Report - www.2026bet365j.com/

Report Overview

Submitted URL
www.2026bet365j.com/
IP
103.188.120.97
ASN
#0
Submitted
2023-02-08 16:05:46
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
134

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.2026bet365j.com	unknown	2023-01-08T16:05:47Z	2023-02-08T16:34:24Z	20 kB	847 kB	103.183.199.71
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	60 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.7 kB	7.1 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	35.83.22.170

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365
2023-02-08	medium	www.2026bet365j.com/	Bet365

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-08	medium	www.2026bet365j.com/	Phishing
2023-02-08	medium	www.2026bet365j.com/	Phishing
2023-02-08	medium	www.2026bet365j.com/theme.config.44d1ee51.js	Phishing
2023-02-08	medium	www.2026bet365j.com/js/chunk-common.81d7a84a.js	Phishing
2023-02-08	medium	www.2026bet365j.com/js/index.e38ee93e.js	Phishing
2023-02-08	medium	www.2026bet365j.com/js/chunk-vendors.1f6ff71b.js	Phishing
2023-02-08	medium	www.2026bet365j.com/js/home.0b9907d2.js	Phishing
2023-02-08	medium	www.2026bet365j.com/js/pc.floatpopup.57aec2f4.js	Phishing
2023-02-08	medium	www.2026bet365j.com/js/pc.scene171floatslider.283a6188.js	Phishing
2023-02-08	medium	www.2026bet365j.com/js/pc.scene171home.d66f5cac.js	Phishing
2023-02-08	medium	www.2026bet365j.com/js/pc.scene171header.1feb6eee.js	Phishing
2023-02-08	medium	www.2026bet365j.com/js/pc.scence171homefooter.666b663f.js	Phishing
2023-02-08	medium	www.2026bet365j.com/api/tenant/float/list	Phishing
2023-02-08	medium	www.2026bet365j.com/api/config/system	Phishing
2023-02-08	medium	www.2026bet365j.com/api/banner/list	Phishing
2023-02-08	medium	www.2026bet365j.com/api/game/gameBarNew	Phishing
2023-02-08	medium	www.2026bet365j.com/kc215/noData/cms_noimg.png?1673924680626	Phishing
2023-02-08	medium	www.2026bet365j.com/kc215/noData/cms_game_noimg.png?1673924680626	Phishing
2023-02-08	medium	www.2026bet365j.com/api/tenant/domain/list	Phishing
2023-02-08	medium	www.2026bet365j.com/kc215/logo/logo.png?1673924680626	Phishing
2023-02-08	medium	www.2026bet365j.com/js/42480.6271432b.js	Phishing
2023-02-08	medium	www.2026bet365j.com/js/81354.ac91c7ab.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (16)

	URL	Size	First Seen	Last Seen
	www.2026bet365j.com/js/81354.ac91c7ab.js	55 kB	2023-03-08	2023-12-12
Pretty URL www.2026bet365j.com/js/81354.ac91c7ab.js IP 103.183.199.71 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:23:49 Last Seen2023-12-12 15:18:07 Times Seen941 Hash 58758475c20f3eaabe726a5d412a3d53 d8c55eb2e3545b9ca4a8be736b7d1b7d1c7cae49 e913a3f7434cc135875794d8d3298f2c638463e46de474dd584b1509972c67b8 Loading...

	www.2026bet365j.com/	459 B	2023-03-12	2023-03-13
Pretty URL www.2026bet365j.com/ IP 103.183.199.71 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:41:22 Last Seen2023-03-13 22:37:21 Times Seen1 Hash e9fefb93a63617d60c3210c2b9ae6470 e0362e032b97390fb8c86cc7a255f21d13056bd7 92df41397d3ca098db56479e2db6849ba355aeb941e5eaba167bd37c99165bdf Loading...

	www.2026bet365j.com/	36 B	2023-03-08	2023-11-03
Pretty URL www.2026bet365j.com/ IP 103.183.199.71 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:23:49 Last Seen2023-11-03 04:35:43 Times Seen128 Hash 49bea4e1330b9d3f17c1c143ce23cb3e 3a8874032b5979ba1fadfe141c0ebf28baa32fc7 07f2a8f457d336c5a0cb2267f53a4be2676d30140da225305675f4b3957eb68c Loading...

	www.2026bet365j.com/	536 B	2023-03-08	2023-04-05
Pretty URL www.2026bet365j.com/ IP 103.183.199.71 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:23:49 Last Seen2023-04-05 01:38:38 Times Seen126 Hash bcc2efec6ca86fca4f05f277c2126811 8bcd60e121821969ab1b0606ab8668c31296b838 58f68883d9cb5628d610a138125da60f0f96a5182fd7228eb9bcb4620adec24c Loading...

	www.2026bet365j.com/theme.config.44d1ee51.js	102 kB	2023-03-13	2023-03-13
Pretty URL www.2026bet365j.com/theme.config.44d1ee51.js IP 103.183.199.71 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:20:39 Last Seen2023-03-13 22:37:21 Times Seen1 Hash 80865fb70e16e3ed2cd6a3b9129bb9dd e1b5885b607ffe9b1e63236707665ebdefd3f12a 8aff119257459ae013778ae9e04eab98cd980a495c7731d6a0f7c0f37dd681c8 Loading...

	www.2026bet365j.com/js/pc.floatpopup.57aec2f4.js	4.2 kB	2023-03-12	2023-08-04
Pretty URL www.2026bet365j.com/js/pc.floatpopup.57aec2f4.js IP 103.183.199.71 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 17:09:35 Last Seen2023-08-04 01:37:29 Times Seen153 Hash 3532ec69a215982502ff99ec4efe69d2 142b08a5269b68995b4a49cc8bece306c2f068e0 eb60fa8eb3ef1d68416f743f6edcd1f746c6d884f10109b7dd4b4276b5451074 Loading...

	www.2026bet365j.com/js/pc.scene171header.1feb6eee.js	39 kB	2023-03-13	2023-04-13
Pretty URL www.2026bet365j.com/js/pc.scene171header.1feb6eee.js IP 103.183.199.71 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:20:39 Last Seen2023-04-13 07:01:15 Times Seen4 Hash b699ba34554e5427abba1a8f4280281c bf447f8290f90c73b30243f2f8c9a7bedf1113d5 d31fe9765a02800a935f2187f6f9db0313165fd76ef819a8a6609375d8630c69 Loading...

	www.2026bet365j.com/	1.1 kB	2023-03-08	2023-04-05
Pretty URL www.2026bet365j.com/ IP 103.183.199.71 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:44:44 Last Seen2023-04-05 01:38:38 Times Seen126 Hash 0cf7a3fd268792d144e0aa8bd34c3482 554df030be25327053666070b717f3c40d83a8e3 6ae42a98f031edf6ecc71cda26b09e2ed388a3095acd86d7ef23c5750eea38de Loading...

	www.2026bet365j.com/js/pc.scene171home.d66f5cac.js	9.6 kB	2023-03-13	2023-04-13
Pretty URL www.2026bet365j.com/js/pc.scene171home.d66f5cac.js IP 103.183.199.71 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:20:39 Last Seen2023-04-13 07:01:15 Times Seen4 Hash 3566cadcbe0f2840706fc2da72358624 8892e25221e3c15b53445ea5b3acb6835e9cce61 8c42416e56ed8c143d6dfc69a3917647b9471a6012854d2d8ee11ad38a2dcfdb Loading...

	www.2026bet365j.com/js/index.e38ee93e.js	333 kB	2023-03-13	2023-03-13
Pretty URL www.2026bet365j.com/js/index.e38ee93e.js IP 103.183.199.71 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:20:39 Last Seen2023-03-13 22:37:21 Times Seen1 Hash 2d37c5d66cb049b9dae22e2aa083cfc0 7ec11d148193e0d0abe1bee9217a673ab3a681e2 73c341b6ce8f72653c445773f97cb469e1616ead760b3ac25afa413a3c8525fc Loading...

	www.2026bet365j.com/js/home.0b9907d2.js	1.4 kB	2023-03-13	2023-04-12
Pretty URL www.2026bet365j.com/js/home.0b9907d2.js IP 103.183.199.71 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:20:39 Last Seen2023-04-12 21:19:58 Times Seen9 Hash 64d3ebcf27b28fac82d4544dbd97d843 c7e339688b4d1272af9b1fffbe33daf37d1cf3c4 e5634d99f73596a4c0bbf7abc6af010204158be04ad281b9ab27cce7b36d35c5 Loading...

	www.2026bet365j.com/js/chunk-common.81d7a84a.js	249 kB	2023-03-13	2023-03-13
Pretty URL www.2026bet365j.com/js/chunk-common.81d7a84a.js IP 103.183.199.71 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:20:39 Last Seen2023-03-13 22:37:21 Times Seen1 Hash 70694f43da490a46fd29482264fc12f9 7ab5561baca965c505329d3654ee3433a66b756d a79ee5e9fed46c9a27a7b9b5bb2992580b7b27ace91ab4265f3efeb98a8168bc Loading...

	www.2026bet365j.com/	434 B	2023-03-08	2023-04-05
Pretty URL www.2026bet365j.com/ IP 103.183.199.71 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:23:49 Last Seen2023-04-05 01:38:38 Times Seen119 Hash ebfb91a8f8326fcfbc6199f15d402633 32f9e421a5968f9887ba7f8f1d99526c60906499 baff60f828dd9707265d163a4d1c6c0fe1ddcf76039f1780935ed492314779ba Loading...

	www.2026bet365j.com/js/pc.scene171floatslider.283a6188.js	3.8 kB	2023-03-13	2023-07-19
Pretty URL www.2026bet365j.com/js/pc.scene171floatslider.283a6188.js IP 103.183.199.71 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 01:58:05 Last Seen2023-07-19 02:03:23 Times Seen295 Hash e081cc48065f573cabc709efa010129a 908c95ff575750685705bc531956268de9386721 0a927036fbdd98f0caba60d4a5eae2375973b00dcf7f4a86811849313b7ca3d2 Loading...

	www.2026bet365j.com/js/pc.scence171homefooter.666b663f.js	4.0 kB	2023-03-12	2023-07-19
Pretty URL www.2026bet365j.com/js/pc.scence171homefooter.666b663f.js IP 103.183.199.71 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:54:44 Last Seen2023-07-19 02:03:23 Times Seen122 Hash 5243edbda158a4b4ba6f30f762359a38 daad52b09cb25d1cef58db501c32c2c8a7e30edc e2536be364d3988180db71b07171cc45177ffd27c04baa95cfd51044da43c58e Loading...

	www.2026bet365j.com/js/42480.6271432b.js	75 B	2023-03-08	2023-12-12
Pretty URL www.2026bet365j.com/js/42480.6271432b.js IP 103.183.199.71 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:23:49 Last Seen2023-12-12 15:18:07 Times Seen1004 Hash 6c6f95c1c4a9b0768a7c8122a384e603 26e3ed3483802652f86fb66d1ee431afbdcc42fe 1ea142e3274580463ead5ef373b4e9b815bff5d1165b6a9737827deb5c70dcd6 Loading...

HTTP Transactions (65)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b7407cc102d62a5acd5e61f8a79bed36
c2f4890a62454e514962b55b7fc14228339c8e90
be282de92da261128a7c8471f3067466aa9930fd0ab2a2cdda8cd2d6ce2bbd74

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE282DE92DA261128A7C8471F3067466AA9930FD0AB2A2CDDA8CD2D6CE2BBD74"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5894
Expires: Wed, 08 Feb 2023 17:43:48 GMT
Date: Wed, 08 Feb 2023 16:05:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9087
Expires: Wed, 08 Feb 2023 18:37:01 GMT
Date: Wed, 08 Feb 2023 16:05:34 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 15:36:40 GMT
content-type: application/json
age: 1734
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5003
Expires: Wed, 08 Feb 2023 17:28:57 GMT
Date: Wed, 08 Feb 2023 16:05:34 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: mEtQY9KYksy5vDZgkXfZ03rlY+TcN350/GsKFo9//kkq5YjNfZBEH/TcBLu8NFF0BEp+T0jKLyM=
x-amz-request-id: CE2SCRS88AA744YT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 15:35:59 GMT
age: 1775
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 16:05:34 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 15:51:20 GMT
age: 854
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2207
Expires: Wed, 08 Feb 2023 16:42:22 GMT
Date: Wed, 08 Feb 2023 16:05:35 GMT
Connection: keep-alive

push.services.mozilla.com/

35.83.22.170

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.83.22.170:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Yqh8qi2/nxXxneTUBtS7/g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xXztX0yVh+IDDkcsZ8CfdBYiEN0=

www.2026bet365j.com/

103.183.199.71

301 Moved Permanently

0 B

URL HTTP/1.1
www.2026bet365j.com/
IP
103.183.199.71:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.1
Date: Wed, 08 Feb 2023 16:05:35 GMT
Location: https://www.2026bet365j.com/
Content-Length: 0

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
555479985a05365bdcb79b8f6318cbb8
334f11607dbab67cceb574e895d692e7f6b19b42
ca1d8f610715089e2562ef7624e56a2e650c03426a70d11d93ef1595186dc995

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA1D8F610715089E2562EF7624E56A2E650C03426A70D11D93EF1595186DC995"
Last-Modified: Tue, 07 Feb 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21577
Expires: Wed, 08 Feb 2023 22:05:13 GMT
Date: Wed, 08 Feb 2023 16:05:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9033
Expires: Wed, 08 Feb 2023 18:36:09 GMT
Date: Wed, 08 Feb 2023 16:05:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9033
Expires: Wed, 08 Feb 2023 18:36:09 GMT
Date: Wed, 08 Feb 2023 16:05:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9033
Expires: Wed, 08 Feb 2023 18:36:09 GMT
Date: Wed, 08 Feb 2023 16:05:36 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11205 bytes)
Hash
aa6c416b3a87ded887c9dcf7c51e5dd0
45f4ef9e68591c00669043abe96959bead8f17ae
9e10394b387916e40c44d4e02fbc1ea72214d870df189ce16d24015de00682bf

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11205
x-amzn-requestid: abdf9c40-a2b7-49ae-bea1-ff5abfcea781
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fvszZFOZoAMFkNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc8e7b-6e508da05ff6f33e691de130;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 04:33:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hLrbI5Acy2RBlg7VqGE2b83zuqgt-bx0kD0nlH8uYaJ8tii2FqMLfw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:55:58 GMT
age: 65378
etag: "45f4ef9e68591c00669043abe96959bead8f17ae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6342 bytes)
Hash
d8a3fa4f1ec82d501942f9db3de2cb7d
b91c2aea7f2fb26131c8929b254c5596a1bb25ff
9d246eeab8ba04c775a03fd960c8859934a0accb737e845e89aba40bc573fdaa

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6342
x-amzn-requestid: b2b61a71-5326-4fc6-baba-7baad29cf7c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkbHfDIAMF5AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c482-5cc4028d01d05305637af317;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: iIQAy6CQSvnvQ79UJ6ifJbs-0kEqUYe8OyCqPb2HSKxoDoLykOyaLg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:52:28 GMT
age: 65588
etag: "b91c2aea7f2fb26131c8929b254c5596a1bb25ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5708e132-62b1-4b5b-aa88-fe22e522eb0e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6838 bytes)
Hash
4b327816bc2c6fd7291c75c693685d54
771070be61d0724b1c90ca86ea34c804bd7e501a
d45188239cacc7b228bc75ccc95afb48914aaa434c418cd5b786533e8b9cb983

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5708e132-62b1-4b5b-aa88-fe22e522eb0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6838
x-amzn-requestid: 54fc5ae9-d37a-46cf-97e0-d05de1417cfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7QEsCoAMFY1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-40de6212468fcd0e78a93708;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mgfr5wO7Bj5BVjKYY7O0c4ogLognfq09QrA9khZROr2CVyOWgKTz1g==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:52:35 GMT
age: 65581
etag: "771070be61d0724b1c90ca86ea34c804bd7e501a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffcee4072-2c9e-4db4-b200-065a1ef67ace.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10202 bytes)
Hash
f175de8eebe398f5de2829cd551b3f04
e6da63e9b03289bfded190d999a20da78232437c
b5d1ee4bd6186cbac1e4ac037766c9e453e166b0cfb2e08004cb11b8bb7daa88

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffcee4072-2c9e-4db4-b200-065a1ef67ace.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10202
x-amzn-requestid: 15e6c7ee-acef-4638-9a15-a01864ac74f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PEYFZOoAMFzEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c54f-3681217a71e5b9472b9cdb8a;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: PyOVGtKFSYIU2don5C7_L_pTUxdP_VEAhLZUhtBWo2PZ4kvPqaTg9g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:55:22 GMT
etag: "e6da63e9b03289bfded190d999a20da78232437c"
content-type: image/jpeg
age: 65414
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12216 bytes)
Hash
fe800d6af728cd622a6192ad5e7dda6a
3a301dd894fc428c7d1863c9d5eaf2652f5c2083
f4923c211ef24e933bbe73bd8d2033d6b6da4a9fa0c9d4699a1041a7bd8bf5a2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12216
x-amzn-requestid: cc61a63b-35fe-4bfa-ad20-1db3f4165446
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7LFrCIAMFoYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-2b5e27c62218510b74ea0989;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Cf13Lp2SFHQ4SSF6_KpC4zx339tZRkMmnmF-OKM_2hbWbIoR3OLJ_g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:50:49 GMT
age: 65687
etag: "3a301dd894fc428c7d1863c9d5eaf2652f5c2083"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92b2ed55-154e-4ed7-a7ab-1418742cdf6e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7303 bytes)
Hash
7543be9bef0afb8f61344286b7136dd7
e1537aa408cde39d2a314cc2a14f7f7a04a84eb1
162f0898f88d84c8d06542e48e8ff6a903e638f2a837f32681ae1f5e28ae40d7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92b2ed55-154e-4ed7-a7ab-1418742cdf6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7303
x-amzn-requestid: 081c79e9-2b23-47ad-8b7d-7197c5515c0c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f58kdHMvIAMFdzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a7b5-66fca524070e374310920915;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:09:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: SU23ljJF5eIu0L9YNQOtZlwuMHs9Ri91iu2-YS9v2pNBA-pkJYU2SA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 05:01:33 GMT
age: 39843
etag: "e1537aa408cde39d2a314cc2a14f7f7a04a84eb1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.2026bet365j.com/

103.183.199.71

200 OK

2.1 kB

URL HTTP/1.1
www.2026bet365j.com/
IP
103.183.199.71:0
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (445)
Size
2.1 kB (2127 bytes)
Hash
21a94e9a1974a6ecd661a3c219f51e9b
460f0ff078f49f070d73a99a860650bbd36e2e28
b669cd31ba000348c87624784bfc5df7cbfbe7f9257615cc84517d86b5b960f1

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Server: openresty
Date: Wed, 08 Feb 2023 16:05:36 GMT
Content-Type: text/html
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: MISS from ty8-cdn199-061
Transfer-Encoding: chunked

www.2026bet365j.com/theme.config.44d1ee51.js

103.183.199.71

200 OK

17 kB

URL HTTP/1.1
www.2026bet365j.com/theme.config.44d1ee51.js
IP
103.183.199.71:0
ASN
#0

File type
HTML document, Unicode text, UTF-8 text, with very long lines (42210)
Size
17 kB (17167 bytes)
Hash
77a23cbfbff00b75223a9bebc77cbe63
3db08b2ec071d41a46e6030ff7de948047e967f3
2ca8bfe4b25ab828c04f525cfc405e28df7c71fd225d1494c2cd223f4081e714

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /theme.config.44d1ee51.js HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c6110c-18e10"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:05 GMT
Content-Type: application/javascript
Last-Modified: Tue, 17 Jan 2023 03:07:56 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 17167

www.2026bet365j.com/js/chunk-common.81d7a84a.js

103.183.199.71

200 OK

77 kB

URL HTTP/1.1
www.2026bet365j.com/js/chunk-common.81d7a84a.js
IP
103.183.199.71:0
ASN
#0

File type
ASCII text, with very long lines (65536), with no line terminators
Size
77 kB (76620 bytes)
Hash
20666e6cf458952a35a076eef054b152
a56587d41d245182d13d50e6d08b62fb0408235b
cb326f557ac49607d93826fe500d76c67e91b78213937a82f7d18ccd60e96cd7

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /js/chunk-common.81d7a84a.js HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61106-3cc13"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:05 GMT
Content-Type: application/javascript
Last-Modified: Tue, 17 Jan 2023 03:07:50 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 76620

www.2026bet365j.com/css/index.6d2fe930.css

103.183.199.71

200 OK

37 kB

URL HTTP/1.1
www.2026bet365j.com/css/index.6d2fe930.css
IP
103.183.199.71:0
ASN
#0

File type
ASCII text, with very long lines (65536), with no line terminators
Size
37 kB (36912 bytes)
Hash
cb4cdc81f02cf952d0ff9ac47249264e
98898ef6d16605357ac86393cc3e4f9db54d2287
fa535d617e8aba3ff1fe173d6ac873b54aed8e00e732a0f0976f2812ea3cc5c5

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /css/index.6d2fe930.css HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c610fe-15c75"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:04 GMT
Content-Type: text/css
Last-Modified: Tue, 17 Jan 2023 03:07:42 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 36912

www.2026bet365j.com/css/chunk-vendors.090d1983.css

103.183.199.71

200 OK

22 kB

URL HTTP/1.1
www.2026bet365j.com/css/chunk-vendors.090d1983.css
IP
103.183.199.71:0
ASN
#0

File type
ASCII text, with very long lines (65536), with no line terminators
Size
22 kB (21757 bytes)
Hash
7c0e83d7b77325e4d435540742bfeef0
785b23a595d0075f5238e33caa7439553a70dd6c
4d9de2e1bdb70a6667e5666d217fd1acd76b9d6e88f4f117ac5f9992b57e890b

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /css/chunk-vendors.090d1983.css HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c610fe-28f34"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:02 GMT
Content-Type: text/css
Last-Modified: Tue, 17 Jan 2023 03:07:42 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 21757

www.2026bet365j.com/css/chunk-common.1c9260d6.css

103.183.199.71

200 OK

41 kB

URL HTTP/1.1
www.2026bet365j.com/css/chunk-common.1c9260d6.css
IP
103.183.199.71:0
ASN
#0

File type
ASCII text, with very long lines (65536), with no line terminators
Size
41 kB (41127 bytes)
Hash
a30241620b2b3c61c6b465dce2d70b9f
644c16d011068ea02f8c4cb909cb79aa5ca02e0e
240ce0aeac0703e81f5505194f72d6a3cc74821060b3c6593dfc52e92215fefa

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /css/chunk-common.1c9260d6.css HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c610fe-22b8f"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:03 GMT
Content-Type: text/css
Last-Modified: Tue, 17 Jan 2023 03:07:42 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 41127

www.2026bet365j.com/js/index.e38ee93e.js

103.183.199.71

200 OK

126 kB

URL HTTP/1.1
www.2026bet365j.com/js/index.e38ee93e.js
IP
103.183.199.71:0
ASN
#0

File type
Unicode text, UTF-8 text, with very long lines (64984), with no line terminators
Size
126 kB (126295 bytes)
Hash
d6852c6630d7a5ac18e233c3d039260c
d86b60fe0e050e36d1109071f11a049c031df9c9
ebfa60482ba02b450cd3343bfbabae5e302c9ce3626d96411ada628e2228b15b

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /js/index.e38ee93e.js HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61108-5166a"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:03 GMT
Content-Type: application/javascript
Last-Modified: Tue, 17 Jan 2023 03:07:52 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 126295

www.2026bet365j.com/js/chunk-vendors.1f6ff71b.js

103.183.199.71

200 OK

206 kB

URL HTTP/1.1
www.2026bet365j.com/js/chunk-vendors.1f6ff71b.js
IP
103.183.199.71:0
ASN
#0

File type
Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
206 kB (205802 bytes)
Hash
d100cb41a0e003c4514faf46eac186ab
c01a603d033de5e813c4793fe80c9fd1adf3deed
dad7b8968b8c809b708f45dd4db39d08812ed7a53145964e685a11d616a26bff

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /js/chunk-vendors.1f6ff71b.js HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61106-992f5"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:05 GMT
Content-Type: application/javascript
Last-Modified: Tue, 17 Jan 2023 03:07:50 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 205802

www.2026bet365j.com/js/home.0b9907d2.js

103.183.199.71

200 OK

621 B

URL HTTP/1.1
www.2026bet365j.com/js/home.0b9907d2.js
IP
103.183.199.71:0
ASN
#0

File type
Unicode text, UTF-8 text, with very long lines (1379), with no line terminators
Size
621 B (621 bytes)
Hash
dd8dcfe5309e36e7b771085c77fbf015
17fb702f6222ce7140a9a1d041b4292bb818e06d
0313163b12965e85c83c8e6605934fea1f776a3fca22ab40a187dadcca0ab3d7

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /js/home.0b9907d2.js HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61108-579"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:08 GMT
Content-Type: application/javascript
Last-Modified: Tue, 17 Jan 2023 03:07:52 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 621

www.2026bet365j.com/assets/logo/favicon.ico

103.183.199.71

200 OK

4.0 kB

URL HTTP/1.1
www.2026bet365j.com/assets/logo/favicon.ico
IP
103.183.199.71:0
ASN
#0

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
4.0 kB (4039 bytes)
Hash
af1c6b36199a0a47854ada4dcb7b9ed2
c425159283c364f476c54b28554f7aa0d8e2c482
1ae95e4da7db716a7f5300b07faee34ce7e92e798fe5f11775de36f9d1007afd

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /assets/logo/favicon.ico HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
ETag: "63c610fc-fc7"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:39 GMT
Content-Type: image/x-icon
Last-Modified: Tue, 17 Jan 2023 03:07:40 GMT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
X-Cache: HIT from ty8-cdn199-061
Content-Length: 4039

www.2026bet365j.com/css/66473.4f034e44.css

103.183.199.71

200 OK

0 B

URL HTTP/1.1
www.2026bet365j.com/css/66473.4f034e44.css
IP
103.183.199.71:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /css/66473.4f034e44.css HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63c610fe-0"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:13 GMT
Content-Type: text/css
Last-Modified: Tue, 17 Jan 2023 03:07:42 GMT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
X-Cache: HIT from ty8-cdn199-061
Content-Length: 0

www.2026bet365j.com/css/pc.floatpopup.b2f05007.css

103.183.199.71

200 OK

203 B

URL HTTP/1.1
www.2026bet365j.com/css/pc.floatpopup.b2f05007.css
IP
103.183.199.71:0
ASN
#0

File type
ASCII text, with very long lines (468), with no line terminators
Size
203 B (203 bytes)
Hash
4fd364fa6550f6357f1b043cf5b4aa0c
0bf19fe5090e10fd8056de5c33ef2129671d9a59
da7af5ca6cc2f7ad3b5a7f1f13981c8436aeab9cc51ae5897a62c3610770d888

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /css/pc.floatpopup.b2f05007.css HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Content-Encoding: br
Cache-Control: max-age=604800
ETag: "63c610ff-1d4"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:12 GMT
Content-Type: text/css
Last-Modified: Tue, 17 Jan 2023 03:07:43 GMT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
X-Cache: HIT from ty8-cdn199-061
Content-Length: 203

www.2026bet365j.com/js/pc.floatpopup.57aec2f4.js

103.183.199.71

200 OK

1.8 kB

URL HTTP/1.1
www.2026bet365j.com/js/pc.floatpopup.57aec2f4.js
IP
103.183.199.71:0
ASN
#0

File type
ASCII text, with very long lines (4213), with no line terminators
Size
1.8 kB (1796 bytes)
Hash
71cc8d8a0813d49d18645f5b53bbed04
562354b0adb327f6e124b4ce305910d1e43ce20b
4fff3bf20448095f0ea815950fd8da83bb5344eba38b4b322d8abcd7ec5219a4

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /js/pc.floatpopup.57aec2f4.js HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61108-1075"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:18 GMT
Content-Type: application/javascript
Last-Modified: Tue, 17 Jan 2023 03:07:52 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 1796

www.2026bet365j.com/css/pc.scene171floatslider.dce25eab.css

103.183.199.71

200 OK

292 B

URL HTTP/1.1
www.2026bet365j.com/css/pc.scene171floatslider.dce25eab.css
IP
103.183.199.71:0
ASN
#0

File type
ASCII text, with very long lines (709), with no line terminators
Size
292 B (292 bytes)
Hash
dc9a6589cac2fe8d2c302a982243697f
66ebe2fdf8b74d3aa63be15cb81437bd9ccd94fa
60c53cc43e5849cf0954a6efa416e25500b0f0e54cddc05940021e3c2cbea6fd

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /css/pc.scene171floatslider.dce25eab.css HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Content-Encoding: br
Cache-Control: max-age=604800
ETag: "63c61100-2c5"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:13 GMT
Content-Type: text/css
Last-Modified: Tue, 17 Jan 2023 03:07:44 GMT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
X-Cache: HIT from ty8-cdn199-061
Content-Length: 292

www.2026bet365j.com/css/pc.scene171header.8c5d05d3.css

103.183.199.71

200 OK

4.5 kB

URL HTTP/1.1
www.2026bet365j.com/css/pc.scene171header.8c5d05d3.css
IP
103.183.199.71:0
ASN
#0

File type
ASCII text, with very long lines (16130), with no line terminators
Size
4.5 kB (4501 bytes)
Hash
56e716b4db6516c10252425b5b4097dd
5020e971543456f93f8eaba15cc3c4855a5b83ec
b2208ffa7926a4f1cdb7f13bd48274e32b7adf75dac5207519886ad120057ae4

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /css/pc.scene171header.8c5d05d3.css HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61100-3f02"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:12 GMT
Content-Type: text/css
Last-Modified: Tue, 17 Jan 2023 03:07:44 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 4501

www.2026bet365j.com/css/pc.scene171home.a495d762.css

103.183.199.71

200 OK

3.7 kB

URL HTTP/1.1
www.2026bet365j.com/css/pc.scene171home.a495d762.css
IP
103.183.199.71:0
ASN
#0

File type
ASCII text, with very long lines (9440), with no line terminators
Size
3.7 kB (3707 bytes)
Hash
b13ac8fa066f5d950ed9fb9f489c1aa9
57a121772282aa630f970814b53adc96e062c884
c4dca363b6c75b459689b663188f2aece9e8f9b2ff31ffdf2cc340007d9da572

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /css/pc.scene171home.a495d762.css HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61100-24e0"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:11 GMT
Content-Type: text/css
Last-Modified: Tue, 17 Jan 2023 03:07:44 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 3707

www.2026bet365j.com/js/pc.scene171floatslider.283a6188.js

103.183.199.71

200 OK

1.5 kB

URL HTTP/1.1
www.2026bet365j.com/js/pc.scene171floatslider.283a6188.js
IP
103.183.199.71:0
ASN
#0

File type
Unicode text, UTF-8 text, with very long lines (3779), with no line terminators
Size
1.5 kB (1519 bytes)
Hash
4e74caff418f17255c9efd55840281bc
590a75b5ddb9686538c631da480d80259bbd95e0
d1f7ed884d3c79af7fe1061c4fd3c375c166b758cc1887c8acaa184edb12822a

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /js/pc.scene171floatslider.283a6188.js HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c6110a-ee5"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:14 GMT
Content-Type: application/javascript
Last-Modified: Tue, 17 Jan 2023 03:07:54 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 1519

www.2026bet365j.com/js/pc.scene171home.d66f5cac.js

103.183.199.71

200 OK

4.3 kB

URL HTTP/1.1
www.2026bet365j.com/js/pc.scene171home.d66f5cac.js
IP
103.183.199.71:0
ASN
#0

File type
Unicode text, UTF-8 text, with very long lines (9124), with no line terminators
Size
4.3 kB (4347 bytes)
Hash
1d7b7c68b8ce7c8ae8c6ec439623495d
72799aaf950d08126c637200a32d584143d3c370
3b780d0b5c85f11a36ced0c9c5e7cadcd24508236ed123f1a08284e38604a030

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /js/pc.scene171home.d66f5cac.js HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c6110a-2562"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:11 GMT
Content-Type: application/javascript
Last-Modified: Tue, 17 Jan 2023 03:07:54 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 4347

www.2026bet365j.com/js/pc.scene171header.1feb6eee.js

103.183.199.71

200 OK

22 kB

URL HTTP/1.1
www.2026bet365j.com/js/pc.scene171header.1feb6eee.js
IP
103.183.199.71:0
ASN
#0

File type
Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Size
22 kB (22528 bytes)
Hash
db1dd5a17b483f910cae16eec443f99b
da88e7f0668dabbe3efbe40ed4d93012360881e7
babeedcf59169e49cc79f02a5a48dc1e75385643b4cd88067af969beb2ab46d2

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /js/pc.scene171header.1feb6eee.js HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c6110a-99c2"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:19 GMT
Content-Type: application/javascript
Last-Modified: Tue, 17 Jan 2023 03:07:54 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 22528

www.2026bet365j.com/api/activity/list?type=0&isPopup=1

103.183.199.71

200 OK

1.5 kB

URL HTTP/1.1
www.2026bet365j.com/api/activity/list?type=0&isPopup=1
IP
103.183.199.71:0
ASN
#0

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (5786), with no line terminators
Size
1.5 kB (1529 bytes)
Hash
18d9f54684eec8aee5bb3d09defee5ef
5aad15159e457dd9ac515459d00c7a3bceab70f4
7df0b701048eee0094aa3ca532bd38cc62b9e54aac988ced86be8608c08b4bbf

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /api/activity/list?type=0&isPopup=1 HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
timestamp: 1675872394912
sign: 3q1o4vg6f2q5qv4m
version: 4.0.5.0
client_type: web
device_id: cd6de883aa0b83fe2df5faa278d53109
lang: zh-CN
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: openresty
Date: Wed, 08 Feb 2023 16:05:40 GMT
Content-Type: application/json
Expires: 0
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
X-XSS-Protection: 1; mode=block
Pragma: no-cache
Vary: Accept-Encoding, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: MISS from ty8-cdn199-061
Transfer-Encoding: chunked

www.2026bet365j.com/css/pc.scence171homefooter.85c98a43.css

103.183.199.71

200 OK

438 B

URL HTTP/1.1
www.2026bet365j.com/css/pc.scence171homefooter.85c98a43.css
IP
103.183.199.71:0
ASN
#0

File type
ASCII text, with very long lines (1058), with no line terminators
Size
438 B (438 bytes)
Hash
407022ef9dcbff33ac83d16416e35d07
56e20964b12d54dad31eaf788a135738fb1a884a
086cf321c1a3dafcc30621515c45fcefa54f77a8972e072303c622127175249e

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /css/pc.scence171homefooter.85c98a43.css HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c610ff-422"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:10 GMT
Content-Type: text/css
Last-Modified: Tue, 17 Jan 2023 03:07:43 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 438

www.2026bet365j.com/js/pc.scence171homefooter.666b663f.js

103.183.199.71

200 OK

2.3 kB

URL HTTP/1.1
www.2026bet365j.com/js/pc.scence171homefooter.666b663f.js
IP
103.183.199.71:0
ASN
#0

File type
Unicode text, UTF-8 text, with very long lines (2432), with no line terminators
Size
2.3 kB (2262 bytes)
Hash
7949e8953576f0ff0a88861d0de0b1b9
8200cd5b9aab1d4d4fd5209f1447608edf20833b
c58c1368a62fee33367318c2d73801cf558bd5ce61ab9e4cea9bac8a2d80baee

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /js/pc.scence171homefooter.666b663f.js HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c6110a-fbf"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:14 GMT
Content-Type: application/javascript
Last-Modified: Tue, 17 Jan 2023 03:07:54 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 2262

www.2026bet365j.com/api/tenant/float/list

103.183.199.71

200 OK

516 B

URL HTTP/1.1
www.2026bet365j.com/api/tenant/float/list
IP
103.183.199.71:0
ASN
#0

