Report - www.66kbet44i.cc/

Report Overview

Visited public
2025-01-04 04:37:03
Tags
Submit Tags
URL
www.66kbet44i.cc/
Finishing URL
217.156.67.146/
IP / ASN
188.114.97.1
#13335 CLOUDFLARENET
Title
66KBET – Kasino Online dan Judi Slot Online Terbaik Asia

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
217.156.67.146	unknown	unknown	No data	No data	2.8 kB	3.3 MB	217.156.67.146
sdk.51.la	88367	2005-01-17	2021-03-08	2025-01-02	318 B	36 kB	212.247.59.123
collect-v6.51.la	91421	2005-01-17	2021-03-08	2025-01-02	376 B	398 B	212.247.59.123
www.66kbet44i.cc	unknown	2024-12-17	2025-01-04	2025-01-04	473 B	14 kB	188.114.96.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-01-04	medium	217.156.67.146	Sinkholed
2025-01-04	medium	217.156.67.146	Sinkholed
2025-01-04	medium	217.156.67.146	Sinkholed
2025-01-04	medium	217.156.67.146	Sinkholed
2025-01-04	medium	217.156.67.146	Sinkholed
2025-01-04	medium	217.156.67.146	Sinkholed
2025-01-04	medium	217.156.67.146	Sinkholed

ThreatFox

No alerts detected

JavaScript (3)

	URL	From	Size	First Seen	Last Seen
	sdk.51.la/js-sdk-pro.min.js	ScriptElement	36 kB	2024-12-24	2025-03-06
Pretty URL sdk.51.la/js-sdk-pro.min.js IP 212.247.59.123 ASN #1257 Tele2 SWIPnet Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-24 05:22 Last Seen2025-03-06 12:39 Times Seen2568 Hash 824b4d3c41ca7563f31425c2837c72af 63991e687124f2bb5fee606f00f9957e7cb54d3a ecbb2249596e33e3b6198762e58ee647b3d8eae24a1da88e3e5f8e05f6f04437 Loading...

	217.156.67.146/	ScriptElement	683 B	2025-01-03	2025-01-04
Pretty URL 217.156.67.146/ IP 217.156.67.146 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-01-03 14:42 Last Seen2025-01-04 04:37 Times Seen2 Hash 6e8baa1bde852c583246b00acf53e1d8 1e0e404f3ade0a44309be0a3eb622597acc3c68a d64e8dc8cd56ced4e4e5399fc647cd8671e6cb8ffb8506ad99e03c8cad7b8b0b Loading...

	217.156.67.146/	ScriptElement	54 B	2024-06-29	2025-06-21
Pretty URL 217.156.67.146/ IP 217.156.67.146 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-06-29 22:46 Last Seen2025-06-21 18:22 Times Seen34 Hash 206091389de50d3b522e6297681855f7 102e4a8c154ff59ae405aae843561cadbc1fd0b4 1dc54dcedb4ab1b7e08bd0d82b32ad07a7429ca2b01c57d326cc83f37cb6efc1 Loading...

HTTP Transactions (10)

URL IP Response Size

GET 217.156.67.146/

217.156.67.146

200 OK

3.5 kB

URL User Request GET HTTP/1.1
217.156.67.146/
IP
217.156.67.146:80
ASN
#0

File type
HTML document, Unicode text, UTF-8 text
Size
3.5 kB (3509 bytes)
Hash
23935cd18f2d6c6b5647328e7bde4ad9
ce3b81e576b18c1ddb2aac0b273d4652f26a2bad
ff7752c7c07d38dd53ef49b56606ddcfc0a31a819a251dcb4dad13baf59333d5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 217.156.67.146
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Jan 2025 04:36:37 GMT
Content-Type: text/html
Last-Modified: Fri, 03 Jan 2025 11:23:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6777c8af-33c8"
Content-Encoding: gzip

GET 217.156.67.146/public/66K-350x80.png

217.156.67.146

200 OK

8.4 kB

URL GET HTTP/1.1
217.156.67.146/public/66K-350x80.png
IP
217.156.67.146:80
ASN
#0

Requested by
http://217.156.67.146/

File type
PNG image data, 350 x 80, 8-bit colormap, non-interlaced
Size
8.4 kB (8362 bytes)
Hash
c8f692d56a0e33f6d62ee1ad5bbc3695
601b927e944e86e3ebb0543aa6ac28a81e87f992
190886e8e0a72e3700259aaf41dab12b8d50a00ff32574db37893e482ae26d3c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/66K-350x80.png HTTP/1.1
Host: 217.156.67.146
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://217.156.67.146/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Jan 2025 04:36:37 GMT
Content-Type: image/png
Last-Modified: Sat, 15 Jul 2023 22:21:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64b31bfc-208e"
Expires: Mon, 03 Feb 2025 04:36:37 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip

GET 217.156.67.146/public/kf.png

217.156.67.146

200 OK

23 kB

URL GET HTTP/1.1
217.156.67.146/public/kf.png
IP
217.156.67.146:80
ASN
#0

Requested by
http://217.156.67.146/

File type
PNG image data, 146 x 177, 8-bit colormap, non-interlaced
Size
23 kB (22895 bytes)
Hash
983989df25bc20a015b79e73ff88805e
79fa1cb1cf9318e04f0f43cc11799c88a4d5de81
1cd516a7cf0a7fb3162d814310bc44bb4dcd705b20d8d08206466ae95af7193f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/kf.png HTTP/1.1
Host: 217.156.67.146
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://217.156.67.146/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Jan 2025 04:36:37 GMT
Content-Type: image/png
Last-Modified: Fri, 04 Aug 2023 15:01:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64cd12de-59e3"
Expires: Mon, 03 Feb 2025 04:36:37 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip

GET 217.156.67.146/public/66K-1463x951.png

217.156.67.146

200 OK

737 kB

URL GET HTTP/1.1
217.156.67.146/public/66K-1463x951.png
IP
217.156.67.146:80
ASN
#0

Requested by
http://217.156.67.146/

File type
PNG image data, 1463 x 951, 8-bit/color RGBA, non-interlaced
Size
737 kB (737236 bytes)
Hash
a778464c32f802acc615fb241c5b4991
fed88cfb74b6219890087bc9edf1a47a78eadd0f
cc7d9cfbd61e81202f01557d3bd61a8dd9dbd3b32ec93a8573e732bf2d41b1d0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/66K-1463x951.png HTTP/1.1
Host: 217.156.67.146
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://217.156.67.146/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Jan 2025 04:36:37 GMT
Content-Type: image/png
Last-Modified: Tue, 18 Jul 2023 00:16:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64b5d9dc-b53cf"
Expires: Mon, 03 Feb 2025 04:36:37 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip

GET 217.156.67.146/public/66K-1920x1080.png

217.156.67.146

200 OK

1.8 MB

URL GET HTTP/1.1
217.156.67.146/public/66K-1920x1080.png
IP
217.156.67.146:80
ASN
#0

Requested by
http://217.156.67.146/

File type
PNG image data, 1920 x 1080, 8-bit/color RGB, non-interlaced
Size
1.8 MB (1773029 bytes)
Hash
efb39d7cdab0dcb78a223d6c4456fdde
40d472e986673a9f54853267b1d48b3600976dca
582a5422914373560e324f9792e790b5d40d00b73ea2c6a3e4fcf5a8c741e8cb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/66K-1920x1080.png HTTP/1.1
Host: 217.156.67.146
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://217.156.67.146/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Jan 2025 04:36:37 GMT
Content-Type: image/png
Last-Modified: Sat, 15 Jul 2023 21:55:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64b315c0-1b1195"
Expires: Mon, 03 Feb 2025 04:36:37 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip

GET 217.156.67.146/public/66K-880x587.png

217.156.67.146

200 OK

737 kB

URL GET HTTP/1.1
217.156.67.146/public/66K-880x587.png
IP
217.156.67.146:80
ASN
#0

Requested by
http://217.156.67.146/

File type
PNG image data, 880 x 587, 8-bit/color RGBA, non-interlaced
Size
737 kB (736778 bytes)
Hash
e25d059abddb1042f807f53d0b3c6cce
c241016b05179b172115b76a1177864346800f66
cbdfbd2a2d0ea22a139fb303306bdff6ed698481c8cae6be92627db8052cef03

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/66K-880x587.png HTTP/1.1
Host: 217.156.67.146
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://217.156.67.146/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Jan 2025 04:36:37 GMT
Content-Type: image/png
Last-Modified: Tue, 18 Jul 2023 00:16:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64b5d9f4-b42aa"
Expires: Mon, 03 Feb 2025 04:36:37 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip

GET sdk.51.la/js-sdk-pro.min.js

212.247.59.123

200 OK

36 kB

URL GET HTTP/1.1
sdk.51.la/js-sdk-pro.min.js
IP
212.247.59.123:80
ASN
#1257 Tele2 SWIPnet

Requested by
http://217.156.67.146/

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (35754)
Size
36 kB (35969 bytes)
Hash
1334fa969736781aedd570308c2ceb95
f9bfdb2c46ac3b8e83250c68798b26a8a3ceaa7b
ab600bcb623360b5a87e5657495bb968325f0a47c3772fe3c1cc052ebd35f153

HTTP Headers

GET /js-sdk-pro.min.js HTTP/1.1
Host: sdk.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://217.156.67.146/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 Jan 2025 04:36:39 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: openresty
Cache-Control: no-store
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
via: EU-SWE-stockholm-EDGE1-CACHE2[217],EU-SWE-stockholm-EDGE1-CACHE2[ovl,216],EU-GER-frankfurt-EDGE5-CACHE2[ovl,143],CHN-HElangfang-GLOBAL6-CACHE88[ovl,18]
X-CCDN-REQ-ID-46B1: b047e58a55b5235d31a76f4f80e11213

GET 217.156.67.146/public/66K-32x32.ico

217.156.67.146

200 OK

1.9 kB

URL GET HTTP/1.1
217.156.67.146/public/66K-32x32.ico
IP
217.156.67.146:80
ASN
#0

Requested by
http://217.156.67.146/

File type
PNG image data, 32 x 32, 8-bit colormap, non-interlaced
Size
1.9 kB (1904 bytes)
Hash
b4f1be4f73120387687d5d47c82cb34e
5ccb74367a5ef92347c18a11a275affa2e591bf1
70245fe99fdc6ec7a6562ff4eb05314ce4ae8677de163c85706fe5cc1d6d7083

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /public/66K-32x32.ico HTTP/1.1
Host: 217.156.67.146
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://217.156.67.146/
Cookie: __vtins__K7Ax7stI4Hg5tSBx=%7B%22sid%22%3A%20%22ee87aa0e-5e36-5371-a003-4495baeca31a%22%2C%20%22vd%22%3A%201%2C%20%22stt%22%3A%200%2C%20%22dr%22%3A%200%2C%20%22expires%22%3A%201735967199266%2C%20%22ct%22%3A%201735965399266%7D; __51uvsct__K7Ax7stI4Hg5tSBx=1; __51vcke__K7Ax7stI4Hg5tSBx=88c06aa8-2e10-5b29-972b-509f097f575c; __51vuft__K7Ax7stI4Hg5tSBx=1735965399275
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Jan 2025 04:36:39 GMT
Content-Type: image/x-icon
Content-Length: 1904
Last-Modified: Sat, 01 Jul 2023 16:07:58 GMT
Connection: keep-alive
ETag: "64a04f5e-770"
Accept-Ranges: bytes

POST collect-v6.51.la/v6/collect?dt=4

212.247.59.123

210

0 B

URL POST HTTP/1.1
collect-v6.51.la/v6/collect?dt=4
IP
212.247.59.123:80
ASN
#1257 Tele2 SWIPnet

Requested by
http://217.156.67.146/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /v6/collect?dt=4 HTTP/1.1
Host: collect-v6.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Length: 305
Origin: http://217.156.67.146
DNT: 1
Connection: keep-alive
Referer: http://217.156.67.146/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 210 
Date: Sat, 04 Jan 2025 04:36:40 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Access-Control-Allow-Origin: http://217.156.67.146
Access-Control-Allow-Credentials: true
via: EU-SWE-stockholm-EDGE1-CACHE5[450],EU-SWE-stockholm-EDGE1-CACHE5[ovl,447]
X-CCDN-REQ-ID-46B1: d39b14e1815d31d018349362a0df00da

GET www.66kbet44i.cc/

188.114.96.1

301 Moved Permanently

13 kB

URL User Request GET HTTP/2
www.66kbet44i.cc/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subject66kbet44i.cc
FingerprintA7:BF:BE:F8:A3:A1:1A:C5:73:F1:43:6C:22:65:86:32:12:71:AE:0A
ValidityThu, 19 Dec 2024 09:56:37 GMT - Wed, 19 Mar 2025 10:54:17 GMT

File type

Size
13 kB (13256 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: www.66kbet44i.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Sat, 04 Jan 2025 04:36:36 GMT
content-type: text/html
location: http://217.156.67.146
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TUpAk3QNzeYPHmKqrUPFNV4dBRCON8Q1LtJFLX44U78djJ6pOhunjQEbfBdM%2B9R5JTZgDlDeULv6xe4xdy7RcXxnMmpjgEZ1QLoc9jmnGrUQqPDyud2FSWhW7OG26smexchO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8fc887513d8a5696-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6213&min_rtt=420&rtt_var=11559&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3279&recv_bytes=1247&delivery_rate=7757142&cwnd=254&unsent_bytes=0&cid=f4a4644ce59caa9b&ts=335&x=0"
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (10)

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/1.1

IP