| | 27.0.235.103 | 200 OK | 3.2 kB |
URL User Request GET HTTP/2IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1445) Hash1111c66d116816d6c9a6f4485626a8b6 0059c6b3235d499e6c3cf98cb9f450d918b1d806 810314accc5ba29041435e7d5feee0ca409895d68db1afd8e6a8460150b2628b
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET / HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: text/html
date: Tue, 07 May 2024 17:37:00 GMT
server: openresty
vary: Accept-Encoding
x-cache: BYPASS
content-length: 3169
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-KVN8M54JBZ | 142.250.74.168 | 200 OK | 104 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-KVN8M54JBZ IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (9338) Size104 kB (104419 bytes) Hash61361eeb72df68dd9ce0101a7f744eb8 62a4464d0e4cf418e525641d3fea96818fd15c10 7579a579393e78a05d6fc51550c775ebb81d8c9702f631417a62aff45f792b4d
GET /gtag/js?id=G-KVN8M54JBZ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 17:37:02 GMT
expires: Tue, 07 May 2024 17:37:02 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 104419
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 6bet938.com/css/chunk-common.4fa19f9b.css | 27.0.235.103 | 200 OK | 2.2 kB |
URL GET HTTP/26bet938.com/css/chunk-common.4fa19f9b.css IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typeASCII text, with very long lines (9557), with no line terminators Hash995b0aa100127e9fbd9a7e8e9483edbe b88eda0d3acc4128a8993fd080214d703afe3766 7e87100cc4a78ba0950555507a80d77c54b663dceca7542fdaa734512d90cfa2
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /css/chunk-common.4fa19f9b.css HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: text/css
date: Tue, 07 May 2024 17:37:03 GMT
etag: W/"6635e9a6-2555"
last-modified: Sat, 04 May 2024 07:54:14 GMT
server: openresty
vary: Accept-Encoding
x-cache: UPDATING
content-length: 2208
X-Firefox-Spdy: h2
|
|
| 6bet938.com/js/88495.59166de1.js | 27.0.235.103 | 200 OK | 3.4 kB |
URL GET HTTP/26bet938.com/js/88495.59166de1.js IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typeJavaScript source, ASCII text, with very long lines (10181) Hash411411116054a70076fc13c17ed4106f 47914cbe8df6fa96044428d756be975db9dbf8b7 4201e7ef0e008277d04b557ee22d26529d309eb05236d60b3fccc0020961ef0d
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /js/88495.59166de1.js HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
date: Tue, 07 May 2024 17:37:03 GMT
etag: W/"6635e9a6-2913"
last-modified: Sat, 04 May 2024 07:54:14 GMT
server: openresty
vary: Accept-Encoding
x-cache: UPDATING
content-length: 3369
X-Firefox-Spdy: h2
|
|
| 6bet938.com/css/70264.21c900e0.css | 27.0.235.103 | 200 OK | 36 kB |
URL GET HTTP/26bet938.com/css/70264.21c900e0.css IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typegzip compressed data, max compression, from Unix Hash468c6010e795fa1193d1fb538aa4e521 c2c7c0aad82ac94035b1567d74adfcadfadbc1bc bc19fb205883cbdb4cb2731c87279167c967e53fa3b5bb5bae60c98a869152dd
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /css/70264.21c900e0.css HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: text/css
date: Tue, 07 May 2024 17:37:03 GMT
etag: W/"6635e9a6-8ad5"
last-modified: Sat, 04 May 2024 07:54:14 GMT
server: openresty
vary: Accept-Encoding
x-cache: UPDATING
X-Firefox-Spdy: h2
|
|
| 6bet938.com/css/home.30c8378d.css | 27.0.235.103 | 200 OK | 29 kB |
URL GET HTTP/26bet938.com/css/home.30c8378d.css IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typegzip compressed data, max compression, from Unix Hash42e8c8addd0178b7c3d93e9ce2a41554 9da5633e9029069d1fd07ed7d43a7bc05d62b9cb 62d0db289e8943eaf5ae060547f81ffff83dd782b38e34fa4ee350e8cb9a1e12
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /css/home.30c8378d.css HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: text/css
date: Tue, 07 May 2024 17:37:03 GMT
etag: W/"6635e9a5-4260"
last-modified: Sat, 04 May 2024 07:54:13 GMT
server: openresty
vary: Accept-Encoding
x-cache: UPDATING
X-Firefox-Spdy: h2
|
|
| 6bet938.com/api/tenant/float/list | 27.0.235.103 | 200 OK | 685 B |
URL GET HTTP/26bet938.com/api/tenant/float/list IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
Hash279d2209dce72f1dfc319f69c81378e8 6e113615f16cb879c477a6236290465efb289c69 387932886075cb6d64d19c7d6a0d7fec622a4f1544f49f8094473e4683dbb660
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /api/tenant/float/list HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
Xign: yspc9LbZoDVIuFz6gPmWhfjTs1hhZ27p1VcbLavzKbqmTqsTNzpyRNjaujMjyc2CcPMGu4EcI1fEJo89LrY5UjqXllEUrlPO7jWToZTaaGgmjg5bzdAROQ8mwR8Q1BIY38aVxqafekqRKlcqT2zclqf9oGK6/odvgbLNc0OL3PM=
timestamp: 1715103424028
sign: h5cq1i3h1j2h547n
version: 5.3.0.0
client_type: web
device_id: xzThpiYPdpT6cXBYGK85aTrHDJsac8pK
lang: zh-CN
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Tue, 07 May 2024 17:37:04 GMT
expires: 0
pragma: no-cache
server: openresty
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: BYPASS
x-content-type-options: nosniff
x-protected-by: OpenRASP
x-request-id: 5814f3b294cb4ca2b4baa77190400920
x-xss-protection: 1; mode=block
content-length: 685
X-Firefox-Spdy: h2
|
|
| 6bet938.com/api/config/system | 27.0.235.103 | 200 OK | 1.0 kB |
URL GET HTTP/26bet938.com/api/config/system IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
Hashcfd319e1a52913c62626d351d60cc3db a9aa8d5fba242df7144287858b3b5f8fec45f310 c51a062124e235c0b46be65b5251fae5269d414028c2370f6202d9551b6128e9
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /api/config/system HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
Xign: dOTVA+Td4vp3W56zM8kymfASwBwAAqKRk7ewWrSr5ForRYSrCHUXalF0Gc52I5RYcPKLyb0U5Bm17uYuv366sB2Gs57Ne/3GtNPpgkNR2ZY7mFipPFgkR+RexaVBZHUsEF/oB7gmZQ8zvZjrVFPUkR8oG4QYKCgyvrPM3+7Tqos=
timestamp: 1715103424027
sign: s7a406c1hj3u184s
version: 5.3.0.0
client_type: web
device_id: ssGs6XrEj7BnT5cK6nfwCJ5SAyzmSdRT
lang: zh-CN
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Tue, 07 May 2024 17:37:04 GMT
expires: 0
pragma: no-cache
server: openresty
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: BYPASS
x-content-type-options: nosniff
x-protected-by: OpenRASP
x-request-id: abc37f9df2b740198ee0e4823605338b
x-xss-protection: 1; mode=block
content-length: 1031
X-Firefox-Spdy: h2
|
|
| 6bet938.com/api/activity/list?type=0&isPopup=1&username= | 27.0.235.103 | 200 OK | 80 B |
URL GET HTTP/26bet938.com/api/activity/list?type=0&isPopup=1&username= IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
Hashbcd62ace8bee92d3efa75b2933265bc5 ce02ddc64e6e448ce3f53c63966d6eded4d0ca7e c02718684fae008119f05350491f52ae41ef8d6dfee47e713d913858b3477ae1
GET /api/activity/list?type=0&isPopup=1&username= HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
Xign: SGS0N5thdK/Lunp5+/EQ6OOeZ87CtRREt2I+KKOGiQYRHu64HHnsvJ3AR0K3qRNr/pL2A/3SeS2sX85PMUCQ2cfSyohP5ZzPxUXcUnXdE422vGdZ31no8yGXTxl/enWcOxDUJNLhqKJHqt7kEnGJJgZ6cKZ0mg4YHB2axGYH2AU=
timestamp: 1715103424028
sign: 53g3u794or1t6k10
version: 5.3.0.0
client_type: web
device_id: PNCBswNJF6kaEn5eXGS3DRWcytMfmWwA
lang: zh-CN
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Tue, 07 May 2024 17:37:04 GMT
expires: 0
pragma: no-cache
server: openresty
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: BYPASS
x-content-type-options: nosniff
x-protected-by: OpenRASP
x-request-id: 80ffc1283f844d78b0f02a0e1853fb5d
x-xss-protection: 1; mode=block
content-length: 80
X-Firefox-Spdy: h2
|
|
| 6bet938.com/api/user/popMessage/bulletinList?position=5 | 27.0.235.103 | 200 OK | 1.1 kB |
URL GET HTTP/26bet938.com/api/user/popMessage/bulletinList?position=5 IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
Hash13db3be5553f7aaab303edd7ca7b8378 710490dff2ed3d0f99846f97422a3fc961c31528 5a7fa898d394ba527d43b889b564b3d3e09e1616bba8e6b490833db297beaec6
GET /api/user/popMessage/bulletinList?position=5 HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
Xign: 0BUyi4RgZsx4tJ9ZFOwiQ2IE4+0PfrKtbVLJRD9MJ6NxLeQe7ooHPE9j+GBNPbdjMP15VPsY/8MmZQRpvi2pNy1naXSo3M8pZYF8xKHdXrpVxlpOFLkRsDOPg5cvcjxNMZffFO2k8rZKEy8FAeZCDGuMbTUrSDFgxsERKRHbz7A=
timestamp: 1715103424028
sign: 7vv7v2n191m2e39r
version: 5.3.0.0
client_type: web
device_id: 6her2Qjm3Zx6YKes7xxcJPSiskrcWBkh
lang: zh-CN
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Tue, 07 May 2024 17:37:04 GMT
expires: 0
pragma: no-cache
server: openresty
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: BYPASS
x-content-type-options: nosniff
x-protected-by: OpenRASP
x-request-id: 5dfd24e6fd214456a5e65fe12342e9ef
x-xss-protection: 1; mode=block
content-length: 1078
X-Firefox-Spdy: h2
|
|
| 6bet938.com/api/banner/list | 27.0.235.103 | 200 OK | 601 B |
URL GET HTTP/26bet938.com/api/banner/list IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
Hash63a8d7ddb1dc14d010541fa3da768bb1 28a9365290ff62ec924eca085f83d06739e3a07b ea78e1f2158f580f7169bb792eb2ef7b24ee999230b0109ea905e9562f1d0d84
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /api/banner/list HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
Xign: FwK07GO919nAnLrWvNF5KZP5Yoz4zvMtBxSMjI9SdIeaKEtOA54nEhKDk7LB7HZyAmDS3TsTBpk8X6v6w87X1MtD5J7YKd5my1IJn767HCv+2KseGfl6LRiml1COTkgfaDWntooxVAVNzYD8BV2nAELr9iRu4KqzALaH8A6kIpI=
timestamp: 1715103424028
sign: 371i5j185q53v251
version: 5.3.0.0
client_type: web
device_id: Z5GGQmWBcQn5SbpdhARwKEnkjsbnQ2pD
lang: zh-CN
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Tue, 07 May 2024 17:37:04 GMT
expires: 0
pragma: no-cache
server: openresty
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: BYPASS
x-content-type-options: nosniff
x-protected-by: OpenRASP
x-request-id: 29811a5d5ead411b8c947417f1f3b257
x-xss-protection: 1; mode=block
content-length: 601
X-Firefox-Spdy: h2
|
|
| 6bet938.com/api/user/popMessage/bulletinList?position=5 | 27.0.235.103 | 200 OK | 1.1 kB |
URL GET HTTP/26bet938.com/api/user/popMessage/bulletinList?position=5 IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
Hash13db3be5553f7aaab303edd7ca7b8378 710490dff2ed3d0f99846f97422a3fc961c31528 5a7fa898d394ba527d43b889b564b3d3e09e1616bba8e6b490833db297beaec6
GET /api/user/popMessage/bulletinList?position=5 HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
Xign: e8ZyDaiFEG2oOaWi8CnU/57p32L/C9CKVMxxSYT6kNBMHuqje9ajKGMJCo7UKQ6X5Vec07ie78o9LmjE1VYm909N8dbLPkGytUyKvPjR8tPgZ8Srd420AS4djlin0fOlvif0vwhoID+88k5jrpxiZ4poof/zutDl1Z5UFxuZkdo=
timestamp: 1715103424028
sign: 6o79505a38457k7r
version: 5.3.0.0
client_type: web
device_id: J47tbGMyGXdYJh4Q2aR46AcQCYnkbmPw
lang: zh-CN
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Tue, 07 May 2024 17:37:04 GMT
expires: 0
pragma: no-cache
server: openresty
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: BYPASS
x-content-type-options: nosniff
x-protected-by: OpenRASP
x-request-id: ca5829fb0b6746d9a19164be8aa8c8ad
x-xss-protection: 1; mode=block
content-length: 1078
X-Firefox-Spdy: h2
|
|
| 6bet938.com/kc180-1/noData/cms_noimg.png?1714809041817 | 27.0.235.103 | 200 OK | 3.9 kB |
URL GET HTTP/26bet938.com/kc180-1/noData/cms_noimg.png?1714809041817 IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typePNG image data, 1920 x 700, 8-bit/color RGBA, non-interlaced Hash85e60fd8767b18839ffb552a5d543f8a 341cfd68a5b39cb246af6ade1e3171c857d2df5a 4b7ad68306ffac25830d1016ba86154890deef8bd77a03257b767b37de1c8338
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /kc180-1/noData/cms_noimg.png?1714809041817 HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Tue, 07 May 2024 15:54:12 GMT
etag: "1715097252"
last-modified: Tue, 07 May 2024 15:54:12 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
content-length: 3910
X-Firefox-Spdy: h2
|
|
| 6bet938.com/kc180-1/noData/cms_game_noimg.png?1714809041817 | 27.0.235.103 | 200 OK | 3.6 kB |
URL GET HTTP/26bet938.com/kc180-1/noData/cms_game_noimg.png?1714809041817 IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typePNG image data, 750 x 590, 8-bit/color RGBA, non-interlaced Hash84170735ffce6fe0e70a3136a36b8ef6 5b2dcf1d5d92d786f1e58dc65de3dab1f35d7278 581435520cde2b0026b4e7244a85b6eef0be740cb18c43690c420d1ec326d0b4
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /kc180-1/noData/cms_game_noimg.png?1714809041817 HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Tue, 07 May 2024 15:54:12 GMT
etag: "1715097252"
last-modified: Tue, 07 May 2024 15:54:12 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
content-length: 3576
X-Firefox-Spdy: h2
|
|
| 6bet938.com/api/tenant/domain/list | 27.0.235.103 | 200 OK | 1.3 kB |
URL GET HTTP/26bet938.com/api/tenant/domain/list IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
Hashadde44660a1694a2e72e113d1b62cf3b afc6972a1477b312c1ed151d0d30eb39318d9f72 d740dc502fe4472f8855ff585e450d50cb2910658dcf3e8257e43c87a276b73a
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /api/tenant/domain/list HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
Xign: f9uIyn9GNU1Xs/AenxsJE+HctRvUOM8k2m3/jJUZzcCZJjOc6UooslBWAwVdQOpG8zR2KkVVUXH5RoXHZ+jYXrlFzqVsqSfKe+LEpUK6nWYHqaoL7Z8HzlKkKMCea51k9WUMLfo8lb6VtVhCNKzvigHQd2/D2gYPnjuz1YNpia4=
timestamp: 1715103424847
sign: 3i4a5p1v3b5v1c2v
version: 5.3.0.0
client_type: web
device_id: Z5GGQmWBcQn5SbpdhARwKEnkjsbnQ2pD
lang: zh-CN
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.1.1715103424.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Tue, 07 May 2024 17:37:05 GMT
expires: 0
pragma: no-cache
server: openresty
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: BYPASS
x-content-type-options: nosniff
x-protected-by: OpenRASP
x-request-id: 7396941900e84485a1bd005771c67a26
x-xss-protection: 1; mode=block
content-length: 1302
X-Firefox-Spdy: h2
|
|
| 6bet938.com/js/cms-sports.df105c59.js | 27.0.235.103 | 200 OK | 900 kB |
URL GET HTTP/26bet938.com/js/cms-sports.df105c59.js IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typegzip compressed data, max compression, from Unix Size900 kB (900464 bytes) Hasha03d2e1f559b8ad947a2472e79e4d2f9 338ca90c075996466db552ff7389b324861e88b6 c17ed4cfda8c1f7927cb946e620f3b450140e188109cbd8d2e501542cc6c7f83
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /js/cms-sports.df105c59.js HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
date: Tue, 07 May 2024 17:37:00 GMT
etag: W/"6635e9a6-2d90d4"
last-modified: Sat, 04 May 2024 07:54:14 GMT
server: openresty
vary: Accept-Encoding
x-cache: UPDATING
X-Firefox-Spdy: h2
|
|
| 6bet938.com/api/tenant/domain/list | 27.0.235.103 | 200 OK | 1.3 kB |
URL GET HTTP/26bet938.com/api/tenant/domain/list IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
Hashadde44660a1694a2e72e113d1b62cf3b afc6972a1477b312c1ed151d0d30eb39318d9f72 d740dc502fe4472f8855ff585e450d50cb2910658dcf3e8257e43c87a276b73a
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /api/tenant/domain/list HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
Xign: CJs0gTnXT+IO/8eNatFucZfg/MAZg+j5Zt9c37WMDaBtS6FWJxoeluWNU3YVM7mrqYMoHO9nlYYO5pHEIr1E8qZJQ2s0iESA49s0HGbF7XK4xG8j59kdgrXM4e4ichlFnIMlTjs+TgBQ2Ogwxm+P7kvpLZuO8TzXJNFKanicmq8=
timestamp: 1715103424924
sign: 6n3d5s50144q4j5u
version: 5.3.0.0
client_type: web
device_id: Z5GGQmWBcQn5SbpdhARwKEnkjsbnQ2pD
lang: zh-CN
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.1.1715103424.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Tue, 07 May 2024 17:37:05 GMT
expires: 0
pragma: no-cache
server: openresty
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: BYPASS
x-content-type-options: nosniff
x-protected-by: OpenRASP
x-request-id: eee12dd8bf30449ab9e1f239cf2a9d74
x-xss-protection: 1; mode=block
content-length: 1302
X-Firefox-Spdy: h2
|
|
| 6bet938.com/img/game02.4289a415.png | 27.0.235.103 | 200 OK | 25 kB |
URL GET HTTP/26bet938.com/img/game02.4289a415.png IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typegzip compressed data, max compression, from Unix Hash369f8fdb051fd0f540aaf4d205ce0a4f 86cd1ed2debdbc707509a5c9355bd3360844acf3 ef012d21cdd6ac9aede436a46f610dbb7ed720c12f63de53c8361dce6e82a872
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/game02.4289a415.png HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Tue, 07 May 2024 15:54:10 GMT
etag: "1715097251"
last-modified: Tue, 07 May 2024 15:54:11 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| xss-n1.q11heb456yjr435trtyjg234f.com/gp180/c8c033bb-2199-4c32-9c88-4bbcbc9fcd96.gif | 3.164.240.112 | | 92 kB |
URL GET xss-n1.q11heb456yjr435trtyjg234f.com/gp180/c8c033bb-2199-4c32-9c88-4bbcbc9fcd96.gif IP3.164.240.112:0
CertificateIssuerAmazon Subjectxss-n1.q11heb456yjr435trtyjg234f.com FingerprintED:36:81:2A:4A:79:2D:7B:EE:BA:D9:78:AB:73:41:9D:59:CC:30:62 ValidityMon, 01 Apr 2024 00:00:00 GMT - Wed, 30 Apr 2025 23:59:59 GMT
File typegzip compressed data, from Unix Hash1b3cdf732349d4079c5be56843dac6ce 2c8d382fbe2f1f3ec7bd1aeb715ebec0360a66d7 3bcb10bad3dd4939a345d8b3c15262d34c1b94a1ea84d01baad6f93f02903d10
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /gp180/c8c033bb-2199-4c32-9c88-4bbcbc9fcd96.gif HTTP/1.1
Host: xss-n1.q11heb456yjr435trtyjg234f.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
server: nginx
date: Tue, 07 May 2024 17:37:05 GMT
last-modified: Thu, 24 Aug 2023 05:08:02 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Tue, 07 May 2024 17:37:05 GMT
cache-control: max-age=0
content-encoding: gzip
etag: W/"c2779bd16fdaf0596783964aff7999c8"
x-cache: Miss from cloudfront
via: 1.1 29094763caaadfcf0f94a0905a4ca74c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: zFdvpgmPPCC7FbOAYiAdUKYAQlS4VrJv66ab_m1dfTSymH0gNxuZGw==
vary: Accept-Encoding,Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| xss-1.oigngns6zvx3.com/gp180/119e7061-da4f-4271-84cc-6386c342e54b.jpg | 20.255.26.14 | | 164 kB |
URL GET xss-1.oigngns6zvx3.com/gp180/119e7061-da4f-4271-84cc-6386c342e54b.jpg IP20.255.26.14:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
CertificateIssuerLet's Encrypt Subjectxss-1.oigngns6zvx3.com Fingerprint41:4E:B1:B4:64:5C:97:17:CF:8D:6A:87:4F:78:B8:40:79:6B:45:92 ValidityMon, 15 Apr 2024 06:17:05 GMT - Sun, 14 Jul 2024 06:17:04 GMT
File typegzip compressed data, from Unix Size164 kB (164014 bytes) Hashedffba752d60fcac597f68270dab9130 8c775b1e8a2108ceaf7236ceea8689aaa390009d 99389660c0fda5cfec16082e893359c7d61c7230461b941b79edbbd620a96a99
GET /gp180/119e7061-da4f-4271-84cc-6386c342e54b.jpg HTTP/1.1
Host: xss-1.oigngns6zvx3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 17:37:05 GMT
content-type: image/png
etag: W/"b9dc0a0bde5fbdd2520aa2ff83b52264"
last-modified: Thu, 24 Aug 2023 05:00:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding, Origin, Accept-Encoding
x-amz-id-2: d9b602680ee2ed5df806be630bacf98432e6305614eb4f8377eb5d27a8dc0b35
x-amz-request-id: 17CD39B1F606FECC
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
gp-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| xss-1.oigngns6zvx3.com/gp180/fe5960b2-c6f8-4333-a9c7-362c953f873c.jpg | 20.255.26.14 | | 854 kB |
URL GET xss-1.oigngns6zvx3.com/gp180/fe5960b2-c6f8-4333-a9c7-362c953f873c.jpg IP20.255.26.14:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
CertificateIssuerLet's Encrypt Subjectxss-1.oigngns6zvx3.com Fingerprint41:4E:B1:B4:64:5C:97:17:CF:8D:6A:87:4F:78:B8:40:79:6B:45:92 ValidityMon, 15 Apr 2024 06:17:05 GMT - Sun, 14 Jul 2024 06:17:04 GMT
File typegzip compressed data, from Unix Size854 kB (854050 bytes) Hash6890dcfc3bac47884035a9afbae0c4db a702db7da3347d5de04a542d12fa0d3c432423ce 3a8f8518a83919298deb0d65d8bc43e779ff536edf6d2171b37af6f6c48b9c25
GET /gp180/fe5960b2-c6f8-4333-a9c7-362c953f873c.jpg HTTP/1.1
Host: xss-1.oigngns6zvx3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 17:37:05 GMT
content-type: image/png
etag: W/"83507112e9bd87e6421a48b878fa0f2d"
last-modified: Thu, 24 Aug 2023 05:00:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding, Origin, Accept-Encoding
x-amz-id-2: d9b602680ee2ed5df806be630bacf98432e6305614eb4f8377eb5d27a8dc0b35
x-amz-request-id: 17CD39B1F98921AF
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
gp-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| 6bet938.com/img/game03.212a12ef.png | 27.0.235.103 | 200 OK | 12 kB |
URL GET HTTP/26bet938.com/img/game03.212a12ef.png IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 270x81, components 3 Hashed93aae29ca896964a86103b00f80f99 1880c553dc77b4effbb5d28ad72f93de1e550ec5 496f6b90ab41e0578054f60089032a0483247165dce969a83d70f4842496608a
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/game03.212a12ef.png HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Tue, 07 May 2024 15:54:10 GMT
etag: "1715097250"
last-modified: Tue, 07 May 2024 15:54:10 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| xss-1.oigngns6zvx3.com/gp180/59d2a54d-0d2a-425c-b2f2-a9fd8ff9e369.jpg | 0.0.0.0 | | 0 B |
URL GET xss-1.oigngns6zvx3.com/gp180/59d2a54d-0d2a-425c-b2f2-a9fd8ff9e369.jpg IP0.0.0.0:0
CertificateIssuerLet's Encrypt Subjectxss-1.oigngns6zvx3.com Fingerprint41:4E:B1:B4:64:5C:97:17:CF:8D:6A:87:4F:78:B8:40:79:6B:45:92 ValidityMon, 15 Apr 2024 06:17:05 GMT - Sun, 14 Jul 2024 06:17:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gp180/59d2a54d-0d2a-425c-b2f2-a9fd8ff9e369.jpg HTTP/1.1
Host: xss-1.oigngns6zvx3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 17:37:05 GMT
content-type: image/png
etag: W/"06287f2f8d2d97116012879c632978a7"
last-modified: Thu, 24 Aug 2023 05:00:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding, Origin, Accept-Encoding
x-amz-id-2: 891cc6e2d9f1c35b2c12c8a4e476b4a5ca09deccda9e25248c850b9912710f3d
x-amz-request-id: 17CD39B1F60C1F92
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
gp-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| 6bet938.com/img/rdao-r-3.3d28973d.png | 27.0.235.103 | 200 OK | 12 kB |
URL GET HTTP/26bet938.com/img/rdao-r-3.3d28973d.png IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typePNG image data, 147 x 57, 8-bit/color RGB, non-interlaced Hash98567b2a6024c4e690574cc2f4d8a91f c75986b57ba3fd98791a1cee632184a2c5a99d0b 2eaddbbc263065a1ab9a7f46309cb8a2f39875a06aef11da4409203216c83834
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/rdao-r-3.3d28973d.png HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Tue, 07 May 2024 15:54:10 GMT
etag: "1715097251"
last-modified: Tue, 07 May 2024 15:54:11 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 6bet938.com/img/rdao-l-3.5d2e2162.png | 27.0.235.103 | 200 OK | 13 kB |
URL GET HTTP/26bet938.com/img/rdao-l-3.5d2e2162.png IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typePNG image data, 147 x 57, 8-bit/color RGB, non-interlaced Hash2d59ff3b03c35665687729fb98ed5478 c4c4b17fbfb5849c5c95f063b87b6bf322a1b5ea 32f2a358d3f2a798ddf394ac652c3998349c366dd467df5234071c0548398770
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/rdao-l-3.5d2e2162.png HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Tue, 07 May 2024 15:54:10 GMT
etag: "1715097251"
last-modified: Tue, 07 May 2024 15:54:11 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 6bet938.com/img/rdao-l-4.d79bc746.png | 27.0.235.103 | 200 OK | 14 kB |
URL GET HTTP/26bet938.com/img/rdao-l-4.d79bc746.png IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typePNG image data, 147 x 70, 8-bit/color RGB, non-interlaced Hash408a47dbec9333221ee9937cf6513a0c b87f2425f70c7d0f8af2c41a0d3db5b4ef96a146 a359740e674cfee1c6697c6cf4b6e1cc86de89d856d5601652aa5ce7c4b48203
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/rdao-l-4.d79bc746.png HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Tue, 07 May 2024 15:54:10 GMT
etag: "1715097251"
last-modified: Tue, 07 May 2024 15:54:11 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 6bet938.com/img/float_left_contact.5e628ff1.png | 27.0.235.103 | 200 OK | 14 kB |
URL GET HTTP/26bet938.com/img/float_left_contact.5e628ff1.png IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typePNG image data, 50 x 247, 8-bit/color RGBA, non-interlaced Hasha9bc5bbecc55ef7980fc3cfd6c338657 7bddde2e742e74809dd2462c9e12f5748f4f22e6 968753c19b6dcbfd000fdfc85ab7a54aea63164a51f993583683e7eb6ec7a82b
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/float_left_contact.5e628ff1.png HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Tue, 07 May 2024 15:54:10 GMT
etag: "1715097251"
last-modified: Tue, 07 May 2024 15:54:11 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 6bet938.com/img/rdao-r-2.b22a9f38.png | 27.0.235.103 | 200 OK | 12 kB |
URL GET HTTP/26bet938.com/img/rdao-r-2.b22a9f38.png IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typePNG image data, 147 x 57, 8-bit/color RGB, non-interlaced Hashb5c72992b0327b36f67ba1f1ddcc9709 4260a70304e373ad0c9dc8945459d132b5ebe38d 90fd92cbe288eeef841ebbb0760c2b041aee0196b4b9a1ad4d47cd3cb344a760
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/rdao-r-2.b22a9f38.png HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Tue, 07 May 2024 15:54:10 GMT
etag: "1715097251"
last-modified: Tue, 07 May 2024 15:54:11 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 6bet938.com/img/rdao-l-1.d6e3a425.png | 27.0.235.103 | 200 OK | 9.4 kB |
URL GET HTTP/26bet938.com/img/rdao-l-1.d6e3a425.png IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typePNG image data, 147 x 51, 8-bit/color RGB, non-interlaced Hashf3427cdef3e73f6a410bb3caaa15e5bf 87aee39268e60a3f9bef90e3629213e00c4ca3b1 9c8946d53d9bd3e9057491cc4e9ec38d1e0c06a15a8d350f9ee15738afc45b19
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/rdao-l-1.d6e3a425.png HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Tue, 07 May 2024 15:54:10 GMT
etag: "1715097251"
last-modified: Tue, 07 May 2024 15:54:11 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 6bet938.com/img/rdao-r-1.c2e7696b.png | 27.0.235.103 | 200 OK | 12 kB |
URL GET HTTP/26bet938.com/img/rdao-r-1.c2e7696b.png IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typePNG image data, 147 x 57, 8-bit/color RGB, non-interlaced Hashe2385d2a0d7c043e90ec1e1e3bf6a1e4 1be4ba4215520c1e884c27991984e185e2848283 c578480a5ddbede9c417bd3e3a85d752b13d61e4e8127e4d1868b708807b562e
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/rdao-r-1.c2e7696b.png HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Tue, 07 May 2024 15:54:10 GMT
etag: "1715097250"
last-modified: Tue, 07 May 2024 15:54:10 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 6bet938.com/css/chunk-vendors.3988e803.css | 27.0.235.103 | 200 OK | 277 kB |
URL GET HTTP/26bet938.com/css/chunk-vendors.3988e803.css IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size277 kB (276875 bytes) Hashea6b99b1959c49331f60830e6afd1948 3bd835f074fedfeb9b48ac9d5484e06f4a55a088 e93ed24c95fa7fd3896c94fde44257b2cb32eb67736316f4e3d77283de9dd342
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /css/chunk-vendors.3988e803.css HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: text/css
date: Tue, 07 May 2024 17:37:00 GMT
etag: W/"6635e9a6-4398b"
last-modified: Sat, 04 May 2024 07:54:14 GMT
server: openresty
vary: Accept-Encoding
x-cache: UPDATING
X-Firefox-Spdy: h2
|
|
| 6bet938.com/img/float_right_contact.d1892e60.png | 27.0.235.103 | 200 OK | 12 kB |
URL GET HTTP/26bet938.com/img/float_right_contact.d1892e60.png IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typePNG image data, 50 x 247, 8-bit/color RGBA, non-interlaced Hashd19d26603d7bc87f4ba30563933485fa 0c7b22b5556d0c46b38beca88746d56328c130a3 cb9ffb5ca1354d23da49d7a184c1ad12cce4013edb703bbf7e7c719484e0d82d
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/float_right_contact.d1892e60.png HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Tue, 07 May 2024 15:54:10 GMT
etag: "1715097250"
last-modified: Tue, 07 May 2024 15:54:10 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 6bet938.com/img/rdao-l-2.f6c6cbaf.png | 27.0.235.103 | 200 OK | 13 kB |
URL GET HTTP/26bet938.com/img/rdao-l-2.f6c6cbaf.png IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typePNG image data, 147 x 57, 8-bit/color RGB, non-interlaced Hash75441b34f2b090890fb8271d36703609 9e2ecd7b86efc2ec2dd1a899344d7bb2e0a733f3 04fe7cf05d017591f89db653cd7b0326f1c4d81d578529c50791343d460169f1
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/rdao-l-2.f6c6cbaf.png HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Tue, 07 May 2024 15:54:10 GMT
etag: "1715097251"
last-modified: Tue, 07 May 2024 15:54:11 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 6bet938.com/js/chunk-vendors.45d23611.js | 27.0.235.103 | 200 OK | 1.3 MB |
URL GET HTTP/26bet938.com/js/chunk-vendors.45d23611.js IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
Size1.3 MB (1294883 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /js/chunk-vendors.45d23611.js HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
date: Tue, 07 May 2024 17:12:20 GMT
etag: "1715101941"
last-modified: Tue, 07 May 2024 17:12:21 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 6bet938.com/js/70264.380d417d.js | 27.0.235.103 | 200 OK | 266 kB |
URL GET HTTP/26bet938.com/js/70264.380d417d.js IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
Size266 kB (266336 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /js/70264.380d417d.js HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
date: Tue, 07 May 2024 17:37:03 GMT
etag: W/"6635e9a6-41060"
last-modified: Sat, 04 May 2024 07:54:14 GMT
server: openresty
vary: Accept-Encoding
x-cache: UPDATING
X-Firefox-Spdy: h2
|
|
| 6bet938.com/api/game/i18/gameBarNew?modeCode=nav_game_home | 27.0.235.103 | 200 OK | 34 kB |
URL GET HTTP/26bet938.com/api/game/i18/gameBarNew?modeCode=nav_game_home IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/game/i18/gameBarNew?modeCode=nav_game_home HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
Xign: vZkFa3A6roC/fibRXKiWkfM6UaRWafnHfT8jptboRxfLnkJ8xOwRM5kK/8FHHKkiHPrv3H1rlZ3QiYu9BF5EFEGYpxsnMwBWP6OeFW0dVTVXVwmyxw/rQ57C9WefTfQ+FpuyLKOoeiiTP+KK0glBFM4204U5MtCx9dWQuFfbOGQ=
timestamp: 1715103424028
sign: 19157r6q5f2f4q5h
version: 5.3.0.0
client_type: web
device_id: WkMBT6HQ3W2afMPteGXaiayKwSSJcczy
lang: zh-CN
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Tue, 07 May 2024 17:37:04 GMT
expires: 0
pragma: no-cache
server: openresty
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: BYPASS
x-content-type-options: nosniff
x-protected-by: OpenRASP
x-request-id: b64ee598b52447d19103eee1a5a844eb
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
|
|
| 6bet938.com/js/chunk-common.cd5c75c7.js | 27.0.235.103 | 200 OK | 67 kB |
URL GET HTTP/26bet938.com/js/chunk-common.cd5c75c7.js IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash84105330b1c5d7b38de9b17254ede531 2b1c3d2b1d0213989f18303da668cfcc27b99fe4 117569e6233102c3525ddf518f10b5c9abb6ca5968e894147a543c9857249a31
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /js/chunk-common.cd5c75c7.js HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
date: Tue, 07 May 2024 17:37:03 GMT
etag: W/"6635e9a6-1041b"
last-modified: Sat, 04 May 2024 07:54:14 GMT
server: openresty
vary: Accept-Encoding
x-cache: UPDATING
X-Firefox-Spdy: h2
|
|
| 6bet938.com/kc180-1/logo/logo.png.png?1714809041817 | 27.0.235.103 | 200 OK | 18 kB |
URL GET HTTP/26bet938.com/kc180-1/logo/logo.png.png?1714809041817 IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typePNG image data, 318 x 144, 8-bit/color RGBA, non-interlaced Hashe7cb5ee9f30672a53b2f7495d4e42630 a8203b11ccc37efcf91857b79be90ef8cbba66ba 288f049894425abb4adcf32e8a08fce507ce91f76a41ed8a80ea118712814bc3
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /kc180-1/logo/logo.png.png?1714809041817 HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Tue, 07 May 2024 17:37:04 GMT
etag: W/"64897706-47d2"
last-modified: Wed, 14 Jun 2023 08:15:02 GMT
server: openresty
vary: Accept-Encoding
x-cache: UPDATING
X-Firefox-Spdy: h2
|
|
| 6bet938.com/css/cms-sports.886a08e7.css | 27.0.235.103 | 200 OK | 142 kB |
URL GET HTTP/26bet938.com/css/cms-sports.886a08e7.css IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size142 kB (141715 bytes) Hash90e22eaad4bcd3ecf486cbe57906e166 4790ea9956640afaa50a269a07e978dbb43e8d99 5a3464b8d547faf4cc48178a39fe97aee666fc9b80e041af9e548759d1796563
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /css/cms-sports.886a08e7.css HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: text/css
date: Tue, 07 May 2024 17:37:00 GMT
etag: W/"6635e9a6-22993"
last-modified: Sat, 04 May 2024 07:54:14 GMT
server: openresty
vary: Accept-Encoding
x-cache: UPDATING
X-Firefox-Spdy: h2
|
|
| 6bet938.com/img/bg-products.e4ddcae4.png | 27.0.235.103 | 200 OK | 28 kB |
URL GET HTTP/26bet938.com/img/bg-products.e4ddcae4.png IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typePNG image data, 307 x 342, 8-bit/color RGBA, non-interlaced Hashe61aff410bd41a8256ee4de7d1e25db0 4debbd11000bd5796036eee1550f59d98ef1d3f0 7c3578ebab0ef95c73226e6e6089174946df4ac8cb33b01dc7a59501139bbd70
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/bg-products.e4ddcae4.png HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://6bet938.com/css/home.30c8378d.css
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Tue, 07 May 2024 17:37:04 GMT
etag: W/"6635e9a4-6bcb"
last-modified: Sat, 04 May 2024 07:54:12 GMT
server: openresty
vary: Accept-Encoding
x-cache: UPDATING
X-Firefox-Spdy: h2
|
|
| 6bet938.com/js/home.2fb1957c.js | 27.0.235.103 | 200 OK | 21 kB |
URL GET HTTP/26bet938.com/js/home.2fb1957c.js IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /js/home.2fb1957c.js HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
date: Tue, 07 May 2024 17:37:03 GMT
etag: W/"6635e9a5-505b"
last-modified: Sat, 04 May 2024 07:54:13 GMT
server: openresty
vary: Accept-Encoding
x-cache: UPDATING
X-Firefox-Spdy: h2
|
|
| 6bet938.com/img/rdaobg.93df9aaf.png | 27.0.235.103 | 200 OK | 23 kB |
URL GET HTTP/26bet938.com/img/rdaobg.93df9aaf.png IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typePNG image data, 175 x 369, 8-bit/color RGBA, interlaced Hashf27cb3aa610d5d073308ee4066a3a726 62504a85e14b7ec505899645378a9abf9f3f6954 0e2e11002eb67d3b6eec134eecfec90b787ed55a128b7e5adc159da22b2a252f
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/rdaobg.93df9aaf.png HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://6bet938.com/css/cms-sports.886a08e7.css
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Tue, 07 May 2024 17:37:04 GMT
etag: W/"6635e9a4-5a0c"
last-modified: Sat, 04 May 2024 07:54:12 GMT
server: openresty
vary: Accept-Encoding
x-cache: UPDATING
X-Firefox-Spdy: h2
|
|
| xss-1.oigngns6zvx3.com/gp180/b208fdd4-7d5f-4bb8-83b6-32535b5bcbb1.jpg | 0.0.0.0 | | 0 B |
URL GET xss-1.oigngns6zvx3.com/gp180/b208fdd4-7d5f-4bb8-83b6-32535b5bcbb1.jpg IP0.0.0.0:0
CertificateIssuerLet's Encrypt Subjectxss-1.oigngns6zvx3.com Fingerprint41:4E:B1:B4:64:5C:97:17:CF:8D:6A:87:4F:78:B8:40:79:6B:45:92 ValidityMon, 15 Apr 2024 06:17:05 GMT - Sun, 14 Jul 2024 06:17:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gp180/b208fdd4-7d5f-4bb8-83b6-32535b5bcbb1.jpg HTTP/1.1
Host: xss-1.oigngns6zvx3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 17:37:05 GMT
content-type: image/png
etag: W/"1c7ea0cc0762a6ed12058668fe6e0d44"
last-modified: Thu, 24 Aug 2023 05:00:32 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding, Origin, Accept-Encoding
x-amz-id-2: 891cc6e2d9f1c35b2c12c8a4e476b4a5ca09deccda9e25248c850b9912710f3d
x-amz-request-id: 17CD39B1F97858A3
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
gp-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| 6bet938.com/js/index.9e838354.js | 27.0.235.103 | 200 OK | 19 kB |
URL GET HTTP/26bet938.com/js/index.9e838354.js IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typeJavaScript source, ASCII text, with very long lines (19216), with no line terminators Hashe4d4bf9373bdbc41670de1c58812a4e6 ea7c6eb4cfc18ff42c52c02769196f0180b63713 c360c5938e3ade6d2b53e9f9e583f7eb52089c05824d41cc809e368636156499
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /js/index.9e838354.js HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
date: Tue, 07 May 2024 17:37:00 GMT
etag: W/"6635e9a5-4b10"
last-modified: Sat, 04 May 2024 07:54:13 GMT
server: openresty
vary: Accept-Encoding
x-cache: UPDATING
X-Firefox-Spdy: h2
|
|
| 6bet938.com/img/game01.85b388dd.png | 27.0.235.103 | 200 OK | 39 kB |
URL GET HTTP/26bet938.com/img/game01.85b388dd.png IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=81, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=271], baseline, precision 8, 270x81, components 3 Hashabf180088cd18dbb8b8a87e947aa4285 b511424b6a88d4faf129e526340ac617caaeb11a b136864ffef1cf1bca9a4106031e7f247fb62bb717db1a495c96c7d8b5b77da3
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/game01.85b388dd.png HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Tue, 07 May 2024 17:37:04 GMT
etag: W/"6635e9a5-9967"
last-modified: Sat, 04 May 2024 07:54:13 GMT
server: openresty
vary: Accept-Encoding
x-cache: UPDATING
X-Firefox-Spdy: h2
|
|
| xss-1.oigngns6zvx3.com/gp180/58bfd945-22ef-48cf-b0d0-63ffc678dc10.jpg | 0.0.0.0 | | 0 B |
URL GET xss-1.oigngns6zvx3.com/gp180/58bfd945-22ef-48cf-b0d0-63ffc678dc10.jpg IP0.0.0.0:0
CertificateIssuerLet's Encrypt Subjectxss-1.oigngns6zvx3.com Fingerprint41:4E:B1:B4:64:5C:97:17:CF:8D:6A:87:4F:78:B8:40:79:6B:45:92 ValidityMon, 15 Apr 2024 06:17:05 GMT - Sun, 14 Jul 2024 06:17:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gp180/58bfd945-22ef-48cf-b0d0-63ffc678dc10.jpg HTTP/1.1
Host: xss-1.oigngns6zvx3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 17:37:05 GMT
content-type: image/jpeg
etag: W/"e9799154ca8e949f42cbcc16a9d761f2"
last-modified: Thu, 04 Jan 2024 07:44:14 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding, Origin, Accept-Encoding
x-amz-id-2: d9b602680ee2ed5df806be630bacf98432e6305614eb4f8377eb5d27a8dc0b35
x-amz-request-id: 17CD33B5D77CCFD8
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
gp-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| 6bet938.com/config/initGeetest4.js | 27.0.235.103 | 200 OK | 15 kB |
URL GET HTTP/26bet938.com/config/initGeetest4.js IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /config/initGeetest4.js HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
date: Tue, 07 May 2024 17:12:20 GMT
etag: "1715101940"
last-modified: Tue, 07 May 2024 17:12:20 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 6bet938.com/theme.config.aff958cd.js | 27.0.235.103 | 200 OK | 71 kB |
URL GET HTTP/26bet938.com/theme.config.aff958cd.js IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /theme.config.aff958cd.js HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
date: Tue, 07 May 2024 17:37:00 GMT
etag: W/"6635e9a4-116e1"
last-modified: Sat, 04 May 2024 07:54:12 GMT
server: openresty
vary: Accept-Encoding
x-cache: UPDATING
X-Firefox-Spdy: h2
|
|
| 6bet938.com/assets/logo/favicon.ico | 27.0.235.103 | 200 OK | 24 kB |
URL GET HTTP/26bet938.com/assets/logo/favicon.ico IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typePNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced Hash915b77b545b2f06d111b1668dec5b9ec 5b64c1aa42b2a5c05a2b2a8e70bb2ea8f7938d9a b8ae08911816fb9ab6348d3ee9b27a7f772ec47e5b6c61440fba815b85779f94
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /assets/logo/favicon.ico HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-type: image/x-icon
date: Tue, 07 May 2024 17:37:03 GMT
etag: "65a63e1b-5c30"
last-modified: Tue, 16 Jan 2024 08:28:11 GMT
server: openresty
x-cache: UPDATING
content-length: 23600
X-Firefox-Spdy: h2
|
|
| 6bet938.com/img/rdao-r-4.5d6173a4.png | 27.0.235.103 | 200 OK | 15 kB |
URL GET HTTP/26bet938.com/img/rdao-r-4.5d6173a4.png IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typePNG image data, 147 x 53, 8-bit/color RGB, non-interlaced Hash113d3f2af50abaadad7df566c6c82d22 9ac7ddf5cd311e88709d29b3a69bf209c5ca1e51 a1a9bff1875165cafe5c41941486db0a6b12028b63e6738d1f79980cb2408caf
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/rdao-r-4.5d6173a4.png HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Tue, 07 May 2024 15:54:10 GMT
etag: "1715097251"
last-modified: Tue, 07 May 2024 15:54:11 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 6bet938.com/assets/logo/favicon.ico | 27.0.235.103 | 200 OK | 24 kB |
URL GET HTTP/26bet938.com/assets/logo/favicon.ico IP27.0.235.103:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject6bet938.com Fingerprint78:6E:81:6D:CD:B7:93:9E:6D:22:AA:16:E8:3C:AF:E8:8A:8A:4D:13 ValidityTue, 02 Apr 2024 13:08:01 GMT - Mon, 01 Jul 2024 13:08:00 GMT
File typePNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced Hash915b77b545b2f06d111b1668dec5b9ec 5b64c1aa42b2a5c05a2b2a8e70bb2ea8f7938d9a b8ae08911816fb9ab6348d3ee9b27a7f772ec47e5b6c61440fba815b85779f94
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /assets/logo/favicon.ico HTTP/1.1
Host: 6bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6bet938.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_KVN8M54JBZ=GS1.1.1715103422.1.0.1715103422.0.0.0; _ga=GA1.1.821913800.1715103423
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-type: image/x-icon
date: Tue, 07 May 2024 17:37:03 GMT
etag: "65a63e1b-5c30"
last-modified: Tue, 16 Jan 2024 08:28:11 GMT
server: openresty
x-cache: UPDATING
content-length: 23600
X-Firefox-Spdy: h2
|
|