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (1283), with no line terminators
Size
516 B (516 bytes)
Hash
e95cf34fb87ea20f7a41ca3599d1f4c7
bcb1d7be551a961fe1f6d9c13396e40b742d525b
3b00e44f41495eb5dd136b3e1f7ec99d65645fa7650aa6a1641efbe9522d010f

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /api/tenant/float/list HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
timestamp: 1675872395192
sign: 2l05q96s6d5e7i46
version: 4.0.5.0
client_type: web
device_id: cd6de883aa0b83fe2df5faa278d53109
lang: zh-CN
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: openresty
Date: Wed, 08 Feb 2023 16:05:40 GMT
Content-Type: application/json
Expires: 0
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
X-XSS-Protection: 1; mode=block
Pragma: no-cache
Vary: Accept-Encoding, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: MISS from ty8-cdn199-061
Transfer-Encoding: chunked

www.2026bet365j.com/api/config/system

103.183.199.71

200 OK

886 B

URL HTTP/1.1
www.2026bet365j.com/api/config/system
IP
103.183.199.71:0
ASN
#0

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (1709), with no line terminators
Size
886 B (886 bytes)
Hash
a092268cc58dca7b8626e71ec301e1b0
8bcff86c22453277b2322b6735c1e662d24ff2f1
3953a3cf28a6cc12064bbcd4fac02dadf8fa4e269be4715b78c73d3741ab9a83

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /api/config/system HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
timestamp: 1675872394912
sign: j6p9483l221i2b6k
version: 4.0.5.0
client_type: web
device_id: cd6de883aa0b83fe2df5faa278d53109
lang: zh-CN
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: openresty
Date: Wed, 08 Feb 2023 16:05:40 GMT
Content-Type: application/json
Expires: 0
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
X-XSS-Protection: 1; mode=block
Pragma: no-cache
Vary: Accept-Encoding, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: MISS from ty8-cdn199-061
Transfer-Encoding: chunked

www.2026bet365j.com/api/notice/page?current=1&size=1000

103.183.199.71

200 OK

508 B

URL HTTP/1.1
www.2026bet365j.com/api/notice/page?current=1&size=1000
IP
103.183.199.71:0
ASN
#0

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (692), with no line terminators
Size
508 B (508 bytes)
Hash
bc68b58634d4b712507c043fa38d55b9
7bb73ec5485d77a086e228eb60d91cee58fd0ec5
fa17b03e0b59a8ee635645b08d40b2e488e376bae3b6b5d2e50fb9c466b65e41

HTTP Headers

GET /api/notice/page?current=1&size=1000 HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
timestamp: 1675872395295
sign: 2e2r5v1li346m2uj
version: 4.0.5.0
client_type: web
device_id: cd6de883aa0b83fe2df5faa278d53109
lang: zh-CN
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: openresty
Date: Wed, 08 Feb 2023 16:05:40 GMT
Content-Type: application/json
Expires: 0
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
X-XSS-Protection: 1; mode=block
Pragma: no-cache
Vary: Accept-Encoding, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: MISS from ty8-cdn199-061
Transfer-Encoding: chunked

www.2026bet365j.com/api/banner/list

103.183.199.71

200 OK

301 B

URL HTTP/1.1
www.2026bet365j.com/api/banner/list
IP
103.183.199.71:0
ASN
#0

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (387), with no line terminators
Size
301 B (301 bytes)
Hash
115aceb921017370f7d6f326d1735093
1c7496664e985054bfc1ed4895cc4b2179d011ae
d862f97381e66975f4c3243f5bd5773ce3b235aa417891d2ca755d1979beb020

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /api/banner/list HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
timestamp: 1675872395296
sign: d6q3po4185f2u6sp
version: 4.0.5.0
client_type: web
device_id: cd6de883aa0b83fe2df5faa278d53109
lang: zh-CN
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: openresty
Date: Wed, 08 Feb 2023 16:05:40 GMT
Content-Type: application/json
Expires: 0
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
X-XSS-Protection: 1; mode=block
Pragma: no-cache
Vary: Accept-Encoding, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: MISS from ty8-cdn199-061
Transfer-Encoding: chunked

www.2026bet365j.com/img/rdaobg.93df9aaf.png

103.183.199.71

200 OK

22 kB

URL HTTP/1.1
www.2026bet365j.com/img/rdaobg.93df9aaf.png
IP
103.183.199.71:0
ASN
#0

File type
PNG image data, 175 x 369, 8-bit/color RGBA, interlaced\012- data
Size
22 kB (22261 bytes)
Hash
20585d561a197431aed191a50e110676
28e8a77746a5afe79421fcffe480735d4d8691ad
e337bde0842262d98106036d88902d2e65642b46d42a3f5871b9e307295beec6

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /img/rdaobg.93df9aaf.png HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2026bet365j.com/css/pc.scene171floatslider.dce25eab.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61104-5a0c"
Server: openresty
Date: Wed, 08 Feb 2023 05:11:01 GMT
Content-Type: image/png
Last-Modified: Tue, 17 Jan 2023 03:07:48 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 22261

www.2026bet365j.com/api/game/gameBarNew

103.183.199.71

200 OK

8.7 kB

URL HTTP/1.1
www.2026bet365j.com/api/game/gameBarNew
IP
103.183.199.71:0
ASN
#0

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (62740), with no line terminators
Size
8.7 kB (8722 bytes)
Hash
8802f4530c566608c8f729c90bcfc0ae
a9b66c0a260d2e98963d40f5b8e76324d2e1e927
15e428436a340cb05ddbf1291660d1ae42f1c09b8c8946cf54b0819e55787576

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /api/game/gameBarNew HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
timestamp: 1675872395392
sign: o56362j752f4i75f
version: 4.0.5.0
client_type: web
device_id: cd6de883aa0b83fe2df5faa278d53109
lang: zh-CN
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: openresty
Date: Wed, 08 Feb 2023 16:05:40 GMT
Content-Type: application/json
Expires: 0
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
X-XSS-Protection: 1; mode=block
Pragma: no-cache
Vary: Accept-Encoding, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: MISS from ty8-cdn199-061
Transfer-Encoding: chunked

www.2026bet365j.com/kc215/noData/cms_noimg.png?1673924680626

103.183.199.71

200 OK

3.9 kB

URL HTTP/1.1
www.2026bet365j.com/kc215/noData/cms_noimg.png?1673924680626
IP
103.183.199.71:0
ASN
#0

File type
PNG image data, 1920 x 700, 8-bit/color RGBA, non-interlaced\012- data
Size
3.9 kB (3910 bytes)
Hash
99a0bd21dac2b7ad570585f31e71e4c6
7701c1d9c7f7f426126edd3589164ef54ffbf4e5
8dc553e957d055edfa0eb9c59df58cd2f69596b0faab2ed3905f2fcb93907426

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /kc215/noData/cms_noimg.png?1673924680626 HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c6110b-269a"
Server: openresty
Date: Wed, 08 Feb 2023 05:11:01 GMT
Content-Type: image/png
Last-Modified: Tue, 17 Jan 2023 03:07:55 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 3910

www.2026bet365j.com/img/bg-products.e4ddcae4.png

103.183.199.71

200 OK

27 kB

URL HTTP/1.1
www.2026bet365j.com/img/bg-products.e4ddcae4.png
IP
103.183.199.71:0
ASN
#0

File type
PNG image data, 307 x 342, 8-bit/color RGBA, non-interlaced\012- data
Size
27 kB (27443 bytes)
Hash
746f23ebabd053a2f6e45c56f5c2156c
b96fc46914ba15036c42626b24b936bf2996c22e
c404cd576a1ca7d71727afb4ea2706bb31f213d24a02934e4ef27eae80ff8359

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /img/bg-products.e4ddcae4.png HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2026bet365j.com/css/pc.scene171home.a495d762.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61101-6bcb"
Server: openresty
Date: Wed, 08 Feb 2023 05:09:53 GMT
Content-Type: image/png
Last-Modified: Tue, 17 Jan 2023 03:07:45 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 27443

www.2026bet365j.com/img/game01.85b388dd.png

103.183.199.71

200 OK

30 kB

URL HTTP/1.1
www.2026bet365j.com/img/game01.85b388dd.png
IP
103.183.199.71:0
ASN
#0

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=81, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=271], baseline, precision 8, 270x81, components 3\012- data
Size
30 kB (30191 bytes)
Hash
ee243090e384414e96c816776c7c49e3
e41d0270c5d9f6dfce9a55aed4eaf56e67c945cb
fc3cfafd54694005280197eda49a46f3339d4b15e514fd1383f61df4db74545a

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /img/game01.85b388dd.png HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61103-9967"
Server: openresty
Date: Wed, 08 Feb 2023 05:11:02 GMT
Content-Type: image/png
Last-Modified: Tue, 17 Jan 2023 03:07:47 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 30191

www.2026bet365j.com/img/game03.212a12ef.png

103.183.199.71

200 OK

12 kB

URL HTTP/1.1
www.2026bet365j.com/img/game03.212a12ef.png
IP
103.183.199.71:0
ASN
#0

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 270x81, components 3\012- data
Size
12 kB (11854 bytes)
Hash
1cf16c13e93928bbe405f3c2ac01ba23
1cd0054bab5dc5d20064867c0e1a8f4a99ec1af0
9a0fee900f0f9422e3406e1e660a0c61bac9097540ca0618b2e8cfd87adfd227

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /img/game03.212a12ef.png HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61103-2e92"
Server: openresty
Date: Wed, 08 Feb 2023 05:11:02 GMT
Content-Type: image/png
Last-Modified: Tue, 17 Jan 2023 03:07:47 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 11854

www.2026bet365j.com/img/game02.4289a415.png

103.183.199.71

200 OK

24 kB

URL HTTP/1.1
www.2026bet365j.com/img/game02.4289a415.png
IP
103.183.199.71:0
ASN
#0

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=81, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=271], progressive, precision 8, 270x81, components 3\012- data
Size
24 kB (24468 bytes)
Hash
c1dc5b4279579df574dee565ed2bbab0
b5fbbc6bec0dd1b449a49ab2a8343bf750af4ace
e56cfbdc74ed927f41bf9109d925bfd4039179094728a8099a48bbd22e579745

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /img/game02.4289a415.png HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61103-7d87"
Server: openresty
Date: Wed, 08 Feb 2023 05:09:53 GMT
Content-Type: image/png
Last-Modified: Tue, 17 Jan 2023 03:07:47 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 24468

www.2026bet365j.com/img/rdao-l-2.f6c6cbaf.png

103.183.199.71

200 OK

13 kB

URL HTTP/1.1
www.2026bet365j.com/img/rdao-l-2.f6c6cbaf.png
IP
103.183.199.71:0
ASN
#0

File type
PNG image data, 147 x 57, 8-bit/color RGB, non-interlaced\012- data
Size
13 kB (12864 bytes)
Hash
dafcc34e864ac4f254ed8062308b2ff4
2294a84544dcf3e2f989d703e73c3152e5a4d32e
7c1782c703a4e61018cd106763b5620a2193b2862072bea2089093b389557220

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /img/rdao-l-2.f6c6cbaf.png HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61104-3323"
Server: openresty
Date: Wed, 08 Feb 2023 05:09:53 GMT
Content-Type: image/png
Last-Modified: Tue, 17 Jan 2023 03:07:48 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 12864

www.2026bet365j.com/img/rdao-l-1.d6e3a425.png

103.183.199.71

200 OK

9.2 kB

URL HTTP/1.1
www.2026bet365j.com/img/rdao-l-1.d6e3a425.png
IP
103.183.199.71:0
ASN
#0

File type
PNG image data, 147 x 51, 8-bit/color RGB, non-interlaced\012- data
Size
9.2 kB (9204 bytes)
Hash
51bda0bdf153e95fc0ecd6a87ffa5a10
8f5929673995061d35f9d504bb0d26c1a554238c
f8ee66b76e6f91322c5df9bd283381fdcf9a7c062f4c335c0db862eda4d36737

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /img/rdao-l-1.d6e3a425.png HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61104-24d3"
Server: openresty
Date: Wed, 08 Feb 2023 05:11:03 GMT
Content-Type: image/png
Last-Modified: Tue, 17 Jan 2023 03:07:48 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 9204

www.2026bet365j.com/kc215/noData/cms_game_noimg.png?1673924680626

103.183.199.71

200 OK

3.6 kB

URL HTTP/1.1
www.2026bet365j.com/kc215/noData/cms_game_noimg.png?1673924680626
IP
103.183.199.71:0
ASN
#0

File type
PNG image data, 750 x 590, 8-bit/color RGBA, non-interlaced\012- data
Size
3.6 kB (3576 bytes)
Hash
87d5dd35fd5647c214e4b16641984af3
905d5cbbd97eeeb60a861de6a75203d7013585f8
a5cae14ce6a36f6ef968ee27eda637b2ab5c9b9d74b4c278826f0e7bcbd60abe

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /kc215/noData/cms_game_noimg.png?1673924680626 HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c6110b-1371"
Server: openresty
Date: Wed, 08 Feb 2023 05:16:26 GMT
Content-Type: image/png
Last-Modified: Tue, 17 Jan 2023 03:07:55 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 3576

www.2026bet365j.com/img/rdao-l-3.5d2e2162.png

103.183.199.71

200 OK

12 kB

URL HTTP/1.1
www.2026bet365j.com/img/rdao-l-3.5d2e2162.png
IP
103.183.199.71:0
ASN
#0

File type
PNG image data, 147 x 57, 8-bit/color RGB, non-interlaced\012- data
Size
12 kB (12348 bytes)
Hash
a4804c201ac8e7522bc2af5b94c2a4b2
d6203db31f8d3949290dde6068124d6a65a26210
ec4eb5a89a14fbd4f321e717215fe7c6a5f93d9effcc666641b654f21ef29943

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /img/rdao-l-3.5d2e2162.png HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61104-3120"
Server: openresty
Date: Wed, 08 Feb 2023 05:09:53 GMT
Content-Type: image/png
Last-Modified: Tue, 17 Jan 2023 03:07:48 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 12348

www.2026bet365j.com/api/tenant/domain/list

103.183.199.71

200 OK

1.3 kB

URL HTTP/1.1
www.2026bet365j.com/api/tenant/domain/list
IP
103.183.199.71:0
ASN
#0

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (1652), with no line terminators
Size
1.3 kB (1325 bytes)
Hash
b2b65d79f2cc79068c0f651a029598d3
4cfcda1212bfc4f86637d1ad1f134062bb9d8bcc
275f241dfb816de50ca811b33a18cd64f0993b1c9f5cb286e97233368a1fc32b

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /api/tenant/domain/list HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
timestamp: 1675872396048
sign: 5813492n665u7s6j
version: 4.0.5.0
client_type: web
device_id: cd6de883aa0b83fe2df5faa278d53109
lang: zh-CN
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: openresty
Date: Wed, 08 Feb 2023 16:05:41 GMT
Content-Type: application/json
Expires: 0
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
X-XSS-Protection: 1; mode=block
Pragma: no-cache
Vary: Accept-Encoding, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
X-Content-Type-Options: nosniff
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: MISS from ty8-cdn199-061
Transfer-Encoding: chunked

www.2026bet365j.com/img/float_left_contact.5e628ff1.png

103.183.199.71

200 OK

14 kB

URL HTTP/1.1
www.2026bet365j.com/img/float_left_contact.5e628ff1.png
IP
103.183.199.71:0
ASN
#0

File type
PNG image data, 50 x 247, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (13812 bytes)
Hash
6903adf12205ae84cc59148fd61dc716
6c72770913e4e3844f3e60ac9cc6be442b11ea16
e2dfab77b1ad4f08774fa59b4e57268b1c609c4b226d418219cec33faf5ac2f2

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /img/float_left_contact.5e628ff1.png HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61102-36c1"
Server: openresty
Date: Wed, 08 Feb 2023 05:09:52 GMT
Content-Type: image/png
Last-Modified: Tue, 17 Jan 2023 03:07:46 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 13812

www.2026bet365j.com/img/float_right_contact.d1892e60.png

103.183.199.71

200 OK

11 kB

URL HTTP/1.1
www.2026bet365j.com/img/float_right_contact.d1892e60.png
IP
103.183.199.71:0
ASN
#0

File type
PNG image data, 50 x 247, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (11403 bytes)
Hash
19bc89fb608067f692a91b9746bbc5f8
e8bb2c041091e124057fe897175f02c8cca45ee8
77267f5a35f202a15852c1909f9ef9f6cbba00ad77f2a05cd3d0c5aef4ad9899

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /img/float_right_contact.d1892e60.png HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61102-2eb9"
Server: openresty
Date: Wed, 08 Feb 2023 05:09:52 GMT
Content-Type: image/png
Last-Modified: Tue, 17 Jan 2023 03:07:46 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 11403

www.2026bet365j.com/img/rdao-r-1.c2e7696b.png

103.183.199.71

200 OK

12 kB

URL HTTP/1.1
www.2026bet365j.com/img/rdao-r-1.c2e7696b.png
IP
103.183.199.71:0
ASN
#0

File type
PNG image data, 147 x 57, 8-bit/color RGB, non-interlaced\012- data
Size
12 kB (12068 bytes)
Hash
807f2485daa592ff5543f1ff44016db1
4811b66bc4cd958014fc0d70aac46d47c010b4b6
d69a56fcf3b19050f7f7ea4daae12d36b7749f04695a8c2ed76c318ac8495a8d

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /img/rdao-r-1.c2e7696b.png HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61104-3002"
Server: openresty
Date: Wed, 08 Feb 2023 05:11:03 GMT
Content-Type: image/png
Last-Modified: Tue, 17 Jan 2023 03:07:48 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 12068

www.2026bet365j.com/kc215/logo/logo.png?1673924680626

103.183.199.71

200 OK

15 kB

URL HTTP/1.1
www.2026bet365j.com/kc215/logo/logo.png?1673924680626
IP
103.183.199.71:0
ASN
#0

File type
PNG image data, 472 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size
15 kB (14704 bytes)
Hash
58fb745e09d69a77adc66ec678fda8cb
5d12212442c84a200bdd2a67741f744dd8e0d176
577b5de5ee70d7ea4270b27f59b6a8e777a15e0ef1859ccf16a2132f891979fb

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /kc215/logo/logo.png?1673924680626 HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c6110b-2997c"
Server: openresty
Date: Wed, 08 Feb 2023 05:11:02 GMT
Content-Type: image/png
Last-Modified: Tue, 17 Jan 2023 03:07:55 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 14704

www.2026bet365j.com/img/rdao-r-4.5d6173a4.png

103.183.199.71

200 OK

14 kB

URL HTTP/1.1
www.2026bet365j.com/img/rdao-r-4.5d6173a4.png
IP
103.183.199.71:0
ASN
#0

File type
PNG image data, 147 x 53, 8-bit/color RGB, non-interlaced\012- data
Size
14 kB (14427 bytes)
Hash
dd5fb591cbb9b0f8a1610dedf9ea66b8
7f043e7b4028472d249bcdd4c297eb18c188734f
477f6b1e4186260c752a943b0f45c2b4009c046ca3fd12045e8ed8b87d47b6ff

Detections

Analyzer	Verdict	Alert
openphish	Bet365

HTTP Headers

GET /img/rdao-r-4.5d6173a4.png HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61104-3922"
Server: openresty
Date: Wed, 08 Feb 2023 05:54:00 GMT
Content-Type: image/png
Last-Modified: Tue, 17 Jan 2023 03:07:48 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 14427

www.2026bet365j.com/js/42480.6271432b.js

103.183.199.71

200 OK

75 B

URL HTTP/1.1
www.2026bet365j.com/js/42480.6271432b.js
IP
103.183.199.71:0
ASN
#0

File type
ASCII text, with no line terminators
Size
75 B (75 bytes)
Hash
6c6f95c1c4a9b0768a7c8122a384e603
26e3ed3483802652f86fb66d1ee431afbdcc42fe
1ea142e3274580463ead5ef373b4e9b815bff5d1165b6a9737827deb5c70dcd6

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /js/42480.6271432b.js HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: "63c61105-4b"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:31 GMT
Content-Type: application/javascript
Last-Modified: Tue, 17 Jan 2023 03:07:49 GMT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
X-Cache: HIT from ty8-cdn199-061
Content-Length: 75

www.2026bet365j.com/js/81354.ac91c7ab.js

103.183.199.71

200 OK

18 kB

URL HTTP/1.1
www.2026bet365j.com/js/81354.ac91c7ab.js
IP
103.183.199.71:0
ASN
#0

File type
Unicode text, UTF-8 text, with very long lines (24163)
Size
18 kB (18016 bytes)
Hash
f6c1af2356d6d14761bc0183fd38446e
0d22164da4a83fd81b5fd19c1fed8b13f05cb019
7fca02aca9fde9e3bf27103becaaa5b3de0aebe62c4f79623075feee0dc9b5ec

Detections

Analyzer	Verdict	Alert
openphish	Bet365
fortinet	Phishing

HTTP Headers

GET /js/81354.ac91c7ab.js HTTP/1.1
Host: www.2026bet365j.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.2026bet365j.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=604800
ETag: W/"63c61106-d5f4"
Server: openresty
Date: Wed, 08 Feb 2023 04:53:31 GMT
Content-Type: application/javascript
Last-Modified: Tue, 17 Jan 2023 03:07:50 GMT
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Encoding: gzip
X-Cache: HIT from ty8-cdn199-061
Content-Length: 18016

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML