Report - www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id

Report Overview

Submitted URL
www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
IP
104.18.20.247
ASN
#13335 CLOUDFLARENET
Submitted
2023-05-21 17:42:31
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.sg-bigpromo-76.com	unknown	unknown	2021-04-13	2023-04-01	16 kB	495 kB	104.18.21.247
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-05-21	1.1 kB	33 kB	216.58.207.227
static.cleverpush.com	16927	2016-03-30	2016-09-06	2023-05-21	442 B	221 kB	104.26.15.31
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-05-21	445 B	4.9 kB	142.250.74.74

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator
2023-05-21	medium	www.sg-bigpromo-76.com/_global/wingame/74/js/series.js?2023-05-18.1
2023-05-21	medium	www.sg-bigpromo-76.com/files/web/sponsor/_sponsoren/script_50.js
2023-05-21	medium	www.sg-bigpromo-76.com/_global/css/default.css?2023-05-18.1
2023-05-21	medium	www.sg-bigpromo-76.com/wingame/50/css/sweepstake.css?2023-05-18.1

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	www.sg-bigpromo-76.com/_global/js/scripts.js?2023-05-18.1	57 kB	2023-03-07	2023-05-28
Pretty URL www.sg-bigpromo-76.com/_global/js/scripts.js?2023-05-18.1 IP 104.18.21.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:39 Last Seen2023-05-28 17:27:42 Times Seen96 Hash 4eeb3045b35ec60ac8efdecc52a59c44 bc53e3f6d8cd4feb5bd63129e8cd27b6fef2b79d 0277c1245f8103772c6a4a0a401df99e3bf8de48b79d3fc7689106759b80070a Loading...

	www.sg-bigpromo-76.com/wingame/global/js/global.js?2023-05-18.1	495 B	2023-03-07	2023-05-25
Pretty URL www.sg-bigpromo-76.com/wingame/global/js/global.js?2023-05-18.1 IP 104.18.21.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12:47 Last Seen2023-05-25 19:33:01 Times Seen7 Hash 1b98ea3cb9f9d5125064031e36e955d6 ce14a655950d8464be8378ba4dcbb4bfa8477b59 41c9ca1210a14096e9078bd3d713390d07e5efb4bdd433f839dee3b0f0c25d61 Loading...

	www.sg-bigpromo-76.com/files/web/sponsor/_sponsoren/script_50.js	4.4 kB	2023-04-01	2023-05-25
Pretty URL www.sg-bigpromo-76.com/files/web/sponsor/_sponsoren/script_50.js IP 104.18.21.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:25:18 Last Seen2023-05-25 03:52:33 Times Seen5 Hash b5a1358135004b90e32e46ac7cbec795 f888c9a9bae167ab6d70b60be24ecf8641dd739d 253ff08d5957bed05ce4a1a9ee5d3974eaef63647c871e04417670dfbb9609b2 Loading...

	www.sg-bigpromo-76.com/_global/js/framework/MooTools-Core-1.6.0-compressed.js?2023-05-18.1	90 kB	2023-03-07	2024-03-27
Pretty URL www.sg-bigpromo-76.com/_global/js/framework/MooTools-Core-1.6.0-compressed.js?2023-05-18.1 IP 104.18.21.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:39 Last Seen2024-03-27 02:14:42 Times Seen143 Hash fcb1c635899fd1e781349468b8e5bb84 b9aa7889137b9f895effaf70bbf830346f205738 be0e66141e099739e90785e74a75e7aba4a5a3aa36c414e867c41f0ced9b0a36 Loading...

	www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2	107 B	2023-05-21	2023-05-21
Pretty URL www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2 IP 104.18.21.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-21 19:42:31 Last Seen2023-05-21 19:42:31 Times Seen1 Hash b6569188456004d800090c933a34bb03 33cee71b7b418159db106f38b089ed419ae041ad 29780654c765f47e974c725759ef69a2ab8c79573330bc370f06985447c0c476 Loading...

	www.sg-bigpromo-76.com/wingame/50/js/sweepstake.js?2023-05-18.1	3.0 kB	2023-03-08	2023-05-21
Pretty URL www.sg-bigpromo-76.com/wingame/50/js/sweepstake.js?2023-05-18.1 IP 104.18.21.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:06:52 Last Seen2023-05-21 19:42:31 Times Seen4 Hash 8d00fee382917cf48c50cbabb52372e2 ae18b425d6425f2c6676c86da167fe79ca436e62 59504615f381b121722bbcca0e8069cd63313ecdfd7e2a46d5dc8859358d3fa3 Loading...

	www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2	33 B	2023-03-07	2024-03-27
Pretty URL www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2 IP 104.18.21.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:11:39 Last Seen2024-03-27 02:14:42 Times Seen142 Hash 09a035e29ea6d0dc014a73cc7d4dccc0 e75a3da7b29e61396d79e4db8a01d879e4807360 4238d27bdd7b3cea5b12b7125e126fe578db472e52bc31ae63bd7755bf645cbe Loading...

	www.sg-bigpromo-76.com/cgi-bin/sandbox%20eval%20code	128 B	2023-05-06	2024-05-11
Pretty URL www.sg-bigpromo-76.com/cgi-bin/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-06 01:21:43 Last Seen2024-05-11 02:00:11 Times Seen21467 Hash 23c336606ee3a6d444b305153fa0e2e2 473a2111970ae2a94b373e656d20c4bd4184d703 305375d5052f6a14434d2d338f852f0f4f04fb26495f88a5d62b6afde2e2cc60 Loading...

	www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2	746 B	2023-05-21	2023-05-21
Pretty URL www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2 IP 104.18.21.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-21 19:42:31 Last Seen2023-05-21 19:42:31 Times Seen1 Hash 9f557fb999e6abbe7e5a8aba15579f3b 665b976a4b4a249d06bfe5da7d6e9da335988d87 caf48cb7e2cb3a94fe03b5cf47759f113c4f684825487c553572c39c1e76bf37 Loading...

	www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2	21 B	2023-03-08	2023-05-21
Pretty URL www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2 IP 104.18.21.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 16:06:52 Last Seen2023-05-21 19:42:31 Times Seen4 Hash 1498f344cab909b01adfae7c44f143d9 6cfac95206d6591601660ab6b0cf540cedd1f85d eb85cd214d8a9d6188d18c2245026d3717b67c6612f8a9d714d614c1fcda6eb5 Loading...

	www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2	1.1 kB	2023-03-07	2024-03-27
Pretty URL www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2 IP 104.18.21.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:11:39 Last Seen2024-03-27 02:14:42 Times Seen115 Hash f14a731981e984c04d08ef668d96d867 23f77eca9c9754fc400db2bfc242088b96ff4e1e 9e727340d7fb316cf59618a46bebc2e45ffcd55904bc1aceac7f4760e5827669 Loading...

	www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2	3.5 kB	2023-03-07	2024-01-09
Pretty URL www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2 IP 104.18.21.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:11:39 Last Seen2024-01-09 08:53:43 Times Seen24 Hash 60fc73f1db2b66a884b41438e678dcd1 e1151c0fd36699bfb79de308085af9c99d36e9c2 2e7406fa9d170fa4788a366eb21c16937c3fbcabce7b7dc0e24158a2a5f1cf87 Loading...

	static.cleverpush.com/channel/loader/3zxL2HhGxKQQZYwsP.js	220 kB	2023-05-21	2023-05-21
Pretty URL static.cleverpush.com/channel/loader/3zxL2HhGxKQQZYwsP.js IP 104.26.15.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-21 14:07:20 Last Seen2023-05-21 19:42:31 Times Seen2 Hash c968c23c3fe486a04b9bc0307d6f76d7 0db91fc0f1b1744573728657212665eea3af5b8f 0cacebc6f94ab124d80ef930397701641999f1c5b82682c9578dac2096d3ff5f Loading...

	unknown	142 B	2023-05-09	2023-05-21
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2023-05-09 08:16:48 Last Seen2023-05-21 19:42:31 Times Seen3 Hash d326d78dea6ec5293aa05ff24964a9a5 f74052462d90c851eb0340b2ab9507ff9c45f888 5d9fc8a1b8fabf1632a9159312f2ced88b4d856ecaf50daf254e760fa77192fa Loading...

	www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2	2.9 kB	2023-03-07	2024-03-27
Pretty URL www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2 IP 104.18.21.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:11:40 Last Seen2024-03-27 02:14:42 Times Seen142 Hash 8f844149e7f42121069aecaac33b39d1 470fa242d44e1f8d909200723c8680024860483e 1b694f99a79e26d1ef7459a6759cb3e4a6a7e7b6e3f1e199dce185d71b955f5a Loading...

	www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2	355 B	2023-03-10	2023-05-21
Pretty URL www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2 IP 104.18.21.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 22:32:21 Last Seen2023-05-21 19:42:31 Times Seen2 Hash cf270754042d9f7bc51805d10f52389b 59e9449f46a5c0712aeaae4ffc6a40ee6b40e9f7 9d858aa6aa10a371005948dd7ba23ece1d48f64ab426349e38ec89dabe045893 Loading...

	pagead2.googlesyndication.com/pagead/js/adsbygoogle.js	1.6 kB	2023-05-06	2024-05-11
Pretty URL pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-06 01:21:43 Last Seen2024-05-11 02:00:11 Times Seen21327 Hash 2e9e391ad98fbe1b2de0b7b4fa9ca904 21d7771223e8286a06ad878af425094a40de32b5 1468d954f25ab75355f3c0f42cd9c84efd64a67922c47d3b69bdb6d0eb399e69 Loading...

	www.sg-bigpromo-76.com/_global/wingame/74/js/series.js?2023-05-18.1	16 kB	2023-03-07	2024-01-09
Pretty URL www.sg-bigpromo-76.com/_global/wingame/74/js/series.js?2023-05-18.1 IP 104.18.21.247 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:59:20 Last Seen2024-01-09 08:53:43 Times Seen68 Hash a3f603406b47edd3f97e48640afbe427 146bb9b28184485d5bac01c11a6ac23f67fdbc71 398c728c2c48a8bacca49d082597c6de06028aa7adb9032c7c5cff08cc17ebaf Loading...

HTTP Transactions (30)

URL IP Response Size

www.sg-bigpromo-76.com/files/web/freetest/_images/image_1328_927_1663569111_cp_image_402_927_1663039668.png

104.18.21.247

200 OK

68 B

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/freetest/_images/image_1328_927_1663569111_cp_image_402_927_1663039668.png
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
978c1bee49d7ad5fc1a4d81099b13e18
afcb011cfe6b924f202ee9544f17f631b32a01b1
93ae7d494fad0fb30cbf3ae746a39c4bc7a0f8bbf87fbb587a3f3c01f3c5ce20

HTTP Headers

GET /files/web/freetest/_images/image_1328_927_1663569111_cp_image_402_927_1663039668.png HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: image/png
content-length: 68
last-modified: Mon, 19 Sep 2022 06:31:51 GMT
etag: "63280cd7-44"
x-map-context: sg
x-served-by: d-03
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cae9d5cae5bb51b-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2

104.18.21.247

200 OK

34 kB

URL User Request GET HTTP/2
www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
gzip compressed data, from Unix\012- data
Size
34 kB (34199 bytes)
Hash
205ee8e6897ce9096a0775b2c7a15968
57009acc042e3240d83d1338208ccb1a21f08e85
e5817aec4c53eb771c0731bb8cef187c8deafe2e3dab812066cc1a787d5f2bdd

HTTP Headers

GET /cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: text/html;charset=UTF-8
x-firstpage: 1
x-page: pregame
x-map-context: sg
x-served-by: d-04
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7cae9d580ddcb51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/files/web/freetest/_images/image_1328_929_1663569111_cp_image_402_929_1663039608.png

104.18.21.247

200 OK

40 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/freetest/_images/image_1328_929_1663569111_cp_image_402_929_1663039608.png
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
PNG image data, 420 x 410, 8-bit colormap, non-interlaced\012- data
Size
40 kB (39825 bytes)
Hash
3d086ee2081286d60e08552724a57d92
6dee7797d73f5768ac317d53e2a8e17bbd829170
affb4cf13fcc1e1e9a4609d92d7fac6d78e8a4df215372b48086c8b490e4affa

HTTP Headers

GET /files/web/freetest/_images/image_1328_929_1663569111_cp_image_402_929_1663039608.png HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: image/png
content-length: 39825
last-modified: Mon, 19 Sep 2022 06:31:51 GMT
etag: "63280cd7-9b91"
x-map-context: sg
x-served-by: d-02
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cae9d5cae5eb51b-OSL
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sg-bigpromo-76.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 03:11:48 GMT
expires: Sun, 19 May 2024 03:11:48 GMT
cache-control: public, max-age=31536000
age: 138625
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_SL_159_1678091836.jpg

104.18.21.247

200 OK

2.3 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_SL_159_1678091836.jpg
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 144x144, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, software=Adobe ImageReady], baseline, precision 8, 100x17, components 3\012- data
Size
2.3 kB (2276 bytes)
Hash
c9308349cf5d1c8103796b596a8e5fc0
8101fe8264dc8c44b6865b00ecdd1f8aa77aff28
80120da94e8614eaa82bbd93188e41763ea61e4e0b1b43e21f73e313d96fa5df

HTTP Headers

GET /files/web/sponsor/_logos/logo1_SL_159_1678091836.jpg HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: image/jpeg
content-length: 2276
last-modified: Mon, 06 Mar 2023 08:37:16 GMT
etag: "6405a63c-8e4"
x-map-context: sg
x-served-by: d-01
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cae9d5e8a30b51b-OSL
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.sg-bigpromo-76.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 07:44:41 GMT
expires: Sun, 19 May 2024 07:44:41 GMT
cache-control: public, max-age=31536000
age: 122252
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_542_1450867072.png

104.18.21.247

200 OK

1.3 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_542_1450867072.png
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
PNG image data, 100 x 30, 8-bit gray+alpha, non-interlaced\012- data
Size
1.3 kB (1302 bytes)
Hash
f482011337a1fd30d43c4c16fd6fae99
42b84caf4bee84f5e6bc2799d47ed421c0afa5ee
1491ba98acf990484c8a649bfb0f7bc6fe24c676463c76e93d418ca24ce145a3

HTTP Headers

GET /files/web/sponsor/_logos/logo1_542_1450867072.png HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: image/png
content-length: 1302
last-modified: Wed, 23 Dec 2015 10:37:53 GMT
etag: "567a7981-516"
x-map-context: sg
x-served-by: d-04
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cae9d5e8a2ab51b-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_229_1378106311.jpg

104.18.21.247

200 OK

1.2 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_229_1378106311.jpg
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
PNG image data, 100 x 30, 8-bit gray+alpha, non-interlaced\012- data
Size
1.2 kB (1194 bytes)
Hash
138269e0d78814c79c96bde6916e21a1
b044fd802f0e648fd22c19bae34a9dcf49a91c56
a7d53245b9c0e48179a6c4a7bc87df311e2fb325ff7c9e018d2e33d5dc518f8c

HTTP Headers

GET /files/web/sponsor/_logos/logo1_229_1378106311.jpg HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: image/jpeg
content-length: 1194
last-modified: Mon, 02 Sep 2013 07:18:32 GMT
etag: "52243bc8-4aa"
x-map-context: sg
x-served-by: d-01
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cae9d5e7a25b51b-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_27_1343995230.png

104.18.21.247

200 OK

2.6 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_27_1343995230.png
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
PNG image data, 80 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
2.6 kB (2601 bytes)
Hash
55b41c6934b3eff9839a40bf998099fc
83e0eeee1ad4d9347e675aacfa05dc286d37d3d8
e1f1d92ff6f91a4fd00415f1ba16805170ea4d9cc7a9a5503e686bd14593aaad

HTTP Headers

GET /files/web/sponsor/_logos/logo1_27_1343995230.png HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: image/png
content-length: 2601
last-modified: Mon, 13 Aug 2012 09:16:31 GMT
etag: "5028c5ef-a29"
x-map-context: sg
x-served-by: d-03
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cae9d5eaa77b51b-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_SL_323_1678091892.png

104.18.21.247

200 OK

2.3 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_SL_323_1678091892.png
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
PNG image data, 100 x 41, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2326 bytes)
Hash
0ffdc7cb35ded24491df46ebd5d67d68
adca0db5b228a4311d0f13fc4a4822f45d22d515
cebe3ed8ab722b10cb5b9d0e35160c88c5788c5b5202effbb22393ecbebec389

HTTP Headers

GET /files/web/sponsor/_logos/logo1_SL_323_1678091892.png HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: image/png
content-length: 2326
last-modified: Mon, 06 Mar 2023 08:38:12 GMT
etag: "6405a674-916"
x-map-context: sg
x-served-by: d-01
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cae9d5eaa72b51b-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_598_1460283616.png

104.18.21.247

200 OK

1.6 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_598_1460283616.png
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
PNG image data, 100 x 30, 8-bit gray+alpha, non-interlaced\012- data
Size
1.6 kB (1572 bytes)
Hash
24bdfcb8bb173ae36fd81f71add861b2
0c0f8e4067d7619f21673b7e5b10af58c2be0a5f
5f33894a704685ea707d161582c45b00901344b9b437895ba2d5e5472b9f5016

HTTP Headers

GET /files/web/sponsor/_logos/logo1_598_1460283616.png HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: image/png
content-length: 1572
last-modified: Sun, 10 Apr 2016 10:20:17 GMT
etag: "570a28e1-624"
x-map-context: sg
x-served-by: d-02
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cae9d5e8a2db51b-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_543_1527859615.png

104.18.21.247

200 OK

3.1 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_543_1527859615.png
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
PNG image data, 100 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
3.1 kB (3090 bytes)
Hash
2eb713ef53aa075ecfe0987f1d1e9705
83eecab3c02e550008c262e13458deee0936ce1d
33cc9ee62bc543336e1e48a8838497a51a8c765fee5f186d1c9ef8b500f893f5

HTTP Headers

GET /files/web/sponsor/_logos/logo1_543_1527859615.png HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: image/png
content-length: 3090
last-modified: Fri, 01 Jun 2018 13:26:55 GMT
etag: "5b11499f-c12"
x-map-context: sg
x-served-by: d-03
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cae9d5eaa71b51b-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_SL_193_1678091910.png

104.18.21.247

200 OK

17 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_SL_193_1678091910.png
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
PNG image data, 100 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
17 kB (17349 bytes)
Hash
526964466dc466a54df21ecc9be60370
bc7d8b0dd522690de6814d1e319260e0cd8b74b6
5f0371a9873c6e24598cd031ab75f734a1ddf368be86138c5e84b9c30ade3a5c

HTTP Headers

GET /files/web/sponsor/_logos/logo1_SL_193_1678091910.png HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: image/png
content-length: 17349
last-modified: Mon, 06 Mar 2023 08:38:30 GMT
etag: "6405a686-43c5"
x-map-context: sg
x-served-by: d-04
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cae9d5eaa7eb51b-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_static/_global/_supload/ctn/bgimg_iphone14_desk02.jpg

104.18.21.247

200 OK

85 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_static/_global/_supload/ctn/bgimg_iphone14_desk02.jpg
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2000x800, components 3\012- data
Size
85 kB (85344 bytes)
Hash
d5bce97c97c909af11047881de399478
e65878ef9e53c477ee022634c815a59e063b15f2
5b25c358c182779f18de94a1ff5336bfe949106203de93e0d0a03f5426feb5b4

HTTP Headers

GET /_static/_global/_supload/ctn/bgimg_iphone14_desk02.jpg HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: image/jpeg
content-length: 85344
etag: "2139092224"
last-modified: Tue, 13 Sep 2022 04:25:50 GMT
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cae9d5e8a3bb51b-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_187_1465355333.png

104.18.21.247

200 OK

997 B

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_187_1465355333.png
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
PNG image data, 100 x 30, 8-bit gray+alpha, non-interlaced\012- data
Size
997 B (997 bytes)
Hash
3a3be303f1052088f347199cbe63e9c4
3614cecaf00d641640c11111514dd9aeccab7b7e
9009291e97571a56c260b0b17998102a74f35b6d7d7f0377ab62441b78861b99

HTTP Headers

GET /files/web/sponsor/_logos/logo1_187_1465355333.png HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:21 GMT
content-type: image/png
content-length: 997
last-modified: Wed, 08 Jun 2016 03:08:53 GMT
etag: "57578c45-3e5"
x-map-context: sg
x-served-by: d-02
expires: Mon, 22 May 2023 17:42:21 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cae9d90bd88b51b-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_global/wingame/74/css/series.css?2023-05-18.1

104.18.21.247

200 OK

28 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_global/wingame/74/css/series.css?2023-05-18.1
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
gzip compressed data, from Unix\012- data
Size
28 kB (28141 bytes)
Hash
1d5a148984c215f8f1e6a09c5bd7c988
1c7a0f1ce6ec791b95c74878e44090d62779e307
2a73fcc9d0e7fe5d9fd64cf5ab659d1d8b8235a7a55f1cfb9d32f80083019214

HTTP Headers

GET /_global/wingame/74/css/series.css?2023-05-18.1 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 19 Apr 2022 09:50:17 GMT
etag: W/"625e85d9-616e"
x-map-context: sg
x-served-by: d-01
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 7cae9d5c9e27b51b-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/wingame/global/js/global.js?2023-05-18.1

104.18.21.247

200 OK

495 B

URL GET HTTP/2
www.sg-bigpromo-76.com/wingame/global/js/global.js?2023-05-18.1
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
ASCII text, with very long lines (533), with no line terminators
Size
495 B (495 bytes)
Hash
a5d475095dc12ed0ca5748a67548b829
7fcdb8af086e891ed794d2a5dc7976bfb50a3030
fbc9fb6da0227c2018070be166ff9453327342f5d5e0bf6d82b2df778dc72bff

HTTP Headers

GET /wingame/global/js/global.js?2023-05-18.1 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: application/javascript
last-modified: Tue, 19 May 2020 09:57:38 GMT
etag: W/"5ec3ad92-1ef"
x-map-context: sg
x-served-by: d-01
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cae9d5c9e30b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/wingame/50/js/sweepstake.js?2023-05-18.1

104.18.21.247

200 OK

3.0 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/wingame/50/js/sweepstake.js?2023-05-18.1
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
Unicode text, UTF-8 text, with very long lines (3460), with no line terminators
Size
3.0 kB (2979 bytes)
Hash
825c35a4a6016d85591d36ff74ae4ffb
f48690dd193d4019ecb49713699ca7137a4f166c
71951897539d89c008f4089792b7660d7267ebdb1e7b8100804e87ded82e4d3e

HTTP Headers

GET /wingame/50/js/sweepstake.js?2023-05-18.1 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 08 Jun 2020 08:52:50 GMT
etag: W/"5eddfc62-ba3"
x-map-context: sg
x-served-by: d-02
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 7cae9d5c9e38b51b-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_global/wingame/74/js/series.js?2023-05-18.1

104.18.21.247

200 OK

16 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_global/wingame/74/js/series.js?2023-05-18.1
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
ASCII text, with CRLF line terminators
Size
16 kB (15956 bytes)
Hash
a3f603406b47edd3f97e48640afbe427
146bb9b28184485d5bac01c11a6ac23f67fdbc71
398c728c2c48a8bacca49d082597c6de06028aa7adb9032c7c5cff08cc17ebaf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /_global/wingame/74/js/series.js?2023-05-18.1 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 25 Nov 2020 12:42:01 GMT
etag: W/"5fbe5119-3e54"
x-map-context: sg
x-served-by: d-04
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 7cae9d5c9e35b51b-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/files/web/sponsor/_sponsoren/script_50.js

104.18.21.247

200 OK

4.4 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/sponsor/_sponsoren/script_50.js
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
ASCII text, with very long lines (4768), with no line terminators
Size
4.4 kB (4365 bytes)
Hash
147d01a4cc9f7a49c4a1ec4dc02ed9d7
2af661b6c10a99893ab6c5f4e87005c2370d0c9a
1dfc21a8006600a0d98c0c8fea19cc7450fc20ba2c978437a662d6a84aa4f2ae

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /files/web/sponsor/_sponsoren/script_50.js HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 02 May 2023 01:57:25 GMT
etag: W/"64506e05-110d"
x-map-context: sg
x-served-by: d-01
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 7cae9d5c9e40b51b-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_global/css/default.css?2023-05-18.1

104.18.21.247

200 OK

4.3 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_global/css/default.css?2023-05-18.1
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
ASCII text, with very long lines (4867), with no line terminators
Size
4.3 kB (4327 bytes)
Hash
979e7f4f16db62dc03e265fb74cf8d64
a994dfb7178572942d60a05747966480a1513da2
5545e033de41f35be8edbaa69028a5ec0d6cbe660ad2ccb48294ed354372d521

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /_global/css/default.css?2023-05-18.1 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 18 Feb 2019 07:52:24 GMT
etag: W/"5c6a6438-10e7"
x-map-context: sg
x-served-by: d-01
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 7cae9d5c9e20b51b-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/wingame/50/css/sweepstake.css?2023-05-18.1

104.18.21.247

200 OK

6.2 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/wingame/50/css/sweepstake.css?2023-05-18.1
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
ASCII text, with very long lines (7220), with no line terminators
Size
6.2 kB (6202 bytes)
Hash
8557ba3b714244d80d2bb052f36c18f4
d9954e5d077517566e85eeef17cf59689ae82b7e
78d4401b6e1f960dde855f076123dac460999eb3072aa63aec0c490076553219

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wingame/50/css/sweepstake.css?2023-05-18.1 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 07 Nov 2022 14:24:35 GMT
etag: W/"63691523-183a"
x-map-context: sg
x-served-by: d-02
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 7cae9d5c9e2bb51b-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/favicon.ico

104.18.21.247

200 OK

4.3 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/favicon.ico
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size
4.3 kB (4286 bytes)
Hash
e32631de14608a9139996d154f202fe5
b2dfca79e03b920671eb0d3d5c22624842acd77e
cfcbfb5eaecbd33f2a41c62af52149e05a38606716e556d49d06edd286628162

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: image/x-icon
last-modified: Mon, 04 May 2020 09:08:58 GMT
etag: W/"5eafdbaa-10be"
x-map-context: sg
x-served-by: d-04
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cae9d601cc2b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_global/js/scripts.js?2023-05-18.1

104.18.21.247

200 OK

57 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_global/js/scripts.js?2023-05-18.1
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
ASCII text
Size
57 kB (56730 bytes)
Hash
4eeb3045b35ec60ac8efdecc52a59c44
bc53e3f6d8cd4feb5bd63129e8cd27b6fef2b79d
0277c1245f8103772c6a4a0a401df99e3bf8de48b79d3fc7689106759b80070a

HTTP Headers

GET /_global/js/scripts.js?2023-05-18.1 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 21 Jul 2022 07:31:48 GMT
etag: W/"62d900e4-dd9a"
x-map-context: sg
x-served-by: d-01
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 7cae9d5c9e2eb51b-OSL
X-Firefox-Spdy: h2

static.cleverpush.com/channel/loader/3zxL2HhGxKQQZYwsP.js

104.26.15.31

200 OK

220 kB

URL GET HTTP/2
static.cleverpush.com/channel/loader/3zxL2HhGxKQQZYwsP.js
IP
104.26.15.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectcleverpush.com
Fingerprint3E:DA:9F:E1:93:1E:91:5C:83:38:F4:83:66:E4:7F:43:A9:57:1D:BE
ValidityFri, 12 May 2023 02:45:12 GMT - Thu, 10 Aug 2023 02:45:11 GMT

File type

Size
220 kB (220412 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /channel/loader/3zxL2HhGxKQQZYwsP.js HTTP/1.1
Host: static.cleverpush.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: application/javascript
x-amz-id-2: Lvy7fAGNqSxhG8+iLUPauvVbB9rRh0GX9yDvjHy0hJrKPU5fbYifzs6sZNX0mlpEXszwdSnjf6A=
x-amz-request-id: XZGJ945X6PPGDWQP
last-modified: Sun, 21 May 2023 00:39:35 GMT
etag: W/"c968c23c3fe486a04b9bc0307d6f76d7"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=21600
cf-cache-status: HIT
age: 20116
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WfnKXJPQ0%2Faii8RkQ1hH0rMa09UnldUUmiycUUtGqNJekDo4yEtTu%2BQVhmjOLpmb559yN3pTsGF7s7Iyf7Y%2BXHu52vB5Fi0J6JmH9KNzjp30zOvbcOES0u4nZ35zGd1yJX35LxVLPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cae9d5cdb5eb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_global/fonts/font-awesome-4.6.3/css/font-awesome.min.css?2023-05-18.1

104.18.21.247

200 OK

29 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_global/fonts/font-awesome-4.6.3/css/font-awesome.min.css?2023-05-18.1
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
ASCII text, with very long lines (491)
Size
29 kB (29127 bytes)
Hash
4c3b770fb17187989128fc8e56a13a86
ace520fb96e6d645e9abce1a38035a540493d516
2915756289e00f26ea66d2cfbdddb890bf2eaed1823e2d4b5855f49eea567064

HTTP Headers

GET /_global/fonts/font-awesome-4.6.3/css/font-awesome.min.css?2023-05-18.1 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 18 Aug 2016 09:52:51 GMT
etag: W/"57b58573-71c7"
x-map-context: sg
x-served-by: d-01
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 7cae9d5c9e24b51b-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/_global/js/framework/MooTools-Core-1.6.0-compressed.js?2023-05-18.1

104.18.21.247

200 OK

90 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/_global/js/framework/MooTools-Core-1.6.0-compressed.js?2023-05-18.1
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
ASCII text, with very long lines (32043)
Size
90 kB (89700 bytes)
Hash
fcb1c635899fd1e781349468b8e5bb84
b9aa7889137b9f895effaf70bbf830346f205738
be0e66141e099739e90785e74a75e7aba4a5a3aa36c414e867c41f0ced9b0a36

HTTP Headers

GET /_global/js/framework/MooTools-Core-1.6.0-compressed.js?2023-05-18.1 HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 10 Nov 2017 11:48:17 GMT
etag: W/"5a059201-15e64"
x-map-context: sg
x-served-by: d-03
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 7cae9d5c9e2db51b-OSL
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:400,700

142.250.74.74

200 OK

4.2 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:400,700
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT

File type
ASCII text, with very long lines (4344), with no line terminators
Size
4.2 kB (4232 bytes)
Hash
6080cbbfa58c38e5e9e40306bd5e042e
25c1cc9f1bda62cdcc52a01137f64fbe90aabfab
a1c1cc93a44fde9e99200bdb8fb2e795943ceda0b78c39c248c90f7b5a81c2f0

HTTP Headers

GET /css?family=Roboto:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 21 May 2023 17:42:13 GMT
date: Sun, 21 May 2023 17:42:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/files/web/freetest/_images/image_1328_925_1663569111_cp_image_402_925_1663039608.png

104.18.21.247

200 OK

26 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/freetest/_images/image_1328_925_1663569111_cp_image_402_925_1663039608.png
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
PNG image data, 420 x 410, 8-bit colormap, non-interlaced\012- data
Size
26 kB (25691 bytes)
Hash
c4a93417ffb8931c2a8d4cf5de317a4c
a49eb938a121831c1215907875c74745279d9b62
62049ac7a8d1625da156bb954772e6c6751af3326608a8fee686e7cd277367e1

HTTP Headers

GET /files/web/freetest/_images/image_1328_925_1663569111_cp_image_402_925_1663039608.png HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:13 GMT
content-type: image/png
content-length: 25691
last-modified: Mon, 19 Sep 2022 06:31:51 GMT
etag: "63280cd7-645b"
x-map-context: sg
x-served-by: d-03
expires: Mon, 22 May 2023 17:42:13 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cae9d5cae57b51b-OSL
X-Firefox-Spdy: h2

www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_189_1455776285.jpg

104.18.21.247

200 OK

23 kB

URL GET HTTP/2
www.sg-bigpromo-76.com/files/web/sponsor/_logos/logo1_189_1455776285.jpg
IP
104.18.21.247:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Certificate
IssuerLet's Encrypt
Subjectwww.sg-bigpromo-76.com
FingerprintA4:35:8F:6C:17:F0:DE:F8:E9:CD:D8:DB:4D:C0:48:5D:94:10:EA:9C
ValidityWed, 05 Apr 2023 19:12:22 GMT - Tue, 04 Jul 2023 19:12:21 GMT

File type
PNG image data, 100 x 30, 8-bit gray+alpha, non-interlaced\012- data
Size
23 kB (22881 bytes)
Hash
38097d3809b2db32754adcf0556aa5e9
59276af6681a42aa27a44a5debbb696d21eb086f
a7b6cb184cbefadfed80369fd650d6bb415e7cdab7f4fb42ad929a208295ce5d

HTTP Headers

GET /files/web/sponsor/_logos/logo1_189_1455776285.jpg HTTP/1.1
Host: www.sg-bigpromo-76.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.sg-bigpromo-76.com/cgi-bin/wingame.pl?partner_pk=580&wingame_pk=50&freetest_pk=1328&sub_id=3518-15914&sub_id_postback=102aa8a2fe533b35a0d0cff98159e2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 21 May 2023 17:42:21 GMT
content-type: image/jpeg
content-length: 22881
last-modified: Thu, 18 Feb 2016 06:18:07 GMT
etag: "56c5621f-5961"
x-map-context: sg
x-served-by: d-02
expires: Mon, 22 May 2023 17:42:21 GMT
cache-control: public, max-age=86400
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cae9d90bd98b51b-OSL
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML