04b08f3d85e0e770d34a2
9579fe443de979d85a6cb637d7b9c7318017df7002370efedc3d35076617f5c1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/css/font_append.css HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: text/css
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Thu, 21 Mar 2024 05:27:45 GMT
cache-control: max-age=14400
expires: Thu, 25 Apr 2024 00:22:37 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oYBpDyvBo6DF3%2Fl4kpp%2F2vOgZ7kPEmltBu24j3H6ITeW%2FqPaO%2FlTwkKMR24BsVyR8rvack%2BKI7t6WhUENuQcFDBWak3e9IUBugHHmjkoF936tu3UnI4DfJdpDJYoHMYWo4%2F6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61d69d2b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/font/zippo-custom-icons.woff

188.114.96.1

200 OK

1.2 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/font/zippo-custom-icons.woff
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
Web Open Font Format, CFF, length 1160, version 1.0
Size
1.2 kB (1160 bytes)
Hash
a590a56a7e13c9be5e4317ab4a64b88b
4510d03a11a5db93492b2840725302cbc78eb973
b621eb2cbe8e572bcb5cfe645b2d138b82a1f0ff62f2de65e372eeb12eea108b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/font/zippo-custom-icons.woff HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/includes/templates/zz/css/main.min.css?v=1.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:38 GMT
content-type: font/woff
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
cache-control: public, max-age=864000, must-revalidate
expires: Wed, 24 Apr 2024 23:27:38 GMT
cf-cache-status: MISS
last-modified: Wed, 24 Apr 2024 23:22:38 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pxFACAtSAbT1Z66gIzIyV2dTLT5oghVOdXBffMXiqILYXQUIAAVWaYCYt7LEmN%2BI2ibP8aSkabyIrmMc4vq1QJdoHc0nIPU%2B2Xrg1C3erogk6rbtuvong7UIkD0nrS%2FDNWoX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d6230c3fb50f-OSL
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/js/math.js

188.114.96.1

200 OK

668 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/js/math.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type

Size
668 kB (667902 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/js/math.js HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: application/javascript
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Thu, 21 Mar 2024 05:27:45 GMT
cache-control: max-age=14400
expires: Wed, 24 Apr 2024 23:27:37 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=feGXaVxfVbmOBIgZI7ag2zlEvuTsP%2BiSy5lXrJUnCSwVLAXbJxxAmBFfD9C1m4z8TQHgVXQYl5jUoT%2F2eZH8wzCBs%2Bc7OEvBx0FidejGeO7Si7LkDk1aYW6kKQgNaVUcR%2FJ1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61d79e6b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

bestbid.club/

188.114.96.1

301 Moved Permanently

101 kB

URL User Request GET HTTP/2
bestbid.club/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type

Size
101 kB (100724 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Wed, 24 Apr 2024 23:22:35 GMT
content-type: text/html; charset=iso-8859-1
location: http://www.bestbid.club/
content-language: en
link: <(null)://(null)(null)>; rel="alternate"; hreflang="en-us", <(null)://(null)(null)>; rel="alternate"; hreflang="en-gb" , <(null)://(null)(null)>; rel="alternate"; hreflang="en-ca" , <(null)://(null)(null)>; rel="alternate"; hreflang="en-au" , <(null)://(null)(null)>; rel="alternate"; hreflang="en-nz" , <(null)://(null)(null)>; rel="alternate"; hreflang="en-ie" , <(null)://(null)(null)>; rel="alternate"; hreflang="en" , <(null)://(null)(null)>; rel="alternate"; hreflang="x-default"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3488
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dh%2FeVqkPr9LcA8M%2BEgf3i5oSNFfzIQTg2i8AdjZfEls%2FErNSLlw9xif%2Be7GGbmi8HIqY1p78mrSsJkSVamfPvGd%2FtIGaowKTmwPOQD8uJIlIOJ3pzdHLp5tU2lKZDTw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8799d611c9d0b4fd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.bestbid.club/includes/templates/zz/css/list.css?v=2.1

188.114.96.1

200 OK

5.0 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/css/list.css?v=2.1
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
ASCII text, with very long lines (5322), with no line terminators
Size
5.0 kB (5011 bytes)
Hash
b4789db85e5ebb57e049c9687324323d
33747d25d7d24fc087282356e9fccc195f1544b5
105418ef08e71279c9d7c29984bbea3e63e42e62a03b295f0df6a7d4f5297091

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/css/list.css?v=2.1 HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: text/css
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Thu, 21 Mar 2024 05:27:45 GMT
cache-control: max-age=14400
expires: Thu, 25 Apr 2024 00:22:37 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DvKTQH2DT9PkxnZh43fWkZfKRUgItgSOpfzXNrODPgilwCpGUzUGhcv%2BKeHC3hK3QPVOLu8%2FohTkAD2Wt2eqMRTuGdJ9M5J%2Fs0BHCOqLITkVSg8MmbPQdk%2BgFp2MqhovimO5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61d79d7b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/css/common.min.css?v=1.0

188.114.96.1

200 OK

10 kB

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/css/common.min.css?v=1.0
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
ASCII text, with very long lines (10525), with no line terminators
Size
10 kB (10525 bytes)
Hash
34755041a5e7323e10b5b505c1e5c6d2
6be0d82f5f8b5164a90c9cb91feeba9750380198
94dbe6c83f1440dbec86d4dc8f7e4a9b69b1b7cce9f6461bee13004d0d2e5b5e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/css/common.min.css?v=1.0 HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: text/css
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Thu, 21 Mar 2024 05:27:45 GMT
cache-control: max-age=14400
expires: Thu, 25 Apr 2024 00:22:37 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oNFzGGHMpwjhREeQjzxw4Qrz7YL5Ir6zeXOw4SitSRs1RB9TnsnKxVQdErvtL7cpaTVAz2aQoTqCZnihjn9F8rHdKo1S3M63zZw4R5X3JIAgJIbkZsbZefx38NTo%2FKgMPAK%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61d69d1b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.bestbid.club/includes/templates/zz/css/stylesheet_coupon.css

188.114.96.1

200 OK

697 B

URL GET HTTP/3
www.bestbid.club/includes/templates/zz/css/stylesheet_coupon.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.bestbid.club/
Certificate
IssuerGoogle Trust Services LLC
Subjectbestbid.club
FingerprintAA:65:8E:E6:DD:DF:CF:DD:F2:E2:02:13:AE:F8:A5:7A:EB:28:59:CF
ValidityTue, 19 Mar 2024 11:51:59 GMT - Mon, 17 Jun 2024 11:51:58 GMT

File type
ASCII text, with very long lines (756), with no line terminators
Size
697 B (697 bytes)
Hash
d513eae93544bc782ccaa1b723c52300
9f8c6032ff58dbe4da3351cf15e6a6dbfb7d1643
2f4f4a93d4a54806cceebd1507e6b3c2926f7aee6abe51c0ce5bffb548fc0cf7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/zz/css/stylesheet_coupon.css HTTP/1.1
Host: www.bestbid.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.bestbid.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 23:22:37 GMT
content-type: text/css
vary: cf-ipcountry,cf-connecting-ip,user-agent,Accept-Encoding
last-modified: Thu, 21 Mar 2024 05:27:45 GMT
cache-control: max-age=14400
expires: Thu, 25 Apr 2024 00:22:37 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ykWUjmO7JYIJoddpDzu7t%2B80XJvATzL2uxtegBBmS%2Bnjilvg0Qhozvq%2B%2Fafh7XmZZxdhsZ521k1WwSZsZiab1IdYPFIt4UTSFqBspPqIwCx2%2BoYpH5i3lyxKgR4ct7PJZEaR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8799d61d79d9b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML