| | 27.0.235.104 | 200 OK | 3.1 kB |
URL User Request GET HTTP/2IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1502) Hash16e72de3d76d07db0a9be1a31f006cad a5de926f33d06b64eb945d63d95a92dab47a2f7f 3b55121e0446269215911f3f3e9851984d805be41753d9d11148cba957aed92b
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET / HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: text/html
date: Sat, 27 Apr 2024 04:22:53 GMT
server: openresty
vary: Accept-Encoding
x-cache: BYPASS
content-length: 3112
X-Firefox-Spdy: h2
|
|
| 14bet938.com/css/chunk-common.4fa19f9b.css | 27.0.235.104 | 200 OK | 2.2 kB |
URL GET HTTP/214bet938.com/css/chunk-common.4fa19f9b.css IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typeASCII text, with very long lines (9557), with no line terminators Hash995b0aa100127e9fbd9a7e8e9483edbe b88eda0d3acc4128a8993fd080214d703afe3766 7e87100cc4a78ba0950555507a80d77c54b663dceca7542fdaa734512d90cfa2
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /css/chunk-common.4fa19f9b.css HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: text/css
date: Sat, 27 Apr 2024 03:04:35 GMT
etag: "1714187075"
last-modified: Sat, 27 Apr 2024 03:04:35 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
content-length: 2208
X-Firefox-Spdy: h2
|
|
| 14bet938.com/js/88495.59166de1.js | 27.0.235.104 | 200 OK | 3.4 kB |
URL GET HTTP/214bet938.com/js/88495.59166de1.js IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typeJavaScript source, ASCII text, with very long lines (10181) Hash411411116054a70076fc13c17ed4106f 47914cbe8df6fa96044428d756be975db9dbf8b7 4201e7ef0e008277d04b557ee22d26529d309eb05236d60b3fccc0020961ef0d
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /js/88495.59166de1.js HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
date: Sat, 27 Apr 2024 03:04:35 GMT
etag: "1714187075"
last-modified: Sat, 27 Apr 2024 03:04:35 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
content-length: 3369
X-Firefox-Spdy: h2
|
|
| 14bet938.com/assets/logo/favicon.ico | 27.0.235.104 | 200 OK | 24 kB |
URL GET HTTP/214bet938.com/assets/logo/favicon.ico IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typePNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced Hash915b77b545b2f06d111b1668dec5b9ec 5b64c1aa42b2a5c05a2b2a8e70bb2ea8f7938d9a b8ae08911816fb9ab6348d3ee9b27a7f772ec47e5b6c61440fba815b85779f94
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /assets/logo/favicon.ico HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-type: image/x-icon
date: Sat, 27 Apr 2024 04:16:02 GMT
etag: "1714191362"
last-modified: Sat, 27 Apr 2024 04:16:02 GMT
server: openresty
x-cache: HIT, policy, disk
content-length: 23600
X-Firefox-Spdy: h2
|
|
| 14bet938.com/assets/logo/favicon.ico | 27.0.235.104 | 200 OK | 24 kB |
URL GET HTTP/214bet938.com/assets/logo/favicon.ico IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typePNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced Hash915b77b545b2f06d111b1668dec5b9ec 5b64c1aa42b2a5c05a2b2a8e70bb2ea8f7938d9a b8ae08911816fb9ab6348d3ee9b27a7f772ec47e5b6c61440fba815b85779f94
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /assets/logo/favicon.ico HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-type: image/x-icon
date: Sat, 27 Apr 2024 04:16:02 GMT
etag: "1714191362"
last-modified: Sat, 27 Apr 2024 04:16:02 GMT
server: openresty
x-cache: HIT, policy, disk
content-length: 23600
X-Firefox-Spdy: h2
|
|
| 14bet938.com/css/index.c0bf09d2.css | 27.0.235.104 | 200 OK | 45 kB |
URL GET HTTP/214bet938.com/css/index.c0bf09d2.css IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashb9ead576ae484aa9b0776a98e038a8f5 f6a2765809e2fe15732f15996368487b60acb669 251d0c4fe1f8012266f81dd25f879ae0f90fdcfcd0c930fda5da01b3eb22367e
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /css/index.c0bf09d2.css HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: text/css
date: Sat, 27 Apr 2024 04:15:58 GMT
etag: "1714191358"
last-modified: Sat, 27 Apr 2024 04:15:58 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/api/activity/list?type=0&isPopup=1&username= | 27.0.235.104 | 200 OK | 80 B |
URL GET HTTP/214bet938.com/api/activity/list?type=0&isPopup=1&username= IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
Hashbcd62ace8bee92d3efa75b2933265bc5 ce02ddc64e6e448ce3f53c63966d6eded4d0ca7e c02718684fae008119f05350491f52ae41ef8d6dfee47e713d913858b3477ae1
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /api/activity/list?type=0&isPopup=1&username= HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
Xign: kTsCk8jdDGXOZAt//ZY9qkIr+eZD4+d5gX+CjVVcCAjZf6cOgxydjlXrpUHDx1HwcETcSXazPRTqL0NJ4wmZrWcv1+zmsAPkCOCdiqiDIaYUde2tZdpQUmoQg0ec/V+WflnRVIQ4zdYf6c3MHPPpBAc5Dcn+lZzJqSWYWACbRjg=
timestamp: 1714191776799
sign: 5o6f5f7s2j7m7v2e
version: 5.2.3.0
client_type: web
device_id: 3YZstT6cf6YhAjNiyYPPNyNyPQsFDEXJ
lang: zh-CN
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Sat, 27 Apr 2024 04:22:57 GMT
expires: 0
pragma: no-cache
server: openresty
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: BYPASS
x-content-type-options: nosniff
x-protected-by: OpenRASP
x-request-id: 5e0b9d369e7e4677880e467ec1e1f5d8
x-xss-protection: 1; mode=block
content-length: 80
X-Firefox-Spdy: h2
|
|
| 14bet938.com/api/user/popMessage/bulletinList?position=5 | 27.0.235.104 | 200 OK | 893 B |
URL GET HTTP/214bet938.com/api/user/popMessage/bulletinList?position=5 IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
Hash375212ae24d28dc630b9d18fee95eac0 d2c17c7c9f7e9e98d425dc2dcf53bd41e80414bc f16de22094ade59cc44e4f871fbfdc5dac2e92067ca273ee3ebaca7bfaefac73
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /api/user/popMessage/bulletinList?position=5 HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
Xign: x8Ex+XQmL693nFzIFIO4MQj9lgIhj0TUiTIjwBDUpIxDGieTanfQMUESnDN1d3FhWrm/uEQDPCH0/I5bAQDJJKWHUzq1Js0jNrI5ZT0uZyxXfgUu/td/CwGdmMC/3qOs8XGHr8VSD5NHeEcZzjkB9SaAXnsuJB83T31MF5ft6Q8=
timestamp: 1714191776799
sign: 94t31475d6d2lg4a
version: 5.2.3.0
client_type: web
device_id: Dw8eMzYF3ZPZGXXN83mX47cwwJXnNBYG
lang: zh-CN
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Sat, 27 Apr 2024 04:22:57 GMT
expires: 0
pragma: no-cache
server: openresty
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: BYPASS
x-content-type-options: nosniff
x-protected-by: OpenRASP
x-request-id: 9193dcfe7afa4d58b96992a04a886cba
x-xss-protection: 1; mode=block
content-length: 893
X-Firefox-Spdy: h2
|
|
| 14bet938.com/api/user/popMessage/bulletinList?position=5 | 27.0.235.104 | 200 OK | 893 B |
URL GET HTTP/214bet938.com/api/user/popMessage/bulletinList?position=5 IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
Hash375212ae24d28dc630b9d18fee95eac0 d2c17c7c9f7e9e98d425dc2dcf53bd41e80414bc f16de22094ade59cc44e4f871fbfdc5dac2e92067ca273ee3ebaca7bfaefac73
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /api/user/popMessage/bulletinList?position=5 HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
Xign: LOuJsgA1xiYsQWkejQIahgHzBn7GB+DxpqXb0IAjskqQe0x/ZseKxHLk4GEYm2VecHg8ZESnOCjuPjS+8Zak5+O+u1UV+izRYjAQi9Ir9jSEo6jM8g+W0q8uzO1tKA1Iv89GlqU9RBAU6oWVKUAxHLtSIunDPoQlLI2yuIooYlk=
timestamp: 1714191776799
sign: 1755m797o44mc1bu
version: 5.2.3.0
client_type: web
device_id: BfZ3ypDDhBWmAdPPJ6DFrxh6YrCYGbCC
lang: zh-CN
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Sat, 27 Apr 2024 04:22:57 GMT
expires: 0
pragma: no-cache
server: openresty
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: BYPASS
x-content-type-options: nosniff
x-protected-by: OpenRASP
x-request-id: 60c2cd313af34ef4a96bbb2f8b20345e
x-xss-protection: 1; mode=block
content-length: 893
X-Firefox-Spdy: h2
|
|
| 14bet938.com/api/tenant/float/list | 27.0.235.104 | 200 OK | 685 B |
URL GET HTTP/214bet938.com/api/tenant/float/list IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
Hash279d2209dce72f1dfc319f69c81378e8 6e113615f16cb879c477a6236290465efb289c69 387932886075cb6d64d19c7d6a0d7fec622a4f1544f49f8094473e4683dbb660
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /api/tenant/float/list HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
Xign: MTqsq4ZNojLddEIBU3bpwGUj+8b8dwefQ4+S596RJkGxDk1VJVUClhofttbRiUx3tryDGz1QkBNVRgTRj/DdC6mUl8218KDM0sRWJxZrr1L/V+/UzlYbNa8xBz6VgPbxHJ3Z2ZyXHpHPk+Nj+pikkz71fklR+aCDMoVeQIbOYkQ=
timestamp: 1714191776799
sign: 563f3n621u4o6o16
version: 5.2.3.0
client_type: web
device_id: x8ye5aW2GKpSRbMRwXwiZ6XXTnSrhHJC
lang: zh-CN
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Sat, 27 Apr 2024 04:22:57 GMT
expires: 0
pragma: no-cache
server: openresty
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: BYPASS
x-content-type-options: nosniff
x-protected-by: OpenRASP
x-request-id: f9a74e01d57d454eb6ca1097ca11ccbb
x-xss-protection: 1; mode=block
content-length: 685
X-Firefox-Spdy: h2
|
|
| 14bet938.com/api/banner/list | 27.0.235.104 | 200 OK | 601 B |
URL GET HTTP/214bet938.com/api/banner/list IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
Hash63a8d7ddb1dc14d010541fa3da768bb1 28a9365290ff62ec924eca085f83d06739e3a07b ea78e1f2158f580f7169bb792eb2ef7b24ee999230b0109ea905e9562f1d0d84
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /api/banner/list HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
Xign: HEw2wJaI66CHExCiWb/ypfDZX3SqFfPvX8m0aCTdhtIwXe15A+N2QMOR93jmJcI0u4cuIPXu4tNqr2QIlyX6JJjLs+SaIGhNxn1fDjCqb1b177Zux8Zbkn8N3RUwyUjiETnoFroVXj4Xzz82l+RJ1h6G370MM3kZjUP6uJe0DyY=
timestamp: 1714191776800
sign: 19454g5h1j4k1d7f
version: 5.2.3.0
client_type: web
device_id: byZJEbAazBQEKBxS7dyAZAtP5pt27jrc
lang: zh-CN
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Sat, 27 Apr 2024 04:22:57 GMT
expires: 0
pragma: no-cache
server: openresty
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: BYPASS
x-content-type-options: nosniff
x-protected-by: OpenRASP
x-request-id: e5289f144d734c7a8e8a3750d2ac1a97
x-xss-protection: 1; mode=block
content-length: 601
X-Firefox-Spdy: h2
|
|
| 14bet938.com/kc180-1/noData/cms_noimg.png?1710398585352 | 27.0.235.104 | 200 OK | 3.9 kB |
URL GET HTTP/214bet938.com/kc180-1/noData/cms_noimg.png?1710398585352 IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typePNG image data, 1920 x 700, 8-bit/color RGBA, non-interlaced Hash85e60fd8767b18839ffb552a5d543f8a 341cfd68a5b39cb246af6ade1e3171c857d2df5a 4b7ad68306ffac25830d1016ba86154890deef8bd77a03257b767b37de1c8338
GET /kc180-1/noData/cms_noimg.png?1710398585352 HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Sat, 27 Apr 2024 03:07:23 GMT
etag: "1714187243"
last-modified: Sat, 27 Apr 2024 03:07:23 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
content-length: 3910
X-Firefox-Spdy: h2
|
|
| 14bet938.com/kc180-1/noData/cms_game_noimg.png?1710398585352 | 27.0.235.104 | 200 OK | 3.6 kB |
URL GET HTTP/214bet938.com/kc180-1/noData/cms_game_noimg.png?1710398585352 IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typePNG image data, 750 x 590, 8-bit/color RGBA, non-interlaced Hash84170735ffce6fe0e70a3136a36b8ef6 5b2dcf1d5d92d786f1e58dc65de3dab1f35d7278 581435520cde2b0026b4e7244a85b6eef0be740cb18c43690c420d1ec326d0b4
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /kc180-1/noData/cms_game_noimg.png?1710398585352 HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Sat, 27 Apr 2024 03:07:23 GMT
etag: "1714187243"
last-modified: Sat, 27 Apr 2024 03:07:23 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
content-length: 3576
X-Firefox-Spdy: h2
|
|
| 14bet938.com/api/tenant/domain/list | 27.0.235.104 | 200 OK | 1.3 kB |
URL GET HTTP/214bet938.com/api/tenant/domain/list IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
Hashadde44660a1694a2e72e113d1b62cf3b afc6972a1477b312c1ed151d0d30eb39318d9f72 d740dc502fe4472f8855ff585e450d50cb2910658dcf3e8257e43c87a276b73a
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /api/tenant/domain/list HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
Xign: Uq34UT0i3XvEtVdWKaZXs4iNn3cf63fRdcuiFKSW7weUgyWWaSAehOkUpk0F4Yk1VbTMpuFbXr7yi8LEABsgQ8gsrfGKkDl2IbANf44lTqByFhaG5DvI0tVQU+WrT+ocC6AaP6ew89/KnMF+A0i8LxExe6cf1F0dQ0NVu1e0zKE=
timestamp: 1714191777648
sign: b141366n7s525q4d
version: 5.2.3.0
client_type: web
device_id: byZJEbAazBQEKBxS7dyAZAtP5pt27jrc
lang: zh-CN
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Sat, 27 Apr 2024 04:22:57 GMT
expires: 0
pragma: no-cache
server: openresty
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: BYPASS
x-content-type-options: nosniff
x-protected-by: OpenRASP
x-request-id: b59b52ecc9554affa49f8b9615b20901
x-xss-protection: 1; mode=block
content-length: 1302
X-Firefox-Spdy: h2
|
|
| 14bet938.com/api/tenant/domain/list | 27.0.235.104 | 200 OK | 1.3 kB |
URL GET HTTP/214bet938.com/api/tenant/domain/list IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
Hashadde44660a1694a2e72e113d1b62cf3b afc6972a1477b312c1ed151d0d30eb39318d9f72 d740dc502fe4472f8855ff585e450d50cb2910658dcf3e8257e43c87a276b73a
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /api/tenant/domain/list HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
Xign: Qp7deTaS/rgW7tZGFCV1lIohPd0QFvUx1elim34fAQQmymEW5ObQRDJfu7rUDiYKi+nNHd/j7UQCc+EEJ2e8TSLo6GpU7eQGFAhOWLTW5Plyju7/Ejq1rFqITCQqgfl3+dZTz7URNbO1QygqoUxeM+WTgrNvViLMC1kcTpmqbKw=
timestamp: 1714191777728
sign: 4h5g4h3k7n6u6v4n
version: 5.2.3.0
client_type: web
device_id: byZJEbAazBQEKBxS7dyAZAtP5pt27jrc
lang: zh-CN
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Sat, 27 Apr 2024 04:22:57 GMT
expires: 0
pragma: no-cache
server: openresty
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: BYPASS
x-content-type-options: nosniff
x-protected-by: OpenRASP
x-request-id: 1deff29cbea94d459074bff96a6c7d13
x-xss-protection: 1; mode=block
content-length: 1302
X-Firefox-Spdy: h2
|
|
| xss-1.oigngns6zvx3.com/gp180/119e7061-da4f-4271-84cc-6386c342e54b.jpg | 20.255.26.14 | | 171 kB |
URL GET xss-1.oigngns6zvx3.com/gp180/119e7061-da4f-4271-84cc-6386c342e54b.jpg IP20.255.26.14:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
CertificateIssuerLet's Encrypt Subjectxss-1.oigngns6zvx3.com Fingerprint41:4E:B1:B4:64:5C:97:17:CF:8D:6A:87:4F:78:B8:40:79:6B:45:92 ValidityMon, 15 Apr 2024 06:17:05 GMT - Sun, 14 Jul 2024 06:17:04 GMT
File typegzip compressed data, from Unix Size171 kB (171157 bytes) Hash08d2c7eab1d256467f05bb1a28a52d28 c41172cf97e32c0f4c25f14f33fbf3e552168a88 d0d392e2230dbd0c9eef5dfa27d8085ebad1decd2f8bfc88028d2ad8acc16d26
GET /gp180/119e7061-da4f-4271-84cc-6386c342e54b.jpg HTTP/1.1
Host: xss-1.oigngns6zvx3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 27 Apr 2024 04:22:58 GMT
content-type: image/png
etag: W/"b9dc0a0bde5fbdd2520aa2ff83b52264"
last-modified: Thu, 24 Aug 2023 05:00:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding, Origin, Accept-Encoding
x-amz-id-2: d9b602680ee2ed5df806be630bacf98432e6305614eb4f8377eb5d27a8dc0b35
x-amz-request-id: 17CA071B79DE5AE1
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
gp-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| xss-n1.q11heb456yjr435trtyjg234f.com/gp180/c8c033bb-2199-4c32-9c88-4bbcbc9fcd96.gif | 143.204.55.5 | | 92 kB |
URL GET xss-n1.q11heb456yjr435trtyjg234f.com/gp180/c8c033bb-2199-4c32-9c88-4bbcbc9fcd96.gif IP143.204.55.5:0
CertificateIssuerAmazon Subjectxss-n1.q11heb456yjr435trtyjg234f.com FingerprintED:36:81:2A:4A:79:2D:7B:EE:BA:D9:78:AB:73:41:9D:59:CC:30:62 ValidityMon, 01 Apr 2024 00:00:00 GMT - Wed, 30 Apr 2025 23:59:59 GMT
File typegzip compressed data, from Unix Hashb8ca28b8e47b9d28692fcc4d585ac75d cf02973aa636fa1a3108d964863014200096fcd0 148f99a653919e0ee946167e9ace0ccf6580d8c14ae67a3bfd493623e9683788
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /gp180/c8c033bb-2199-4c32-9c88-4bbcbc9fcd96.gif HTTP/1.1
Host: xss-n1.q11heb456yjr435trtyjg234f.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
server: nginx
date: Sat, 27 Apr 2024 04:22:58 GMT
last-modified: Thu, 24 Aug 2023 05:08:02 GMT
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Sat, 27 Apr 2024 04:22:58 GMT
cache-control: max-age=0
content-encoding: gzip
etag: W/"c2779bd16fdaf0596783964aff7999c8"
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _YcrbEp6SMniPSjhlSF5Z9eXLKL9DCFNqRnPCuH3XbVCsCqNudA6Ig==
vary: Accept-Encoding,Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| 14bet938.com/css/home.30c8378d.css | 27.0.235.104 | 200 OK | 17 kB |
URL GET HTTP/214bet938.com/css/home.30c8378d.css IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typeASCII text, with very long lines (16992), with no line terminators Hash49820786c2a011af30f35527eba5ab3b 0defd0cc987b0cb52590104d9b12b6858c736b14 61030359797749f96e8e8d6781706e7d958119b1108e831d2d127c0dbcc5e5be
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /css/home.30c8378d.css HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: text/css
date: Sat, 27 Apr 2024 03:04:35 GMT
etag: "1714187075"
last-modified: Sat, 27 Apr 2024 03:04:35 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/img/game02.4289a415.png | 27.0.235.104 | 200 OK | 32 kB |
URL GET HTTP/214bet938.com/img/game02.4289a415.png IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=81, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=271], progressive, precision 8, 270x81, components 3 Hash3952e090ab928f5bc36747b275645f3c 37d155d25da1ece2eaa2adc5de9bccb2a524985b dbddab3a290b16fc7b43e0a1093ffdec6a2ff91c104f9eff21df181a5336118c
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/game02.4289a415.png HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Sat, 27 Apr 2024 03:07:23 GMT
etag: "1714187243"
last-modified: Sat, 27 Apr 2024 03:07:23 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/img/float_right_contact.d1892e60.png | 27.0.235.104 | 200 OK | 12 kB |
URL GET HTTP/214bet938.com/img/float_right_contact.d1892e60.png IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typePNG image data, 50 x 247, 8-bit/color RGBA, non-interlaced Hashd19d26603d7bc87f4ba30563933485fa 0c7b22b5556d0c46b38beca88746d56328c130a3 cb9ffb5ca1354d23da49d7a184c1ad12cce4013edb703bbf7e7c719484e0d82d
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/float_right_contact.d1892e60.png HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Sat, 27 Apr 2024 03:07:23 GMT
etag: "1714187243"
last-modified: Sat, 27 Apr 2024 03:07:23 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/img/float_left_contact.5e628ff1.png | 27.0.235.104 | 200 OK | 14 kB |
URL GET HTTP/214bet938.com/img/float_left_contact.5e628ff1.png IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typePNG image data, 50 x 247, 8-bit/color RGBA, non-interlaced Hasha9bc5bbecc55ef7980fc3cfd6c338657 7bddde2e742e74809dd2462c9e12f5748f4f22e6 968753c19b6dcbfd000fdfc85ab7a54aea63164a51f993583683e7eb6ec7a82b
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/float_left_contact.5e628ff1.png HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Sat, 27 Apr 2024 03:07:23 GMT
etag: "1714187243"
last-modified: Sat, 27 Apr 2024 03:07:23 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/img/game01.85b388dd.png | 27.0.235.104 | 200 OK | 39 kB |
URL GET HTTP/214bet938.com/img/game01.85b388dd.png IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=81, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=271], baseline, precision 8, 270x81, components 3 Hashabf180088cd18dbb8b8a87e947aa4285 b511424b6a88d4faf129e526340ac617caaeb11a b136864ffef1cf1bca9a4106031e7f247fb62bb717db1a495c96c7d8b5b77da3
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/game01.85b388dd.png HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Sat, 27 Apr 2024 03:07:23 GMT
etag: "1714187243"
last-modified: Sat, 27 Apr 2024 03:07:23 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/js/home.0dccd467.js | 27.0.235.104 | 200 OK | 21 kB |
URL GET HTTP/214bet938.com/js/home.0dccd467.js IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /js/home.0dccd467.js HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
date: Sat, 27 Apr 2024 03:04:35 GMT
etag: "1714187075"
last-modified: Sat, 27 Apr 2024 03:04:35 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/kc180-1/logo/logo.png.png?1710398585352 | 27.0.235.104 | 200 OK | 18 kB |
URL GET HTTP/214bet938.com/kc180-1/logo/logo.png.png?1710398585352 IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typePNG image data, 318 x 144, 8-bit/color RGBA, non-interlaced Hashe7cb5ee9f30672a53b2f7495d4e42630 a8203b11ccc37efcf91857b79be90ef8cbba66ba 288f049894425abb4adcf32e8a08fce507ce91f76a41ed8a80ea118712814bc3
GET /kc180-1/logo/logo.png.png?1710398585352 HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Sat, 27 Apr 2024 03:07:23 GMT
etag: "1714187243"
last-modified: Sat, 27 Apr 2024 03:07:23 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/img/rdao-l-2.f6c6cbaf.png | 27.0.235.104 | 200 OK | 13 kB |
URL GET HTTP/214bet938.com/img/rdao-l-2.f6c6cbaf.png IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typePNG image data, 147 x 57, 8-bit/color RGB, non-interlaced Hash75441b34f2b090890fb8271d36703609 9e2ecd7b86efc2ec2dd1a899344d7bb2e0a733f3 04fe7cf05d017591f89db653cd7b0326f1c4d81d578529c50791343d460169f1
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/rdao-l-2.f6c6cbaf.png HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Sat, 27 Apr 2024 03:07:23 GMT
etag: "1714187243"
last-modified: Sat, 27 Apr 2024 03:07:23 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/img/rdao-r-1.c2e7696b.png | 27.0.235.104 | 200 OK | 12 kB |
URL GET HTTP/214bet938.com/img/rdao-r-1.c2e7696b.png IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typePNG image data, 147 x 57, 8-bit/color RGB, non-interlaced Hashe2385d2a0d7c043e90ec1e1e3bf6a1e4 1be4ba4215520c1e884c27991984e185e2848283 c578480a5ddbede9c417bd3e3a85d752b13d61e4e8127e4d1868b708807b562e
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/rdao-r-1.c2e7696b.png HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Sat, 27 Apr 2024 03:07:23 GMT
etag: "1714187243"
last-modified: Sat, 27 Apr 2024 03:07:23 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/js/chunk-vendors.2dca9ac0.js | 27.0.235.104 | 200 OK | 1.3 MB |
URL GET HTTP/214bet938.com/js/chunk-vendors.2dca9ac0.js IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
Size1.3 MB (1294825 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /js/chunk-vendors.2dca9ac0.js HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
date: Sat, 27 Apr 2024 04:15:58 GMT
etag: "1714191364"
last-modified: Sat, 27 Apr 2024 04:16:04 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/img/rdao-r-4.5d6173a4.png | 27.0.235.104 | 200 OK | 15 kB |
URL GET HTTP/214bet938.com/img/rdao-r-4.5d6173a4.png IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typePNG image data, 147 x 53, 8-bit/color RGB, non-interlaced Hash113d3f2af50abaadad7df566c6c82d22 9ac7ddf5cd311e88709d29b3a69bf209c5ca1e51 a1a9bff1875165cafe5c41941486db0a6b12028b63e6738d1f79980cb2408caf
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/rdao-r-4.5d6173a4.png HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Sat, 27 Apr 2024 03:07:23 GMT
etag: "1714187243"
last-modified: Sat, 27 Apr 2024 03:07:23 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/api/game/i18/gameBarNew?modeCode=nav_game_home | 27.0.235.104 | 200 OK | 34 kB |
URL GET HTTP/214bet938.com/api/game/i18/gameBarNew?modeCode=nav_game_home IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /api/game/i18/gameBarNew?modeCode=nav_game_home HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
Xign: ieEcUYk1Uc+VsLxMpmNGU6ZKwmISHgApbIdGD14C/M4KUziaHTM3+rbYi88xghM/plzAxwA2JuQZZnhMAwz83hr31t3LCtmXZ7QPE3CuR1ZgaYGURZ+VqwxQ8ZOdphg8lTcng4gnKZwo7HKZyfJpQE9rfv58WYgxVyqSPyMt/n0=
timestamp: 1714191776799
sign: 26d61586r6550b73
version: 5.2.3.0
client_type: web
device_id: cS5E5wKCTyX5p4ATZFxBnMcWRNsRRnNZ
lang: zh-CN
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Sat, 27 Apr 2024 04:22:57 GMT
expires: 0
pragma: no-cache
server: openresty
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: BYPASS
x-content-type-options: nosniff
x-protected-by: OpenRASP
x-request-id: abf48a5341c54c549af395ec55d25366
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
|
|
| xss-1.oigngns6zvx3.com/gp180/58bfd945-22ef-48cf-b0d0-63ffc678dc10.jpg | 0.0.0.0 | | 0 B |
URL GET xss-1.oigngns6zvx3.com/gp180/58bfd945-22ef-48cf-b0d0-63ffc678dc10.jpg IP0.0.0.0:0
CertificateIssuerLet's Encrypt Subjectxss-1.oigngns6zvx3.com Fingerprint41:4E:B1:B4:64:5C:97:17:CF:8D:6A:87:4F:78:B8:40:79:6B:45:92 ValidityMon, 15 Apr 2024 06:17:05 GMT - Sun, 14 Jul 2024 06:17:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gp180/58bfd945-22ef-48cf-b0d0-63ffc678dc10.jpg HTTP/1.1
Host: xss-1.oigngns6zvx3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 27 Apr 2024 04:22:58 GMT
content-type: image/jpeg
etag: W/"e9799154ca8e949f42cbcc16a9d761f2"
last-modified: Thu, 04 Jan 2024 07:44:14 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding, Origin, Accept-Encoding
x-amz-id-2: 891cc6e2d9f1c35b2c12c8a4e476b4a5ca09deccda9e25248c850b9912710f3d
x-amz-request-id: 17C973DFB9E9311E
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
gp-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| 14bet938.com/js/index.fef83566.js | 27.0.235.104 | 200 OK | 2.9 MB |
URL GET HTTP/214bet938.com/js/index.fef83566.js IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
Size2.9 MB (2930945 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /js/index.fef83566.js HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
date: Sat, 27 Apr 2024 03:31:09 GMT
etag: "1714188669"
last-modified: Sat, 27 Apr 2024 03:31:09 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/img/rdaobg.93df9aaf.png | 27.0.235.104 | 200 OK | 23 kB |
URL GET HTTP/214bet938.com/img/rdaobg.93df9aaf.png IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typePNG image data, 175 x 369, 8-bit/color RGBA, interlaced Hashf27cb3aa610d5d073308ee4066a3a726 62504a85e14b7ec505899645378a9abf9f3f6954 0e2e11002eb67d3b6eec134eecfec90b787ed55a128b7e5adc159da22b2a252f
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/rdaobg.93df9aaf.png HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://14bet938.com/css/index.c0bf09d2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Sat, 27 Apr 2024 03:07:23 GMT
etag: "1714187243"
last-modified: Sat, 27 Apr 2024 03:07:23 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/css/chunk-vendors.3988e803.css | 27.0.235.104 | 200 OK | 277 kB |
URL GET HTTP/214bet938.com/css/chunk-vendors.3988e803.css IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size277 kB (276875 bytes) Hashea6b99b1959c49331f60830e6afd1948 3bd835f074fedfeb9b48ac9d5484e06f4a55a088 e93ed24c95fa7fd3896c94fde44257b2cb32eb67736316f4e3d77283de9dd342
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /css/chunk-vendors.3988e803.css HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: text/css
date: Sat, 27 Apr 2024 04:15:58 GMT
etag: "1714191359"
last-modified: Sat, 27 Apr 2024 04:15:59 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/js/70264.19320668.js | 27.0.235.104 | 200 OK | 266 kB |
URL GET HTTP/214bet938.com/js/70264.19320668.js IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
Size266 kB (266263 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /js/70264.19320668.js HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
date: Sat, 27 Apr 2024 03:04:35 GMT
etag: "1714187075"
last-modified: Sat, 27 Apr 2024 03:04:35 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| xss-1.oigngns6zvx3.com/gp180/b208fdd4-7d5f-4bb8-83b6-32535b5bcbb1.jpg | 0.0.0.0 | | 0 B |
URL GET xss-1.oigngns6zvx3.com/gp180/b208fdd4-7d5f-4bb8-83b6-32535b5bcbb1.jpg IP0.0.0.0:0
CertificateIssuerLet's Encrypt Subjectxss-1.oigngns6zvx3.com Fingerprint41:4E:B1:B4:64:5C:97:17:CF:8D:6A:87:4F:78:B8:40:79:6B:45:92 ValidityMon, 15 Apr 2024 06:17:05 GMT - Sun, 14 Jul 2024 06:17:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gp180/b208fdd4-7d5f-4bb8-83b6-32535b5bcbb1.jpg HTTP/1.1
Host: xss-1.oigngns6zvx3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 27 Apr 2024 04:22:58 GMT
content-type: image/png
etag: W/"1c7ea0cc0762a6ed12058668fe6e0d44"
last-modified: Thu, 24 Aug 2023 05:00:32 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding, Origin, Accept-Encoding
x-amz-id-2: 891cc6e2d9f1c35b2c12c8a4e476b4a5ca09deccda9e25248c850b9912710f3d
x-amz-request-id: 17CA071B79CC7A6C
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
gp-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| 14bet938.com/theme.config.f74d12ca.js | 27.0.235.104 | 200 OK | 70 kB |
URL GET HTTP/214bet938.com/theme.config.f74d12ca.js IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /theme.config.f74d12ca.js HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
date: Sat, 27 Apr 2024 02:56:48 GMT
etag: "1714186608"
last-modified: Sat, 27 Apr 2024 02:56:48 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/img/rdao-l-3.5d2e2162.png | 27.0.235.104 | 200 OK | 13 kB |
URL GET HTTP/214bet938.com/img/rdao-l-3.5d2e2162.png IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typePNG image data, 147 x 57, 8-bit/color RGB, non-interlaced Hash2d59ff3b03c35665687729fb98ed5478 c4c4b17fbfb5849c5c95f063b87b6bf322a1b5ea 32f2a358d3f2a798ddf394ac652c3998349c366dd467df5234071c0548398770
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/rdao-l-3.5d2e2162.png HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Sat, 27 Apr 2024 03:07:23 GMT
etag: "1714187243"
last-modified: Sat, 27 Apr 2024 03:07:23 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/config/initGeetest4.js | 27.0.235.104 | 200 OK | 15 kB |
URL GET HTTP/214bet938.com/config/initGeetest4.js IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /config/initGeetest4.js HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
date: Sat, 27 Apr 2024 04:04:29 GMT
etag: "1714190670"
last-modified: Sat, 27 Apr 2024 04:04:30 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/img/game03.212a12ef.png | 27.0.235.104 | 200 OK | 12 kB |
URL GET HTTP/214bet938.com/img/game03.212a12ef.png IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 270x81, components 3 Hashed93aae29ca896964a86103b00f80f99 1880c553dc77b4effbb5d28ad72f93de1e550ec5 496f6b90ab41e0578054f60089032a0483247165dce969a83d70f4842496608a
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/game03.212a12ef.png HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Sat, 27 Apr 2024 03:07:23 GMT
etag: "1714187243"
last-modified: Sat, 27 Apr 2024 03:07:23 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/img/rdao-r-3.3d28973d.png | 27.0.235.104 | 200 OK | 12 kB |
URL GET HTTP/214bet938.com/img/rdao-r-3.3d28973d.png IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typePNG image data, 147 x 57, 8-bit/color RGB, non-interlaced Hash98567b2a6024c4e690574cc2f4d8a91f c75986b57ba3fd98791a1cee632184a2c5a99d0b 2eaddbbc263065a1ab9a7f46309cb8a2f39875a06aef11da4409203216c83834
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/rdao-r-3.3d28973d.png HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Sat, 27 Apr 2024 03:07:23 GMT
etag: "1714187243"
last-modified: Sat, 27 Apr 2024 03:07:23 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/api/config/system | 27.0.235.104 | 200 OK | 2.2 kB |
URL GET HTTP/214bet938.com/api/config/system IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typetroff or preprocessor input, Unicode text, UTF-8 text, with very long lines (2437), with no line terminators Hash4ae593681b378b124c93eb0f1ac256a1 3e6acd4e68224357225126bfae632e982681ca9a 33b031689d46460ec88876c64def6baee8fdb6f083077227b7bcee3e62530cca
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /api/config/system HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
Xign: RNgOi/KjtcRftmTqMoEkzcxaDT9zwdItzOMHYITz+6LXK3bwxfyng0uEUrnaZbYMfSJS4wTc3tHn42RaXQpXawR3ZxDoQXWaDBFSDt2rF5CgyeJ3xf2U4h9mfKbFHSeW1A/qwqHtMzCR0R/VEriOj8hZR6/ITXw80Ynqd/U/aBo=
timestamp: 1714191776799
sign: 17o2h45444e6c67o
version: 5.2.3.0
client_type: web
device_id: KhWzJmDACS5fSej8XMe4e6sKQPxJbJm2
lang: zh-CN
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-encoding: gzip
content-type: application/json
date: Sat, 27 Apr 2024 04:22:57 GMT
expires: 0
pragma: no-cache
server: openresty
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: BYPASS
x-content-type-options: nosniff
x-protected-by: OpenRASP
x-request-id: e1c59e4290c445f39d91f44aaf1a2647
x-xss-protection: 1; mode=block
content-length: 1021
X-Firefox-Spdy: h2
|
|
| xss-1.oigngns6zvx3.com/gp180/59d2a54d-0d2a-425c-b2f2-a9fd8ff9e369.jpg | 0.0.0.0 | | 0 B |
URL GET xss-1.oigngns6zvx3.com/gp180/59d2a54d-0d2a-425c-b2f2-a9fd8ff9e369.jpg IP0.0.0.0:0
CertificateIssuerLet's Encrypt Subjectxss-1.oigngns6zvx3.com Fingerprint41:4E:B1:B4:64:5C:97:17:CF:8D:6A:87:4F:78:B8:40:79:6B:45:92 ValidityMon, 15 Apr 2024 06:17:05 GMT - Sun, 14 Jul 2024 06:17:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gp180/59d2a54d-0d2a-425c-b2f2-a9fd8ff9e369.jpg HTTP/1.1
Host: xss-1.oigngns6zvx3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 27 Apr 2024 04:22:58 GMT
content-type: image/png
etag: W/"06287f2f8d2d97116012879c632978a7"
last-modified: Thu, 24 Aug 2023 05:00:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding, Origin, Accept-Encoding
x-amz-id-2: d9b602680ee2ed5df806be630bacf98432e6305614eb4f8377eb5d27a8dc0b35
x-amz-request-id: 17CA071B79BD2A9E
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
gp-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| 14bet938.com/js/chunk-common.cd5c75c7.js | 27.0.235.104 | 200 OK | 67 kB |
URL GET HTTP/214bet938.com/js/chunk-common.cd5c75c7.js IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash84105330b1c5d7b38de9b17254ede531 2b1c3d2b1d0213989f18303da668cfcc27b99fe4 117569e6233102c3525ddf518f10b5c9abb6ca5968e894147a543c9857249a31
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /js/chunk-common.cd5c75c7.js HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript
date: Sat, 27 Apr 2024 03:04:35 GMT
etag: "1714187075"
last-modified: Sat, 27 Apr 2024 03:04:35 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/img/rdao-r-2.b22a9f38.png | 27.0.235.104 | 200 OK | 12 kB |
URL GET HTTP/214bet938.com/img/rdao-r-2.b22a9f38.png IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typePNG image data, 147 x 57, 8-bit/color RGB, non-interlaced Hashb5c72992b0327b36f67ba1f1ddcc9709 4260a70304e373ad0c9dc8945459d132b5ebe38d 90fd92cbe288eeef841ebbb0760c2b041aee0196b4b9a1ad4d47cd3cb344a760
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/rdao-r-2.b22a9f38.png HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Sat, 27 Apr 2024 03:07:23 GMT
etag: "1714187243"
last-modified: Sat, 27 Apr 2024 03:07:23 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| xss-1.oigngns6zvx3.com/gp180/fe5960b2-c6f8-4333-a9c7-362c953f873c.jpg | 0.0.0.0 | | 0 B |
URL GET xss-1.oigngns6zvx3.com/gp180/fe5960b2-c6f8-4333-a9c7-362c953f873c.jpg IP0.0.0.0:0
CertificateIssuerLet's Encrypt Subjectxss-1.oigngns6zvx3.com Fingerprint41:4E:B1:B4:64:5C:97:17:CF:8D:6A:87:4F:78:B8:40:79:6B:45:92 ValidityMon, 15 Apr 2024 06:17:05 GMT - Sun, 14 Jul 2024 06:17:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gp180/fe5960b2-c6f8-4333-a9c7-362c953f873c.jpg HTTP/1.1
Host: xss-1.oigngns6zvx3.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 27 Apr 2024 04:22:58 GMT
content-type: image/png
etag: W/"83507112e9bd87e6421a48b878fa0f2d"
last-modified: Thu, 24 Aug 2023 05:00:33 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding, Origin, Accept-Encoding
x-amz-id-2: 891cc6e2d9f1c35b2c12c8a4e476b4a5ca09deccda9e25248c850b9912710f3d
x-amz-request-id: 17CA0095CA7BE78E
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
gp-cache-status: HIT
X-Firefox-Spdy: h2
|
|
| 14bet938.com/css/70264.21c900e0.css | 27.0.235.104 | 200 OK | 36 kB |
URL GET HTTP/214bet938.com/css/70264.21c900e0.css IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typeASCII text, with very long lines (35541), with no line terminators Hashf5ff57a1ef461eecf4a8f2b5eb47f826 786102c75149953d5df3c2362fa3b3c3953b11f7 be3fd5df9d994d01cb0630d86f7e3434a9663264da346bf8a0fe46edf722a7b7
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /css/70264.21c900e0.css HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: text/css
date: Sat, 27 Apr 2024 03:04:35 GMT
etag: "1714187075"
last-modified: Sat, 27 Apr 2024 03:04:35 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/img/rdao-l-1.d6e3a425.png | 27.0.235.104 | 200 OK | 9.4 kB |
URL GET HTTP/214bet938.com/img/rdao-l-1.d6e3a425.png IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typePNG image data, 147 x 51, 8-bit/color RGB, non-interlaced Hashf3427cdef3e73f6a410bb3caaa15e5bf 87aee39268e60a3f9bef90e3629213e00c4ca3b1 9c8946d53d9bd3e9057491cc4e9ec38d1e0c06a15a8d350f9ee15738afc45b19
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/rdao-l-1.d6e3a425.png HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Sat, 27 Apr 2024 03:07:23 GMT
etag: "1714187243"
last-modified: Sat, 27 Apr 2024 03:07:23 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/img/rdao-l-4.d79bc746.png | 27.0.235.104 | 200 OK | 14 kB |
URL GET HTTP/214bet938.com/img/rdao-l-4.d79bc746.png IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typePNG image data, 147 x 70, 8-bit/color RGB, non-interlaced Hash408a47dbec9333221ee9937cf6513a0c b87f2425f70c7d0f8af2c41a0d3db5b4ef96a146 a359740e674cfee1c6697c6cf4b6e1cc86de89d856d5601652aa5ce7c4b48203
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/rdao-l-4.d79bc746.png HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://14bet938.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Sat, 27 Apr 2024 03:07:23 GMT
etag: "1714187243"
last-modified: Sat, 27 Apr 2024 03:07:23 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|
| 14bet938.com/img/bg-products.e4ddcae4.png | 27.0.235.104 | 200 OK | 28 kB |
URL GET HTTP/214bet938.com/img/bg-products.e4ddcae4.png IP27.0.235.104:443 ASN#138995 Antbox Networks Limited
CertificateIssuerLet's Encrypt Subject13bet938.com FingerprintF3:C2:67:F6:83:9B:AB:C2:F3:47:7F:89:BE:1B:32:25:E4:3D:CE:8D ValidityThu, 25 Apr 2024 12:37:52 GMT - Wed, 24 Jul 2024 12:37:51 GMT
File typePNG image data, 307 x 342, 8-bit/color RGBA, non-interlaced Hashe61aff410bd41a8256ee4de7d1e25db0 4debbd11000bd5796036eee1550f59d98ef1d3f0 7c3578ebab0ef95c73226e6e6089174946df4ac8cb33b01dc7a59501139bbd70
Analyzer | Verdict | Alert | OpenPhish | phishing | Bet365 |
GET /img/bg-products.e4ddcae4.png HTTP/1.1
Host: 14bet938.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://14bet938.com/css/home.30c8378d.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/png
date: Sat, 27 Apr 2024 03:07:23 GMT
etag: "1714187243"
last-modified: Sat, 27 Apr 2024 03:07:23 GMT
server: openresty
vary: Accept-Encoding
x-cache: HIT, policy, disk
X-Firefox-Spdy: h2
|
|